$ rpki-client -vvf rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/28BBA728141411F08D862A74C4F9AE02.roa File: 28BBA728141411F08D862A74C4F9AE02.roa (raw, json) Hash identifier: bM0rHlFCkCxESty36KKICwvwa1HEG8pgqoXnhaZGbjI= Subject key identifier: 0C:40:DE:79:65:2A:D4:60:46:8D:D3:F0:EE:DB:38:D3:89:01:97:D8 Certificate issuer: /CN=A915E012/serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Certificate serial: 03 Authority key identifier: F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/28BBA728141411F08D862A74C4F9AE02.roa Signing time: Tue 08 Apr 2025 00:55:27 +0000 ROA not before: Tue 08 Apr 2025 00:55:27 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 9723 IP address blocks: 203.16.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E012, serialNumber=F9B4022C029E7D9E5A634968FDBA4A0E9CD624E4 Validity Not Before: Apr 8 00:55:27 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67f473fe-43a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:11:59:ef:dc:f6:5d:f4:ac:50:ff:7f:3f:dd: 1c:10:33:05:51:15:13:91:84:0d:84:6a:c7:3d:67: 9a:93:d5:8a:b1:f2:0c:69:7e:d9:bf:8b:fb:6b:92: 98:ae:cf:5c:f6:23:59:14:26:90:70:c5:7e:c6:08: 6a:b0:08:bf:08:e7:0f:5d:39:b8:a8:74:de:cc:d4: fb:eb:f2:aa:5e:d8:35:aa:3c:8c:22:a6:0a:e6:db: d6:9c:4c:03:81:8a:0f:96:88:b7:25:0f:6d:bb:c9: a2:bd:02:4a:aa:93:2c:a1:f1:78:40:dc:ef:5f:00: a7:8e:23:48:51:e6:98:42:db:3f:44:cc:31:97:50: 85:9f:fc:e9:a7:3f:3d:b7:cb:da:24:cc:82:a6:8d: b7:86:02:0d:2d:0c:5e:06:7b:a1:17:15:05:da:49: 17:51:fc:98:d6:eb:ca:89:23:68:ad:be:f9:62:97: aa:ca:e2:d1:9e:dd:d2:9f:3f:24:d9:6c:5c:60:57: 1f:22:c3:c0:cc:d1:11:3c:c3:6b:84:04:24:81:90: 6a:52:b8:ba:29:0e:7f:77:dd:c7:b0:22:8c:3e:90: d8:6d:d8:25:14:25:ad:1c:95:ca:87:bd:c2:83:53: fc:9d:95:91:44:64:b0:93:4c:cc:5c:1c:d6:39:e8: dd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:40:DE:79:65:2A:D4:60:46:8D:D3:F0:EE:DB:38:D3:89:01:97:D8 X509v3 Authority Key Identifier: keyid:F9:B4:02:2C:02:9E:7D:9E:5A:63:49:68:FD:BA:4A:0E:9C:D6:24:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-bQCLAKefZ5aY0lo_bpKDpzWJOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E012/B81AA258141311F0B68E7373C4F9AE02/28BBA728141411F08D862A74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.16.25.0/24 Signature Algorithm: sha256WithRSAEncryption 88:ff:39:60:b8:d8:0e:29:2d:20:4e:f5:af:e9:fd:c8:96:71: 1e:04:17:1c:78:61:b3:6f:d2:15:61:5f:b7:e7:b4:7d:35:40: e0:b7:04:1d:35:e0:f0:cf:ad:71:d5:c1:60:7a:60:e9:b3:60: 95:98:e8:15:87:63:d2:ed:f5:ba:c1:e1:33:a1:3c:34:aa:ff: f0:41:c7:e1:26:12:51:95:fe:6f:7a:5e:83:45:4d:76:d4:fe: 79:19:ae:61:b6:75:bd:7b:da:2c:dc:0c:b5:79:a4:35:54:23: 21:c5:b3:69:d6:11:95:6c:7e:ec:1c:62:59:5b:49:00:fd:d3: f5:db:6e:30:87:78:51:d5:bc:d1:26:cd:2d:b1:f3:90:93:9b: 71:06:d4:93:9b:2e:b6:f9:ee:56:6c:10:e7:17:cd:a1:6b:ab: 4d:51:c4:52:49:a6:1a:32:e0:6a:f2:ec:08:61:f0:75:9f:08: b1:c1:c8:f7:c7:1b:e1:2b:c5:33:22:0d:aa:05:f6:51:90:af: a7:2f:bd:26:18:50:eb:32:5d:4b:06:6e:8f:08:24:e3:7d:1c: e7:b1:6b:00:bb:9b:7c:77:34:b6:b6:df:1f:7f:7e:26:3a:b6: 4c:0f:29:fd:fb:72:e4:3c:c9:87:38:00:64:63:d4:ab:a5:81: 31:2c:02:70 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RTAxMjExMC8GA1UEBRMoRjlCNDAyMkMwMjlFN0Q5RTVBNjM0OTY4RkRCQTRBMEU5 Q0Q2MjRFNDAeFw0yNTA0MDgwMDU1MjdaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjQ3M2ZlLTQzYTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVEVnv3PZd9KxQ/38/3RwQMwVRFRORhA2Easc9Z5qT1Yqx8gxpftm/i/trkpiu z1z2I1kUJpBwxX7GCGqwCL8I5w9dObiodN7M1Pvr8qpe2DWqPIwipgrm29acTAOB ig+WiLclD227yaK9Akqqkyyh8XhA3O9fAKeOI0hR5phC2z9EzDGXUIWf/OmnPz23 y9okzIKmjbeGAg0tDF4Ge6EXFQXaSRdR/JjW68qJI2itvvlil6rK4tGe3dKfPyTZ bFxgVx8iw8DM0RE8w2uEBCSBkGpSuLopDn933cewIow+kNht2CUUJa0clcqHvcKD U/ydlZFEZLCTTMxcHNY56N1TAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUDEDeeWUq 1GBGjdPw7ts404kBl9gwHwYDVR0jBBgwFoAU+bQCLAKefZ5aY0lo/bpKDpzWJOQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVFMDEyL0I4MUFBMjU4MTQx MzExRjBCNjhFNzM3M0M0RjlBRTAyLy1iUUNMQUtlZlo1YVkwbG9fYnBLRHB6V0pP US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLWJRQ0xBS2VmWjVhWTBsb19icEtEcHpXSk9RLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RTAxMi9CODFBQTI1ODE0MTMxMUYwQjY4RTczNzNDNEY5QUUwMi8yOEJCQTcyODE0 MTQxMUYwOEQ4NjJBNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsQGTANBgkqhkiG9w0BAQsFAAOCAQEAiP85YLjYDiktIE71 r+n9yJZxHgQXHHhhs2/SFWFft+e0fTVA4LcEHTXg8M+tcdXBYHpg6bNglZjoFYdj 0u31usHhM6E8NKr/8EHH4SYSUZX+b3peg0VNdtT+eRmuYbZ1vXvaLNwMtXmkNVQj IcWzadYRlWx+7BxiWVtJAP3T9dtuMId4UdW80SbNLbHzkJObcQbUk5sutvnuVmwQ 5xfNoWurTVHEUkmmGjLgavLsCGHwdZ8IscHI98cb4SvFMyINqgX2UZCvpy+9JhhQ 6zJdSwZujwgk430c57FrALubfHc0trbfH39+Jjq2TA8p/fty5DzJhzgAZGPUq6WB MSwCcA== -----END CERTIFICATE-----Generated at Sat Apr 26 15:23:52 2025 by rpki-client