$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CF6BED9EC63611EEA0C70259C4F9AE02.roa File: CF6BED9EC63611EEA0C70259C4F9AE02.roa (raw, json) Hash identifier: EBWBEqR3i5PxLdfH1mN7syf09hARUIbnkSV4IoogUv4= Subject key identifier: 34:AA:26:B3:15:76:77:A7:77:9E:9A:0E:27:C2:EC:25:EF:98:AE:B7 Certificate issuer: /CN=A91E1936/serialNumber=5B5CC40309A07C03DF0B6304FCD840F950BFB041 Certificate serial: D1 Authority key identifier: 5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CF6BED9EC63611EEA0C70259C4F9AE02.roa Signing time: Tue 11 Mar 2025 04:52:32 +0000 ROA not before: Tue 11 Mar 2025 04:52:32 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 398704 IP address blocks: 157.15.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1936 Validity Not Before: Mar 11 04:52:32 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67cfc190-faac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:90:04:b2:91:f3:09:0c:48:a8:fa:5d:67:d4: 3c:7a:fe:2e:b0:2c:07:b0:8c:02:45:ce:c5:bf:b8: 52:f4:c6:29:06:5f:b5:81:34:78:4b:58:7a:4a:0c: 1b:be:d1:9f:32:65:f9:9c:18:c0:8a:b2:92:9e:62: 38:f5:85:95:3c:7a:72:ff:17:aa:dc:d3:62:af:47: 35:fe:01:22:55:83:a7:e0:74:1c:8e:dc:3c:f5:99: f4:40:ac:cf:f3:46:f0:a9:9a:33:8c:17:d8:ac:67: 8a:96:28:60:f9:a3:41:99:fb:82:4d:db:c7:85:9a: f3:32:9c:9d:81:d7:75:66:64:0a:e9:06:a5:0f:e9: ce:68:66:62:ea:f2:22:06:75:79:00:46:f5:7f:53: a9:8c:9d:fc:45:0f:d5:8e:b5:35:0b:59:5a:4d:ed: 32:d3:74:46:63:2e:3a:a0:fe:d9:3c:5d:28:35:61: af:98:21:e1:04:96:cf:cd:48:77:f8:12:40:b5:15: 5c:cf:fe:e6:91:22:bd:a7:a6:90:d6:38:c6:c9:c9: b5:0b:8f:a2:7a:1f:fb:06:0a:9b:bf:51:ab:f0:80: af:3b:07:d6:8e:1c:bb:a9:e9:40:e8:23:a0:d2:57: 36:59:b7:a8:0c:65:b3:84:fa:3b:dc:81:d7:a1:0b: 76:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:AA:26:B3:15:76:77:A7:77:9E:9A:0E:27:C2:EC:25:EF:98:AE:B7 X509v3 Authority Key Identifier: keyid:5B:5C:C4:03:09:A0:7C:03:DF:0B:63:04:FC:D8:40:F9:50:BF:B0:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/W1zEAwmgfAPfC2ME_NhA-VC_sEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W1zEAwmgfAPfC2ME_NhA-VC_sEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1936/6EB9C03EC63611EEABCC040BC4F9AE02/CF6BED9EC63611EEA0C70259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.28.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:4c:9d:17:db:28:01:b1:d9:d3:eb:2f:26:77:74:20:82:04: b9:a0:8f:08:52:11:7c:b9:77:85:38:1e:19:dc:b9:c2:8f:87: 63:f0:8d:8b:f6:93:26:74:bf:58:96:f7:be:23:a7:6a:04:c9: d9:8a:24:9b:3b:f2:66:ae:91:54:c3:47:1d:a0:ab:33:cc:e1: 9f:65:8b:9c:b3:0a:48:33:17:0e:3f:bc:c5:55:62:0c:de:5d: 29:db:81:1d:ce:17:07:9a:a9:03:a9:79:d6:50:f3:33:e6:1f: c5:c6:a6:de:fc:a5:c2:ba:49:12:5b:80:c0:22:ae:59:0c:e7: b2:fa:cf:ea:2e:09:2b:5d:73:be:1b:35:dc:fc:82:21:6d:c1: 52:be:ce:23:28:26:cd:3a:ae:43:70:ae:33:36:31:48:2a:a1: b5:23:52:b5:be:01:a3:7c:a7:fd:95:95:9b:88:44:f1:70:cb: fc:10:22:77:79:f4:13:2f:ea:98:43:a8:b2:d2:88:1c:b8:2d: c7:0b:be:5f:94:f4:9f:77:2b:96:31:9b:48:f8:7a:c2:14:7b: a6:21:68:0b:86:8e:42:da:2b:6d:21:4b:d3:b8:df:9c:d2:25: 6d:7e:86:a0:e9:92:5a:1f:bb:c6:7c:e8:0b:32:37:8f:91:42: 12:0e:0b:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE5MzYxMTAvBgNVBAUTKDVCNUNDNDAzMDlBMDdDMDNERjBCNjMwNEZDRDg0MEY5 NTBCRkIwNDEwHhcNMjUwMzExMDQ1MjMyWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NmYzE5MC1mYWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5AEspHzCQxIqPpdZ9Q8ev4usCwHsIwCRc7Fv7hS9MYpBl+1gTR4S1h6Sgwb vtGfMmX5nBjAirKSnmI49YWVPHpy/xeq3NNir0c1/gEiVYOn4HQcjtw89Zn0QKzP 80bwqZozjBfYrGeKlihg+aNBmfuCTdvHhZrzMpydgdd1ZmQK6QalD+nOaGZi6vIi BnV5AEb1f1OpjJ38RQ/VjrU1C1laTe0y03RGYy46oP7ZPF0oNWGvmCHhBJbPzUh3 +BJAtRVcz/7mkSK9p6aQ1jjGycm1C4+ieh/7Bgqbv1Gr8ICvOwfWjhy7qelA6COg 0lc2WbeoDGWzhPo73IHXoQt28wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDSqJrMV dnend56aDifC7CXvmK63MB8GA1UdIwQYMBaAFFtcxAMJoHwD3wtjBPzYQPlQv7BB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTkzNi82RUI5QzAzRUM2 MzYxMUVFQUJDQzA0MEJDNEY5QUUwMi9XMXpFQXdtZ2ZBUGZDMk1FX05oQS1WQ19z RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1cxekVBd21nZkFQZkMyTUVfTmhBLVZDX3NFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE5MzYvNkVCOUMwM0VDNjM2MTFFRUFCQ0MwNDBCQzRGOUFFMDIvQ0Y2QkVEOUVD NjM2MTFFRUEwQzcwMjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdDxwwDQYJKoZIhvcNAQELBQADggEBAE5MnRfbKAGx2dPr LyZ3dCCCBLmgjwhSEXy5d4U4HhncucKPh2PwjYv2kyZ0v1iW974jp2oEydmKJJs7 8maukVTDRx2gqzPM4Z9li5yzCkgzFw4/vMVVYgzeXSnbgR3OFweaqQOpedZQ8zPm H8XGpt78pcK6SRJbgMAirlkM57L6z+ouCStdc74bNdz8giFtwVK+ziMoJs06rkNw rjM2MUgqobUjUrW+AaN8p/2VlZuIRPFwy/wQInd59BMv6phDqLLSiBy4LccLvl+U 9J93K5Yxm0j4esIUe6YhaAuGjkLaK20hS9O435zSJW1+hqDpklofu8Z86AsyN4+R QhIOC9M= -----END CERTIFICATE-----Generated at Sat Apr 5 12:34:44 2025 by rpki-client