$ rpki-client -vvf rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/15039C1E202F11F0AFD72717C4F9AE02.roa File: 15039C1E202F11F0AFD72717C4F9AE02.roa (raw, json) Hash identifier: RNEYHFbl/lHVURQeSl/swC0oZ7j6giFqMqHaOjHDKKE= Subject key identifier: 1F:C9:8C:20:E0:A6:ED:7E:9C:A2:04:8B:B6:FE:26:AC:15:EA:1C:5A Certificate issuer: /CN=A912CD21/serialNumber=818BB90332717F935730DAF14708FFC2F605F05F Certificate serial: 15 Authority key identifier: 81:8B:B9:03:32:71:7F:93:57:30:DA:F1:47:08:FF:C2:F6:05:F0:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYu5AzJxf5NXMNrxRwj_wvYF8F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/15039C1E202F11F0AFD72717C4F9AE02.roa Signing time: Wed 23 Apr 2025 10:38:24 +0000 ROA not before: Wed 23 Apr 2025 10:38:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18024 IP address blocks: 163.227.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/gYu5AzJxf5NXMNrxRwj_wvYF8F8.crl rsync://rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/gYu5AzJxf5NXMNrxRwj_wvYF8F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYu5AzJxf5NXMNrxRwj_wvYF8F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:10:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CD21, serialNumber=818BB90332717F935730DAF14708FFC2F605F05F Validity Not Before: Apr 23 10:38:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6808c31f-6f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5c:04:7b:6b:bf:21:7f:23:59:50:65:02:9b: e8:dc:77:b2:a7:66:f7:f6:9a:47:e5:ed:e8:ef:fd: 55:a0:06:f1:62:72:2c:5b:ec:97:69:ec:9a:82:e6: a6:69:cb:16:0a:07:8a:b5:93:b9:65:eb:a6:b5:90: 4f:19:55:75:8e:97:25:70:a9:78:62:dd:17:fe:9a: d0:51:56:fd:64:b1:a8:e2:3b:ba:d5:8b:50:b3:69: a5:d2:eb:72:5c:90:3c:28:ba:f9:ae:d5:f1:ea:af: fa:61:fb:05:08:e8:59:97:68:ff:f4:db:b5:55:b2: 75:b0:b4:a4:b3:ea:79:3b:60:e9:ec:31:02:01:73: 84:d7:b3:a6:77:e8:49:b5:c8:36:b9:53:07:cb:5a: bc:73:76:9f:16:de:c0:02:20:19:2b:4f:cc:bf:9a: 58:af:ad:7a:e5:09:77:46:a2:58:2c:a2:77:b2:2a: b4:84:ee:d8:4f:47:de:5c:05:d4:97:49:0f:31:3f: 9c:86:56:da:97:3a:ed:13:f7:2e:87:c1:47:41:38: d3:d5:a3:cc:ea:bd:15:51:36:88:7c:d1:2b:79:0e: 6f:06:01:7f:81:de:64:de:96:d5:55:ba:ab:6f:8a: c8:62:c8:c5:f2:f1:13:d1:bd:b6:89:eb:82:76:80: d6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:C9:8C:20:E0:A6:ED:7E:9C:A2:04:8B:B6:FE:26:AC:15:EA:1C:5A X509v3 Authority Key Identifier: keyid:81:8B:B9:03:32:71:7F:93:57:30:DA:F1:47:08:FF:C2:F6:05:F0:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/gYu5AzJxf5NXMNrxRwj_wvYF8F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYu5AzJxf5NXMNrxRwj_wvYF8F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CD21/38C261E41C3811F0AA857D27C4F9AE02/15039C1E202F11F0AFD72717C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.28.0/23 