$ rpki-client -vvf rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/C5589FB4BF9C11EEAAE7743EC4F9AE02.roa File: C5589FB4BF9C11EEAAE7743EC4F9AE02.roa (raw, json) Hash identifier: dUufcGrEf1g89p6hQjifaNkQf1XSBUMLG147+uIrEko= Subject key identifier: 24:BE:52:C9:64:5D:22:38:4B:63:A7:C6:C4:42:B3:0E:88:E9:A6:2A Certificate issuer: /CN=A91CDB75/serialNumber=158834B563A7C33B498334BCFA30F8D6B674DC9E Certificate serial: C9 Authority key identifier: 15:88:34:B5:63:A7:C3:3B:49:83:34:BC:FA:30:F8:D6:B6:74:DC:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYg0tWOnwztJgzS8-jD41rZ03J4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/C5589FB4BF9C11EEAAE7743EC4F9AE02.roa Signing time: Wed 05 Feb 2025 04:38:55 +0000 ROA not before: Wed 05 Feb 2025 04:38:55 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152446 IP address blocks: 157.15.36.0/24 maxlen: 24 157.15.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/FYg0tWOnwztJgzS8-jD41rZ03J4.crl rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/FYg0tWOnwztJgzS8-jD41rZ03J4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYg0tWOnwztJgzS8-jD41rZ03J4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CDB75 Validity Not Before: Feb 5 04:38:55 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a2eb5f-de04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:69:8e:de:a8:ef:cf:a3:1e:28:c2:3c:b2:b0: a3:cc:98:3a:b3:8d:54:51:da:b9:ea:13:bc:6b:43: d1:e3:b1:f9:1c:10:e4:4e:3d:b9:5a:65:5f:70:ac: 0c:2b:4e:5e:ec:cf:56:6e:87:19:3e:f4:50:1f:bc: 11:14:5c:bb:09:fb:eb:ba:6e:59:68:09:8a:ae:14: ef:38:9c:3d:64:92:55:d9:2c:5a:ef:a5:81:39:f4: 9d:06:54:f3:cd:97:b4:8f:bc:cd:0b:88:d0:bc:83: e0:8b:c5:e4:14:06:e2:9e:c9:1e:f5:21:01:d7:d6: 84:88:30:68:c6:55:2f:dd:48:89:b2:b6:62:bc:e5: be:1b:0a:ee:bb:61:6a:14:49:66:c3:68:87:48:b4: 8f:19:9c:44:a1:c1:37:04:0f:84:f7:ec:3e:20:01: 16:b7:e6:e8:5f:42:75:4c:26:c1:f4:78:29:c2:46: 69:3b:6a:77:72:d8:ac:8e:47:44:b6:b1:f2:93:cb: 84:af:a9:79:64:ac:24:66:f8:57:2d:dc:89:df:4a: 37:24:57:8d:e1:39:8b:48:ae:23:73:91:d2:bb:3e: 0a:7d:79:ab:e9:bb:45:a6:d6:e7:de:f6:d8:f7:86: d3:47:f6:b3:3a:cb:e6:4f:06:ef:41:74:61:2a:45: 5f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BE:52:C9:64:5D:22:38:4B:63:A7:C6:C4:42:B3:0E:88:E9:A6:2A X509v3 Authority Key Identifier: keyid:15:88:34:B5:63:A7:C3:3B:49:83:34:BC:FA:30:F8:D6:B6:74:DC:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/FYg0tWOnwztJgzS8-jD41rZ03J4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYg0tWOnwztJgzS8-jD41rZ03J4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CDB75/DCD2D494BB7711EEAAD7B241C4F9AE02/C5589FB4BF9C11EEAAE7743EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.36.0/23 