$ rpki-client -vvf rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/31B5D564824311EF9C69B985C4F9AE02.roa File: 31B5D564824311EF9C69B985C4F9AE02.roa (raw, json) Hash identifier: IVX22Sj0l4iAKc50j77MELQdp1CwcB3skhe7+xJHsEQ= Subject key identifier: 8E:42:58:C7:F1:94:E1:3B:A0:3B:1F:0D:E0:78:9B:59:52:F5:48:3B Certificate issuer: /CN=A9142E1E/serialNumber=1BDEB0C275C90E81BFA3AAFE213E4E7121EB734A Certificate serial: 53 Authority key identifier: 1B:DE:B0:C2:75:C9:0E:81:BF:A3:AA:FE:21:3E:4E:71:21:EB:73:4A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G96wwnXJDoG_o6r-IT5OcSHrc0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/31B5D564824311EF9C69B985C4F9AE02.roa Signing time: Tue 25 Feb 2025 08:49:42 +0000 ROA not before: Tue 25 Feb 2025 08:49:42 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152465 IP address blocks: 157.15.188.0/24 maxlen: 24 157.15.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/G96wwnXJDoG_o6r-IT5OcSHrc0o.crl rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/G96wwnXJDoG_o6r-IT5OcSHrc0o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G96wwnXJDoG_o6r-IT5OcSHrc0o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142E1E, serialNumber=1BDEB0C275C90E81BFA3AAFE213E4E7121EB734A Validity Not Before: Feb 25 08:49:42 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67bd8425-6c9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b7:69:c8:6a:b7:ae:d3:42:83:14:67:92:05: 0e:95:a2:ae:b5:26:a4:4d:17:0d:f2:36:50:63:cb: 5f:a5:62:25:60:49:4b:0a:35:6d:ce:9b:d1:24:64: 52:2f:0f:fa:8a:45:7a:6a:4b:d0:2c:fc:a5:d4:2a: 63:5d:70:a4:2f:03:a8:bb:58:26:ff:b1:38:3e:5d: 84:05:cf:12:d5:12:c7:be:50:6b:5e:e0:33:68:f7: 37:07:2b:ac:4b:9a:6b:fe:2b:64:8e:f6:dd:ed:25: 44:22:bf:f5:10:c8:04:04:01:05:48:3d:b6:fa:47: 49:23:9d:f9:59:35:0a:47:3b:df:37:bf:44:6b:9a: 51:5a:2c:79:45:8a:3a:77:68:95:1c:38:87:52:d9: d2:d7:5b:3a:f1:cc:1a:b4:a9:50:10:57:80:59:be: 61:63:50:c5:b3:a4:b7:26:6c:9a:99:ac:dc:a8:21: d1:6e:b5:6a:68:4a:ac:da:aa:1f:3a:f6:46:66:a1: f2:ca:85:47:5c:8b:43:1b:7d:11:a2:ad:75:40:a2: c8:b1:34:b2:28:76:47:3e:be:5b:00:66:0e:23:f1: 11:21:b1:96:1c:36:3e:20:f8:0f:73:05:6d:e5:97: b0:77:dc:17:32:04:de:31:c5:b0:18:c0:6e:72:f9: 4b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:42:58:C7:F1:94:E1:3B:A0:3B:1F:0D:E0:78:9B:59:52:F5:48:3B X509v3 Authority Key Identifier: keyid:1B:DE:B0:C2:75:C9:0E:81:BF:A3:AA:FE:21:3E:4E:71:21:EB:73:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/G96wwnXJDoG_o6r-IT5OcSHrc0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/G96wwnXJDoG_o6r-IT5OcSHrc0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142E1E/13D80608824211EFAD3D8181C4F9AE02/31B5D564824311EF9C69B985C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.188.0/23 