$ rpki-client -vvf rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/9C6F77784A3211EFBDBCEB2FC4F9AE02.roa File: 9C6F77784A3211EFBDBCEB2FC4F9AE02.roa (raw, json) Hash identifier: VtLgFQFuvZQFqc3/1iLIm4m/GkaEOorvnwwczfuLsfc= Subject key identifier: 73:45:BF:FE:D4:D6:D7:E2:28:47:E0:68:40:75:13:2E:A9:6D:59:32 Certificate issuer: /CN=A918549C/serialNumber=43634C701BA1F1EFCE8F56AA6AD1DB2945A1DB9F Certificate serial: 81 Authority key identifier: 43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/9C6F77784A3211EFBDBCEB2FC4F9AE02.roa Signing time: Tue 25 Mar 2025 05:42:58 +0000 ROA not before: Tue 25 Mar 2025 05:42:58 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141153 IP address blocks: 157.15.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:26:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918549C Validity Not Before: Mar 25 05:42:58 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e24262-858c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6e:1b:ce:47:27:3c:ee:03:77:82:56:a0:59: 34:f9:69:e7:4e:77:da:e7:6b:48:e0:21:cf:6e:a0: 20:f7:9c:76:c4:65:be:f9:23:ee:25:5b:74:c2:18: b0:80:53:08:01:f2:b9:5b:cf:f8:23:8b:51:69:85: 5a:f6:c5:1e:34:52:6c:56:fd:4c:72:fc:b7:7f:cb: 9e:d9:65:fd:c0:ca:08:b5:da:1f:3b:01:f9:78:1f: b4:0d:ba:eb:4d:b5:03:bd:ca:b8:fa:3c:9f:c6:b8: e3:22:d1:5a:8a:7c:08:37:a1:0b:51:06:ef:ba:0b: c5:5f:94:dd:22:5b:29:5d:7b:d7:c2:9d:3b:1c:0d: c9:98:41:13:4a:fb:65:4a:a3:8e:9c:16:d3:27:c0: 84:09:15:20:14:32:96:ab:7c:8f:49:28:c7:e8:46: 2e:29:d4:64:48:80:0b:3b:24:35:ec:96:50:22:a2: 08:e8:15:00:7a:0c:5c:21:4c:aa:3b:1c:ba:c6:86: 54:db:a1:c0:00:70:98:68:21:3f:46:a3:f0:27:8d: d2:61:ef:b6:f2:4b:fd:3d:7f:92:83:65:07:7b:74: 1a:41:b3:1f:6b:40:c4:e2:06:3a:9b:e5:70:d0:79: f7:8b:1d:59:c7:24:4f:37:fe:8d:2d:00:56:07:8b: 00:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:45:BF:FE:D4:D6:D7:E2:28:47:E0:68:40:75:13:2E:A9:6D:59:32 X509v3 Authority Key Identifier: keyid:43:63:4C:70:1B:A1:F1:EF:CE:8F:56:AA:6A:D1:DB:29:45:A1:DB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/Q2NMcBuh8e_Oj1aqatHbKUWh258.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q2NMcBuh8e_Oj1aqatHbKUWh258.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918549C/DE8718C44A3111EFB7BBD51CC4F9AE02/9C6F77784A3211EFBDBCEB2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.224.