$ rpki-client -vvf rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/A5C5EEAED82811EFA115FC73C4F9AE02.roa File: A5C5EEAED82811EFA115FC73C4F9AE02.roa (raw, json) Hash identifier: 9WyjUSklqG6DodL5wdjOBR7FdbGo1ISw6Z8AS27HcO0= Subject key identifier: 3A:EA:95:08:51:79:26:70:26:84:17:F2:64:E1:D0:8A:03:9E:74:17 Certificate issuer: /CN=A912981B/serialNumber=337B450FDDC9FC70221DA5CA09785885B1D1B7CC Certificate serial: C5 Authority key identifier: 33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/A5C5EEAED82811EFA115FC73C4F9AE02.roa Signing time: Fri 31 Jan 2025 05:19:22 +0000 ROA not before: Fri 31 Jan 2025 05:19:22 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 45814 IP address blocks: 157.10.30.0/24 maxlen: 24 157.10.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912981B Validity Not Before: Jan 31 05:19:22 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679c5d5a-608f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:38:25:3c:c8:4c:30:d2:4d:df:d7:99:18:94: d1:24:1f:16:ca:34:72:b7:9c:83:40:38:c3:03:9d: 86:a8:66:17:83:33:1d:e0:4b:80:51:c5:5c:84:32: 0e:68:a4:d5:ed:1f:42:12:bf:15:1f:9c:a2:d9:35: 5c:3b:99:da:7c:fc:13:dc:56:4c:36:58:69:ce:c9: f5:35:ed:96:50:c3:15:83:f5:cf:d9:88:fd:d0:99: b7:e7:84:76:06:38:41:d6:8f:c8:4f:c9:97:a0:15: 24:5e:bf:0e:ed:03:e4:b8:02:15:b1:bb:ff:c6:5e: 90:7e:08:00:94:86:ac:c4:d2:d0:86:d8:67:39:18: 86:7f:24:50:fc:ea:9b:c0:86:c0:3f:76:21:86:77: b2:62:92:1a:7b:86:a1:5c:e5:b9:b0:6c:d8:32:8b: 75:a6:73:92:85:51:69:b8:89:64:a6:75:40:0e:f9: 80:e6:53:f7:77:94:11:cf:a0:f8:3d:70:47:86:af: a4:98:60:46:e0:ec:4a:57:32:84:ab:51:0f:66:a9: e9:37:56:24:65:9e:63:34:40:eb:2c:00:9a:bb:f1: 45:5c:b9:bf:b9:23:f1:13:cf:6b:e8:ca:2d:0d:68: 19:e3:4c:c2:a6:d3:d3:16:b5:42:96:25:31:52:fd: 5e:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:EA:95:08:51:79:26:70:26:84:17:F2:64:E1:D0:8A:03:9E:74:17 X509v3 Authority Key Identifier: keyid:33:7B:45:0F:DD:C9:FC:70:22:1D:A5:CA:09:78:58:85:B1:D1:B7:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/M3tFD93J_HAiHaXKCXhYhbHRt8w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/M3tFD93J_HAiHaXKCXhYhbHRt8w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912981B/BC5CEAB6CA8A11EEB056E61FC4F9AE02/A5C5EEAED82811EFA115FC73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.30.0/23 Signature Algorithm: sha256WithRSAEncryption 55:52:6f:9c:ee:b1:c6:67:11:c9:88:a9:62:96:74:9a:f9:8c: