$ rpki-client -vvf rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/69AF571603F211F09BC45354C4F9AE02.roa File: 69AF571603F211F09BC45354C4F9AE02.roa (raw, json) Hash identifier: nN3j+w7rACDpnsAZEw+b0JxCXf8pA/ucgK4YVC62zqE= Subject key identifier: FA:43:85:EC:57:57:AB:28:11:85:63:8B:FF:17:73:65:C4:82:39:81 Certificate issuer: /CN=A915201D/serialNumber=DB1B96E05A98D828BF57EA0A7155AF1D33223E2C Certificate serial: 02 Authority key identifier: DB:1B:96:E0:5A:98:D8:28:BF:57:EA:0A:71:55:AF:1D:33:22:3E:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/69AF571603F211F09BC45354C4F9AE02.roa Signing time: Tue 18 Mar 2025 12:13:34 +0000 ROA not before: Tue 18 Mar 2025 12:13:34 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 7545 IP address blocks: 203.21.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.crl rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915201D, serialNumber=DB1B96E05A98D828BF57EA0A7155AF1D33223E2C Validity Not Before: Mar 18 12:13:34 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67d9636e-cb83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:e6:79:16:b9:6b:54:4c:13:6b:58:b4:46:73: da:1c:e6:6b:88:a8:32:66:33:f1:4f:06:d4:c6:52: bc:b4:df:97:a1:65:9a:8a:02:c4:5b:9d:36:ca:31: d2:f2:a2:6e:c1:10:55:55:62:79:7a:a4:1d:64:62: fd:23:7d:2e:d4:6b:4e:30:0c:a6:86:57:8b:f6:16: 1c:e3:df:1b:4c:3a:5c:b8:c9:d0:11:15:db:24:07: 86:d1:6a:e9:c1:cd:63:78:8e:f9:f1:78:b0:5d:c8: 97:3d:a4:08:05:2a:0f:41:55:d8:c8:5c:77:94:ab: 79:42:f2:da:93:51:ca:d0:b4:08:07:63:ed:43:aa: 34:02:09:53:f4:85:23:b3:4a:fd:eb:e8:ad:35:83: b9:e6:2b:27:1a:9c:95:c0:4d:10:bc:24:9b:da:53: 18:c4:81:6e:8e:cc:59:26:e3:09:52:fd:7b:8c:ae: 33:2b:f6:d4:73:2e:cf:5a:54:01:e6:09:a6:76:67: 8f:cc:40:8d:41:30:1b:c4:0b:e5:be:36:e8:af:40: b1:b9:b3:c6:0f:2b:e1:50:80:b1:60:1a:27:51:ea: 26:3a:2f:57:a4:e4:c8:83:b7:65:9a:f8:8b:ca:57: ee:c2:dc:ff:bf:b3:0c:62:1c:eb:d8:71:1f:28:b2: 3a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:43:85:EC:57:57:AB:28:11:85:63:8B:FF:17:73:65:C4:82:39:81 X509v3 Authority Key Identifier: keyid:DB:1B:96:E0:5A:98:D8:28:BF:57:EA:0A:71:55:AF:1D:33:22:3E:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/69AF571603F211F09BC45354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.15.0/24 Signature Algorithm: sha256WithRSAEncryption 37:97:ac:77:69:b9:09:5b:9a:5e:35:4b:46:15:79:05:f2:52: 26:02:5f:51:43:62:77:ca:7d:48:01:15:44:7a:df:f4:3f:a6: 9b:9f:4c:9e:ae:dd:21:97:9b:73:1b:d7:2a:66:b7:81:de:b6: 83:2f:bf:da:18:bc:75:c9:71:0d:67:f1:bb:5e:6c:18:7c:83: 84:71:2c:54:87:5b:bf:04:ca:e6:e6:09:a6:e7:a2:80:eb:08: 22:4c:d6:7d:43:33:a5:0e:57:09:a4:c9:14:ea:a5:95:a8:5a: 81:b8:ac:19:15:d7:f2:1e:4f:44:ad:a3:d3:10:3b:b1:4d:59: f4:bb:22:84:b4:48:b0:6b:d6:9f:5f:f8:75:3e:f7:e1:98:ac: 77:9b:95:f7:b9:61:46:63:f1:94:0f:e8:42:50:50:31:44:e5: fb:60:cc:fb:61:dc:a3:bb:d6:9b:b5:a9:68:db:43:3e:2b:e6: e0:a3:4c:c4:62:7a:0a:50:8b:d7:3c:32:ae:b6:8c:47:c6:6c: 11:d2:0b:2e:c2:78:c9:08:1d:ea:84:89:a5:d8:17:be:14:b6: e0:bb:89:92:8e:9c:d2:ab:dd:77:5d:b7:1b:19:d7:4a:72:99: 66:08:83:50:36:61:5b:13:ad:5a:ce:a6:7d:bf:1d:d5:dd:bc: 42:58:22:74 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjAxRDExMC8GA1UEBRMoREIxQjk2RTA1QTk4RDgyOEJGNTdFQTBBNzE1NUFGMUQz MzIyM0UyQzAeFw0yNTAzMTgxMjEzMzRaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDk2MzZlLWNiODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD05nkWuWtUTBNrWLRGc9oc5muIqDJmM/FPBtTGUry035ehZZqKAsRbnTbKMdLy om7BEFVVYnl6pB1kYv0jfS7Ua04wDKaGV4v2Fhzj3xtMOly4ydARFdskB4bRaunB zWN4jvnxeLBdyJc9pAgFKg9BVdjIXHeUq3lC8tqTUcrQtAgHY+1DqjQCCVP0hSOz Sv3r6K01g7nmKycanJXATRC8JJvaUxjEgW6OzFkm4wlS/XuMrjMr9tRzLs9aVAHm CaZ2Z4/MQI1BMBvEC+W+NuivQLG5s8YPK+FQgLFgGidR6iY6L1ek5MiDt2Wa+IvK V+7C3P+/swxiHOvYcR8osjonAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU+kOF7FdX qygRhWOL/xdzZcSCOYEwHwYDVR0jBBgwFoAU2xuW4FqY2Ci/V+oKcVWvHTMiPiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyMDFELzg1QjhDMjkwMDNG MTExRjBBQjg1RUM1MkM0RjlBRTAyLzJ4dVc0RnFZMkNpX1Ytb0tjVld2SFRNaVBp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnh1VzRGcVkyQ2lfVi1vS2NWV3ZIVE1pUGl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAxRC84NUI4QzI5MDAzRjExMUYwQUI4NUVDNTJDNEY5QUUwMi82OUFGNTcxNjAz RjIxMUYwOUJDNDUzNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsVDzANBgkqhkiG9w0BAQsFAAOCAQEAN5esd2m5CVuaXjVL RhV5BfJSJgJfUUNid8p9SAEVRHrf9D+mm59Mnq7dIZebcxvXKma3gd62gy+/2hi8 dclxDWfxu15sGHyDhHEsVIdbvwTK5uYJpueigOsIIkzWfUMzpQ5XCaTJFOqllaha gbisGRXX8h5PRK2j0xA7sU1Z9LsihLRIsGvWn1/4dT734Zisd5uV97lhRmPxlA/o QlBQMUTl+2DM+2Hco7vWm7WpaNtDPivm4KNMxGJ6ClCL1zwyrraMR8ZsEdILLsJ4 yQgd6oSJpdgXvhS24LuJko6c0qvdd123GxnXSnKZZgiDUDZhWxOtWs6mfb8d1d28 QlgidA== -----END CERTIFICATE-----Generated at Sat Apr 26 08:28:02 2025 by rpki-client