$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CE88A98AC63611EEA0C70259C4F9AE02.roa File: CE88A98AC63611EEA0C70259C4F9AE02.roa (raw, json) Hash identifier: QXK92fzcUKDMjTiStNYvMQ27jRd0fX97PndGvgz1laU= Subject key identifier: 60:D0:7F:40:32:10:AA:06:48:FE:62:DB:CD:8C:08:43:ED:53:06:0A Certificate issuer: /CN=A91E1936/serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041 Certificate serial: D0 Authority key identifier: 5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CE88A98AC63611EEA0C70259C4F9AE02.roa Signing time: Tue 11 Mar 2025 04:52:32 +0000 ROA not before: Tue 11 Mar 2025 04:52:32 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152330 IP address blocks: 157.15.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 04:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1936, serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041 Validity Not Before: Mar 11 04:52:32 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67cfc18f-561c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:af:50:54:72:d7:87:24:4a:76:71:77:a3:7a: 6d:22:40:48:d3:d3:f7:51:40:51:69:c2:e8:47:76: 79:43:68:2b:cb:6a:95:e8:59:12:fd:ff:ad:29:e9: e8:bc:67:81:b4:e8:01:b6:c8:97:20:32:f7:61:64: 6e:5b:72:b0:0a:15:63:3e:7a:fd:41:9a:d3:c0:b8: 35:e1:23:8c:0b:15:28:b6:91:be:b7:71:11:b5:ea: 98:44:92:7f:25:4f:74:9f:40:49:31:ec:cc:53:4d: e3:5d:ee:95:b7:7a:47:32:bf:b3:23:25:e1:fe:ec: fa:19:40:27:98:60:2a:e1:db:e4:52:48:5c:3b:c3: a9:2a:2a:6d:46:91:0a:63:b9:a3:f2:5d:a2:8d:38: da:66:84:a5:c9:2a:d8:49:ff:05:2c:08:b3:d6:52: 0a:37:12:d0:51:1b:fb:26:0a:fb:9e:4d:9a:82:ec: dd:c8:d4:a8:b3:60:d3:3f:1e:79:55:fc:a1:71:d1: 4e:d1:53:00:23:3e:39:85:26:52:f6:37:0b:95:26: 24:46:9d:7f:0c:a8:4e:37:29:9d:9a:26:90:58:12: 69:8b:0c:65:db:de:be:17:87:54:22:bb:3e:c5:4f: 23:5d:02:8d:71:10:64:56:68:9d:a8:2b:e9:69:ec: 59:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:D0:7F:40:32:10:AA:06:48:FE:62:DB:CD:8C:08:43:ED:53:06:0A X509v3 Authority Key Identifier: keyid:5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CE88A98AC63611EEA0C70259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.28.0/23 Signature Algorithm: sha256WithRSAEncryption 97:9d:91:91:f6:6c:92:99:79:55:5c:4c:0b:5e:32:35:58:db: a1:bf:79:67:98:6e:0a:f3:57:00:ce:fc:0a:9e:33:21:90:79: 92:3a:43:d5:f5:9d:aa:75:19:a3:5a:9d:1a:07:b8:0e:e0:a6: f3:62:a7:c0:df:e6:8d:48:f9:36:1d:25:f4:50:29:52:51:56: c2:b6:59:46:db:94:3f:81:e2:6a:62:36:c9:d5:b5:74:f3:5b: 72:38:99:ec:e7:eb:e5:77:9d:18:64:67:ed:5a:27:9f:85:8f: 81:77:73:a6:23:a1:42:d2:d1:e4:bc:47:8b:24:82:63:fb:c1: 0e:6d:75:ec:f4:78:54:db:5f:2b:68:75:47:7f:36:d2:52:42: 77:97:52:21:a3:70:9a:61:db:f2:1e:53:af:52:63:d8:cd:20: 82:e1:d7:3d:fc:e8:2e:7c:45:6f:f3:51:55:f7:98:57:49:e7: e9:33:f5:f5:cf:4c:5d:4d:0f:82:11:70:35:43:ef:1c:15:fe: f6:40:c4:09:be:a5:f4:09:ac:fe:74:1b:61:69:df:b7:95:ef: 4b:6b:94:88:79:dc:3e:70:64:cf:6a:cc:f5:d9:6f:d9:3c:03: e8:d5:dc:49:1b:ef:b0:63:27:73:5f:38:36:2a:55:5d:6f:e8: a5:f8:6c:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE5MzYxMTAvBgNVBAUTKDVCNUNDNDAzMDlBMDdDMDNERjBCNjMwNEZDRDg0MEY5 NTBCRkIwNDEwHhcNMjUwMzExMDQ1MjMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmYzE4Zi01NjFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1a9QVHLXhyRKdnF3o3ptIkBI09P3UUBRacLoR3Z5Q2gry2qV6FkS/f+tKeno vGeBtOgBtsiXIDL3YWRuW3KwChVjPnr9QZrTwLg14SOMCxUotpG+t3ERteqYRJJ/ JU90n0BJMezMU03jXe6Vt3pHMr+zIyXh/uz6GUAnmGAq4dvkUkhcO8OpKiptRpEK Y7mj8l2ijTjaZoSlySrYSf8FLAiz1lIKNxLQURv7Jgr7nk2aguzdyNSos2DTPx55 VfyhcdFO0VMAIz45hSZS9jcLlSYkRp1/DKhONymdmiaQWBJpiwxl296+F4dUIrs+ xU8jXQKNcRBkVmidqCvpaexZ+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGDQf0Ay EKoGSP5i282MCEPtUwYKMB8GA1UdIwQYMBaAFFtcxAMJoHwD3wtjBPzYQPlQv7BB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTkzNi82RUI5QzAzRUM2 MzYxMUVFQUJDQzA0MEJDNEY5QUUwMi9XMXpFQXdtZ2ZBUGZDMk1FX05oQS1WQ19z RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1cxekVBd21nZkFQZkMyTUVfTmhBLVZDX3NFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE5MzYvNkVCOUMwM0VDNjM2MTFFRUFCQ0MwNDBCQzRGOUFFMDIvQ0U4OEE5OEFD NjM2MTFFRUEwQzcwMjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdDxwwDQYJKoZIhvcNAQELBQADggEBAJedkZH2bJKZeVVc TAteMjVY26G/eWeYbgrzVwDO/AqeMyGQeZI6Q9X1nap1GaNanRoHuA7gpvNip8Df 5o1I+TYdJfRQKVJRVsK2WUbblD+B4mpiNsnVtXTzW3I4mezn6+V3nRhkZ+1aJ5+F j4F3c6YjoULS0eS8R4skgmP7wQ5tdez0eFTbXytodUd/NtJSQneXUiGjcJph2/Ie U69SY9jNIILh1z386C58RW/zUVX3mFdJ5+kz9fXPTF1ND4IRcDVD7xwV/vZAxAm+ pfQJrP50G2Fp37eV70trlIh53D5wZM9qzPXZb9k8A+jV3Ekb77BjJ3NfODYqVV1v 6KX4bH8= -----END CERTIFICATE-----Generated at Sun Apr 13 03:28:31 2025 by rpki-client