Signature Algorithm: sha256WithRSAEncryption c1:c0:6a:a8:92:74:d6:93:08:f0:34:8d:ad:a2:0f:b0:d6:93: 4b:2b:1b:7d:bc:75:82:e4:43:52:f5:41:d9:99:c0:52:ee:7f: 56:79:c5:ff:ce:28:f8:3b:d1:0d:f3:0a:8d:d9:97:d5:1e:f0: 9b:44:86:94:50:67:f3:39:fc:74:40:57:d8:7a:77:8d:6c:11: 0b:8a:7c:e5:74:e6:1f:c4:87:81:75:89:da:ac:e1:63:a6:15: 76:1e:71:b0:a6:f1:8d:54:31:ad:8a:3f:7a:e8:c2:a1:9e:92: 66:d2:87:90:83:7a:27:83:30:82:b2:72:84:1a:b5:fb:78:24: 32:86:dc:56:ac:0b:22:89:e5:4a:bd:57:f0:98:11:3c:25:c3: 27:6c:0c:e2:95:a2:b3:df:f6:69:6e:35:7d:e2:e4:d5:b8:35: 9c:1e:14:f1:08:8a:54:06:4f:68:ef:d8:24:92:5d:ce:f1:33: 20:b0:53:5f:07:a6:65:78:4f:f8:4a:0d:3c:5d:d1:63:84:f1: ff:4e:55:ae:b7:93:3d:69:2d:63:51:46:f1:9c:6a:b8:55:27: 95:68:a2:02:31:b4:f6:e4:aa:72:3d:d8:42:89:96:f4:d8:1b: c8:1d:c0:fc:2d:5c:0f:7d:eb:ef:11:17:2c:03:54:71:60:75: 37:25:c5:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0RCNzUxMTAvBgNVBAUTKDE1ODgzNEI1NjNBN0MzM0I0OTgzMzRCQ0ZBMzBGOEQ2 QjY3NERDOUUwHhcNMjUwMjA1MDQzODU1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2EyZWI1Zi1kZTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGmO3qjvz6MeKMI8srCjzJg6s41UUdq56hO8a0PR47H5HBDkTj25WmVfcKwM K05e7M9WbocZPvRQH7wRFFy7Cfvrum5ZaAmKrhTvOJw9ZJJV2Sxa76WBOfSdBlTz zZe0j7zNC4jQvIPgi8XkFAbinske9SEB19aEiDBoxlUv3UiJsrZivOW+Gwruu2Fq FElmw2iHSLSPGZxEocE3BA+E9+w+IAEWt+boX0J1TCbB9HgpwkZpO2p3ctisjkdE trHyk8uEr6l5ZKwkZvhXLdyJ30o3JFeN4TmLSK4jc5HSuz4KfXmr6btFptbn3vbY 94bTR/azOsvmTwbvQXRhKkVfVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCS+Uslk XSI4S2OnxsRCsw6I6aYqMB8GA1UdIwQYMBaAFBWINLVjp8M7SYM0vPow+Na2dNye MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDREI3NS9EQ0QyRDQ5NEJC NzcxMUVFQUFEN0IyNDFDNEY5QUUwMi9GWWcwdFdPbnd6dEpnelM4LWpENDFyWjAz SjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZZZzB0V09ud3p0Smd6UzgtakQ0MXJaMDNKNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0RCNzUvRENEMkQ0OTRCQjc3MTFFRUFBRDdCMjQxQzRGOUFFMDIvQzU1ODlGQjRC RjlDMTFFRUFBRTc3NDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdDyQwDQYJKoZIhvcNAQELBQADggEBAMHAaqiSdNaTCPA0 ja2iD7DWk0srG328dYLkQ1L1QdmZwFLuf1Z5xf/OKPg70Q3zCo3Zl9Ue8JtEhpRQ Z/M5/HRAV9h6d41sEQuKfOV05h/Eh4F1idqs4WOmFXYecbCm8Y1UMa2KP3rowqGe kmbSh5CDeieDMIKycoQatft4JDKG3FasCyKJ5Uq9V/CYETwlwydsDOKVorPf9mlu NX3i5NW4NZweFPEIilQGT2jv2CSSXc7xMyCwU18HpmV4T/hKDTxd0WOE8f9OVa63 kz1pLWNRRvGcarhVJ5VoogIxtPbkqnI92EKJlvTYG8gdwPwtXA996+8RFywDVHFg dTclxbQ= -----END CERTIFICATE-----Generated at Sun Apr 6 00:18:53 2025 by rpki-client