$ rpki-client -vvf rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/03833742FBE511EFA186694BC4F9AE02.roa File: 03833742FBE511EFA186694BC4F9AE02.roa (raw, json) Hash identifier: YHMHQ6hkORqwC3KiW9uyF2q4Z0Nzdkk2vTFJ/OJbByM= Subject key identifier: BC:08:6A:17:05:42:40:AD:12:F5:5F:E0:CD:E4:11:6F:41:54:D2:1F Certificate issuer: /CN=A91462B5/serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Certificate serial: 0384 Authority key identifier: 64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/03833742FBE511EFA186694BC4F9AE02.roa Signing time: Wed 21 May 2025 01:18:18 +0000 ROA not before: Wed 21 May 2025 01:18:18 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 133467 IP address blocks: 157.119.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 900 (0x384) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91462B5, serialNumber=6483198A5054D4AB7A0161CD6391FA6C14B00208 Validity Not Before: May 21 01:18:18 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682d29d9-31d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:59:42:fc:94:cc:3e:e8:89:70:60:a9:99:a4: d0:63:a4:78:52:02:31:34:bd:39:38:42:48:c9:68: 9b:21:b8:33:a8:8d:0b:01:c8:59:3d:0f:57:bb:06: e7:9e:18:ce:40:7e:f1:54:65:58:11:45:e2:b3:53: f9:ea:d0:31:cc:3f:0c:75:da:9e:c8:f6:11:f8:52: 52:06:35:e4:de:b4:33:e1:98:8c:d7:0f:9c:21:7f: 0b:78:7a:26:01:87:57:ae:ae:aa:84:02:a8:0f:ee: 6a:84:17:4f:2a:2b:94:c5:57:15:41:19:d0:cf:03: 14:23:fc:3f:8b:c0:f5:ce:15:65:d9:f1:c1:4f:3d: 46:36:79:8e:49:30:40:e5:88:ec:3b:d4:48:3d:7b: db:dc:19:50:b4:43:0f:d8:29:74:cf:54:57:0a:d5: e3:52:ba:cd:0d:a9:87:b4:33:9b:aa:c9:be:a0:4d: 53:b2:b9:38:c4:bc:ae:c9:e5:c4:1e:35:79:69:ee: 6a:e4:3e:2e:f4:04:f2:84:25:b4:22:1e:2f:44:ac: 9e:2a:e9:55:5d:93:48:d8:0a:dc:ab:20:4b:74:d5: 78:71:46:63:88:6c:de:59:95:54:af:7e:50:f2:f4: e6:9c:c7:d6:79:b4:6c:e2:b2:77:80:3b:86:b1:6a: d4:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:08:6A:17:05:42:40:AD:12:F5:5F:E0:CD:E4:11:6F:41:54:D2:1F X509v3 Authority Key Identifier: keyid:64:83:19:8A:50:54:D4:AB:7A:01:61:CD:63:91:FA:6C:14:B0:02:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZIMZilBU1Kt6AWHNY5H6bBSwAgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91462B5/6D5FED92CC2F11EC85538037C4F9AE02/03833742FBE511EFA186694BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.22.0/24 Signature Algorithm: sha256WithRSAEncryption b2:5d:d4:3a:52:f2:cb:70:34:32:e4:0b:ee:2a:70:0f:67:f6: 85:84:f4:00:19:5b:26:5b:51:6f:e1:55:2d:28:f3:67:4a:69: fc:00:2d:6b:2d:7f:59:b9:f3:0e:b1:33:de:bc:26:55:6c:97: 0b:ba:6f:74:c5:f3:45:0b:09:49:5d:bd:2d:b9:32:a1:24:73: 03:b1:b3:7b:ea:a1:08:aa:d6:88:f2:71:68:63:fc:d9:20:df: 17:b2:93:a0:2c:2f:6e:a9:a6:d3:84:92:b5:2a:a1:32:62:70: d3:00:e6:15:50:fd:0a:77:a4:b4:ab:9e:30:64:8f:94:a6:83: e7:ab:26:3d:05:bd:f8:b2:8b:0e:3e:d4:f3:7c:24:3f:fa:e3: 21:81:63:da:4e:2c:a7:50:d3:fa:94:42:0f:b0:44:b6:2a:81: 6f:4e:ce:94:e1:2b:49:3c:92:ac:df:78:7c:a7:26:59:15:cc: 4f:d2:75:e1:2f:80:f4:32:e6:3b:64:57:03:1c:f3:c2:e0:c9: 17:52:eb:39:62:55:02:39:51:b3:17:03:6d:d6:e3:3b:f9:69: 64:94:6b:cc:ca:5d:bc:05:dd:7c:c0:6a:8c:fb:b7:3d:5b:04: e5:a6:e3:98:25:5c:90:a6:1c:54:c9:7d:95:a8:f0:e2:48:89: 7d:58:be:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyQjUxMTAvBgNVBAUTKDY0ODMxOThBNTA1NEQ0QUI3QTAxNjFDRDYzOTFGQTZD MTRCMDAyMDgwHhcNMjUwNTIxMDExODE4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkMjlkOS0zMWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1lC/JTMPuiJcGCpmaTQY6R4UgIxNL05OEJIyWibIbgzqI0LAchZPQ9Xuwbn nhjOQH7xVGVYEUXis1P56tAxzD8MddqeyPYR+FJSBjXk3rQz4ZiM1w+cIX8LeHom AYdXrq6qhAKoD+5qhBdPKiuUxVcVQRnQzwMUI/w/i8D1zhVl2fHBTz1GNnmOSTBA 5YjsO9RIPXvb3BlQtEMP2Cl0z1RXCtXjUrrNDamHtDObqsm+oE1Tsrk4xLyuyeXE HjV5ae5q5D4u9ATyhCW0Ih4vRKyeKulVXZNI2ArcqyBLdNV4cUZjiGzeWZVUr35Q 8vTmnMfWebRs4rJ3gDuGsWrUHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLwIahcF QkCtEvVf4M3kEW9BVNIfMB8GA1UdIwQYMBaAFGSDGYpQVNSregFhzWOR+mwUsAII MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjJCNS82RDVGRUQ5MkND MkYxMUVDODU1MzgwMzdDNEY5QUUwMi9aSU1aaWxCVTFLdDZBV0hOWTVINmJCU3dB Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJTVppbEJVMUt0NkFXSE5ZNUg2YkJTd0FnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyQjUvNkQ1RkVEOTJDQzJGMTFFQzg1NTM4MDM3QzRGOUFFMDIvMDM4MzM3NDJG QkU1MTFFRkExODY2OTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACddxYwDQYJKoZIhvcNAQELBQADggEBALJd1DpS8stwNDLk C+4qcA9n9oWE9AAZWyZbUW/hVS0o82dKafwALWstf1m58w6xM968JlVslwu6b3TF 80ULCUldvS25MqEkcwOxs3vqoQiq1ojycWhj/Nkg3xeyk6AsL26pptOEkrUqoTJi cNMA5hVQ/Qp3pLSrnjBkj5Smg+erJj0Fvfiyiw4+1PN8JD/64yGBY9pOLKdQ0/qU Qg+wRLYqgW9OzpThK0k8kqzfeHynJlkVzE/SdeEvgPQy5jtkVwMc88LgyRdS6zli VQI5UbMXA23W4zv5aWSUa8zKXbwF3XzAaoz7tz1bBOWm45glXJCmHFTJfZWo8OJI iX1Yvg0= -----END CERTIFICATE-----Generated at Tue Jun 3 23:52:13 2025 by rpki-client