$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa File: 4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: PAO2tzUE6VhuIQPWRUUuXZiVK/zRgbkDyCoIJqVq33M= Subject key identifier: FA:FD:36:E2:19:C3:3A:34:4C:3B:37:F3:AE:11:B0:5C:F0:98:AE:BE Certificate issuer: /CN=A91DC068/serialNumber=8B1A8065BE88AA6C1BA3FEDB54E087E7D2ADB4DE Certificate serial: C9 Authority key identifier: 8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa Signing time: Mon 17 Mar 2025 04:50:56 +0000 ROA not before: Mon 17 Mar 2025 04:50:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 134245 IP address blocks: 157.20.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:59:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068 Validity Not Before: Mar 17 04:50:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d7aa30-0dc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:82:3d:0d:5e:eb:54:f5:b1:76:bb:92:4e:87: 13:5f:70:bd:69:5e:d5:19:e1:6c:47:56:fc:10:57: 96:b2:43:54:07:0f:11:f0:a6:83:55:15:db:d0:ee: 51:cf:91:e0:7d:e1:b1:00:fc:42:18:94:e3:c6:f1: ff:d1:a7:de:19:48:3c:4b:70:b1:d8:49:e3:5d:0c: 41:7a:92:e1:4b:7f:2f:80:19:8b:6b:2e:38:3b:01: 15:c4:d1:e7:61:a7:57:74:34:ca:d8:84:65:69:b2: fa:f7:d4:52:b4:00:39:10:b8:01:93:ac:0e:2d:b9: 3d:70:1a:32:de:95:a5:0b:4b:be:cd:2b:ba:cc:b8: 96:d6:23:af:8b:4d:14:45:90:06:28:61:86:40:60: e6:9a:17:73:eb:e7:7d:ca:f7:42:02:73:4d:9b:f3: dd:6e:03:41:0b:03:d6:a7:a7:d9:73:24:df:64:45: ef:35:18:62:47:a0:23:9d:df:44:69:7f:7d:09:45: 0f:c7:40:e5:14:03:34:1e:29:41:b4:30:db:f2:eb: 67:50:f9:89:43:23:cc:03:58:ce:5f:28:da:e7:01: 84:9a:f9:6e:d1:35:7f:9f:8f:fc:04:00:f0:99:48: 2b:c8:80:5e:a6:03:ba:dd:bd:0c:7f:63:c0:36:bd: 56:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:FD:36:E2:19:C3:3A:34:4C:3B:37:F3:AE:11:B0:5C:F0:98:AE:BE X509v3 Authority Key Identifier: keyid:8B:1A:80:65:BE:88:AA:6C:1B:A3:FE:DB:54:E0:87:E7:D2:AD:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/ixqAZb6Iqmwbo_7bVOCH59KttN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ixqAZb6Iqmwbo_7bVOCH59KttN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/D77B9D66D5C411EE89C1970DC4F9AE02/4D69D2D2D5DD11EEA5B1C711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.112.0/23 Signature Algorithm: sha256WithRSAEncryption 01:b6:ec:54:38:34:b0:35:c3:74:b8:de:5d:ed:4a:c7:9a:af: a2:f1:fe:16:f0:1c:6f:15:d0:52:4c:2c:60:73:5e:37:31:83: d5:6e:66:1a:34:92:4a:eb:39:50:34:65:a3:fa:c7:35:a4:8e: 25:3d:ba:cf:0c:d2:b5:37:bc:09:49:37:6e:c9:ef:ac:cf:ab: df:e1:65:0e:99:3f:eb:f7:23:7f:46:fc:aa:a4:b0:df:aa:44: d5:03:40:f7:25:46:29:19:e4:3a:00:3e:91:f0:bf:6b:7e:1c: 18:28:3a:27:b5:0a:62:19:e0:b6:8f:ad:1e:84:d7:ac:df:94: 14:29:b7:0a:a0:61:1d:a1:7e:ab:3c:43:e7:e2:21:30:be:cd: 5f:f5:4f:99:7a:93:b5:97:37:ed:03:af:3b:36:21:46:7f:77: 54:82:ca:ba:97:e8:d0:e1:41:a3:c3:0c:f8:f1:e8:52:3b:ba: e4:47:e4:19:6a:d6:db:49:46:6d:ee:ca:f5:59:b0:01:61:50: d6:a0:5a:de:44:04:a2:e0:09:97:9a:a8:12:7d:94:ab:2b:89: 7e:ad:4a:e7:66:1f:19:33:39:0a:47:9d:15:39:a5:12:1b:94: e8:d6:07:d9:82:87:91:2e:de:a7:3b:38:ed:e4:80:6e:30:3d: d1:25:59:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKDhCMUE4MDY1QkU4OEFBNkMxQkEzRkVEQjU0RTA4N0U3 RDJBREI0REUwHhcNMjUwMzE3MDQ1MDU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q3YWEzMC0wZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs4I9DV7rVPWxdruSTocTX3C9aV7VGeFsR1b8EFeWskNUBw8R8KaDVRXb0O5R z5HgfeGxAPxCGJTjxvH/0afeGUg8S3Cx2EnjXQxBepLhS38vgBmLay44OwEVxNHn YadXdDTK2IRlabL699RStAA5ELgBk6wOLbk9cBoy3pWlC0u+zSu6zLiW1iOvi00U RZAGKGGGQGDmmhdz6+d9yvdCAnNNm/PdbgNBCwPWp6fZcyTfZEXvNRhiR6Ajnd9E aX99CUUPx0DlFAM0HilBtDDb8utnUPmJQyPMA1jOXyja5wGEmvlu0TV/n4/8BADw mUgryIBepgO63b0Mf2PANr1WTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPr9NuIZ wzo0TDs3864RsFzwmK6+MB8GA1UdIwQYMBaAFIsagGW+iKpsG6P+21Tgh+fSrbTe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC9ENzdCOUQ2NkQ1 QzQxMUVFODlDMTk3MERDNEY5QUUwMi9peHFBWmI2SXFtd2JvXzdiVk9DSDU5S3R0 TjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2l4cUFaYjZJcW13Ym9fN2JWT0NINTlLdHRONC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwNjgvRDc3QjlENjZENUM0MTFFRTg5QzE5NzBEQzRGOUFFMDIvNEQ2OUQyRDJE NUREMTFFRUE1QjFDNzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFHAwDQYJKoZIhvcNAQELBQADggEBAAG27FQ4NLA1w3S4 3l3tSsear6Lx/hbwHG8V0FJMLGBzXjcxg9VuZho0kkrrOVA0ZaP6xzWkjiU9us8M 0rU3vAlJN27J76zPq9/hZQ6ZP+v3I39G/KqksN+qRNUDQPclRikZ5DoAPpHwv2t+ HBgoOie1CmIZ4LaPrR6E16zflBQptwqgYR2hfqs8Q+fiITC+zV/1T5l6k7WXN+0D rzs2IUZ/d1SCyrqX6NDhQaPDDPjx6FI7uuRH5Blq1ttJRm3uyvVZsAFhUNagWt5E BKLgCZeaqBJ9lKsriX6tSudmHxkzOQpHnRU5pRIblOjWB9mCh5Eu3qc7OO3kgG4w PdElWdw= -----END CERTIFICATE-----Generated at Sun Apr 6 21:55:15 2025 by rpki-client