$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/D677E18AB9AF11EE97EEDB49C4F9AE02.roa File: D677E18AB9AF11EE97EEDB49C4F9AE02.roa (raw, json) Hash identifier: LUJnGhbUriDz5PEXzwqHVqGRqenH5+Jp3evLId0QNQI= Subject key identifier: F5:63:AE:7A:B9:45:1F:C5:B3:47:42:25:7F:8D:D2:85:33:D7:31:CD Certificate issuer: /CN=A91CFD5A/serialNumber=33E5425D0368F82FF85B9B847F41238AD58D4E50 Certificate serial: C2 Authority key identifier: 33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/D677E18AB9AF11EE97EEDB49C4F9AE02.roa Signing time: Thu 23 Jan 2025 04:18:17 +0000 ROA not before: Thu 23 Jan 2025 04:18:17 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152342 IP address blocks: 157.15.22.0/23 maxlen: 23 157.15.22.0/24 maxlen: 24 157.15.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFD5A Validity Not Before: Jan 23 04:18:17 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6791c309-5f03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:05:58:50:e0:8f:ba:45:b6:2b:56:ad:85:d0: 1d:fa:a6:10:e7:b5:e3:d6:0f:11:0d:b5:cc:13:57: 24:20:79:0e:16:ab:2e:1d:12:35:be:3b:6f:91:33: b5:91:09:ab:86:ba:f2:c2:a8:82:90:03:8e:7d:88: 55:3b:83:c3:1b:9c:0c:fb:bf:08:0a:fb:6c:ba:b0: c5:e1:ca:f0:f6:d6:02:09:0b:02:e0:11:07:c3:a2: b5:7f:49:b2:4d:58:11:5c:ae:22:cd:e5:59:22:a7: ef:91:1e:4c:57:8a:f4:24:2e:c4:3d:70:50:e4:02: 9d:7e:88:b5:80:5d:dd:ba:b1:b7:2f:22:0f:65:01: 25:38:c0:1b:f9:d8:d4:76:60:ee:b0:f6:08:60:27: 25:84:3a:79:18:4f:c6:94:aa:ec:c2:e5:77:fc:41: 3a:ae:5c:19:e5:ec:4f:73:64:a7:82:1a:a8:4e:64: 2a:55:41:9d:7e:f2:7c:17:d5:bf:67:10:3e:01:4e: b3:16:4c:f3:e8:5d:35:a1:a9:39:fb:a2:31:df:78: c5:28:ac:99:e0:ad:55:95:f5:ce:af:94:95:f8:1d: c5:fe:13:df:ae:8d:9e:3f:2b:12:90:26:1e:02:03: 9d:41:f4:72:b7:0c:2b:84:1a:b8:6e:4c:2e:3b:62: 99:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:63:AE:7A:B9:45:1F:C5:B3:47:42:25:7F:8D:D2:85:33:D7:31:CD X509v3 Authority Key Identifier: keyid:33:E5:42:5D:03:68:F8:2F:F8:5B:9B:84:7F:41:23:8A:D5:8D:4E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/M-VCXQNo-C_4W5uEf0EjitWNTlA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M-VCXQNo-C_4W5uEf0EjitWNTlA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFD5A/5FB7DC08B9AA11EEB0DCD834C4F9AE02/D677E18AB9AF11EE97EEDB49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.22.0/23 Signature Algorithm: sha256WithRSAEncryption a9:7a:94:c6:3d:cd:e1:65:da:2e:e2:f6:da:d7:1c:48:af:58: df:b1:af:de:9a:64:72:10:35:e6:b8:d8:62:0b:aa:45:34:cf: d8:08:d9:15:33:4e:9b:c8:1f:1b:3b:3b:85:49:97:3f:aa:09: 3b:5d:be:2c:1c:70:e3:c8:f2:ab:53:da:3e:e8:8d:a5:bf:de: b6:5b:dc:6a:33:09:e9:b7:c7:6c:73:53:e1:34:93:45:be:16: 2e:e8:66:90:75:67:7e:e9:9d:51:49:d6:6d:21:ff:6a:24:67: ae:5f:d5:3b:4e:3a:92:89:ac:1d:29:6f:f5:98:68:97:7c:a2: 11:36:56:db:81:3d:12:bb:02:cd:84:54:8a:1b:2c:e4:ef:75: 7a:af:4b:2e:4d:3f:4f:35:ca:02:f0:71:fd:c3:a8:ae:93:04: 10:c6:cb:3d:ff:b4:12:a4:bf:5d:6c:50:7b:f0:42:38:06:b8: 27:3a:29:06:49:93:a4:17:55:88:5f:f2:9f:48:1a:bc:8a:f4: 37:a8:a3:0a:0d:9b:1d:68:d9:fd:23:e7:91:07:6e:0d:bb:6a: ab:37:ac:9e:26:4a:48:d0:b8:7e:b4:57:e5:09:5e:33:16:7b: d3:01:f4:f0:74:5b:86:5a:2a:87:05:10:58:cd:01:59:2d:66: d1:3a:95:eb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZENUExMTAvBgNVBAUTKDMzRTU0MjVEMDM2OEY4MkZGODVCOUI4NDdGNDEyMzhB RDU4RDRFNTAwHhcNMjUwMTIzMDQxODE3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkxYzMwOS01ZjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4AVYUOCPukW2K1athdAd+qYQ57Xj1g8RDbXME1ckIHkOFqsuHRI1vjtvkTO1 kQmrhrrywqiCkAOOfYhVO4PDG5wM+78ICvtsurDF4crw9tYCCQsC4BEHw6K1f0my TVgRXK4izeVZIqfvkR5MV4r0JC7EPXBQ5AKdfoi1gF3durG3LyIPZQElOMAb+djU dmDusPYIYCclhDp5GE/GlKrswuV3/EE6rlwZ5exPc2SnghqoTmQqVUGdfvJ8F9W/ ZxA+AU6zFkzz6F01oak5+6Ix33jFKKyZ4K1VlfXOr5SV+B3F/hPfro2ePysSkCYe AgOdQfRytwwrhBq4bkwuO2KZHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPVjrnq5 RR/Fs0dCJX+N0oUz1zHNMB8GA1UdIwQYMBaAFDPlQl0DaPgv+FubhH9BI4rVjU5Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkQ1QS81RkI3REMwOEI5 QUExMUVFQjBEQ0Q4MzRDNEY5QUUwMi9NLVZDWFFOby1DXzRXNXVFZjBFaml0V05U bEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00tVkNYUU5vLUNfNFc1dUVmMEVqaXRXTlRsQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZENUEvNUZCN0RDMDhCOUFBMTFFRUIwRENEODM0QzRGOUFFMDIvRDY3N0UxOEFC OUFGMTFFRTk3RUVEQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdDxYwDQYJKoZIhvcNAQELBQADggEBAKl6lMY9zeFl2i7i 9trXHEivWN+xr96aZHIQNea42GILqkU0z9gI2RUzTpvIHxs7O4VJlz+qCTtdviwc cOPI8qtT2j7ojaW/3rZb3GozCem3x2xzU+E0k0W+Fi7oZpB1Z37pnVFJ1m0h/2ok Z65f1TtOOpKJrB0pb/WYaJd8ohE2VtuBPRK7As2EVIobLOTvdXqvSy5NP081ygLw cf3DqK6TBBDGyz3/tBKkv11sUHvwQjgGuCc6KQZJk6QXVYhf8p9IGryK9DeoowoN mx1o2f0j55EHbg27aqs3rJ4mSkjQuH60V+UJXjMWe9MB9PB0W4ZaKocFEFjNAVkt ZtE6les= -----END CERTIFICATE-----Generated at Sun Apr 6 01:12:52 2025 by rpki-client