$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/680DBCE8CACA11EEAD1A2260C4F9AE02.roa File: 680DBCE8CACA11EEAD1A2260C4F9AE02.roa (raw, json) Hash identifier: VpoPBPOkKhmfp0KuQ0D/3XZTCkKsIKJM+KUjxtq2Y8s= Subject key identifier: 5E:F2:2A:96:51:A3:9E:A2:DB:55:CD:14:CF:4B:B2:B5:7D:17:65:6C Certificate issuer: /CN=A91DE500/serialNumber=B9CA79FB685C2EFF3FB9CCB9CD2D848116908A32 Certificate serial: C3 Authority key identifier: B9:CA:79:FB:68:5C:2E:FF:3F:B9:CC:B9:CD:2D:84:81:16:90:8A:32 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ucp5-2hcLv8_ucy5zS2EgRaQijI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/680DBCE8CACA11EEAD1A2260C4F9AE02.roa Signing time: Tue 25 Feb 2025 07:08:56 +0000 ROA not before: Tue 25 Feb 2025 07:08:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152469 IP address blocks: 157.15.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/ucp5-2hcLv8_ucy5zS2EgRaQijI.crl rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/ucp5-2hcLv8_ucy5zS2EgRaQijI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ucp5-2hcLv8_ucy5zS2EgRaQijI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:30:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE500, serialNumber=B9CA79FB685C2EFF3FB9CCB9CD2D848116908A32 Validity Not Before: Feb 25 07:08:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67bd6c88-b2ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:14:7a:bf:df:39:5a:50:ef:11:db:e0:d4:d3: bc:20:b9:80:55:a4:93:6e:2c:d7:08:5e:8d:5f:9b: 76:59:86:ed:dd:ca:1e:37:a8:27:94:68:6d:a0:55: b8:a5:5e:e1:0d:f4:6a:6a:ad:38:a0:93:03:6e:1c: 20:e4:ca:d7:e1:70:74:51:47:d6:84:d1:5c:c9:30: 6a:3b:cf:e1:70:8e:28:12:e2:2e:9b:80:13:91:fb: fa:2d:02:de:0d:30:86:22:13:e8:38:47:e6:e7:ec: 1b:a2:19:79:0e:24:0e:6b:ff:fa:5f:ca:81:3d:50: 2c:f6:f8:31:19:c2:d0:5d:eb:68:58:85:08:1e:16: 48:8b:7f:fb:73:c4:91:62:76:c1:e8:d1:10:64:d1: a9:1b:0a:a7:84:7b:b8:cf:ce:77:04:be:ee:9d:75: 9c:3c:1e:75:19:f5:6a:a0:6a:21:e7:4c:a2:bf:6a: d8:06:3f:ad:13:49:42:f7:e7:40:93:d3:74:84:66: c4:ac:f2:8a:cc:c1:ae:3f:7b:c1:c1:8c:02:e7:dc: 05:de:6c:10:d2:dd:8a:7b:1c:02:0b:2a:f7:78:8a: 29:ac:98:83:54:e9:98:b2:83:34:e5:27:c9:e1:f2: ca:6d:56:fd:b7:ce:ae:08:b3:90:94:6a:b2:56:e8: 33:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:F2:2A:96:51:A3:9E:A2:DB:55:CD:14:CF:4B:B2:B5:7D:17:65:6C X509v3 Authority Key Identifier: keyid:B9:CA:79:FB:68:5C:2E:FF:3F:B9:CC:B9:CD:2D:84:81:16:90:8A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/ucp5-2hcLv8_ucy5zS2EgRaQijI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ucp5-2hcLv8_ucy5zS2EgRaQijI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE500/3FFF5C3EC72D11EE9C7C351DC4F9AE02/680DBCE8CACA11EEAD1A2260C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.196.