f9:d3:1a:17:9a:7c:a5:65:fe:a4:10:97:c5:99:20:e3:68:09: a4:34:5b:bf:40:d1:57:dc:a8:dc:bb:96:38:30:3c:e3:ec:35: bc:e8:f2:85:6b:87:40:69:b0:76:02:6d:31:fc:2c:a3:b9:be: 90:a8:78:0a:15:e0:b4:a8:2a:a4:ce:7f:e9:24:a7:17:d6:9e: d9:2a:9d:17:dd:a4:05:68:ae:e4:fc:71:a1:87:01:5c:b3:09: 24:42:3e:67:7e:f8:dc:c6:42:be:04:0d:8f:98:a2:12:42:fa: 73:73:d8:96:c0:da:30:6f:0a:c1:e2:53:ba:47:fa:f3:d9:7b: ba:a4:e9:46:c9:8f:19:f6:f4:88:68:96:7b:d3:eb:9a:e9:11: c2:5c:8f:39:1d:8f:9d:a9:22:09:a8:97:fd:7d:61:45:f1:5b: 5b:62:ba:30:78:66:d4:f4:d1:19:9b:95:d7:1f:d0:97:73:85: 10:39:45:c4:ea:39:2e:c7:47:4f:00:68:39:a4:ab:a3:17:2e: 56:1b:0e:3d:09:33:ab:a1:64:01:6f:86:05:ea:4b:de:01:b0: c6:66:aa:02:d1:6e:52:ed:3a:38:98:aa:ba:b3:fa:d8:5c:36: c6:4c:1e:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4MUIxMTAvBgNVBAUTKDMzN0I0NTBGRERDOUZDNzAyMjFEQTVDQTA5Nzg1ODg1 QjFEMUI3Q0MwHhcNMjUwMTMxMDUxOTIyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzljNWQ1YS02MDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAljglPMhMMNJN39eZGJTRJB8WyjRyt5yDQDjDA52GqGYXgzMd4EuAUcVchDIO aKTV7R9CEr8VH5yi2TVcO5nafPwT3FZMNlhpzsn1Ne2WUMMVg/XP2Yj90Jm354R2 BjhB1o/IT8mXoBUkXr8O7QPkuAIVsbv/xl6QfggAlIasxNLQhthnORiGfyRQ/Oqb wIbAP3YhhneyYpIae4ahXOW5sGzYMot1pnOShVFpuIlkpnVADvmA5lP3d5QRz6D4 PXBHhq+kmGBG4OxKVzKEq1EPZqnpN1YkZZ5jNEDrLACau/FFXLm/uSPxE89r6Mot DWgZ40zCptPTFrVCliUxUv1e+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDrqlQhR eSZwJoQX8mTh0IoDnnQXMB8GA1UdIwQYMBaAFDN7RQ/dyfxwIh2lygl4WIWx0bfM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTgxQi9CQzVDRUFCNkNB OEExMUVFQjA1NkU2MUZDNEY5QUUwMi9NM3RGRDkzSl9IQWlIYVhLQ1hoWWhiSFJ0 OHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL00zdEZEOTNKX0hBaUhhWEtDWGhZaGJIUnQ4dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4MUIvQkM1Q0VBQjZDQThBMTFFRUIwNTZFNjFGQzRGOUFFMDIvQTVDNUVFQUVE ODI4MTFFRkExMTVGQzczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCh4wDQYJKoZIhvcNAQELBQADggEBAFVSb5zuscZnEcmI qWKWdJr5jPnTGheafKVl/qQQl8WZIONoCaQ0W79A0VfcqNy7ljgwPOPsNbzo8oVr h0BpsHYCbTH8LKO5vpCoeAoV4LSoKqTOf+kkpxfWntkqnRfdpAVoruT8caGHAVyz CSRCPmd++NzGQr4EDY+YohJC+nNz2JbA2jBvCsHiU7pH+vPZe7qk6UbJjxn29Iho lnvT65rpEcJcjzkdj52pIgmol/19YUXxW1tiujB4ZtT00Rmbldcf0JdzhRA5RcTq OS7HR08AaDmkq6MXLlYbDj0JM6uhZAFvhgXqS94BsMZmqgLRblLtOjiYqrqz+thc NsZMHgA= -----END CERTIFICATE-----Generated at Wed Feb 19 20:38:57 2025 by rpki-client