$ rpki-client -vvf rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/1B2031C645B911EFB15BD970C4F9AE02.roa File: 1B2031C645B911EFB15BD970C4F9AE02.roa (raw, json) Hash identifier: fy81kcQtJyhVO+fvODwc2WOxwPZRecsJs8C7sFTUZrw= Subject key identifier: 98:FB:4A:3A:9C:37:B4:EB:A3:0D:77:8D:77:74:9B:E1:B4:67:23:BD Certificate issuer: /CN=A9158D5B/serialNumber=CED0ADB99F803F441F50DCCB83CEE72076DC3288 Certificate serial: 60 Authority key identifier: CE:D0:AD:B9:9F:80:3F:44:1F:50:DC:CB:83:CE:E7:20:76:DC:32:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ztCtuZ-AP0QfUNzLg87nIHbcMog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/1B2031C645B911EFB15BD970C4F9AE02.roa Signing time: Thu 09 Jan 2025 05:20:40 +0000 ROA not before: Thu 09 Jan 2025 05:20:40 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152317 IP address blocks: 157.10.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.crl rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ztCtuZ-AP0QfUNzLg87nIHbcMog.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158D5B, serialNumber=CED0ADB99F803F441F50DCCB83CEE72076DC3288 Validity Not Before: Jan 9 05:20:40 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=677f5ca8-f665 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:88:2c:5a:48:e7:17:76:54:3e:58:76:53:a9: 05:1a:95:43:db:08:49:53:de:10:15:e1:b6:16:8f: 04:b7:dd:2a:d6:bc:27:15:e0:8a:85:29:50:32:26: d5:85:81:a5:75:e3:4e:4b:5d:8e:da:b5:ae:63:5b: 4e:22:00:86:02:fb:f3:c1:9b:91:87:2d:ce:e6:5e: 5f:b9:f7:60:e5:1b:22:88:f3:fa:15:90:9e:49:12: 17:8f:ef:71:e8:6e:f4:80:ed:23:29:96:39:97:99: 35:43:60:1b:6e:9d:14:2e:61:49:b2:35:8d:2e:d1: c8:a4:ca:dd:06:77:a8:e1:54:bc:0e:df:89:bf:0d: 9e:81:7c:79:1f:8e:26:32:11:18:c7:91:40:41:dd: 18:bb:57:ce:1c:d2:6b:51:28:1d:48:98:12:20:59: 71:7a:7d:30:10:c1:46:b6:cb:55:05:e0:43:7c:bc: a6:96:2a:df:91:f1:f5:2d:9c:9a:32:0a:2f:5e:64: 4b:ed:d8:a5:5e:fe:fb:95:e2:d2:bf:98:ea:b3:b6: 5f:9c:f1:bf:f3:64:7f:83:73:4f:ad:a0:0a:37:d9: 9d:28:d6:e0:51:7b:1a:b7:88:41:b9:4c:9b:29:a7: 65:a1:8f:e1:2d:58:9f:4f:8b:c3:28:6f:5a:65:ad: 09:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:FB:4A:3A:9C:37:B4:EB:A3:0D:77:8D:77:74:9B:E1:B4:67:23:BD X509v3 Authority Key Identifier: keyid:CE:D0:AD:B9:9F:80:3F:44:1F:50:DC:CB:83:CE:E7:20:76:DC:32:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/ztCtuZ-AP0QfUNzLg87nIHbcMog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ztCtuZ-AP0QfUNzLg87nIHbcMog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158D5B/7CC8F19E45B711EFA6DFD032C4F9AE02/1B2031C645B911EFB15BD970C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.144.0/23 