$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4B39/95074A0AAF5611EEA655B581C4F9AE02/D73DA686317C11F08E805512C4F9AE02.roa File: D73DA686317C11F08E805512C4F9AE02.roa (raw, json) Hash identifier: DbYJJQdDW66ocZ5I2YhmT4KcxELfv9yl+f2RgLo7f8I= Subject key identifier: BB:38:84:29:D3:C9:6D:2D:BF:8B:4A:7B:0C:41:A9:65:68:22:D4:11 Certificate issuer: /CN=A91A4B39/serialNumber=BEFFBEF8EFC5027C34DFF704C79FB2812A71331E Certificate serial: 011D Authority key identifier: BE:FF:BE:F8:EF:C5:02:7C:34:DF:F7:04:C7:9F:B2:81:2A:71:33:1E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vv---O_FAnw03_cEx5-ygSpxMx4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4B39/95074A0AAF5611EEA655B581C4F9AE02/D73DA686317C11F08E805512C4F9AE02.roa Signing time: Thu 15 May 2025 11:07:50 +0000 ROA not before: Thu 15 May 2025 11:07:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 147006 IP address blocks: 157.10.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4B39/95074A0AAF5611EEA655B581C4F9AE02/vv---O_FAnw03_cEx5-ygSpxMx4.crl rsync://rpki.apnic.net/member_repository/A91A4B39/95074A0AAF5611EEA655B581C4F9AE02/vv---O_FAnw03_cEx5-ygSpxMx4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vv---O_FAnw03_cEx5-ygSpxMx4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 04:23:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4B39, serialNumber=BEFFBEF8EFC5027C34DFF704C79FB2812A71331E Validity Not Before: May 15 11:07:50 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6825cb06-24e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d0:56:44:b5:fb:03:fa:89:a8:5d:2c:6f:98: b9:8e:d6:c7:13:a6:f2:80:ff:b3:08:1b:6f:af:83: b9:30:d6:b5:90:b9:cc:45:08:d3:8a:d7:c2:7d:f0: 93:1e:9e:82:db:c9:2d:f1:f0:b6:fc:46:40:17:53: 21:a4:5a:ad:2f:8c:99:97:2d:8a:76:b3:86:00:5c: c6:6c:db:96:10:03:eb:d1:41:2c:6a:49:41:e9:5a: 0c:32:8c:27:f1:f7:0b:96:8f:98:cc:f2:be:62:dc: c6:bb:6e:b1:76:01:65:5c:42:4a:35:81:51:56:39: e1:10:a3:e5:98:89:b7:d5:ac:ff:21:2d:07:dd:17: 3b:9e:4f:13:1f:00:34:ad:00:7b:98:06:81:58:41: 1f:e8:53:b9:8f:5a:a6:ee:f6:31:cc:d5:29:6d:d2: c5:d7:35:be:cf:49:24:d7:fe:9c:71:9c:3f:a8:8d: c0:05:c6:df:cb:e0:51:d2:7b:9f:64:53:54:65:d8: 0a:4f:8a:8a:00:5f:fa:23:2e:60:e3:94:02:95:7b: 00:73:37:a2:aa:a7:d6:d5:89:26:2d:f8:48:8c:95: 22:2c:54:46:16:25:27:e1:62:f7:14:90:71:7a:0f: 84:39:37:4e:54:00:2f:9f:32:f3:d4:2e:5f:e1:3c: 48:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:38:84:29:D3:C9:6D:2D:BF:8B:4A:7B:0C:41:A9:65:68:22:D4:11 X509v3 Authority Key Identifier: keyid:BE:FF:BE:F8:EF:C5:02:7C:34:DF:F7:04:C7:9F:B2:81:2A:71:33:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4B39/95074A0AAF5611EEA655B581C4F9AE02/vv---O_FAnw03_cEx5-ygSpxMx4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vv---O_FAnw03_cEx5-ygSpxMx4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4B39/95074A0AAF5611EEA655B581C4F9AE02/D73DA686317C11F08E805512C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.135.