$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa File: DC11ACCE182F11EE82A0FC48C4F9AE02.roa (raw, json) Hash identifier: klVQHwft/ej7AJly+6VuenTESngqYPqF3s8Sj7IYp+Y= Subject key identifier: 42:55:99:DB:D2:FE:B7:73:7E:B4:10:F9:DA:89:40:AE:BA:B5:22:DA Certificate issuer: /CN=A915D0AC/serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Certificate serial: 015C Authority key identifier: 86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa Signing time: Wed 09 Apr 2025 03:09:27 +0000 ROA not before: Wed 09 Apr 2025 03:09:27 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132481 IP address blocks: 168.168.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:12:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC, serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Validity Not Before: Apr 9 03:09:27 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5e4e7-94fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:8b:29:ab:b7:c1:02:f9:cb:a6:07:b0:29:47: 21:71:18:d8:e3:3a:8e:ba:72:7b:d6:63:38:3b:cd: 11:d8:75:b0:c9:07:e7:93:87:ae:7c:97:80:59:0e: 9e:2a:ea:e0:1e:8c:c3:4d:b6:5f:3c:05:1e:a0:14: 70:0d:fd:3b:1e:2d:49:43:e9:ae:e1:e2:b0:79:db: 21:b3:d4:d2:f1:c2:89:92:7b:90:a2:26:79:25:68: e9:8d:ae:b7:75:f8:e1:0a:1f:8c:a8:8b:36:b8:c8: e0:ab:4b:38:98:d4:60:45:a6:c1:46:a8:58:78:f5: 2a:f9:79:a6:27:67:09:61:ec:3f:41:53:fa:c2:06: a4:be:0f:f3:a5:6d:6a:73:e7:51:94:9e:a0:e2:c3: 20:86:31:0f:05:70:02:fa:1d:98:25:b2:06:49:90: 03:46:96:fe:20:f7:83:fc:ca:43:e2:12:ea:1a:c4: f2:6a:fa:ae:4d:da:b5:86:11:1a:b2:b4:4e:f1:2a: cc:cd:dc:93:8f:45:4a:3f:f0:67:21:bb:c1:f2:b7: 61:4f:da:32:cf:4f:77:7f:dc:fc:32:bf:02:cc:94: ba:ec:9e:51:75:c4:71:36:f3:45:36:74:4b:65:d6: 4e:eb:ed:0b:31:94:8e:62:e2:7c:e0:21:2f:e7:b8: 16:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:55:99:DB:D2:FE:B7:73:7E:B4:10:F9:DA:89:40:AE:BA:B5:22:DA X509v3 Authority Key Identifier: keyid:86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.168.128.0/20 Signature Algorithm: sha256WithRSAEncryption 10:5e:65:d6:28:9c:90:6b:91:62:84:11:90:80:a5:5b:2f:b0: ec:90:ab:29:ef:ba:7c:94:d8:f2:fb:1f:ae:29:28:cc:9a:7e: b5:6d:bd:69:eb:34:5d:8c:a4:b4:b0:6d:57:43:7f:c1:1f:8f: 65:8c:52:9d:05:8e:d6:2c:7a:2f:6a:93:bf:e1:b6:96:39:4e: 77:69:c8:ac:cf:e6:e3:9b:37:87:fe:01:c8:e5:82:a5:aa:66: 71:3b:fe:d8:57:5f:d6:3f:76:e8:d5:fd:b0:9e:cc:9b:86:d1: 72:49:ce:d7:95:7d:f4:ca:5d:d4:94:29:e3:34:eb:f9:1b:24: 28:48:8b:af:2b:55:e6:c0:05:cd:01:c6:1d:92:57:85:57:48: 6e:e2:33:91:c6:56:e9:d3:a7:3b:f1:4f:e1:78:33:82:1f:71: 80:13:cb:b0:35:73:67:94:44:96:b8:41:bb:2c:2e:ef:ea:db: e6:4f:2d:59:28:ed:05:0e:dc:37:c8:1f:da:96:70:39:a8:c1: 58:b4:ee:28:6e:ec:6b:ca:7e:25:1c:84:2e:68:0e:0f:de:aa: a5:09:a8:68:81:00:9b:cf:44:8b:f3:64:5a:d0:f0:63:34:b4: b7:bc:1d:6a:e4:dd:16:ab:16:33:d9:c1:d9:47:82:87:d9:28: be:31:87:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKDg2Q0FFRjk2NzM5RUY0OUE1MTRGRTlGOTBCNkZFOTUw OUQzQ0M5NTMwHhcNMjUwNDA5MDMwOTI3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1ZTRlNy05NGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIspq7fBAvnLpgewKUchcRjY4zqOunJ71mM4O80R2HWwyQfnk4eufJeAWQ6e KurgHozDTbZfPAUeoBRwDf07Hi1JQ+mu4eKwedshs9TS8cKJknuQoiZ5JWjpja63 dfjhCh+MqIs2uMjgq0s4mNRgRabBRqhYePUq+XmmJ2cJYew/QVP6wgakvg/zpW1q c+dRlJ6g4sMghjEPBXAC+h2YJbIGSZADRpb+IPeD/MpD4hLqGsTyavquTdq1hhEa srRO8SrMzdyTj0VKP/BnIbvB8rdhT9oyz093f9z8Mr8CzJS67J5RdcRxNvNFNnRL ZdZO6+0LMZSOYuJ84CEv57gWvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEJVmdvS /rdzfrQQ+dqJQK66tSLaMB8GA1UdIwQYMBaAFIbK75ZznvSaUU/p+Qtv6VCdPMlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy85QTVGMEUxQTE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi9oc3J2bG5PZTlKcFJULW41QzJfcFVKMDh5 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hzcnZsbk9lOUpwUlQtbjVDMl9wVUowOHlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvOUE1RjBFMUExNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvREMxMUFDQ0Ux ODJGMTFFRTgyQTBGQzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBASoqIAwDQYJKoZIhvcNAQELBQADggEBABBeZdYonJBrkWKE EZCApVsvsOyQqynvunyU2PL7H64pKMyafrVtvWnrNF2MpLSwbVdDf8Efj2WMUp0F jtYsei9qk7/htpY5TndpyKzP5uObN4f+AcjlgqWqZnE7/thXX9Y/dujV/bCezJuG 0XJJzteVffTKXdSUKeM06/kbJChIi68rVebABc0Bxh2SV4VXSG7iM5HGVunTpzvx T+F4M4IfcYATy7A1c2eURJa4QbssLu/q2+ZPLVko7QUO3DfIH9qWcDmowVi07ihu 7GvKfiUchC5oDg/eqqUJqGiBAJvPRIvzZFrQ8GM0tLe8HWrk3RarFjPZwdlHgofZ KL4xh30= -----END CERTIFICATE-----Generated at Sat Apr 26 13:36:13 2025 by rpki-client