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:69:0d:55:eb:21:9f:5f:6f:20:11:b0:15:b2:05:9c:9b:80: 60:86:d8:0b:c3:f1:ad:d1:7e:df:7a:7b:96:7f:60:fc:a2:92: ff:29:82:f2:a4:0d:82:7c:77:36:2c:c3:2f:02:2e:52:f8:e1: 06:f3:2d:60:31:a0:fe:1b:c0:eb:f5:fd:23:7d:29:9d:11:94: f7:95:1a:1b:6e:0e:ae:f2:13:7d:ba:c1:e8:95:68:b5:22:bb: cb:c5:ee:58:87:ad:2b:4d:10:c8:e0:c2:e1:c9:78:26:46:cf: f2:e0:d7:f2:42:65:8e:46:17:f0:81:a3:d8:72:f6:e0:8a:5e: c4:de:77:10:f1:4d:01:d4:fc:46:6b:1a:3f:2c:b9:fc:5f:a5: 16:d2:94:7e:1e:2d:75:81:e5:3e:86:1f:fa:33:8f:8d:75:4c: 05:74:b1:ec:0a:23:d7:a0:e5:ca:dc:1b:9e:be:ad:3e:d3:4f: 30:c8:81:56:05:9f:c4:84:da:34:c6:d6:a6:89:b8:f6:18:ac: 4e:68:ec:1a:15:86:16:00:00:ce:be:35:41:40:f4:c3:79:b7: a2:69:2e:11:f6:1d:53:1b:c3:58:48:2d:b7:36:05:18:12:9d: 71:1d:e8:75:c4:35:e1:91:81:47:f3:44:15:92:25:19:3e:52: 37:43:26:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0OUMxMTAvBgNVBAUTKDQzNjM0QzcwMUJBMUYxRUZDRThGNTZBQTZBRDFEQjI5 NDVBMURCOUYwHhcNMjUwMzI1MDU0MjU4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2UyNDI2Mi04NThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2W4bzkcnPO4Dd4JWoFk0+WnnTnfa52tI4CHPbqAg95x2xGW++SPuJVt0whiw gFMIAfK5W8/4I4tRaYVa9sUeNFJsVv1Mcvy3f8ue2WX9wMoItdofOwH5eB+0Dbrr TbUDvcq4+jyfxrjjItFainwIN6ELUQbvugvFX5TdIlspXXvXwp07HA3JmEETSvtl SqOOnBbTJ8CECRUgFDKWq3yPSSjH6EYuKdRkSIALOyQ17JZQIqII6BUAegxcIUyq Oxy6xoZU26HAAHCYaCE/RqPwJ43SYe+28kv9PX+Sg2UHe3QaQbMfa0DE4gY6m+Vw 0Hn3ix1ZxyRPN/6NLQBWB4sApwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHNFv/7U 1tfiKEfgaEB1Ey6pbVkyMB8GA1UdIwQYMBaAFENjTHAbofHvzo9WqmrR2ylFoduf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQ5Qy9ERTg3MThDNDRB MzExMUVGQjdCQkQ1MUNDNEY5QUUwMi9RMk5NY0J1aDhlX09qMWFxYXRIYktVV2gy NTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1EyTk1jQnVoOGVfT2oxYXFhdEhiS1VXaDI1OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0OUMvREU4NzE4QzQ0QTMxMTFFRkI3QkJENTFDQzRGOUFFMDIvOUM2Rjc3Nzg0 QTMyMTFFRkJEQkNFQjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD+AwDQYJKoZIhvcNAQELBQADggEBAB9pDVXrIZ9fbyAR sBWyBZybgGCG2AvD8a3Rft96e5Z/YPyikv8pgvKkDYJ8dzYswy8CLlL44QbzLWAx oP4bwOv1/SN9KZ0RlPeVGhtuDq7yE326weiVaLUiu8vF7liHrStNEMjgwuHJeCZG z/Lg1/JCZY5GF/CBo9hy9uCKXsTedxDxTQHU/EZrGj8sufxfpRbSlH4eLXWB5T6G H/ozj411TAV0sewKI9eg5crcG56+rT7TTzDIgVYFn8SE2jTG1qaJuPYYrE5o7BoV hhYAAM6+NUFA9MN5t6JpLhH2HVMbw1hILbc2BRgSnXEd6HXENeGRgUfzRBWSJRk+ UjdDJsI= -----END CERTIFICATE-----Generated at Mon Apr 7 20:37:14 2025 by rpki-client