$ rpki-client -vvf rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/2857C712141411F08D862A74C4F9AE02.roa File: 2857C712141411F08D862A74C4F9AE02.roa (raw, json) Hash identifier: q/LJ7SPvTkUYwfSCfg1Hilqw1bbJVMWb831qXikLEmE= Subject key identifier: 61:75:B5:E3:10:02:09:DA:5F:3F:AF:43:E2:82:49:07:FD:BF:A5:D6 Certificate issuer: /CN=A915E012/serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Certificate serial: 02 Authority key identifier: F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/2857C712141411F08D862A74C4F9AE02.roa Signing time: Tue 08 Apr 2025 00:55:26 +0000 ROA not before: Tue 08 Apr 2025 00:55:26 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 23652 IP address blocks: 203.16.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E012, serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Validity Not Before: Apr 8 00:55:26 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67f473fd-e57d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:26:3c:7a:ef:2c:60:64:94:3c:b2:2e:8b:79: 33:83:7b:3e:6e:3e:d0:5c:1f:2d:d9:24:0b:4c:ea: 96:d8:0c:2e:d7:95:cf:59:6d:5e:55:89:85:ea:ba: 2d:0f:d1:28:0a:99:81:37:48:11:e3:b5:0a:ee:ac: 5c:8f:c4:a3:52:a5:64:3c:30:d0:ee:56:1a:47:58: 77:46:fa:e4:f8:34:f1:3d:a3:d1:b6:2a:51:85:40: bf:d0:fa:2f:f7:2d:54:13:48:7a:4b:81:38:c2:96: d9:9b:99:53:1c:71:2a:9b:1d:48:00:d5:16:fc:d4: 27:a9:2e:28:4a:a8:7c:b7:57:fb:cd:77:19:53:21: 3a:16:73:be:9e:65:32:cc:e3:e9:0c:5d:57:af:85: 4c:d4:c8:40:76:29:68:8e:d4:c8:5a:3c:24:c5:63: 08:08:8f:69:48:5c:a2:11:ec:15:a8:d7:a9:73:94: b2:40:41:2f:4a:06:bc:4d:d1:98:c5:c5:0c:af:62: e1:80:a9:06:29:2e:ba:fc:7f:74:ea:8e:21:81:a8: 28:0c:95:84:84:b1:09:55:53:d7:0f:94:52:c1:6c: e9:22:55:13:9e:3d:89:8e:26:a2:a6:f0:d6:ad:60: 43:bd:9d:d6:8f:ed:d2:e6:3f:7e:41:99:4b:7b:bb: 65:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:75:B5:E3:10:02:09:DA:5F:3F:AF:43:E2:82:49:07:FD:BF:A5:D6 X509v3 Authority Key Identifier: keyid:F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/2857C712141411F08D862A74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.16.25.0/24 Signature Algorithm: sha256WithRSAEncryption bb:88:6b:c7:fa:19:49:5b:30:d6:e9:49:97:29:57:16:b9:68: 94:2e:46:53:26:39:b2:24:63:1d:8b:99:a3:d3:fa:64:57:ec: c1:33:da:9f:8f:9f:1a:cf:32:54:c4:35:9e:f2:d9:58:aa:b1: 19:29:64:e1:35:b1:2c:0b:cf:44:5f:01:5a:fc:27:1b:d8:6a: 80:fd:bf:81:2d:c3:cd:0f:5a:ed:da:5d:eb:f4:be:89:72:e3: 69:33:9c:24:9b:64:01:71:d1:3c:0c:a6:e4:d5:b9:27:af:b4: 6d:ab:be:78:a7:ea:ec:bb:8f:25:a3:c1:47:2c:44:1f:5f:79: 18:c8:44:70:68:27:fb:3d:67:f7:f8:a3:1c:d8:a1:7b:60:fa: ff:64:f4:20:6e:fb:82:48:d0:4b:84:ee:e9:2d:35:44:6d:66: 17:ec:ee:4d:28:79:5a:c1:fd:30:8d:07:bb:75:51:0a:68:af: ee:7c:d4:12:7c:60:c2:93:e1:bc:ab:c3:ed:d3:21:d6:0b:6c: 80:f6:5c:2d:c9:0d:5f:3a:92:9b:32:e4:cb:e1:36:0d:2f:b4: d1:df:7a:f6:4e:ca:d4:e9:d1:65:12:c7:60:15:a9:dc:ea:97: 58:96:d9:30:88:44:53:d1:bd:20:58:8c:07:57:00:25:87:82: b6:13:ce:e0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RTAxMjExMC8GA1UEBRMoRjlCNDAyMkMwMjlFN0Q5RTVBNjM0OTY4RkRCQTRBMEU5 Q0Q2MjRFNDAeFw0yNTA0MDgwMDU1MjZaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjQ3M2ZkLWU1N2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkJjx67yxgZJQ8si6LeTODez5uPtBcHy3ZJAtM6pbYDC7Xlc9ZbV5ViYXqui0P 0SgKmYE3SBHjtQrurFyPxKNSpWQ8MNDuVhpHWHdG+uT4NPE9o9G2KlGFQL/Q+i/3 LVQTSHpLgTjCltmbmVMccSqbHUgA1Rb81CepLihKqHy3V/vNdxlTIToWc76eZTLM 4+kMXVevhUzUyEB2KWiO1MhaPCTFYwgIj2lIXKIR7BWo16lzlLJAQS9KBrxN0ZjF xQyvYuGAqQYpLrr8f3TqjiGBqCgMlYSEsQlVU9cPlFLBbOkiVROePYmOJqKm8Nat YEO9ndaP7dLmP35BmUt7u2XbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYXW14xAC CdpfP69D4oJJB/2/pdYwHwYDVR0jBBgwFoAU+bQCLAKefZ5aY0lo/bpKDpzWJOQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFMDEyL0I4MUFBMjU4MTQx MzExRjBCNjhFNzM3M0M0RjlBRTAyLy1iUUNMQUtlZlo1YVkwbG9fYnBLRHB6V0pP US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWJRQ0xBS2VmWjVhWTBsb19icEtEcHpXSk9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAxMi9CODFBQTI1ODE0MTMxMUYwQjY4RTczNzNDNEY5QUUwMi8yODU3QzcxMjE0 MTQxMUYwOEQ4NjJBNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsQGTANBgkqhkiG9w0BAQsFAAOCAQEAu4hrx/oZSVsw1ulJ lylXFrlolC5GUyY5siRjHYuZo9P6ZFfswTPan4+fGs8yVMQ1nvLZWKqxGSlk4TWx LAvPRF8BWvwnG9hqgP2/gS3DzQ9a7dpd6/S+iXLjaTOcJJtkAXHRPAym5NW5J6+0 bau+eKfq7LuPJaPBRyxEH195GMhEcGgn+z1n9/ijHNihe2D6/2T0IG77gkjQS4Tu 6S01RG1mF+zuTSh5WsH9MI0Hu3VRCmiv7nzUEnxgwpPhvKvD7dMh1gtsgPZcLckN XzqSmzLky+E2DS+00d969k7K1OnRZRLHYBWp3OqXWJbZMIhEU9G9IFiMB1cAJYeC thPO4A== -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:35 2025 by rpki-client