$ rpki-client -vvf rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/C0FB557E03F211F08D0A9566C4F9AE02.roa File: C0FB557E03F211F08D0A9566C4F9AE02.roa (raw, json) Hash identifier: Dlt7c62t0hDVUYoo7gZi00Rxaa3RUeJ2v+Dxv4EEGtE= Subject key identifier: E7:84:12:9F:8A:FD:4B:B5:2A:73:B3:9A:62:E3:35:F4:8C:50:DF:1A Certificate issuer: /CN=A915201D/serialNumber=DB1B96E05A98D828BF57EA0A7155AF1D33223E2C Certificate serial: 04 Authority key identifier: DB:1B:96:E0:5A:98:D8:28:BF:57:EA:0A:71:55:AF:1D:33:22:3E:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/C0FB557E03F211F08D0A9566C4F9AE02.roa Signing time: Tue 18 Mar 2025 12:16:01 +0000 ROA not before: Tue 18 Mar 2025 12:16:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 8075 IP address blocks: 203.21.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.crl rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915201D, serialNumber=DB1B96E05A98D828BF57EA0A7155AF1D33223E2C Validity Not Before: Mar 18 12:16:01 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67d96400-0696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:df:c8:e2:78:6e:e1:68:ed:86:bb:ac:51:f6: 2a:76:58:e2:96:a8:9d:54:57:96:4f:ef:d6:75:c7: f5:ce:fd:93:c0:62:8e:92:5d:3a:b9:a0:0d:85:cb: b5:22:5b:d5:9e:79:6a:29:03:f1:92:f0:24:3c:db: 40:d6:14:94:e5:e9:41:61:48:76:29:85:22:8a:39: 5d:91:01:69:7d:9d:81:83:dd:b9:e7:c0:36:b8:0c: 07:6b:46:62:bc:5f:c4:e6:3e:f6:9c:63:53:31:aa: 21:49:fc:15:02:02:77:99:d4:83:7f:f6:7b:b4:1a: 92:28:89:52:6f:c4:8e:a9:25:0b:6e:61:0e:d3:5b: 57:7b:de:77:13:fd:d3:2e:12:0c:c6:02:12:2c:f8: 63:6a:1b:09:06:74:56:5e:05:82:94:86:82:f2:52: fd:6f:fc:c3:70:32:04:26:5c:24:d1:a9:5e:87:18: c6:7d:63:7c:19:8d:1d:9c:d1:69:88:08:56:7c:f3: 8e:a8:dd:a4:6e:7a:aa:34:83:c5:72:8b:d6:f4:3f: 4f:3c:02:5d:d2:09:2c:68:40:0f:82:73:47:e2:87: c5:53:63:93:9b:73:9a:9c:31:7e:81:26:a2:13:57: b0:a8:83:b9:a7:65:cb:7e:22:1e:fc:df:73:72:92: 94:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:84:12:9F:8A:FD:4B:B5:2A:73:B3:9A:62:E3:35:F4:8C:50:DF:1A X509v3 Authority Key Identifier: keyid:DB:1B:96:E0:5A:98:D8:28:BF:57:EA:0A:71:55:AF:1D:33:22:3E:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2xuW4FqY2Ci_V-oKcVWvHTMiPiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915201D/85B8C29003F111F0AB85EC52C4F9AE02/C0FB557E03F211F08D0A9566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.15.