$ rpki-client -vvf rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/4FB5C8F4C43D11EE973ADE48C4F9AE02.roa File: 4FB5C8F4C43D11EE973ADE48C4F9AE02.roa (raw, json) Hash identifier: 1zjPjAAMi/TzSsloil5toyL9PUAMXEmH20tRK4X3XV8= Subject key identifier: EB:7F:02:18:6A:B5:B8:EC:9A:03:3E:45:A3:81:8B:D3:89:95:1C:50 Certificate issuer: /CN=A916C2B9/serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Certificate serial: CE Authority key identifier: 70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/4FB5C8F4C43D11EE973ADE48C4F9AE02.roa Signing time: Wed 05 Mar 2025 06:22:35 +0000 ROA not before: Wed 05 Mar 2025 06:22:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152455 IP address blocks: 157.15.114.0/23 maxlen: 23 157.15.114.0/24 maxlen: 24 157.15.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C2B9, serialNumber=70107BECB84AC4CE5E95CC61D110A6723F90C9C3 Validity Not Before: Mar 5 06:22:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c7edab-1b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8b:b6:76:a1:7b:26:fd:44:1e:5a:ce:cc:5f: 20:90:54:ca:48:51:f4:43:34:13:58:f5:77:90:3c: 14:25:3d:bb:9f:a8:7d:87:84:b4:04:e1:24:ab:47: 31:10:e5:0f:06:6c:47:bd:ed:cf:93:2f:74:67:97: 53:6f:dc:22:0a:17:af:ab:4f:88:64:b0:01:d2:a1: c7:a1:05:53:8c:da:f1:10:9a:3b:31:a7:a1:dd:22: c6:a2:72:fa:c5:8b:98:9c:1c:e5:4a:4f:7f:6b:b3: 89:ae:29:14:0b:0d:1d:1f:0b:d3:f2:d6:5f:60:cd: 4f:2c:c1:c3:ba:5d:93:20:c4:27:b3:40:37:a5:e4: e1:13:01:a4:25:07:02:69:01:ed:63:7d:0d:4a:7a: 18:78:71:aa:67:97:7e:ee:7e:b7:f9:0c:d1:ff:de: f5:bf:31:8c:d6:e4:0d:3d:66:77:d9:d4:c9:3d:8c: 66:77:dc:06:2b:2a:7f:ce:37:fe:46:ae:3b:a2:1e: 0c:ad:c5:1c:84:6d:b5:f3:5a:6d:75:26:7e:48:3f: 74:f3:a4:65:e0:fc:f3:ae:23:d3:3b:26:25:41:d7: 0f:7b:94:8f:16:7a:9e:09:e6:3b:e9:8a:bc:a7:31: d0:d8:dd:65:80:6d:bf:5b:8a:b1:e2:6f:c1:b6:91: f0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:7F:02:18:6A:B5:B8:EC:9A:03:3E:45:A3:81:8B:D3:89:95:1C:50 X509v3 Authority Key Identifier: keyid:70:10:7B:EC:B8:4A:C4:CE:5E:95:CC:61:D1:10:A6:72:3F:90:C9:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/cBB77LhKxM5elcxh0RCmcj-QycM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/cBB77LhKxM5elcxh0RCmcj-QycM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C2B9/306699CAC2A211EE91D9535CC4F9AE02/4FB5C8F4C43D11EE973ADE48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.114.0/23 Signature Algorithm: sha256WithRSAEncryption