Signature Algorithm: sha256WithRSAEncryption 03:aa:e0:fd:eb:5a:3f:fc:9f:f5:c9:18:4d:9c:0b:e0:ae:2d: 84:3a:20:f3:15:34:68:a9:53:ca:4f:e5:b6:ca:bc:5d:34:03: 19:1e:ea:8c:1d:36:01:da:2d:f4:68:79:cf:ff:9d:d8:dc:b7: 71:e5:96:4a:32:74:be:bf:b2:c1:fa:24:81:e5:23:94:6f:41: 77:e8:1d:b5:53:c0:20:88:03:3c:80:f5:53:6e:c1:cc:62:78: b1:dd:21:e2:b8:72:0c:a0:44:ed:9c:d0:94:cb:ff:e6:c4:6d: 70:c3:89:6b:3d:6c:c5:68:2b:54:b1:5a:34:f9:1c:35:bb:93: ae:de:94:76:d2:d8:b7:ae:e7:ac:f1:ce:85:ab:e4:f3:de:24: f9:d5:3b:f4:de:3b:0a:c3:47:3e:fc:29:9b:a2:5a:75:23:a1: 91:86:6a:ec:91:b9:a4:85:8b:0c:c8:f7:6e:4a:0a:1f:4d:57: c0:63:15:fd:be:5c:3f:25:4d:f5:17:05:33:8a:59:c7:b0:e4: a9:f3:92:e2:6e:1c:44:fa:db:00:7d:68:4c:ca:19:e5:58:8f: 82:c0:84:45:67:cc:14:6a:d2:5e:6b:01:80:82:59:07:7b:f0: 09:21:95:b6:40:02:0d:0e:4f:38:ca:ec:67:82:52:7d:9e:6c: c0:b5:35:c3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OEQ1QjExMC8GA1UEBRMoQ0VEMEFEQjk5RjgwM0Y0NDFGNTBEQ0NCODNDRUU3MjA3 NkRDMzI4ODAeFw0yNTAxMDkwNTIwNDBaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2Y1Y2E4LWY2NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeiCxaSOcXdlQ+WHZTqQUalUPbCElT3hAV4bYWjwS33SrWvCcV4IqFKVAyJtWF gaV1405LXY7ata5jW04iAIYC+/PBm5GHLc7mXl+592DlGyKI8/oVkJ5JEheP73Ho bvSA7SMpljmXmTVDYBtunRQuYUmyNY0u0cikyt0Gd6jhVLwO34m/DZ6BfHkfjiYy ERjHkUBB3Ri7V84c0mtRKB1ImBIgWXF6fTAQwUa2y1UF4EN8vKaWKt+R8fUtnJoy Ci9eZEvt2KVe/vuV4tK/mOqztl+c8b/zZH+Dc0+toAo32Z0o1uBRexq3iEG5TJsp p2Whj+EtWJ9Pi8Mob1plrQndAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmPtKOpw3 tOujDXeNd3Sb4bRnI70wHwYDVR0jBBgwFoAUztCtuZ+AP0QfUNzLg87nIHbcMogw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4RDVCLzdDQzhGMTlFNDVC NzExRUZBNkRGRDAzMkM0RjlBRTAyL3p0Q3R1Wi1BUDBRZlVOekxnODduSUhiY01v Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvenRDdHVaLUFQMFFmVU56TGc4N25JSGJjTW9nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEQ1Qi83Q0M4RjE5RTQ1QjcxMUVGQTZERkQwMzJDNEY5QUUwMi8xQjIwMzFDNjQ1 QjkxMUVGQjE1QkQ5NzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAZ0KkDANBgkqhkiG9w0BAQsFAAOCAQEAA6rg/etaP/yf9ckY TZwL4K4thDog8xU0aKlTyk/ltsq8XTQDGR7qjB02Adot9Gh5z/+d2Ny3ceWWSjJ0 vr+ywfokgeUjlG9Bd+gdtVPAIIgDPID1U27BzGJ4sd0h4rhyDKBE7ZzQlMv/5sRt cMOJaz1sxWgrVLFaNPkcNbuTrt6UdtLYt67nrPHOhavk894k+dU79N47CsNHPvwp m6JadSOhkYZq7JG5pIWLDMj3bkoKH01XwGMV/b5cPyVN9RcFM4pZx7DkqfOS4m4c RPrbAH1oTMoZ5ViPgsCERWfMFGrSXmsBgIJZB3vwCSGVtkACDQ5POMrsZ4JSfZ5s wLU1ww== -----END CERTIFICATE-----Generated at Sat Apr 26 12:32:49 2025 by rpki-client