$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/7E15FE0C27B711EF8867AA49C4F9AE02.roa File: 7E15FE0C27B711EF8867AA49C4F9AE02.roa (raw, json) Hash identifier: xJBS1rE4hyaBoQRSLDqWi8kJZTi9bOV+WLs5Y+jjSRs= Subject key identifier: 0A:18:A3:86:59:A3:15:BF:81:93:00:33:ED:6C:09:1F:CF:AC:C5:9D Certificate issuer: /CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Certificate serial: B8 Authority key identifier: B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/7E15FE0C27B711EF8867AA49C4F9AE02.roa Signing time: Fri 11 Apr 2025 05:42:29 +0000 ROA not before: Fri 11 Apr 2025 05:42:29 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138607 IP address blocks: 78.138.12.0/24 maxlen: 24 78.138.13.0/24 maxlen: 24 78.138.14.0/24 maxlen: 24 78.138.15.0/24 maxlen: 24 213.255.200.0/24 maxlen: 24 213.255.201.0/24 maxlen: 24 213.255.202.0/24 maxlen: 24 213.255.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Validity Not Before: Apr 11 05:42:29 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f8abc5-615b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2a:10:38:d4:8d:b3:bd:09:e0:3f:85:6f:1d: f6:c4:05:0d:1f:9a:8a:3e:1d:63:a0:56:c3:44:b8: 31:d9:34:11:c4:2a:0b:e8:3b:fb:02:75:0d:d8:3f: 6a:f5:42:e8:29:5d:af:4d:b1:b4:89:5b:0b:d3:d2: 84:14:7e:52:47:0a:ec:c1:a9:e7:cf:80:01:9f:64: b1:e5:ce:1f:87:b2:86:7a:0b:b8:62:97:bd:b0:4d: 87:6c:be:ee:d5:a1:ab:1c:ad:61:a3:fe:dd:2a:03: 5c:90:b1:50:91:ba:82:20:37:ad:39:1c:ca:60:31: 2b:83:51:03:55:ca:74:d8:2f:90:e2:9c:5b:4d:fb: ca:ec:5b:19:95:2a:7e:de:c0:4b:a3:01:4e:05:35: 18:65:42:1f:74:df:8e:ff:f7:35:5b:56:2c:7e:48: d7:9e:07:eb:ac:6e:92:d4:a4:a3:b0:a9:ab:ac:ce: 9e:55:8f:bc:02:5c:cd:61:37:57:5e:55:0d:a4:87: 4e:2d:82:13:b8:dd:24:e4:54:ee:92:3c:2a:6d:6a: db:a9:af:fb:b5:71:ca:31:f4:eb:07:b8:68:d5:8d: e9:42:d1:74:e3:8b:3a:80:38:a4:f3:4c:7a:f5:86: 75:af:18:3c:91:0e:54:52:5f:02:44:79:2c:df:14: e1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:18:A3:86:59:A3:15:BF:81:93:00:33:ED:6C:09:1F:CF:AC:C5:9D X509v3 Authority Key Identifier: keyid:B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/7E15FE0C27B711EF8867AA49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 78.138.12.0/22 213.255.200.0/22 Signature Algorithm: sha256WithRSAEncryption 08:de:1c:82:30:7c:49:50:ba:9e:a7:0d:04:8c:a2:a1:09:f6: 48:9a:a8:a0:98:d4:7f:cc:25:b5:b9:2d:80:dd:a5:dc:03:2a: e5:11:66:dc:34:0d:23:5d:eb:b7:ef:96:e5:fd:a6:33:80:c2: b0:0f:7c:f0:1f:c1:a0:42:d3:19:e1:b1:78:71:db:95:d2:1d: e7:f6:84:25:f0:23:6e:06:c7:46:37:e6:e3:5b:4b:8f:2b:21: a4:ad:79:46:4e:10:a2:a1:f8:d4:d2:fb:04:bf:2d:f7:2d:1c: f9:5c:ca:57:1c:f9:8b:15:74:d1:99:49:af:0e:50:ac:50:4e: 16:31:9a:a1:f1:f9:ad:7d:2c:49:ac:e2:6b:da:2d:24:2d:42: 7a:fa:08:eb:70:36:23:d2:a9:d7:04:75:ba:b7:67:b7:e6:5a: 0c:e3:3c:a3:02:95:dd:a6:2c:f0:ea:58:c2:79:62:99:1a:21: 8d:65:ff:47:66:6f:56:77:c1:2b:e6:12:e4:a3:a0:55:03:4f: be:85:26:50:ba:f5:32:16:5d:61:a2:b9:58:51:f0:00:ca:04: d2:96:23:22:e5:0e:f1:64:37:d8:b0:ef:09:2f:a6:8f:10:84: da:72:e6:4b:4c:ba:39:64:56:d5:7d:0c:21:1d:0e:33:17:70: 31:0a:78:06 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKEIzRDc1QUUxRUNFRUY2RjkyQkQxN0QwQzRCMzY1MThE NUJFNzc2RjEwHhcNMjUwNDExMDU0MjI5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y4YWJjNS02MTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSoQONSNs70J4D+Fbx32xAUNH5qKPh1joFbDRLgx2TQRxCoL6Dv7AnUN2D9q 9ULoKV2vTbG0iVsL09KEFH5SRwrswannz4ABn2Sx5c4fh7KGegu4Ype9sE2HbL7u 1aGrHK1ho/7dKgNckLFQkbqCIDetORzKYDErg1EDVcp02C+Q4pxbTfvK7FsZlSp+ 3sBLowFOBTUYZUIfdN+O//c1W1YsfkjXngfrrG6S1KSjsKmrrM6eVY+8AlzNYTdX XlUNpIdOLYITuN0k5FTukjwqbWrbqa/7tXHKMfTrB7ho1Y3pQtF044s6gDik80x6 9YZ1rxg8kQ5UUl8CRHks3xThVwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAoYo4ZZ oxW/gZMAM+1sCR/PrMWdMB8GA1UdIwQYMBaAFLPXWuHs7vb5K9F9DEs2UY1b53bx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS85RTdDMkNFRTAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2a3IwWDBNU3paUmpWdm5k dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3M5ZGE0ZXp1OXZrcjBYME1TelpSalZ2bmR2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1Q0EvOUU3QzJDRUUwMjRGMTFFRkFDNjVGNTc3QzRGOUFFMDIvN0UxNUZFMEMy N0I3MTFFRjg4NjdBQTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJOigwDBALV/8gwDQYJKoZIhvcNAQELBQADggEBAAjeHIIw fElQup6nDQSMoqEJ9kiaqKCY1H/MJbW5LYDdpdwDKuURZtw0DSNd67fvluX9pjOA wrAPfPAfwaBC0xnhsXhx25XSHef2hCXwI24Gx0Y35uNbS48rIaSteUZOEKKh+NTS +wS/LfctHPlcylcc+YsVdNGZSa8OUKxQThYxmqHx+a19LEms4mvaLSQtQnr6COtw NiPSqdcEdbq3Z7fmWgzjPKMCld2mLPDqWMJ5YpkaIY1l/0dmb1Z3wSvmEuSjoFUD T76FJlC69TIWXWGiuVhR8ADKBNKWIyLlDvFkN9iw7wkvpo8QhNpy5ktMujlkVtV9 DCEdDjMXcDEKeAY= -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:37 2025 by rpki-client