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:8d:84:7a:b4:e2:8b:f0:04:b2:f7:e7:2f:dd:70:7f:4d:00: e7:ac:e5:24:77:bd:0c:7b:f2:58:04:f1:2e:a7:31:92:83:74: e1:00:71:c9:c1:a4:c7:47:ef:b6:29:8e:bc:60:96:08:e8:2d: e3:07:6e:e0:1c:da:9d:9c:62:f8:7f:60:a8:71:e3:b3:55:bf: 0a:c5:c0:90:a8:5b:19:8f:a6:1f:70:75:ac:5b:47:ff:4c:0f: 53:2f:27:90:f5:3d:25:d7:5c:5d:1b:5a:43:5b:9b:fc:29:2d: dd:75:5f:85:06:49:d0:e6:75:f2:24:ac:27:6f:1a:7d:10:73: 5a:47:68:23:ea:fb:c6:f0:aa:37:d4:39:50:f5:59:d4:61:00: 5f:74:78:b0:c8:90:d9:0d:fb:06:c1:03:56:ed:5d:19:0e:84: 8a:4b:9c:76:97:a9:35:6a:63:9c:7c:27:c5:59:1b:b0:ef:ab: bb:f5:1f:78:4c:25:e0:ce:fe:67:09:a2:83:68:e9:8c:55:fd: e9:8d:fb:28:62:c1:11:fc:eb:8d:ce:d9:b6:e7:2a:b9:bc:86: f3:3b:3c:2d:fd:75:4e:de:a5:c5:d2:70:cd:e5:99:18:6e:a8: a6:fd:24:dc:90:e3:06:66:7c:52:f6:f3:9a:d8:b3:15:af:4c: e9:2e:b7:ad -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjAxRDExMC8GA1UEBRMoREIxQjk2RTA1QTk4RDgyOEJGNTdFQTBBNzE1NUFGMUQz MzIyM0UyQzAeFw0yNTAzMTgxMjE2MDFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDk2NDAwLTA2OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ38jieG7haO2Gu6xR9ip2WOKWqJ1UV5ZP79Z1x/XO/ZPAYo6SXTq5oA2Fy7Ui W9WeeWopA/GS8CQ820DWFJTl6UFhSHYphSKKOV2RAWl9nYGD3bnnwDa4DAdrRmK8 X8TmPvacY1MxqiFJ/BUCAneZ1IN/9nu0GpIoiVJvxI6pJQtuYQ7TW1d73ncT/dMu EgzGAhIs+GNqGwkGdFZeBYKUhoLyUv1v/MNwMgQmXCTRqV6HGMZ9Y3wZjR2c0WmI CFZ8846o3aRueqo0g8Vyi9b0P088Al3SCSxoQA+Cc0fih8VTY5Obc5qcMX6BJqIT V7Cog7mnZct+Ih7833NykpQTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU54QSn4r9 S7Uqc7OaYuM19IxQ3xowHwYDVR0jBBgwFoAU2xuW4FqY2Ci/V+oKcVWvHTMiPiww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyMDFELzg1QjhDMjkwMDNG MTExRjBBQjg1RUM1MkM0RjlBRTAyLzJ4dVc0RnFZMkNpX1Ytb0tjVld2SFRNaVBp dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnh1VzRGcVkyQ2lfVi1vS2NWV3ZIVE1pUGl3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjAxRC84NUI4QzI5MDAzRjExMUYwQUI4NUVDNTJDNEY5QUUwMi9DMEZCNTU3RTAz RjIxMUYwOEQwQTk1NjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsVDzANBgkqhkiG9w0BAQsFAAOCAQEAfI2EerTii/AEsvfn L91wf00A56zlJHe9DHvyWATxLqcxkoN04QBxycGkx0fvtimOvGCWCOgt4wdu4Bza nZxi+H9gqHHjs1W/CsXAkKhbGY+mH3B1rFtH/0wPUy8nkPU9JddcXRtaQ1ub/Ckt 3XVfhQZJ0OZ18iSsJ28afRBzWkdoI+r7xvCqN9Q5UPVZ1GEAX3R4sMiQ2Q37BsED Vu1dGQ6EikucdpepNWpjnHwnxVkbsO+ru/UfeEwl4M7+Zwmig2jpjFX96Y37KGLB Efzrjc7ZtucqubyG8zs8Lf11Tt6lxdJwzeWZGG6opv0k3JDjBmZ8UvbzmtizFa9M 6S63rQ== -----END CERTIFICATE-----Generated at Sat Apr 26 08:25:53 2025 by rpki-client