$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/F8B45382C05811EE8A040C16C4F9AE02.roa File: F8B45382C05811EE8A040C16C4F9AE02.roa (raw, json) Hash identifier: 9aD9MOI/POVIQ6uNZALTtWvg8bFsGYj1bzTi/aW5HI8= Subject key identifier: 61:2F:3B:AF:9D:CA:E7:A1:F8:22:73:2E:0B:2B:90:60:FA:32:60:CF Certificate issuer: /CN=A91EA742/serialNumber=2C6B8C7F8B610E891CB9CBF6CDBD9998AA93860B Certificate serial: CE Authority key identifier: 2C:6B:8C:7F:8B:61:0E:89:1C:B9:CB:F6:CD:BD:99:98:AA:93:86:0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LGuMf4thDokcucv2zb2ZmKqThgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/F8B45382C05811EE8A040C16C4F9AE02.roa Signing time: Wed 05 Mar 2025 06:22:29 +0000 ROA not before: Wed 05 Mar 2025 06:22:29 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152325 IP address blocks: 157.10.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/LGuMf4thDokcucv2zb2ZmKqThgs.crl rsync://rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/LGuMf4thDokcucv2zb2ZmKqThgs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LGuMf4thDokcucv2zb2ZmKqThgs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 04:17:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA742, serialNumber=2C6B8C7F8B610E891CB9CBF6CDBD9998AA93860B Validity Not Before: Mar 5 06:22:29 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c7eda5-2616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:11:47:6c:fe:11:50:74:4a:af:49:4e:7f:b1: 4e:f5:40:a2:4b:46:49:c4:f3:2c:91:56:98:4f:e7: af:98:9e:9d:18:41:2c:8b:05:e3:cf:2b:55:f3:f0: 44:48:91:3e:8e:bd:3d:15:77:71:61:9e:0c:4f:5e: fa:93:73:94:52:24:b5:15:c8:b6:df:a0:5e:04:8c: 0a:81:01:04:bd:c5:50:61:37:99:f3:98:26:95:31: b7:a6:0e:6e:b1:9c:ff:0e:af:d1:2a:e3:88:a8:8e: 37:5d:9e:ae:6a:d6:fe:63:c1:ae:a2:9e:91:d2:ce: ed:f0:4c:01:21:f9:99:4f:39:45:b8:0b:0c:34:5c: 74:55:86:d2:e8:e8:28:0e:2b:de:aa:1c:db:b1:93: 0f:2e:55:88:14:db:ec:ea:74:d2:06:8a:77:99:d7: d2:68:45:ff:26:f8:61:d0:f7:de:38:a4:bf:97:e7: 5c:23:9a:8a:4d:df:b8:f3:1e:11:28:8f:3f:6f:9e: 0e:25:09:21:d9:71:b8:1e:03:1e:4e:7b:f7:41:02: 0f:84:53:c9:10:c7:0a:ad:1d:a1:1b:69:7b:d4:fe: 89:a6:8d:bd:e8:bb:96:d3:19:26:38:1c:e6:ad:ed: d3:7b:5f:09:42:ab:2b:fc:ee:5c:ec:9c:ad:b2:8a: e8:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:2F:3B:AF:9D:CA:E7:A1:F8:22:73:2E:0B:2B:90:60:FA:32:60:CF X509v3 Authority Key Identifier: keyid:2C:6B:8C:7F:8B:61:0E:89:1C:B9:CB:F6:CD:BD:99:98:AA:93:86:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/LGuMf4thDokcucv2zb2ZmKqThgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LGuMf4thDokcucv2zb2ZmKqThgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA742/D20559FEC05611EE97157810C4F9AE02/F8B45382C05811EE8A040C16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.164.0/24 