$ rpki-client -vvf rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/C635D41E611411EF9B00D029C4F9AE02.roa File: C635D41E611411EF9B00D029C4F9AE02.roa (raw, json) Hash identifier: rOwD6kKfHs7j3niSOFa7ZxwcRgpXDjpa8bFCR+QwO/w= Subject key identifier: D8:68:D8:A6:CD:3F:6F:D3:39:01:B2:89:3D:D5:9A:F3:0F:87:E1:6C Certificate issuer: /CN=A918C3B7/serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Certificate serial: 0115 Authority key identifier: 39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/C635D41E611411EF9B00D029C4F9AE02.roa Signing time: Fri 23 May 2025 04:14:48 +0000 ROA not before: Fri 23 May 2025 04:14:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45128 IP address blocks: 137.157.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 16 Jun 2025 03:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918C3B7, serialNumber=39837CB4BECAF6A626C916AE960241B609E6B20A Validity Not Before: May 23 04:14:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682ff638-f9f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ca:e1:5c:2e:e4:51:ef:26:ce:9b:81:a8:ab: a5:79:02:b6:af:7d:e4:08:2d:84:b5:d0:74:07:5d: 05:4e:46:08:a3:e5:9e:32:ae:2c:6f:e6:2f:f6:f3: 2c:c4:2a:15:11:21:1a:58:ab:1d:f3:4b:d1:ba:d8: a3:35:86:41:93:09:ec:68:b4:ff:21:02:b9:9e:cf: 47:d9:7f:80:eb:ac:0e:25:30:05:eb:18:1b:ee:97: 1f:50:f8:09:7b:17:88:59:eb:84:15:97:88:57:b3: 6e:c6:d0:64:9d:77:f4:c2:e6:c9:a4:37:4d:9b:e1: b5:1b:5a:3d:b1:a5:f4:a0:4b:d2:28:fe:f4:2f:b6: 6f:b3:70:9d:61:f5:af:01:b9:2f:6d:8b:4f:1a:79: 67:3d:08:3e:4f:d8:e1:14:79:41:37:8c:6e:4a:d1: e0:0f:a1:55:ee:89:92:73:49:c1:49:9e:03:2d:d1: ec:d1:a7:3a:cc:1a:13:dc:65:3f:fb:7c:2a:1f:b7: 7e:ba:75:55:4b:6e:0d:e8:af:a0:f6:32:02:08:ab: d1:b8:18:2d:9d:64:d3:01:ac:78:f3:20:5a:94:7c: 9a:cd:de:e6:73:97:8d:31:1c:3f:59:93:ec:32:df: 23:b0:f7:68:b9:d5:e6:5c:9b:af:9c:fe:d2:dc:51: 3c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:68:D8:A6:CD:3F:6F:D3:39:01:B2:89:3D:D5:9A:F3:0F:87:E1:6C X509v3 Authority Key Identifier: keyid:39:83:7C:B4:BE:CA:F6:A6:26:C9:16:AE:96:02:41:B6:09:E6:B2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/OYN8tL7K9qYmyRaulgJBtgnmsgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OYN8tL7K9qYmyRaulgJBtgnmsgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918C3B7/159A4AD0932511EEBE987F60C4F9AE02/C635D41E611411EF9B00D029C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 137.