$ rpki-client -vvf rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/0992C84EAC9111EF81B7B058C4F9AE02.roa File: 0992C84EAC9111EF81B7B058C4F9AE02.roa (raw, json) Hash identifier: 0r1+bjf/CBoFjNEUVu+pdLpoE7fYxxmBMNd9J5fRyzs= Subject key identifier: 44:B0:26:54:A9:FF:AA:62:85:B0:AD:A6:2E:71:31:D5:81:9A:D7:64 Certificate issuer: /CN=A91364F5/serialNumber=6163A9554C330679F7EA16678B108D964EC1C802 Certificate serial: D8 Authority key identifier: 61:63:A9:55:4C:33:06:79:F7:EA:16:67:8B:10:8D:96:4E:C1:C8:02 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YWOpVUwzBnn36hZnixCNlk7ByAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/0992C84EAC9111EF81B7B058C4F9AE02.roa Signing time: Tue 01 Apr 2025 05:31:06 +0000 ROA not before: Tue 01 Apr 2025 05:31:06 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152606 IP address blocks: 157.20.150.0/24 maxlen: 24 157.20.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/YWOpVUwzBnn36hZnixCNlk7ByAI.crl rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/YWOpVUwzBnn36hZnixCNlk7ByAI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YWOpVUwzBnn36hZnixCNlk7ByAI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:38:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91364F5, serialNumber=6163A9554C330679F7EA16678B108D964EC1C802 Validity Not Before: Apr 1 05:31:06 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67eb7a19-29db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:ef:d2:f0:e9:c4:b5:46:6c:96:fc:89:c2:3d: d3:f5:a9:1a:4f:d0:f8:7c:04:53:a0:d3:61:b4:f8: ed:9d:86:ad:a8:c1:45:e2:ef:82:26:86:b0:db:91: bf:2e:11:4d:ee:51:9c:af:d8:d4:0a:2a:df:9b:14: a3:9b:87:f7:37:d0:c6:73:74:05:6b:b2:77:e1:33: 21:f3:61:4d:fa:44:b5:6c:0a:39:1c:73:7b:88:68: 6c:0d:fd:64:e5:af:1d:87:5f:68:bb:73:19:22:2d: f4:7f:7d:0e:5a:fa:e7:35:f1:cf:37:22:05:2e:62: 89:39:64:45:aa:a1:4a:da:27:b7:da:7c:71:ff:99: 06:1a:c2:26:3b:fc:6a:f7:e6:4d:e1:95:89:e1:61: b1:17:48:f5:e5:a6:19:b4:72:a3:92:27:ff:24:d5: cf:45:62:79:a0:f5:3e:b0:69:30:c9:d5:7c:b2:c7: 6a:20:d6:40:6c:b9:2c:28:2b:42:e1:b2:39:1a:60: a6:1b:71:2f:c2:c0:40:79:31:23:3c:44:8c:b0:96: 74:05:79:f8:be:66:41:f3:9a:d1:14:d8:3d:1c:be: 60:d3:2e:3d:75:f4:86:7c:9f:1a:ef:a0:f4:4b:7d: 5e:8a:9e:c7:af:2f:b6:39:0c:d2:ca:a5:85:ea:89: 81:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B0:26:54:A9:FF:AA:62:85:B0:AD:A6:2E:71:31:D5:81:9A:D7:64 X509v3 Authority Key Identifier: keyid:61:63:A9:55:4C:33:06:79:F7:EA:16:67:8B:10:8D:96:4E:C1:C8:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/YWOpVUwzBnn36hZnixCNlk7ByAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YWOpVUwzBnn36hZnixCNlk7ByAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91364F5/5B5B93ECD9F911EE9EAE5D7DC4F9AE02/0992C84EAC9111EF81B7B058C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.150.0/23 