Signature Algorithm: sha256WithRSAEncryption bc:6c:3a:c7:74:77:77:5e:cb:80:39:76:25:b5:f0:c7:37:6d: 7a:6e:00:3e:f4:0b:d6:3a:a5:a6:be:9a:93:36:84:0c:84:67: b0:80:b1:02:39:62:92:40:de:f0:20:c0:29:23:9e:8c:7a:b7: 89:04:65:00:60:96:07:33:b9:11:07:0f:e4:71:a4:1f:0c:48: 5c:81:a6:70:2a:4b:77:50:f7:a9:63:ba:81:b4:bb:84:af:5e: 16:01:02:b8:ac:99:68:e3:60:0d:69:a3:40:ea:73:2a:8b:d6: a4:a8:8b:10:64:1e:b0:d7:b9:a2:83:a9:dc:97:25:34:17:99: 3f:d6:02:53:61:3a:ad:b1:0d:ec:8f:5a:53:f7:4e:58:47:8c: db:3e:2b:17:37:97:d3:6d:ab:cd:76:fe:41:57:e3:88:00:3e: e7:8a:88:52:87:85:81:63:97:49:7e:0e:35:a9:d2:3c:33:25: 6c:a2:b6:b5:22:da:db:aa:c1:41:ec:90:12:5c:d0:10:f3:ae: 79:6a:25:ca:7e:1e:ac:57:a4:60:e9:3f:2e:76:21:36:61:27: 69:43:69:19:b5:a2:68:c2:a4:c9:6e:60:f5:a8:27:15:d6:2a: a6:f9:5b:90:9c:6d:e2:dc:8e:6f:c0:e7:be:79:a2:b7:c4:82: 6f:a8:e2:6e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkUxRTExMC8GA1UEBRMoMUJERUIwQzI3NUM5MEU4MUJGQTNBQUZFMjEzRTRFNzEy MUVCNzM0QTAeFw0yNTAyMjUwODQ5NDJaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YmQ4NDI1LTZjOWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDit2nIareu00KDFGeSBQ6Voq61JqRNFw3yNlBjy1+lYiVgSUsKNW3Om9EkZFIv D/qKRXpqS9As/KXUKmNdcKQvA6i7WCb/sTg+XYQFzxLVEse+UGte4DNo9zcHK6xL mmv+K2SO9t3tJUQiv/UQyAQEAQVIPbb6R0kjnflZNQpHO983v0RrmlFaLHlFijp3 aJUcOIdS2dLXWzrxzBq0qVAQV4BZvmFjUMWzpLcmbJqZrNyoIdFutWpoSqzaqh86 9kZmofLKhUdci0MbfRGirXVAosixNLIodkc+vlsAZg4j8REhsZYcNj4g+A9zBW3l l7B33BcyBN4xxbAYwG5y+UsZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjkJYx/GU 4TugOx8N4HibWVL1SDswHwYDVR0jBBgwFoAUG96wwnXJDoG/o6r+IT5OcSHrc0ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyRTFFLzEzRDgwNjA4ODI0 MjExRUZBRDNEODE4MUM0RjlBRTAyL0c5Nnd3blhKRG9HX282ci1JVDVPY1NIcmMw by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRzk2d3duWEpEb0dfbzZyLUlUNU9jU0hyYzBvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkUxRS8xM0Q4MDYwODgyNDIxMUVGQUQzRDgxODFDNEY5QUUwMi8zMUI1RDU2NDgy NDMxMUVGOUM2OUI5ODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0PvDANBgkqhkiG9w0BAQsFAAOCAQEAvGw6x3R3d17LgDl2 JbXwxzdtem4APvQL1jqlpr6akzaEDIRnsICxAjlikkDe8CDAKSOejHq3iQRlAGCW BzO5EQcP5HGkHwxIXIGmcCpLd1D3qWO6gbS7hK9eFgECuKyZaONgDWmjQOpzKovW pKiLEGQesNe5ooOp3JclNBeZP9YCU2E6rbEN7I9aU/dOWEeM2z4rFzeX022rzXb+ QVfjiAA+54qIUoeFgWOXSX4ONanSPDMlbKK2tSLa26rBQeyQElzQEPOueWolyn4e rFekYOk/LnYhNmEnaUNpGbWiaMKkyW5g9agnFdYqpvlbkJxt4tyOb8Dnvnmit8SC b6jibg== -----END CERTIFICATE-----Generated at Sat Apr 26 17:14:11 2025 by rpki-client