$ rpki-client -vvf rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/41E0B402AE1F11EE96A5C977C4F9AE02.roa File: 41E0B402AE1F11EE96A5C977C4F9AE02.roa (raw, json) Hash identifier: 92n4boJHjJIj9KtZ2gabfQc0rIkNAgV+GGdiupr7NM8= Subject key identifier: A1:45:1A:BD:39:D3:A8:BB:DA:C0:DA:9A:4A:66:09:63:E2:05:8C:D5 Certificate issuer: /CN=A91CED30/serialNumber=3E0CDF882AEE8C7221D588A3C526018E1D64C968 Certificate serial: D2 Authority key identifier: 3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/41E0B402AE1F11EE96A5C977C4F9AE02.roa Signing time: Sun 09 Feb 2025 04:26:43 +0000 ROA not before: Sun 09 Feb 2025 04:26:43 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152306 IP address blocks: 157.10.84.0/23 maxlen: 23 157.10.84.0/24 maxlen: 24 157.10.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CED30 Validity Not Before: Feb 9 04:26:43 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a82e83-f51c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:28:52:34:89:82:eb:b4:5d:2b:5b:8f:9f:c0: b8:d5:85:43:0c:60:d0:35:8e:d4:d2:3f:08:30:1e: 40:97:e3:a2:86:55:be:bf:aa:74:8c:b8:33:8d:bc: c0:f7:bd:7d:e9:6d:b7:8a:62:c9:de:bf:1d:86:4b: 76:67:c4:f5:db:0b:53:75:aa:43:3c:78:de:f1:84: 93:ba:d6:9e:61:02:1c:6b:9a:a7:f3:09:8e:be:62: 0f:21:f4:76:28:7c:b8:34:8b:ad:40:5e:8a:86:03: cd:8c:9f:2c:92:11:20:8e:a1:75:5f:45:79:cb:9d: 34:c5:79:b5:5f:fd:5f:23:a3:0f:2e:e9:a8:09:dd: 70:82:3b:e9:13:ac:85:0d:88:89:61:af:82:32:a5: 4d:14:19:02:59:d3:c1:86:2c:14:cc:5f:da:c4:db: 84:5d:da:18:30:40:56:71:09:7e:d1:b8:a4:2a:00: cb:ba:8f:16:8a:bb:8c:8d:19:7b:ad:7b:3b:59:b1: 18:f4:5c:32:ef:fa:51:e4:04:84:af:65:ba:58:6b: 23:6e:17:04:93:11:cc:b1:19:50:95:c8:d8:15:26: 40:94:e2:bb:0b:a2:51:8e:69:a9:5b:9d:01:f3:5e: d5:c0:f4:fb:40:18:52:bf:35:5a:fa:98:17:11:d6: 5b:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:45:1A:BD:39:D3:A8:BB:DA:C0:DA:9A:4A:66:09:63:E2:05:8C:D5 X509v3 Authority Key Identifier: keyid:3E:0C:DF:88:2A:EE:8C:72:21:D5:88:A3:C5:26:01:8E:1D:64:C9:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/PgzfiCrujHIh1YijxSYBjh1kyWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PgzfiCrujHIh1YijxSYBjh1kyWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CED30/BE80C6A6AE1E11EEA7EA0A77C4F9AE02/41E0B402AE1F11EE96A5C977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.84.