$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/1D74CCE2BB6D11EEB670B00CC4F9AE02.roa File: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (raw, json) Hash identifier: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw= Subject key identifier: CF:B7:21:57:84:8C:AF:27:3D:76:91:C1:BB:DE:CA:E5:C8:F2:24:E3 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: DF Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/1D74CCE2BB6D11EEB670B00CC4F9AE02.roa Signing time: Mon 31 Mar 2025 04:30:47 +0000 ROA not before: Mon 31 Mar 2025 04:30:47 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152341 IP address blocks: 157.15.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:25:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Mar 31 04:30:47 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ea1a76-873c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:50:12:14:bb:c8:48:74:08:96:9c:a2:8a:e4: f4:26:2b:f4:29:0b:1f:d0:3b:0b:f2:4b:3c:80:82: 35:19:02:4b:3f:0d:81:35:a3:20:06:81:28:71:8c: 4d:50:94:27:f8:64:3c:75:4d:67:4c:de:42:10:67: 42:70:8a:07:7a:f7:b7:42:4e:e9:ff:ae:1a:38:95: c2:5e:d6:50:dd:33:c1:e0:00:ce:23:c8:fd:0b:e5: c2:ad:a8:5d:f6:0b:14:0b:13:ba:5b:7c:92:b8:0a: 1e:16:c9:7a:9f:1f:7c:c0:fd:9d:1d:74:bc:7b:92: b9:42:fa:c4:a7:18:83:19:89:63:d8:81:e7:7e:a1: 9a:0f:83:92:d9:de:69:4a:3e:01:62:a7:16:4e:05: 6d:df:30:5d:c4:a8:5a:51:ae:8b:a9:fc:92:8a:98: 82:4c:1c:a7:79:fd:1f:18:48:59:24:08:df:78:bd: ce:7e:2c:ca:14:c9:a6:7e:53:20:e4:db:7b:92:44: a7:21:31:6d:6e:be:bb:ee:d1:48:16:9f:95:8f:ed: a8:21:5a:81:c0:42:39:72:6c:8b:40:b5:00:42:7b: e9:8c:9e:c3:62:4c:d5:44:30:19:d1:41:89:98:8c: 1f:09:fc:e0:7b:c4:97:43:f9:f7:f0:0e:7a:cc:77: ed:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B7:21:57:84:8C:AF:27:3D:76:91:C1:BB:DE:CA:E5:C8:F2:24:E3 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/1D74CCE2BB6D11EEB670B00CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.16.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:78:49:14:76:56:7b:21:12:08:c8:18:1c:ac:d6:0c:52:5d: 11:6c:79:1e:5b:a3:4f:73:41:34:50:b6:35:a5:07:23:d3:bf: 42:65:e0:81:b3:93:1d:5c:0c:ca:c9:b5:95:ef:f5:42:1a:ce: f6:ca:20:63:68:1c:c6:64:fa:3e:b8:30:8a:bf:9e:49:d5:f2: a9:92:0e:53:80:9e:2d:af:4a:b0:32:21:98:80:af:a6:04:04: 17:73:1c:e9:00:26:0e:dc:61:4a:04:58:ae:68:16:16:36:6d: 88:a3:8e:a9:f7:e2:60:7a:42:48:98:ce:fb:e1:45:f6:e0:a5: 09:05:b6:d6:74:b3:52:1a:57:b8:06:d1:32:96:71:c6:dc:ce: 65:b8:6e:9a:9e:f4:56:f0:66:71:e3:f3:57:2a:8d:90:c8:eb: 24:43:10:cb:e7:a0:af:51:90:04:15:04:fa:eb:e1:18:7b:8d: 58:99:ff:e5:b0:7c:ee:7b:71:fb:03:76:1e:0a:b7:1a:f3:b8: 0b:2d:0e:af:77:7c:08:5f:54:1a:e8:3e:cb:66:f9:f0:9d:ab: 81:fb:3b:1c:b4:c7:4a:b0:33:00:c1:8b:a3:36:ae:e2:04:60: 49:42:38:3d:41:3f:04:88:6f:44:ed:3b:3e:15:a7:56:40:e2: 02:0b:f7:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwMzMxMDQzMDQ3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VhMWE3Ni04NzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1ASFLvISHQIlpyiiuT0Jiv0KQsf0DsL8ks8gII1GQJLPw2BNaMgBoEocYxN UJQn+GQ8dU1nTN5CEGdCcIoHeve3Qk7p/64aOJXCXtZQ3TPB4ADOI8j9C+XCrahd 9gsUCxO6W3ySuAoeFsl6nx98wP2dHXS8e5K5QvrEpxiDGYlj2IHnfqGaD4OS2d5p Sj4BYqcWTgVt3zBdxKhaUa6LqfySipiCTBynef0fGEhZJAjfeL3OfizKFMmmflMg 5Nt7kkSnITFtbr677tFIFp+Vj+2oIVqBwEI5cmyLQLUAQnvpjJ7DYkzVRDAZ0UGJ mIwfCfzge8SXQ/n38A56zHftfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM+3IVeE jK8nPXaRwbveyuXI8iTjMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJGMjcvN0FDREY5QUFCQjZDMTFFRUE2ODBBRTZEQzRGOUFFMDIvMUQ3NENDRTJC QjZEMTFFRUI2NzBCMDBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdDxAwDQYJKoZIhvcNAQELBQADggEBAFx4SRR2VnshEgjI GBys1gxSXRFseR5bo09zQTRQtjWlByPTv0Jl4IGzkx1cDMrJtZXv9UIazvbKIGNo HMZk+j64MIq/nknV8qmSDlOAni2vSrAyIZiAr6YEBBdzHOkAJg7cYUoEWK5oFhY2 bYijjqn34mB6QkiYzvvhRfbgpQkFttZ0s1IaV7gG0TKWccbczmW4bpqe9FbwZnHj 81cqjZDI6yRDEMvnoK9RkAQVBPrr4Rh7jViZ/+WwfO57cfsDdh4KtxrzuAstDq93 fAhfVBroPstm+fCdq4H7Oxy0x0qwMwDBi6M2ruIEYElCOD1BPwSIb0TtOz4Vp1ZA 4gIL9xw= -----END CERTIFICATE-----Generated at Sat Apr 26 12:33:39 2025 by rpki-client