Signature Algorithm: sha256WithRSAEncryption 06:98:70:b3:4e:38:5e:23:82:ff:8b:d9:2d:e8:12:5e:54:9a: 12:40:1d:e6:af:07:52:96:13:3a:22:f2:9c:6e:9b:fe:9e:79: 88:ea:d9:f0:27:9b:eb:da:9a:66:27:18:18:60:37:55:73:22: c1:42:ba:3c:d8:65:b3:87:e0:01:d1:2d:66:3b:25:e2:78:38: a1:1f:46:91:b5:87:69:3e:c9:c1:08:92:b0:71:23:ad:db:67: 01:8d:f9:b3:98:5a:65:24:9d:58:b2:ec:8c:88:35:7c:82:15: cc:74:d8:e9:a5:b2:4d:26:dc:5d:67:3d:c0:13:59:ce:57:3e: 37:0e:fe:30:41:29:66:c3:9d:da:9b:cd:f1:0b:6a:88:9e:61: c6:e6:31:99:0d:4c:10:7c:0e:11:f3:ac:6f:64:4c:ed:e1:b2: 4a:b5:d6:71:bc:c4:17:64:aa:1c:d1:f2:bb:c7:a6:79:ea:98: 8a:5a:4b:63:2c:4c:9e:5a:48:ca:fc:26:b0:e1:3a:31:23:8e: 9d:e7:f6:82:b2:e1:8a:aa:28:02:f5:f4:4a:7b:8d:df:da:1c: ba:bc:6d:8a:cb:ce:de:02:39:8d:97:59:0e:ef:78:00:f5:1f: 9b:80:9f:a8:1b:5e:6c:bf:97:51:10:71:8e:a2:5c:1c:94:a5: 26:c4:76:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3NDIxMTAvBgNVBAUTKDJDNkI4QzdGOEI2MTBFODkxQ0I5Q0JGNkNEQkQ5OTk4 QUE5Mzg2MEIwHhcNMjUwMzA1MDYyMjI5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3ZWRhNS0yNjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRFHbP4RUHRKr0lOf7FO9UCiS0ZJxPMskVaYT+evmJ6dGEEsiwXjzytV8/BE SJE+jr09FXdxYZ4MT176k3OUUiS1Fci236BeBIwKgQEEvcVQYTeZ85gmlTG3pg5u sZz/Dq/RKuOIqI43XZ6uatb+Y8Guop6R0s7t8EwBIfmZTzlFuAsMNFx0VYbS6Ogo DiveqhzbsZMPLlWIFNvs6nTSBop3mdfSaEX/Jvhh0PfeOKS/l+dcI5qKTd+48x4R KI8/b54OJQkh2XG4HgMeTnv3QQIPhFPJEMcKrR2hG2l71P6Jpo296LuW0xkmOBzm re3Te18JQqsr/O5c7Jytsoro2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGEvO6+d yueh+CJzLgsrkGD6MmDPMB8GA1UdIwQYMBaAFCxrjH+LYQ6JHLnL9s29mZiqk4YL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc0Mi9EMjA1NTlGRUMw NTYxMUVFOTcxNTc4MTBDNEY5QUUwMi9MR3VNZjR0aERva2N1Y3YyemIyWm1LcVRo Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xHdU1mNHRoRG9rY3VjdjJ6YjJabUtxVGhncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3NDIvRDIwNTU5RkVDMDU2MTFFRTk3MTU3ODEwQzRGOUFFMDIvRjhCNDUzODJD MDU4MTFFRThBMDQwQzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCqQwDQYJKoZIhvcNAQELBQADggEBAAaYcLNOOF4jgv+L 2S3oEl5UmhJAHeavB1KWEzoi8pxum/6eeYjq2fAnm+vammYnGBhgN1VzIsFCujzY ZbOH4AHRLWY7JeJ4OKEfRpG1h2k+ycEIkrBxI63bZwGN+bOYWmUknViy7IyINXyC Fcx02Omlsk0m3F1nPcATWc5XPjcO/jBBKWbDndqbzfELaoieYcbmMZkNTBB8DhHz rG9kTO3hskq11nG8xBdkqhzR8rvHpnnqmIpaS2MsTJ5aSMr8JrDhOjEjjp3n9oKy 4YqqKAL19Ep7jd/aHLq8bYrLzt4COY2XWQ7veAD1H5uAn6gbXmy/l1EQcY6iXByU pSbEdjE= -----END CERTIFICATE-----Generated at Tue Apr 22 03:29:05 2025 by rpki-client