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:6e:86:7c:30:e0:95:7e:da:75:c7:9e:79:e8:17:dd:68:5b: ea:5f:fe:a2:b8:9e:88:79:ed:0e:b9:80:ee:f4:af:74:53:71: 71:1a:e7:78:5d:0b:9f:56:45:85:ac:e9:90:7b:ec:67:20:52: 85:3f:34:19:86:19:b5:ee:f7:73:c8:12:ba:37:88:6f:53:06: c5:b6:e6:90:b6:9c:28:11:87:55:9e:99:ed:59:47:f3:d0:b5: e7:ba:d5:54:e5:de:fc:08:b1:0d:a6:ac:07:89:4e:08:08:23: e3:02:14:01:92:ae:1b:cf:39:a3:95:e4:86:38:9f:10:1f:2a: bf:96:ff:63:92:b3:62:97:7f:86:3b:89:a4:3a:8e:d6:45:82: 13:a4:2c:f3:2e:77:be:3c:58:cc:6f:5a:a4:97:70:9e:ba:07: 9b:18:2c:19:33:70:a1:d1:94:8e:61:ed:58:38:ac:fb:a1:5c: 0d:fc:aa:ee:fa:2f:c2:16:7b:b6:47:93:f1:eb:a7:58:a5:c2: 66:cb:20:2a:65:af:d3:e2:f7:ea:5f:89:82:aa:b1:5a:2f:f3: 82:2c:59:e6:df:98:23:82:70:7a:cb:e3:2f:b7:1f:c8:ec:d9: 69:4a:91:4c:e9:77:10:5d:42:ca:ea:0f:51:fb:71:7b:40:66: 0d:7b:90:13 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEMzQjcxMTAvBgNVBAUTKDM5ODM3Q0I0QkVDQUY2QTYyNkM5MTZBRTk2MDI0MUI2 MDlFNkIyMEEwHhcNMjUwNTIzMDQxNDQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmZjYzOC1mOWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsrhXC7kUe8mzpuBqKuleQK2r33kCC2EtdB0B10FTkYIo+WeMq4sb+Yv9vMs xCoVESEaWKsd80vRutijNYZBkwnsaLT/IQK5ns9H2X+A66wOJTAF6xgb7pcfUPgJ exeIWeuEFZeIV7NuxtBknXf0wubJpDdNm+G1G1o9saX0oEvSKP70L7Zvs3CdYfWv AbkvbYtPGnlnPQg+T9jhFHlBN4xuStHgD6FV7omSc0nBSZ4DLdHs0ac6zBoT3GU/ +3wqH7d+unVVS24N6K+g9jICCKvRuBgtnWTTAax48yBalHyazd7mc5eNMRw/WZPs Mt8jsPdoudXmXJuvnP7S3FE8twIDAQABo4IClDCCApAwHQYDVR0OBBYEFNho2KbN P2/TOQGyiT3VmvMPh+FsMB8GA1UdIwQYMBaAFDmDfLS+yvamJskWrpYCQbYJ5rIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QzNCNy8xNTlBNEFEMDkz MjUxMUVFQkU5ODdGNjBDNEY5QUUwMi9PWU44dEw3SzlxWW15UmF1bGdKQnRnbm1z Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL09ZTjh0TDdLOXFZbXlSYXVsZ0pCdGdubXNnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEMzQjcvMTU5QTRBRDA5MzI1MTFFRUJFOTg3RjYwQzRGOUFFMDIvQzYzNUQ0MUU2 MTE0MTFFRjlCMDBEMDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCJnTANBgkqhkiG9w0BAQsFAAOCAQEAQG6GfDDglX7adcee eegX3Whb6l/+orieiHntDrmA7vSvdFNxcRrneF0Ln1ZFhazpkHvsZyBShT80GYYZ te73c8gSujeIb1MGxbbmkLacKBGHVZ6Z7VlH89C157rVVOXe/AixDaasB4lOCAgj 4wIUAZKuG885o5XkhjifEB8qv5b/Y5KzYpd/hjuJpDqO1kWCE6Qs8y53vjxYzG9a pJdwnroHmxgsGTNwodGUjmHtWDis+6FcDfyq7vovwhZ7tkeT8eunWKXCZssgKmWv 0+L36l+JgqqxWi/zgixZ5t+YI4JwesvjL7cfyOzZaUqRTOl3EF1CyuoPUftxe0Bm DXuQEw== -----END CERTIFICATE-----Generated at Tue Jun 10 04:34:22 2025 by rpki-client