$ rpki-client -vvf rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/122C6942D9CE11EEB6EA7F6CC4F9AE02.roa File: 122C6942D9CE11EEB6EA7F6CC4F9AE02.roa (raw, json) Hash identifier: p/CKDmdi14SpnAXglq6STJnT5JwJ1Aph3AE4B1BxPGM= Subject key identifier: A5:33:C5:11:B9:4C:CC:45:9B:8E:CE:2E:6F:82:7B:11:8B:B4:AA:42 Certificate issuer: /CN=A9169BAF/serialNumber=AD161240E97A32D103099BA78A028CD09F5F5B93 Certificate serial: C2 Authority key identifier: AD:16:12:40:E9:7A:32:D1:03:09:9B:A7:8A:02:8C:D0:9F:5F:5B:93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRYSQOl6MtEDCZunigKM0J9fW5M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/122C6942D9CE11EEB6EA7F6CC4F9AE02.roa Signing time: Wed 05 Mar 2025 06:22:49 +0000 ROA not before: Wed 05 Mar 2025 06:22:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152107 IP address blocks: 157.20.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/rRYSQOl6MtEDCZunigKM0J9fW5M.crl rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/rRYSQOl6MtEDCZunigKM0J9fW5M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRYSQOl6MtEDCZunigKM0J9fW5M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169BAF, serialNumber=AD161240E97A32D103099BA78A028CD09F5F5B93 Validity Not Before: Mar 5 06:22:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c7edb8-824c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:52:66:3c:c9:97:70:40:f2:8d:8b:65:16:e8: 7d:cc:e3:53:de:39:77:a4:32:2b:f1:e4:c4:de:39: 32:61:d8:62:d9:4f:a3:3b:58:f5:95:11:1a:f1:df: 26:04:96:6a:bc:df:b9:da:4f:ea:22:88:18:28:dd: ad:b4:7c:43:d1:81:b0:c6:f0:ec:60:e8:0b:28:79: f6:cc:14:a5:0d:c5:d8:9d:5e:60:92:af:5c:29:8d: 92:39:23:29:ab:94:72:73:92:d4:9a:e0:da:6a:85: 06:6f:0b:f7:96:1b:31:9b:9a:27:5c:c9:0a:f2:13: e6:38:2e:dd:ad:d6:f8:df:b1:79:4f:09:9f:3b:a0: 59:de:0c:3c:d5:ca:e3:30:39:aa:ba:9b:92:bf:a9: 70:a8:65:6d:71:3c:33:5b:86:d1:9e:b8:9f:16:50: f8:2d:9a:bd:73:5a:ed:65:50:73:cd:1d:3e:16:b4: 9d:9c:f6:bf:52:a7:1b:07:11:b6:e4:db:6f:6b:a0: d4:6f:cf:c7:c8:c1:fc:5f:5d:3b:2b:39:b9:76:4c: fe:b1:15:63:1d:36:99:ec:0d:c9:b2:9a:04:9a:db: b1:dd:06:6b:eb:c5:50:98:1f:3f:89:01:1b:96:93: 25:49:4f:33:97:49:8f:c7:24:a1:f7:9b:3f:dd:69: 79:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:33:C5:11:B9:4C:CC:45:9B:8E:CE:2E:6F:82:7B:11:8B:B4:AA:42 X509v3 Authority Key Identifier: keyid:AD:16:12:40:E9:7A:32:D1:03:09:9B:A7:8A:02:8C:D0:9F:5F:5B:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/rRYSQOl6MtEDCZunigKM0J9fW5M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rRYSQOl6MtEDCZunigKM0J9fW5M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169BAF/AEF70490D9BE11EEAC5BD36DC4F9AE02/122C6942D9CE11EEB6EA7F6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.143.0/24 