Signature Algorithm: sha256WithRSAEncryption 61:1e:55:64:69:90:e2:d9:c9:c1:5d:12:4c:07:14:35:49:f5: 2a:82:3b:58:f1:25:f0:d0:46:2d:23:87:34:11:6c:1f:97:ff: e9:b4:57:51:f9:90:0d:15:d1:d1:b1:e9:ff:e4:7e:d4:41:3c: c9:30:ae:62:0e:57:a9:16:8b:b1:bc:10:3a:6b:30:5d:c8:64: a2:2a:33:9c:8f:df:df:a4:a1:c6:39:f2:a2:f9:ec:01:45:ac: ad:95:c8:e3:5a:73:fb:bf:fe:6f:a7:7a:f5:e4:ec:f2:0d:e0: 2f:60:24:c2:72:42:05:6e:12:99:0d:ab:92:50:06:ae:cf:1a: 11:1a:d9:31:0a:9d:42:e7:c0:79:5f:d1:39:73:52:8b:eb:89: c1:44:e5:7b:f5:11:bb:85:2f:51:32:eb:04:00:a3:07:e5:7a: 91:fe:f6:3c:75:69:67:b2:b0:9d:1d:11:78:4a:5e:8a:ea:7b: 2b:22:0a:fe:f8:12:ec:74:44:0c:c9:ad:4d:24:d4:97:68:2f: 9f:ff:e6:7f:2b:d7:72:40:db:79:d2:72:6c:8b:ba:6f:c1:85: 21:8c:3b:ac:54:70:e4:7b:d8:c5:e4:9f:96:81:39:cc:a1:4a: 8e:a1:e0:60:74:c6:c3:fd:cf:c4:c5:5a:3f:68:19:9e:71:e8: 45:64:a2:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzY0RjUxMTAvBgNVBAUTKDYxNjNBOTU1NEMzMzA2NzlGN0VBMTY2NzhCMTA4RDk2 NEVDMUM4MDIwHhcNMjUwNDAxMDUzMTA2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ViN2ExOS0yOWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+/S8OnEtUZslvyJwj3T9akaT9D4fARToNNhtPjtnYatqMFF4u+CJoaw25G/ LhFN7lGcr9jUCirfmxSjm4f3N9DGc3QFa7J34TMh82FN+kS1bAo5HHN7iGhsDf1k 5a8dh19ou3MZIi30f30OWvrnNfHPNyIFLmKJOWRFqqFK2ie32nxx/5kGGsImO/xq 9+ZN4ZWJ4WGxF0j15aYZtHKjkif/JNXPRWJ5oPU+sGkwydV8ssdqINZAbLksKCtC 4bI5GmCmG3EvwsBAeTEjPESMsJZ0BXn4vmZB85rRFNg9HL5g0y49dfSGfJ8a76D0 S31eip7Hry+2OQzSyqWF6omBSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFESwJlSp /6pihbCtpi5xMdWBmtdkMB8GA1UdIwQYMBaAFGFjqVVMMwZ59+oWZ4sQjZZOwcgC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNjRGNS81QjVCOTNFQ0Q5 RjkxMUVFOUVBRTVEN0RDNEY5QUUwMi9ZV09wVlV3ekJubjM2aFpuaXhDTmxrN0J5 QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lXT3BWVXd6Qm5uMzZoWm5peENObGs3QnlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzY0RjUvNUI1QjkzRUNEOUY5MTFFRTlFQUU1RDdEQzRGOUFFMDIvMDk5MkM4NEVB QzkxMTFFRjgxQjdCMDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFJYwDQYJKoZIhvcNAQELBQADggEBAGEeVWRpkOLZycFd EkwHFDVJ9SqCO1jxJfDQRi0jhzQRbB+X/+m0V1H5kA0V0dGx6f/kftRBPMkwrmIO V6kWi7G8EDprMF3IZKIqM5yP39+kocY58qL57AFFrK2VyONac/u//m+nevXk7PIN 4C9gJMJyQgVuEpkNq5JQBq7PGhEa2TEKnULnwHlf0TlzUovricFE5Xv1EbuFL1Ey 6wQAowflepH+9jx1aWeysJ0dEXhKXorqeysiCv74Eux0RAzJrU0k1JdoL5//5n8r 13JA23nScmyLum/BhSGMO6xUcOR72MXkn5aBOcyhSo6h4GB0xsP9z8TFWj9oGZ5x 6EVkoi0= -----END CERTIFICATE-----Generated at Sat Apr 26 12:21:00 2025 by rpki-client