$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/AB3CCD50E79011EEA3DFB922C4F9AE02.roa File: AB3CCD50E79011EEA3DFB922C4F9AE02.roa (raw, json) Hash identifier: CLLXrK2zzVLl1EYNQyxS+WzBqeRrVeVENVbUau48OSo= Subject key identifier: F6:C6:23:03:D4:EB:DD:2D:9D:7B:4D:9A:5F:B7:50:8E:27:AD:36:76 Certificate issuer: /CN=A9185B6D/serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Certificate serial: BC Authority key identifier: 2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/AB3CCD50E79011EEA3DFB922C4F9AE02.roa Signing time: Fri 21 Mar 2025 05:11:55 +0000 ROA not before: Fri 21 Mar 2025 05:11:55 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152459 IP address blocks: 157.15.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 04:35:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B6D, serialNumber=2DF9A1E375A17B8EA56027B45A8BD66F96747D86 Validity Not Before: Mar 21 05:11:55 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dcf51a-0779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f7:4e:f1:3b:05:6f:50:cf:20:e2:bc:45:2a: fe:13:32:79:69:68:2b:9d:36:1e:02:bf:97:83:ff: 05:c3:ae:69:a7:a0:a6:22:aa:d9:5d:61:5f:d3:0e: 1c:6f:6f:8a:8b:4b:8a:fe:4d:bd:1b:4a:3e:71:fa: 18:5c:cf:ff:46:7c:64:7f:3b:f3:75:9e:ad:54:20: e1:e6:42:0e:3f:a5:97:1a:83:20:db:2b:3d:0a:32: e0:7c:f1:27:ee:3d:2c:29:24:29:df:81:46:9b:05: e0:62:fe:52:9c:3b:43:f7:83:b2:3b:5a:2f:f1:fb: 69:06:c6:e4:02:3a:b5:70:48:f0:69:b2:7c:78:87: 5f:c9:0f:63:df:3c:c0:e7:ee:15:3a:2d:8f:21:18: 96:d1:8f:d5:01:a7:55:19:e7:17:aa:40:1c:3e:f9: 08:db:99:46:b5:f1:19:fe:bd:61:c7:67:b8:7d:5f: c6:58:c6:ce:40:24:c5:00:6e:10:01:fd:50:90:de: be:86:d0:8e:ea:25:37:b3:6b:b7:29:b9:bd:1b:5e: 73:31:09:e0:fa:2f:b6:00:1f:80:50:8c:12:38:58: 03:9e:51:47:b6:98:c6:73:32:87:e7:d9:ea:a6:9e: b1:da:d8:72:77:7b:f6:c3:eb:c3:8e:77:52:e3:14: 38:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:C6:23:03:D4:EB:DD:2D:9D:7B:4D:9A:5F:B7:50:8E:27:AD:36:76 X509v3 Authority Key Identifier: keyid:2D:F9:A1:E3:75:A1:7B:8E:A5:60:27:B4:5A:8B:D6:6F:96:74:7D:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/Lfmh43Whe46lYCe0WovWb5Z0fYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Lfmh43Whe46lYCe0WovWb5Z0fYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B6D/181B8220E78E11EE9831EB7EC4F9AE02/AB3CCD50E79011EEA3DFB922C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.142.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:ce:86:dc:f6:04:4d:a0:d0:1a:86:9e:79:62:8b:93:07:cf: 4f:3c:af:27:3b:51:41:d5:59:11:0b:f7:4c:e4:b8:af:7e:94: 45:3b:8c:6c:97:b3:c2:92:7c:e8:10:b7:7d:dd:8a:b0:ac:13: 6e:04:85:bf:c7:49:36:a6:82:dc:21:a3:31:cf:ff:d0:83:a2: 27:18:77:21:e8:33:97:ca:0b:84:e8:53:85:c5:e2:f4:57:4a: a2:95:8c:74:61:2c:fe:c6:2d:d6:51:60:8c:cb:e4:08:a0:f9: 94:93:59:b5:15:58:d7:a6:84:41:4d:c7:f3:e7:7d:e5:e1:86: e1:6b:50:47:eb:bd:f9:5c:c6:fd:b4:57:fa:7a:f3:98:8e:01: 40:40:6e:ae:8a:53:73:26:b5:7e:48:c9:ca:e3:a4:77:33:32: 45:25:c0:0a:ef:3a:e8:a5:34:b3:92:3f:5a:63:8b:1b:ac:09: 5b:db:72:d0:1a:b7:f1:a4:32:aa:bd:72:30:9a:82:16:d4:79: 74:ee:3b:5f:cc:4e:66:52:45:8a:40:1c:e9:ff:34:98:99:17: 26:80:74:6f:89:8e:4f:43:92:8d:17:83:85:a3:47:53:e6:08: df:c4:bc:e5:32:e2:91:62:a8:f2:a8:78:d5:25:df:48:c1:f4: 97:c4:3d:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNkQxMTAvBgNVBAUTKDJERjlBMUUzNzVBMTdCOEVBNTYwMjdCNDVBOEJENjZG OTY3NDdEODYwHhcNMjUwMzIxMDUxMTU1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjZjUxYS0wNzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vdO8TsFb1DPIOK8RSr+EzJ5aWgrnTYeAr+Xg/8Fw65pp6CmIqrZXWFf0w4c b2+Ki0uK/k29G0o+cfoYXM//RnxkfzvzdZ6tVCDh5kIOP6WXGoMg2ys9CjLgfPEn 7j0sKSQp34FGmwXgYv5SnDtD94OyO1ov8ftpBsbkAjq1cEjwabJ8eIdfyQ9j3zzA 5+4VOi2PIRiW0Y/VAadVGecXqkAcPvkI25lGtfEZ/r1hx2e4fV/GWMbOQCTFAG4Q Af1QkN6+htCO6iU3s2u3Kbm9G15zMQng+i+2AB+AUIwSOFgDnlFHtpjGczKH59nq pp6x2thyd3v2w+vDjndS4xQ41QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPbGIwPU 690tnXtNml+3UI4nrTZ2MB8GA1UdIwQYMBaAFC35oeN1oXuOpWAntFqL1m+WdH2G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI2RC8xODFCODIyMEU3 OEUxMUVFOTgzMUVCN0VDNEY5QUUwMi9MZm1oNDNXaGU0NmxZQ2UwV292V2I1WjBm WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xmbWg0M1doZTQ2bFlDZTBXb3ZXYjVaMGZZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVCNkQvMTgxQjgyMjBFNzhFMTFFRTk4MzFFQjdFQzRGOUFFMDIvQUIzQ0NENTBF NzkwMTFFRUEzREZCOTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD44wDQYJKoZIhvcNAQELBQADggEBAD7Ohtz2BE2g0BqG nnlii5MHz088ryc7UUHVWREL90zkuK9+lEU7jGyXs8KSfOgQt33dirCsE24Ehb/H STamgtwhozHP/9CDoicYdyHoM5fKC4ToU4XF4vRXSqKVjHRhLP7GLdZRYIzL5Aig +ZSTWbUVWNemhEFNx/PnfeXhhuFrUEfrvflcxv20V/p685iOAUBAbq6KU3MmtX5I ycrjpHczMkUlwArvOuilNLOSP1pjixusCVvbctAat/GkMqq9cjCaghbUeXTuO1/M TmZSRYpAHOn/NJiZFyaAdG+Jjk9Dko0Xg4WjR1PmCN/EvOUy4pFiqPKoeNUl30jB 9JfEPQY= -----END CERTIFICATE-----Generated at Tue Apr 22 04:00:16 2025 by rpki-client