$ rpki-client -vvf rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/9D107CE43FD311F08A76B677C4F9AE02.roa File: 9D107CE43FD311F08A76B677C4F9AE02.roa (raw, json) Hash identifier: M4xxwp5XL8JXkQpTNZQamOx/rEaiqoV0xB/oQh2Nk2Y= Subject key identifier: F9:9A:AB:A2:DC:9A:51:53:8C:3B:85:EB:91:9A:D8:5B:BE:33:DD:A1 Certificate issuer: /CN=A912981B/serialNumber=337B450FDDC9FC70221DA5CA09785885B1D1B7CC Certificate serial: 0104 Authority key identifier: 33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/9D107CE43FD311F08A76B677C4F9AE02.roa Signing time: Mon 02 Jun 2025 17:04:15 +0000 ROA not before: Mon 02 Jun 2025 17:04:15 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 139879 IP address blocks: 157.10.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:59:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912981B, serialNumber=337B450FDDC9FC70221DA5CA09785885B1D1B7CC Validity Not Before: Jun 2 17:04:15 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=683dd98f-55db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e3:53:50:c4:10:72:00:ba:c4:70:f3:9e:77: 60:4e:be:81:f2:46:e6:40:39:2b:f4:1b:0c:0b:d9: 46:b8:3f:a1:7f:ed:fe:0f:6e:18:91:62:a4:26:2f: da:52:2d:7a:3b:6d:c7:8f:a7:5e:b0:9a:82:76:ba: 6f:5c:22:60:85:34:41:43:4b:80:bc:1a:61:13:0e: f1:29:42:cf:1c:de:7f:c5:9b:41:fe:c8:a1:b0:bd: 6e:69:91:4f:f8:ee:a4:fb:8d:0e:f6:fe:8d:06:ae: c2:a3:cd:d7:a0:e6:c9:71:6f:1d:22:b5:d9:8a:ae: 71:0c:5b:c3:81:b1:38:f6:80:64:71:bd:1a:23:c6: 14:21:7b:59:2d:e2:a6:da:5f:61:9b:07:01:e2:f9: 2d:ac:5a:09:70:66:59:f1:a8:6d:a6:75:22:93:50: 06:65:cc:a0:ed:a9:94:f6:b6:91:5a:fd:6f:28:2f: 4c:17:7c:38:23:e1:c3:9e:07:07:95:72:64:44:56: b3:53:40:de:e9:65:45:06:51:3e:78:a3:e8:fd:01: 98:d2:70:ee:8d:a0:10:1e:17:da:e3:8e:2b:02:f6: 5d:d8:aa:83:43:9d:39:5e:4f:2b:85:0e:d1:c9:64: 63:b4:66:7a:a2:cd:1c:30:48:3e:6b:fd:5a:b3:5b: ce:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:9A:AB:A2:DC:9A:51:53:8C:3B:85:EB:91:9A:D8:5B:BE:33:DD:A1 X509v3 Authority Key Identifier: keyid:33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/9D107CE43FD311F08A76B677C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.31.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:e7:45:a4:a4:48:39:37:f6:2e:4d:d0:ae:46:41:c7:a7:18: 69:bf:11:7a:e4:e6:e0:ca:c9:f1:9d:0a:16:28:29:b7:f9:81: 09:c0:f3:62:d3:45:eb:2b:64:75:df:80:c4:4c:ea:eb:5a:bd: 8f:41:c3:1b:a6:6a:1e:4f:67:40:66:4d:61:83:35:1c:c1:0d: c9:69:5e:14:cc:51:40:30:70:0b:7c:b2:3d:76:a2:25:e7:5a: 26:41:f2:da:01:2f:18:05:a8:f7:30:30:1b:6e:b4:4e:71:5f: 6e:ee:f2:30:11:23:ff:8b:01:14:85:95:02:50:63:be:97:15: c8:78:1a:b7:81:da:60:68:2e:49:89:79:69:e0:e3:d7:4d:5e: 1f:49:ab:b3:2a:9b:e9:e8:0e:f1:ce:2f:b3:da:b0:c6:4d:30: dd:b5:ef:b7:72:f0:91:8d:7d:3a:4b:52:1d:05:13:86:65:60: 8f:ab:84:11:6c:a9:e6:8e:25:ef:a8:ce:99:46:7a:8d:9b:f2: 62:a8:cd:c6:ae:8a:da:37:7d:9e:92:a6:ff:74:99:05:07:ab: c4:9d:3a:3b:d8:b8:cb:e7:27:c1:70:d3:9e:c0:c6:e4:87:0e: dd:3b:24:1f:a7:30:fe:df:31:d1:f7:7f:f0:af:0b:0f:69:73: 60:82:9c:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4MUIxMTAvBgNVBAUTKDMzN0I0NTBGRERDOUZDNzAyMjFEQTVDQTA5Nzg1ODg1 QjFEMUI3Q0MwHhcNMjUwNjAyMTcwNDE1WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNkZDk4Zi01NWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApONTUMQQcgC6xHDznndgTr6B8kbmQDkr9BsMC9lGuD+hf+3+D24YkWKkJi/a Ui16O23Hj6desJqCdrpvXCJghTRBQ0uAvBphEw7xKULPHN5/xZtB/sihsL1uaZFP +O6k+40O9v6NBq7Co83XoObJcW8dIrXZiq5xDFvDgbE49oBkcb0aI8YUIXtZLeKm 2l9hmwcB4vktrFoJcGZZ8ahtpnUik1AGZcyg7amU9raRWv1vKC9MF3w4I+HDngcH lXJkRFazU0De6WVFBlE+eKPo/QGY0nDujaAQHhfa444rAvZd2KqDQ505Xk8rhQ7R yWRjtGZ6os0cMEg+a/1as1vOiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPmaq6Lc mlFTjDuF65Ga2Fu+M92hMB8GA1UdIwQYMBaAFDN7RQ/dyfxwIh2lygl4WIWx0bfM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTgxQi9CQzVDRUFCNkNB OEExMUVFQjA1NkU2MUZDNEY5QUUwMi9NM3RGRDkzSl9IQWlIYVhLQ1hoWWhiSFJ0 OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00zdEZEOTNKX0hBaUhhWEtDWGhZaGJIUnQ4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4MUIvQkM1Q0VBQjZDQThBMTFFRUIwNTZFNjFGQzRGOUFFMDIvOUQxMDdDRTQz RkQzMTFGMDhBNzZCNjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCh8wDQYJKoZIhvcNAQELBQADggEBAF/nRaSkSDk39i5N 0K5GQcenGGm/EXrk5uDKyfGdChYoKbf5gQnA82LTResrZHXfgMRM6utavY9Bwxum ah5PZ0BmTWGDNRzBDclpXhTMUUAwcAt8sj12oiXnWiZB8toBLxgFqPcwMBtutE5x X27u8jARI/+LARSFlQJQY76XFch4GreB2mBoLkmJeWng49dNXh9Jq7Mqm+noDvHO L7PasMZNMN2177dy8JGNfTpLUh0FE4ZlYI+rhBFsqeaOJe+ozplGeo2b8mKozcau ito3fZ6Spv90mQUHq8SdOjvYuMvnJ8Fw057AxuSHDt07JB+nMP7fMdH3f/CvCw9p c2CCnBk= -----END CERTIFICATE-----Generated at Wed Jun 4 11:52:26 2025 by rpki-client