bb:73:d3:e7:a6:bd:c0:22:fe:00:82:11:92:c6:9f:df:28:e3: 33:01:22:7d:f8:d6:b6:08:90:24:00:0c:10:9b:80:5d:d4:3b: d2:21:d2:e5:b7:90:f0:8d:1e:46:51:b9:6b:e5:7f:ff:91:28: 36:f3:51:3d:d9:82:ef:98:c0:f5:f5:f4:3d:92:4a:c1:14:2d: d9:f2:5a:15:9b:b9:88:f4:9f:10:05:a6:75:3e:a8:d4:96:d3: 75:84:44:e2:61:6c:a2:7e:d8:5e:0e:3a:4a:2d:a8:6c:60:d9: 8e:c3:eb:6f:59:f3:f5:d7:b5:2d:1b:a9:a1:66:de:99:a9:f7: 65:43:85:3a:32:fe:c3:a3:63:ea:d0:73:7a:ea:d1:59:72:b5: 1a:04:03:5e:5a:24:c9:9d:8c:2f:f3:97:0b:17:35:fb:21:c9: b5:73:8e:b5:c2:02:fe:77:14:0e:e5:48:c7:db:43:b6:ea:5b: 13:0c:d6:ed:21:de:47:18:41:16:22:25:a9:73:ba:77:29:75: 16:af:a5:0a:fc:76:73:dd:b8:63:49:bf:81:03:9e:6d:d2:e4: 16:a1:93:29:b7:2b:51:28:39:aa:99:fc:3a:1b:6d:75:3e:80: 4e:39:de:e2:28:f7:27:2a:f1:ae:36:3b:6d:aa:7c:38:07:35: b0:e6:5b:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMyQjkxMTAvBgNVBAUTKDcwMTA3QkVDQjg0QUM0Q0U1RTk1Q0M2MUQxMTBBNjcy M0Y5MEM5QzMwHhcNMjUwMzA1MDYyMjM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3ZWRhYi0xYjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Yu2dqF7Jv1EHlrOzF8gkFTKSFH0QzQTWPV3kDwUJT27n6h9h4S0BOEkq0cx EOUPBmxHve3Pky90Z5dTb9wiChevq0+IZLAB0qHHoQVTjNrxEJo7Maeh3SLGonL6 xYuYnBzlSk9/a7OJrikUCw0dHwvT8tZfYM1PLMHDul2TIMQns0A3peThEwGkJQcC aQHtY30NSnoYeHGqZ5d+7n63+QzR/971vzGM1uQNPWZ32dTJPYxmd9wGKyp/zjf+ Rq47oh4MrcUchG2181ptdSZ+SD9086Rl4PzzriPTOyYlQdcPe5SPFnqeCeY76Yq8 pzHQ2N1lgG2/W4qx4m/BtpHwwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOt/Ahhq tbjsmgM+RaOBi9OJlRxQMB8GA1UdIwQYMBaAFHAQe+y4SsTOXpXMYdEQpnI/kMnD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzJCOS8zMDY2OTlDQUMy QTIxMUVFOTFEOTUzNUNDNEY5QUUwMi9jQkI3N0xoS3hNNWVsY3hoMFJDbWNqLVF5 Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2NCQjc3TGhLeE01ZWxjeGgwUkNtY2otUXljTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkMyQjkvMzA2Njk5Q0FDMkEyMTFFRTkxRDk1MzVDQzRGOUFFMDIvNEZCNUM4RjRD NDNEMTFFRTk3M0FERTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD3IwDQYJKoZIhvcNAQELBQADggEBALtz0+emvcAi/gCC EZLGn98o4zMBIn341rYIkCQADBCbgF3UO9Ih0uW3kPCNHkZRuWvlf/+RKDbzUT3Z gu+YwPX19D2SSsEULdnyWhWbuYj0nxAFpnU+qNSW03WEROJhbKJ+2F4OOkotqGxg 2Y7D629Z8/XXtS0bqaFm3pmp92VDhToy/sOjY+rQc3rq0VlytRoEA15aJMmdjC/z lwsXNfshybVzjrXCAv53FA7lSMfbQ7bqWxMM1u0h3kcYQRYiJalzuncpdRavpQr8 dnPduGNJv4EDnm3S5Bahkym3K1EoOaqZ/DobbXU+gE453uIo9ycq8a42O22qfDgH NbDmWxg= -----END CERTIFICATE-----Generated at Sat Apr 26 12:58:41 2025 by rpki-client