$ rpki-client -vvf rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/DE917E7016C511F085B4FF6FC4F9AE02.roa File: DE917E7016C511F085B4FF6FC4F9AE02.roa (raw, json) Hash identifier: gTUMCdfGUWrs1q6ayMOBwf36vGkRjWbK2xqTfFcnmzw= Subject key identifier: 27:71:E2:5A:35:32:E4:9A:22:CB:D0:A3:40:BF:C6:ED:48:9F:D8:18 Certificate issuer: /CN=A915B551/serialNumber=2FDD3804D6458EAF1CB3917B5E332FBA5C715F91 Certificate serial: 02 Authority key identifier: 2F:DD:38:04:D6:45:8E:AF:1C:B3:91:7B:5E:33:2F:BA:5C:71:5F:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/DE917E7016C511F085B4FF6FC4F9AE02.roa Signing time: Fri 11 Apr 2025 11:12:35 +0000 ROA not before: Fri 11 Apr 2025 11:12:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153738 IP address blocks: 163.223.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.crl rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:08:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B551, serialNumber=2FDD3804D6458EAF1CB3917B5E332FBA5C715F91 Validity Not Before: Apr 11 11:12:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f8f922-17cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8c:7f:56:69:26:02:3b:d9:ac:89:d5:3c:f0: b0:1f:30:af:82:62:19:f7:ed:23:05:8d:27:7d:15: 51:97:84:7b:ac:e1:60:a3:a9:77:cd:bc:c6:5d:8a: 3a:dd:04:b3:36:e8:c0:65:48:8d:20:95:2e:7d:c8: 4d:dc:91:8b:80:01:29:d2:d1:30:f6:70:7c:69:d5: 83:65:12:a9:42:d9:dd:4d:46:48:dd:16:11:f3:33: de:0e:ef:68:8f:b9:01:81:40:c4:66:42:c5:9a:03: ef:bf:5c:a3:19:fd:27:10:34:a9:56:4e:55:9b:71: 20:91:05:1a:45:ec:74:fa:56:23:f0:6f:6d:d9:79: a4:93:57:ad:48:04:0c:c6:c0:7e:27:41:bf:c6:d2: 0a:f3:25:a7:c2:66:99:8d:be:cd:7e:10:57:41:a7: 73:03:67:fd:93:e2:e1:b5:65:83:2a:14:d8:ce:42: e1:60:15:07:46:e1:1f:22:dc:39:f3:f8:1a:8d:ea: 9d:35:24:d4:e7:ad:a5:d1:4d:b5:0f:0d:fd:30:18: b7:ca:8d:9b:0b:3a:bc:1c:06:de:71:c6:5f:5f:3e: 47:2c:a9:67:45:01:3d:30:c8:87:fd:ec:88:fa:55: 0f:31:75:b9:76:e6:10:ce:9f:e1:5b:80:ee:c2:6e: 1e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:71:E2:5A:35:32:E4:9A:22:CB:D0:A3:40:BF:C6:ED:48:9F:D8:18 X509v3 Authority Key Identifier: keyid:2F:DD:38:04:D6:45:8E:AF:1C:B3:91:7B:5E:33:2F:BA:5C:71:5F:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/L904BNZFjq8cs5F7XjMvulxxX5E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L904BNZFjq8cs5F7XjMvulxxX5E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B551/5AB1920216C511F08815F46EC4F9AE02/DE917E7016C511F085B4FF6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.202.