$ rpki-client -vvf rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/C63D0814097B11F0B1329480C4F9AE02.roa File: C63D0814097B11F0B1329480C4F9AE02.roa (raw, json) Hash identifier: VpvWI0nd92qtQK/BsL7Qtr/7IONXUo8ggsacYg9dezE= Subject key identifier: A4:27:36:34:2B:01:8B:AD:48:6A:6A:F1:5B:89:B7:C2:CF:EA:84:30 Certificate issuer: /CN=A91B758E/serialNumber=D3BC842802DAD22D5C30C28265F7D108BD478E70 Certificate serial: CE Authority key identifier: D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/C63D0814097B11F0B1329480C4F9AE02.roa Signing time: Tue 25 Mar 2025 13:19:26 +0000 ROA not before: Tue 25 Mar 2025 13:19:26 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137453 IP address blocks: 157.15.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B758E Validity Not Before: Mar 25 13:19:26 2025 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=67e2ad5e-a3dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f9:d9:55:c8:97:29:f4:47:0b:fd:e1:9f:02: 30:b9:96:0c:2c:a3:b9:fc:f9:c4:62:9d:c0:03:df: 86:38:5f:aa:f8:45:9f:a3:a0:05:2b:d4:9a:75:36: 06:56:c5:c3:f3:ec:77:a3:70:00:4f:d0:41:94:f5: 7f:93:76:19:5c:3d:b3:e9:d2:7f:fa:40:ee:89:f0: b4:98:a7:21:a5:78:32:5a:43:d8:c1:57:d0:28:cb: 8c:45:39:6e:73:72:70:48:25:10:62:35:c6:28:f2: b2:06:5b:e1:9a:e9:ee:85:b0:d8:ce:80:a4:a4:f4: 57:81:33:ea:a7:86:aa:e6:05:fb:59:7b:86:8d:6e: 40:54:fe:c1:08:57:2d:ce:28:c6:ea:66:82:02:9b: aa:75:57:54:94:7c:ec:17:49:7a:83:fa:95:c1:a8: 82:51:15:16:cf:a2:cc:b0:96:b0:6f:3f:07:23:e3: 28:69:49:77:7f:ee:73:6f:b0:db:1e:5c:8a:7c:dc: b7:04:db:29:4d:57:43:0b:d0:aa:78:98:24:af:e1: 02:f9:fb:cb:5e:76:d4:76:da:a1:25:d9:a6:e9:05: 83:f7:f7:7a:96:a0:2c:0b:c4:88:33:0b:84:b0:3c: 0e:76:5c:49:92:0d:49:3a:e3:58:eb:bc:2e:e6:bd: 48:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:27:36:34:2B:01:8B:AD:48:6A:6A:F1:5B:89:B7:C2:CF:EA:84:30 X509v3 Authority Key Identifier: keyid:D3:BC:84:28:02:DA:D2:2D:5C:30:C2:82:65:F7:D1:08:BD:47:8E:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/07yEKALa0i1cMMKCZffRCL1HjnA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/07yEKALa0i1cMMKCZffRCL1HjnA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B758E/DDEC8124D53D11EE8F1E8A85C4F9AE02/C63D0814097B11F0B1329480C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.228.0/24 Signature Algorithm: sha256WithRSAEncryption 30:51:3d:89:37:8a:3a:70:8f:c5:bc:f8:97:e0:90:20:7b:48: 79:92:73:53:72:4a:e9:43:87:a6:56:d1:47:99:3f:0e:cd:dc: 11:5c:55:32:7d:1e:0b:0e:35:49:f3:14:d9:b1:71:d1:49:04: 88:09:b1:62:67:ff:96:fb:59:32:3f:c8:3a:ca:56:09:7f:44: b4:1e:7e:7b:6e:8f:9d:2f:a1:b8:60:ef:53:f7:cb:b9:9e:b1: 9e:6c:24:b4:fc:20:29:dd:98:20:df:d2:e3:f8:c2:83:8c:18: 72:30:c5:05:ad:27:d6:47:49:2c:f9:78:42:bc:00:89:68:4d: 4a:6e:b5:60:b1:70:34:e8:55:55:82:f6:e5:3f:a4:96:38:91: c5:4d:ca:d5:2a:c3:75:19:64:2c:50:48:b5:4f:38:5a:c3:4a: 33:df:ff:59:a4:10:e1:43:dc:d7:de:1c:56:f2:90:47:40:45: 58:7c:84:ae:87:9b:8b:2e:68:a3:83:cd:46:5b:01:3e:1e:a7: 9a:82:22:38:75:a5:ac:f5:60:94:d1:04:05:b5:9b:18:c9:8b: 1c:af:ef:56:11:bf:aa:aa:48:a5:fa:36:43:06:b1:87:97:08: 8b:c0:eb:90:92:48:c7:6a:b8:df:3c:bf:36:2a:5d:82:90:e7: ca:3a:60:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc1OEUxMTAvBgNVBAUTKEQzQkM4NDI4MDJEQUQyMkQ1QzMwQzI4MjY1RjdEMTA4 QkQ0NzhFNzAwHhcNMjUwMzI1MTMxOTI2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2UyYWQ1ZS1hM2RkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvnZVciXKfRHC/3hnwIwuZYMLKO5/PnEYp3AA9+GOF+q+EWfo6AFK9SadTYG VsXD8+x3o3AAT9BBlPV/k3YZXD2z6dJ/+kDuifC0mKchpXgyWkPYwVfQKMuMRTlu c3JwSCUQYjXGKPKyBlvhmunuhbDYzoCkpPRXgTPqp4aq5gX7WXuGjW5AVP7BCFct zijG6maCApuqdVdUlHzsF0l6g/qVwaiCURUWz6LMsJawbz8HI+MoaUl3f+5zb7Db HlyKfNy3BNspTVdDC9CqeJgkr+EC+fvLXnbUdtqhJdmm6QWD9/d6lqAsC8SIMwuE sDwOdlxJkg1JOuNY67wu5r1IFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKQnNjQr AYutSGpq8VuJt8LP6oQwMB8GA1UdIwQYMBaAFNO8hCgC2tItXDDCgmX30Qi9R45w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzU4RS9EREVDODEyNEQ1 M0QxMUVFOEYxRThBODVDNEY5QUUwMi8wN3lFS0FMYTBpMWNNTUtDWmZmUkNMMUhq bkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzA3eUVLQUxhMGkxY01NS0NaZmZSQ0wxSGpuQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjc1OEUvRERFQzgxMjRENTNEMTFFRThGMUU4QTg1QzRGOUFFMDIvQzYzRDA4MTQw OTdCMTFGMEIxMzI5NDgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD+QwDQYJKoZIhvcNAQELBQADggEBADBRPYk3ijpwj8W8 +JfgkCB7SHmSc1NySulDh6ZW0UeZPw7N3BFcVTJ9HgsONUnzFNmxcdFJBIgJsWJn /5b7WTI/yDrKVgl/RLQefntuj50vobhg71P3y7mesZ5sJLT8ICndmCDf0uP4woOM GHIwxQWtJ9ZHSSz5eEK8AIloTUputWCxcDToVVWC9uU/pJY4kcVNytUqw3UZZCxQ SLVPOFrDSjPf/1mkEOFD3NfeHFbykEdARVh8hK6Hm4suaKODzUZbAT4ep5qCIjh1 paz1YJTRBAW1mxjJixyv71YRv6qqSKX6NkMGsYeXCIvA65CSSMdquN88vzYqXYKQ 58o6YJM= -----END CERTIFICATE-----Generated at Sat Apr 5 22:07:58 2025 by rpki-client