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:2c:6e:6b:eb:76:b7:82:3e:0b:90:56:85:bf:5d:ad:29:8c: 74:eb:17:da:b7:b1:cc:a5:2b:8f:63:2c:51:53:4a:c7:34:72: a3:21:de:6c:de:55:6a:9d:5f:7b:6e:16:a8:57:c0:e7:15:9e: 33:e6:e6:ef:d5:de:55:3c:6c:9a:07:f3:e7:68:a2:96:ed:f0: 79:9e:fd:3d:d1:d3:53:0c:ac:aa:21:09:68:f2:cf:73:4e:8b: 23:5e:98:96:ff:fa:63:25:11:ad:85:a4:02:36:d9:61:56:02: 39:97:1a:86:1a:4e:0b:7b:aa:a3:17:b9:c8:ab:83:da:00:6c: 1f:c4:88:02:0a:d5:d4:cb:aa:4c:21:4e:a2:ad:54:c5:92:d0: 92:67:f3:28:51:ea:f5:92:77:82:07:3d:c3:e1:48:66:d7:06: a7:16:81:d0:d3:27:36:a4:3b:51:97:f1:a9:d3:54:ac:08:13: 89:e0:94:21:1d:d6:03:07:7a:e7:b7:0c:b2:f1:a7:2c:15:83: cc:6b:9c:86:3e:b6:93:d6:f8:60:15:56:12:d2:1b:c1:03:23: 88:a2:5c:79:ba:32:27:1f:78:f8:90:b2:20:d5:1b:a4:11:d4: 67:63:d3:87:34:16:fb:ec:98:11:52:f4:e2:57:7e:6b:ec:82: c1:9c:b0:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRCMzkxMTAvBgNVBAUTKEJFRkZCRUY4RUZDNTAyN0MzNERGRjcwNEM3OUZCMjgx MkE3MTMzMUUwHhcNMjUwNTE1MTEwNzUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1Y2IwNi0yNGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0tBWRLX7A/qJqF0sb5i5jtbHE6bygP+zCBtvr4O5MNa1kLnMRQjTitfCffCT Hp6C28kt8fC2/EZAF1MhpFqtL4yZly2KdrOGAFzGbNuWEAPr0UEsaklB6VoMMown 8fcLlo+YzPK+YtzGu26xdgFlXEJKNYFRVjnhEKPlmIm31az/IS0H3Rc7nk8THwA0 rQB7mAaBWEEf6FO5j1qm7vYxzNUpbdLF1zW+z0kk1/6ccZw/qI3ABcbfy+BR0nuf ZFNUZdgKT4qKAF/6Iy5g45QClXsAczeiqqfW1YkmLfhIjJUiLFRGFiUn4WL3FJBx eg+EOTdOVAAvnzLz1C5f4TxIpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLs4hCnT yW0tv4tKewxBqWVoItQRMB8GA1UdIwQYMBaAFL7/vvjvxQJ8NN/3BMefsoEqcTMe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEIzOS85NTA3NEEwQUFG NTYxMUVFQTY1NUI1ODFDNEY5QUUwMi92di0tLU9fRkFudzAzX2NFeDUteWdTcHhN eDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Z2LS0tT19GQW53MDNfY0V4NS15Z1NweE14NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRCMzkvOTUwNzRBMEFBRjU2MTFFRUE2NTVCNTgxQzRGOUFFMDIvRDczREE2ODYz MTdDMTFGMDhFODA1NTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdCocwDQYJKoZIhvcNAQELBQADggEBAJwsbmvrdreCPguQ VoW/Xa0pjHTrF9q3scylK49jLFFTSsc0cqMh3mzeVWqdX3tuFqhXwOcVnjPm5u/V 3lU8bJoH8+doopbt8Hme/T3R01MMrKohCWjyz3NOiyNemJb/+mMlEa2FpAI22WFW AjmXGoYaTgt7qqMXucirg9oAbB/EiAIK1dTLqkwhTqKtVMWS0JJn8yhR6vWSd4IH PcPhSGbXBqcWgdDTJzakO1GX8anTVKwIE4nglCEd1gMHeue3DLLxpywVg8xrnIY+ tpPW+GAVVhLSG8EDI4iiXHm6MicfePiQsiDVG6QR1Gdj04c0FvvsmBFS9OJXfmvs gsGcsLQ= -----END CERTIFICATE-----Generated at Sat Jun 7 05:36:22 2025 by rpki-client