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:55:cf:28:8f:ab:11:c0:57:1f:9b:6a:61:84:1a:07:67:3b: c1:5a:46:7c:3e:9b:bd:6d:83:63:2c:a3:de:83:c3:63:8c:f2: 75:ab:bf:f6:08:f0:66:db:52:6f:96:c5:b6:6b:ea:d6:11:44: 41:1b:43:18:b3:5e:c3:66:3b:b7:7c:2b:57:17:69:26:8c:bd: 69:43:e8:66:7c:49:5b:98:4c:ef:cc:2d:42:bf:46:94:c7:d3: 1d:fa:81:88:83:08:4e:c5:ff:e7:de:a6:c1:3a:58:be:68:84: 48:2c:da:e6:73:99:d2:50:bf:c0:0f:f4:1f:d5:7b:32:d1:99: 4f:f0:55:d9:ce:e8:bc:6b:85:5b:b8:af:b8:92:53:a4:40:56: 43:1e:b3:9b:48:a2:07:65:39:88:68:f9:9f:e6:f2:6e:58:34: a3:d8:6d:89:90:be:12:19:47:93:9a:b6:53:4e:c3:60:89:a2: 2e:a9:66:08:31:30:01:22:d5:8b:7f:21:7f:9b:5e:51:de:5f: 42:a2:c4:62:77:65:7e:2e:cb:51:00:ad:a2:fd:a7:05:4b:fc: 36:7a:ef:44:99:72:53:49:30:8d:1d:99:e0:a2:44:36:9a:ea: 28:48:f3:af:fa:7d:30:69:9a:5a:e1:5f:01:b7:50:a5:64:41: d3:90:bc:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU1MDAxMTAvBgNVBAUTKEI5Q0E3OUZCNjg1QzJFRkYzRkI5Q0NCOUNEMkQ4NDgx MTY5MDhBMzIwHhcNMjUwMjI1MDcwODU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JkNmM4OC1iMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohR6v985WlDvEdvg1NO8ILmAVaSTbizXCF6NX5t2WYbt3coeN6gnlGhtoFW4 pV7hDfRqaq04oJMDbhwg5MrX4XB0UUfWhNFcyTBqO8/hcI4oEuIum4ATkfv6LQLe DTCGIhPoOEfm5+wbohl5DiQOa//6X8qBPVAs9vgxGcLQXetoWIUIHhZIi3/7c8SR YnbB6NEQZNGpGwqnhHu4z853BL7unXWcPB51GfVqoGoh50yiv2rYBj+tE0lC9+dA k9N0hGbErPKKzMGuP3vBwYwC59wF3mwQ0t2KexwCCyr3eIoprJiDVOmYsoM05SfJ 4fLKbVb9t86uCLOQlGqyVugz+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFF7yKpZR o56i21XNFM9LsrV9F2VsMB8GA1UdIwQYMBaAFLnKeftoXC7/P7nMuc0thIEWkIoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTUwMC8zRkZGNUMzRUM3 MkQxMUVFOUM3QzM1MURDNEY5QUUwMi91Y3A1LTJoY0x2OF91Y3k1elMyRWdSYVFp akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3VjcDUtMmhjTHY4X3VjeTV6UzJFZ1JhUWlqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU1MDAvM0ZGRjVDM0VDNzJEMTFFRTlDN0MzNTFEQzRGOUFFMDIvNjgwREJDRThD QUNBMTFFRUFEMUEyMjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD8QwDQYJKoZIhvcNAQELBQADggEBAB1VzyiPqxHAVx+b amGEGgdnO8FaRnw+m71tg2Mso96Dw2OM8nWrv/YI8GbbUm+WxbZr6tYRREEbQxiz XsNmO7d8K1cXaSaMvWlD6GZ8SVuYTO/MLUK/RpTH0x36gYiDCE7F/+fepsE6WL5o hEgs2uZzmdJQv8AP9B/VezLRmU/wVdnO6LxrhVu4r7iSU6RAVkMes5tIogdlOYho +Z/m8m5YNKPYbYmQvhIZR5OatlNOw2CJoi6pZggxMAEi1Yt/IX+bXlHeX0KixGJ3 ZX4uy1EAraL9pwVL/DZ670SZclNJMI0dmeCiRDaa6ihI86/6fTBpmlrhXwG3UKVk QdOQvDg= -----END CERTIFICATE-----Generated at Wed Nov 5 21:12:51 2025 by rpki-client