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:8b:77:ab:e2:e0:19:ce:7d:93:07:28:a8:99:eb:be:9d:bc: 84:33:6a:fe:96:9e:ca:44:f0:19:5d:f2:eb:0d:21:7b:a6:09: 25:5a:d6:bf:01:d0:b1:c9:4d:78:49:56:86:54:f3:a2:55:e7: 1f:ce:bb:51:c9:10:c8:b6:77:c3:ef:b3:8c:f3:b5:be:7a:55: ba:bb:b2:55:22:13:85:2a:0f:c9:35:79:98:26:dd:38:81:52: 14:33:63:2f:75:f1:b2:06:70:cf:f2:51:f7:15:6d:09:f8:f6: 4a:ff:90:1e:0e:79:f7:9a:a9:d3:15:36:c9:0a:79:7a:11:f2: 24:9e:f3:60:4e:6e:75:9a:c9:4a:9e:99:a1:85:e6:87:23:ee: 87:d4:44:3f:7a:5c:84:9b:3a:b4:9e:05:59:cd:5c:b4:24:c3: ea:f4:39:9a:55:c6:06:02:24:19:e2:ca:80:21:03:b5:fe:17: c6:74:b1:80:1d:8e:df:91:6b:30:88:75:db:5a:f9:79:22:ea: 69:8f:c9:5d:46:5a:00:79:a5:49:9b:39:4b:36:f0:94:06:10: 55:fe:19:d7:43:ea:88:e6:0f:6a:ea:5a:5d:b7:3a:71:4e:39: b7:98:ef:11:e7:9d:0e:e6:e3:08:45:9e:13:8a:0c:61:a2:28: 02:db:29:0d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 QjU1MTExMC8GA1UEBRMoMkZERDM4MDRENjQ1OEVBRjFDQjM5MTdCNUUzMzJGQkE1 QzcxNUY5MTAeFw0yNTA0MTExMTEyMzVaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjhmOTIyLTE3Y2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3jH9WaSYCO9msidU88LAfMK+CYhn37SMFjSd9FVGXhHus4WCjqXfNvMZdijrd BLM26MBlSI0glS59yE3ckYuAASnS0TD2cHxp1YNlEqlC2d1NRkjdFhHzM94O72iP uQGBQMRmQsWaA++/XKMZ/ScQNKlWTlWbcSCRBRpF7HT6ViPwb23ZeaSTV61IBAzG wH4nQb/G0grzJafCZpmNvs1+EFdBp3MDZ/2T4uG1ZYMqFNjOQuFgFQdG4R8i3Dnz +BqN6p01JNTnraXRTbUPDf0wGLfKjZsLOrwcBt5xxl9fPkcsqWdFAT0wyIf97Ij6 VQ8xdbl25hDOn+FbgO7Cbh7HAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJ3HiWjUy 5Joiy9CjQL/G7Uif2BgwHwYDVR0jBBgwFoAUL904BNZFjq8cs5F7XjMvulxxX5Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVCNTUxLzVBQjE5MjAyMTZD NTExRjA4ODE1RjQ2RUM0RjlBRTAyL0w5MDRCTlpGanE4Y3M1RjdYak12dWx4eFg1 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTDkwNEJOWkZqcThjczVGN1hqTXZ1bHh4WDVFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 QjU1MS81QUIxOTIwMjE2QzUxMUYwODgxNUY0NkVDNEY5QUUwMi9ERTkxN0U3MDE2 QzUxMUYwODVCNEZGNkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKPfyjANBgkqhkiG9w0BAQsFAAOCAQEAfIt3q+LgGc59kwco qJnrvp28hDNq/paeykTwGV3y6w0he6YJJVrWvwHQsclNeElWhlTzolXnH867UckQ yLZ3w++zjPO1vnpVuruyVSIThSoPyTV5mCbdOIFSFDNjL3XxsgZwz/JR9xVtCfj2 Sv+QHg5595qp0xU2yQp5ehHyJJ7zYE5udZrJSp6ZoYXmhyPuh9REP3pchJs6tJ4F Wc1ctCTD6vQ5mlXGBgIkGeLKgCEDtf4XxnSxgB2O35FrMIh121r5eSLqaY/JXUZa AHmlSZs5SzbwlAYQVf4Z10PqiOYPaupaXbc6cU45t5jvEeedDubjCEWeE4oMYaIo AtspDQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:19:05 2025 by rpki-client