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:8f:26:49:ef:95:e1:d3:8f:35:59:45:4e:ed:bd:98:c4:b5: 0c:da:f8:c1:d4:c8:53:39:05:4b:c6:96:aa:7a:47:75:80:14: 65:7f:84:2b:7d:8d:71:10:10:17:0a:79:82:d1:00:3a:63:52: 40:78:b8:f3:bf:7e:42:6a:a9:a3:36:b1:8a:1c:75:b3:26:b3: 04:c4:f0:bd:32:09:96:60:35:59:00:62:4e:19:27:82:73:bd: 10:73:77:f0:83:51:eb:df:f9:84:0b:d1:aa:5f:30:33:d9:64: 2f:74:b7:41:86:6c:b0:50:27:93:90:d4:e4:53:4c:ac:4a:fa: d9:af:8b:6d:9b:36:e1:dd:8d:a2:a4:ea:46:95:c7:e3:36:9a: 4a:3c:07:97:2a:cc:29:d0:21:d4:af:68:33:79:c8:88:75:ca: 53:6b:94:02:19:f4:04:09:25:3e:13:a4:ff:c9:0c:c4:32:c5: 78:c7:bd:3a:d4:fb:f1:b3:de:50:80:a9:c0:24:48:fe:ca:88: 25:82:0f:72:7b:ff:f7:ce:22:e5:ff:32:03:c0:84:79:7b:ef: de:73:81:04:b5:9d:a5:c5:e3:e2:f4:d8:ed:17:ce:9a:fc:02: dd:c6:25:72:d4:52:4b:58:bd:51:6a:16:80:31:91:a5:dc:44: e8:49:30:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VEMzAxMTAvBgNVBAUTKDNFMENERjg4MkFFRThDNzIyMUQ1ODhBM0M1MjYwMThF MUQ2NEM5NjgwHhcNMjUwMjA5MDQyNjQzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2E4MmU4My1mNTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqihSNImC67RdK1uPn8C41YVDDGDQNY7U0j8IMB5Al+OihlW+v6p0jLgzjbzA 97196W23imLJ3r8dhkt2Z8T12wtTdapDPHje8YSTutaeYQIca5qn8wmOvmIPIfR2 KHy4NIutQF6KhgPNjJ8skhEgjqF1X0V5y500xXm1X/1fI6MPLumoCd1wgjvpE6yF DYiJYa+CMqVNFBkCWdPBhiwUzF/axNuEXdoYMEBWcQl+0bikKgDLuo8WiruMjRl7 rXs7WbEY9Fwy7/pR5ASEr2W6WGsjbhcEkxHMsRlQlcjYFSZAlOK7C6JRjmmpW50B 817VwPT7QBhSvzVa+pgXEdZbeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKFFGr05 06i72sDamkpmCWPiBYzVMB8GA1UdIwQYMBaAFD4M34gq7oxyIdWIo8UmAY4dZMlo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUQzMC9CRTgwQzZBNkFF MUUxMUVFQTdFQTBBNzdDNEY5QUUwMi9QZ3pmaUNydWpISWgxWWlqeFNZQmpoMWt5 V2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BnemZpQ3J1akhJaDFZaWp4U1lCamgxa3lXZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VEMzAvQkU4MEM2QTZBRTFFMTFFRUE3RUEwQTc3QzRGOUFFMDIvNDFFMEI0MDJB RTFGMTFFRTk2QTVDOTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdClQwDQYJKoZIhvcNAQELBQADggEBABuPJknvleHTjzVZ RU7tvZjEtQza+MHUyFM5BUvGlqp6R3WAFGV/hCt9jXEQEBcKeYLRADpjUkB4uPO/ fkJqqaM2sYocdbMmswTE8L0yCZZgNVkAYk4ZJ4JzvRBzd/CDUevf+YQL0apfMDPZ ZC90t0GGbLBQJ5OQ1ORTTKxK+tmvi22bNuHdjaKk6kaVx+M2mko8B5cqzCnQIdSv aDN5yIh1ylNrlAIZ9AQJJT4TpP/JDMQyxXjHvTrU+/Gz3lCAqcAkSP7KiCWCD3J7 //fOIuX/MgPAhHl7795zgQS1naXF4+L02O0Xzpr8At3GJXLUUktYvVFqFoAxkaXc ROhJMP8= -----END CERTIFICATE-----Generated at Sun Apr 6 06:57:31 2025 by rpki-client