$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A1E94B1AD33611EFBB5ACC53C4F9AE02.roa File: A1E94B1AD33611EFBB5ACC53C4F9AE02.roa (raw, json) Hash identifier: yzw2bPb8shaZv4QpEwmgjGynULbfNLiDjLXmY0yDXVk= Subject key identifier: CE:13:DB:44:E1:F7:B3:4F:14:E1:79:98:3F:3F:87:07:ED:98:5F:73 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1C83 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A1E94B1AD33611EFBB5ACC53C4F9AE02.roa Signing time: Wed 15 Jan 2025 11:48:27 +0000 ROA not before: Wed 15 Jan 2025 11:48:27 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138272 IP address blocks: 157.15.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:53:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7299 (0x1c83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2 Validity Not Before: Jan 15 11:48:27 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6787a08b-a9da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:bf:30:60:6a:d7:6b:6e:f4:d4:40:45:91:23: 0e:1b:86:0f:46:d6:f7:72:20:0b:9a:98:15:92:85: b1:d9:0c:a3:9f:e5:1d:d5:f7:5e:51:34:6a:e7:7a: 8b:db:d1:c9:57:10:e9:48:50:1b:ca:be:65:8f:f6: 70:c3:80:36:8d:96:73:a6:a3:52:68:65:a0:dc:d9: 7a:a2:ff:f8:08:f9:74:d7:0e:6d:a9:21:2e:94:ce: c5:d2:e9:4a:91:fa:84:27:d8:10:dd:67:98:30:f5: 87:54:e3:74:c7:0d:67:87:ab:3e:84:99:0c:6a:f3: ba:8e:85:6f:f5:94:f6:04:70:73:70:35:0e:d1:f7: 71:55:67:47:ec:93:a1:d4:cc:cf:ba:97:89:dc:4d: 71:13:ad:a1:21:48:d3:18:16:ef:76:79:d9:16:87: 04:f7:cc:e3:4d:02:7c:e8:bd:0e:a7:e5:f9:ef:79: 5f:b8:00:dc:84:73:66:ad:50:1d:f9:cc:0b:14:ca: 5a:7c:8c:b2:78:3e:7f:24:b0:e9:8d:2a:b8:af:12: 7c:12:54:5e:04:2b:41:0e:8e:be:1b:b8:95:ad:fb: cd:84:e7:e5:ef:cc:b5:31:70:7d:dd:e6:90:04:ca: 04:66:be:3a:a0:4e:b1:4f:c4:c6:f0:05:64:45:a9: f1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:13:DB:44:E1:F7:B3:4F:14:E1:79:98:3F:3F:87:07:ED:98:5F:73 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A1E94B1AD33611EFBB5ACC53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.132.0/23 Signature Algorithm: sha256WithRSAEncryption 42:da:0d:0f:57:24:7d:e7:eb:43:d6:8a:64:72:00:0c:2e:da: c0:6c:4c:f9:b8:da:69:6d:e6:af:30:5a:54:88:3b:13:b5:7f: 34:eb:2b:c6:9d:23:99:15:02:fb:c2:ff:3c:35:ff:62:92:69: 61:fc:06:8f:c5:40:64:ac:72:c2:0c:39:e3:34:4d:c5:ce:69: a1:28:31:c2:35:6a:43:7c:31:74:70:de:7a:a1:8c:c2:99:ac: 0c:17:b1:41:2c:21:5b:47:96:fd:94:e5:71:31:20:9f:ba:f1: 11:63:18:60:67:e0:89:c8:71:11:31:a8:81:8c:12:ab:60:d3: 63:af:b8:6e:ed:0e:b2:44:1a:85:25:cf:65:b6:87:4f:02:85: 28:b1:37:3c:11:74:18:05:5c:a7:a3:de:60:40:71:79:e1:8e: bc:1c:6f:f5:a7:0e:26:c5:10:6f:a6:47:5c:ef:f0:f9:03:c9: c0:d6:0c:36:db:d7:3e:60:e0:f5:6a:60:0e:67:93:3a:25:45: a9:03:23:80:74:80:4f:d1:89:54:c7:ad:bd:13:f9:00:3f:26: 41:71:c4:c3:a5:cb:37:cc:1e:56:ca:1d:2d:33:1b:af:25:c2: 2d:9f:ab:95:ba:03:40:8a:82:e3:a4:0c:88:be:5d:57:4c:4c: 6b:3b:81:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHIMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwMTE1MTE0ODI3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg3YTA4Yi1hOWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2b8wYGrXa2701EBFkSMOG4YPRtb3ciALmpgVkoWx2Qyjn+Ud1fdeUTRq53qL 29HJVxDpSFAbyr5lj/Zww4A2jZZzpqNSaGWg3Nl6ov/4CPl01w5tqSEulM7F0ulK kfqEJ9gQ3WeYMPWHVON0xw1nh6s+hJkMavO6joVv9ZT2BHBzcDUO0fdxVWdH7JOh 1MzPupeJ3E1xE62hIUjTGBbvdnnZFocE98zjTQJ86L0Op+X573lfuADchHNmrVAd +cwLFMpafIyyeD5/JLDpjSq4rxJ8ElReBCtBDo6+G7iVrfvNhOfl78y1MXB93eaQ BMoEZr46oE6xT8TG8AVkRanxnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFM4T20Th 97NPFOF5mD8/hwftmF9zMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTFFOTRCMUFE MzM2MTFFRkJCNUFDQzUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD4QwDQYJKoZIhvcNAQELBQADggEBAELaDQ9XJH3n60PW imRyAAwu2sBsTPm42mlt5q8wWlSIOxO1fzTrK8adI5kVAvvC/zw1/2KSaWH8Bo/F QGSscsIMOeM0TcXOaaEoMcI1akN8MXRw3nqhjMKZrAwXsUEsIVtHlv2U5XExIJ+6 8RFjGGBn4InIcRExqIGMEqtg02OvuG7tDrJEGoUlz2W2h08ChSixNzwRdBgFXKej 3mBAcXnhjrwcb/WnDibFEG+mR1zv8PkDycDWDDbb1z5g4PVqYA5nkzolRakDI4B0 gE/RiVTHrb0T+QA/JkFxxMOlyzfMHlbKHS0zG68lwi2fq5W6A0CKguOkDIi+XVdM TGs7gRw= -----END CERTIFICATE-----Generated at Sun Apr 6 21:57:45 2025 by rpki-client