Signature Algorithm: sha256WithRSAEncryption 97:73:8b:50:3e:0f:ca:d8:9b:6f:da:e5:1c:5c:c8:89:da:66: 84:4f:19:a6:04:0b:0a:7e:09:a3:95:14:bc:bd:2e:92:8c:84: 65:1f:f7:05:58:1a:21:d4:52:42:7b:fb:96:27:b9:ef:0b:9c: f3:da:1d:40:7a:46:b0:16:d6:c5:25:30:e7:d8:2c:ef:e2:35: 3d:40:83:ba:10:33:ff:f3:b2:2f:06:8d:fa:66:df:99:10:b5: db:09:38:0b:e2:bf:e1:31:21:ea:79:76:30:22:7b:eb:fd:dd: 08:22:5a:72:73:30:c3:6a:97:a9:18:cc:1e:f6:8d:e2:22:c2: e2:73:c8:7d:04:a1:97:06:23:83:19:4b:19:8e:6f:41:4b:ce: d2:b9:fb:70:00:1a:7a:63:b7:8d:8b:04:f7:85:87:af:34:de: c8:09:f5:74:d5:15:5e:36:ea:03:bb:fe:f8:e8:48:03:29:58: 65:46:bd:d3:2f:73:c7:e6:bd:5c:6a:8c:25:5a:7c:a7:4a:4c: a4:92:30:6b:93:bf:3d:e7:e9:0e:11:eb:25:a8:3a:a1:79:3e: ca:a3:7d:51:e7:93:b8:27:fa:14:0a:e3:43:0d:cf:57:88:37: 5a:b7:d4:21:3d:04:e7:5a:43:15:32:65:eb:20:78:11:e5:29: dc:78:e0:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlCQUYxMTAvBgNVBAUTKEFEMTYxMjQwRTk3QTMyRDEwMzA5OUJBNzhBMDI4Q0Qw OUY1RjVCOTMwHhcNMjUwMzA1MDYyMjQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3ZWRiOC04MjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FJmPMmXcEDyjYtlFuh9zONT3jl3pDIr8eTE3jkyYdhi2U+jO1j1lREa8d8m BJZqvN+52k/qIogYKN2ttHxD0YGwxvDsYOgLKHn2zBSlDcXYnV5gkq9cKY2SOSMp q5Ryc5LUmuDaaoUGbwv3lhsxm5onXMkK8hPmOC7drdb437F5TwmfO6BZ3gw81crj MDmqupuSv6lwqGVtcTwzW4bRnrifFlD4LZq9c1rtZVBzzR0+FrSdnPa/UqcbBxG2 5Ntva6DUb8/HyMH8X107Kzm5dkz+sRVjHTaZ7A3JspoEmtux3QZr68VQmB8/iQEb lpMlSU8zl0mPxySh95s/3Wl5PQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKUzxRG5 TMxFm47OLm+CexGLtKpCMB8GA1UdIwQYMBaAFK0WEkDpejLRAwmbp4oCjNCfX1uT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUJBRi9BRUY3MDQ5MEQ5 QkUxMUVFQUM1QkQzNkRDNEY5QUUwMi9yUllTUU9sNk10RURDWnVuaWdLTTBKOWZX NU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JSWVNRT2w2TXRFRENadW5pZ0tNMEo5Zlc1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlCQUYvQUVGNzA0OTBEOUJFMTFFRUFDNUJEMzZEQzRGOUFFMDIvMTIyQzY5NDJE OUNFMTFFRUI2RUE3RjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFI8wDQYJKoZIhvcNAQELBQADggEBAJdzi1A+D8rYm2/a 5RxcyInaZoRPGaYECwp+CaOVFLy9LpKMhGUf9wVYGiHUUkJ7+5Ynue8LnPPaHUB6 RrAW1sUlMOfYLO/iNT1Ag7oQM//zsi8Gjfpm35kQtdsJOAviv+ExIep5djAie+v9 3QgiWnJzMMNql6kYzB72jeIiwuJzyH0EoZcGI4MZSxmOb0FLztK5+3AAGnpjt42L BPeFh6803sgJ9XTVFV426gO7/vjoSAMpWGVGvdMvc8fmvVxqjCVafKdKTKSSMGuT vz3n6Q4R6yWoOqF5PsqjfVHnk7gn+hQK40MNz1eIN1q31CE9BOdaQxUyZesgeBHl Kdx44Fk= -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:49 2025 by rpki-client