Signature Algorithm: sha256WithRSAEncryption 43:01:79:22:5d:ca:c8:2f:2e:55:29:66:19:98:01:e2:cf:5d: f9:f7:d9:62:de:59:b7:a9:66:8d:63:03:63:a7:b0:3a:8e:d2: 9f:49:db:f5:a4:58:e7:4f:5e:28:4e:2c:af:5a:d3:f2:a9:72: 9b:3b:ef:73:c9:97:43:e8:74:35:4a:9e:b4:1f:06:69:e3:e2: 4e:18:6e:9f:c9:ad:f3:65:44:dc:2c:19:47:f1:6c:03:af:ce: d0:2b:29:e6:69:ef:1c:3a:33:8a:63:e4:92:94:ed:a5:0c:3e: 70:cb:f1:02:5f:46:83:03:19:b5:c9:07:e0:4e:d6:d8:95:3b: ef:fa:41:26:68:01:d5:bc:1a:5d:b8:85:3e:1a:90:32:26:07: 6e:d0:7a:d5:90:3f:e8:4f:5f:74:7a:0d:8a:5b:23:76:d6:2c: 4f:43:d8:27:07:28:3a:24:3a:0b:52:b2:a7:c4:31:5f:e2:04: 7f:ce:10:95:dc:c1:1b:ad:0a:f9:8e:c9:28:ab:40:e8:aa:37: 9e:05:d1:54:9c:5e:d2:ec:64:0a:ab:6d:89:37:71:fc:b9:63: dc:ba:9c:71:69:8c:a4:18:da:24:8d:7a:2f:1b:81:8f:e1:51: d2:e5:77:71:72:d0:a3:25:04:52:29:54:a8:ce:1b:c5:cb:dd: 01:ee:c9:31 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy Q0QyMTExMC8GA1UEBRMoODE4QkI5MDMzMjcxN0Y5MzU3MzBEQUYxNDcwOEZGQzJG NjA1RjA1RjAeFw0yNTA0MjMxMDM4MjRaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDhjMzFmLTZmODcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmXAR7a78hfyNZUGUCm+jcd7KnZvf2mkfl7ejv/VWgBvFicixb7Jdp7JqC5qZp yxYKB4q1k7ll66a1kE8ZVXWOlyVwqXhi3Rf+mtBRVv1ksajiO7rVi1CzaaXS63Jc kDwouvmu1fHqr/ph+wUI6FmXaP/027VVsnWwtKSz6nk7YOnsMQIBc4TXs6Z36Em1 yDa5UwfLWrxzdp8W3sACIBkrT8y/mlivrXrlCXdGolgsoneyKrSE7thPR95cBdSX SQ8xP5yGVtqXOu0T9y6HwUdBONPVo8zqvRVRNoh80St5Dm8GAX+B3mTeltVVuqtv ishiyMXy8RPRvbaJ64J2gNYtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUH8mMIOCm 7X6cogSLtv4mrBXqHFowHwYDVR0jBBgwFoAUgYu5AzJxf5NXMNrxRwj/wvYF8F8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJDRDIxLzM4QzI2MUU0MUMz ODExRjBBQTg1N0QyN0M0RjlBRTAyL2dZdTVBekp4ZjVOWE1OcnhSd2pfd3ZZRjhG OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1l1NUF6SnhmNU5YTU5yeFJ3al93dllGOEY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Q0QyMS8zOEMyNjFFNDFDMzgxMUYwQUE4NTdEMjdDNEY5QUUwMi8xNTAzOUMxRTIw MkYxMUYwQUZENzI3MTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPjHDANBgkqhkiG9w0BAQsFAAOCAQEAQwF5Il3KyC8uVSlm GZgB4s9d+ffZYt5Zt6lmjWMDY6ewOo7Sn0nb9aRY509eKE4sr1rT8qlymzvvc8mX Q+h0NUqetB8GaePiThhun8mt82VE3CwZR/FsA6/O0Csp5mnvHDozimPkkpTtpQw+ cMvxAl9GgwMZtckH4E7W2JU77/pBJmgB1bwaXbiFPhqQMiYHbtB61ZA/6E9fdHoN ilsjdtYsT0PYJwcoOiQ6C1Kyp8QxX+IEf84QldzBG60K+Y7JKKtA6Ko3ngXRVJxe 0uxkCqttiTdx/Llj3LqccWmMpBjaJI16LxuBj+FR0uV3cXLQoyUEUilUqM4bxcvd Ae7JMQ== -----END CERTIFICATE-----Generated at Sat Apr 26 09:26:49 2025 by rpki-client