$ rpki-client -vvf rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa File: FD990E7AF0B311EE9923BC84C4F9AE02.roa (raw, json) Hash identifier: XWibtqlVyPdPRt9izLBx3ZYroA9isT1xxkvokh85YPE= Subject key identifier: F6:DD:AE:D5:FD:DE:53:6D:A2:C8:D4:2F:B2:74:1A:21:5D:E2:78:1D Certificate issuer: /CN=A9171882/serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Certificate serial: B4 Authority key identifier: 5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa Signing time: Mon 17 Mar 2025 04:51:20 +0000 ROA not before: Mon 17 Mar 2025 04:51:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152604 IP address blocks: 157.20.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:46:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171882, serialNumber=5BC494E89D0A4155B5525363D1235C5EDC0FDE2F Validity Not Before: Mar 17 04:51:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d7aa47-897a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:79:63:4f:02:0c:2e:a6:eb:e5:79:5a:5f:e0: 0f:ae:56:90:34:0f:ed:66:a8:27:92:58:f0:a6:ac: 09:bc:76:3c:9f:17:39:e6:91:85:7f:32:d5:8d:b5: 67:a3:80:eb:d4:80:35:f4:4b:28:cb:1b:be:3f:ec: af:ad:61:85:1a:fd:48:26:55:c4:82:15:d6:9d:d7: 58:70:f9:41:fb:64:c3:f4:e7:95:8e:fd:80:cb:94: 34:28:c0:d8:5a:b2:64:09:59:84:21:d6:d2:c4:bb: 1d:4f:6a:a8:27:b9:c7:35:86:b1:40:57:c1:fc:04: 9e:a9:3e:50:7d:89:91:80:08:e0:4a:5a:14:5c:c8: 61:33:6b:2c:64:c6:ab:ce:79:5c:74:f7:3c:df:8d: a2:e9:56:71:33:71:d0:1d:87:33:e7:17:e2:d1:db: ad:6a:4f:07:76:41:8f:e8:49:ed:0b:20:75:50:67: db:6c:9c:9a:b6:5e:3a:b1:6a:13:ef:48:aa:c2:6a: 68:c9:c1:d3:2d:07:03:79:65:49:d8:d3:0c:c4:e2: b5:6a:19:d3:81:3f:8b:cb:18:2f:46:b2:cd:74:28: 21:f3:0c:13:2e:15:73:23:54:1e:3f:e5:43:22:df: 8f:83:1f:97:89:c8:04:07:87:82:b3:26:e3:de:8c: 8d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:DD:AE:D5:FD:DE:53:6D:A2:C8:D4:2F:B2:74:1A:21:5D:E2:78:1D X509v3 Authority Key Identifier: keyid:5B:C4:94:E8:9D:0A:41:55:B5:52:53:63:D1:23:5C:5E:DC:0F:DE:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/W8SU6J0KQVW1UlNj0SNcXtwP3i8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/W8SU6J0KQVW1UlNj0SNcXtwP3i8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171882/A8C251EAF0B311EEA4C72F84C4F9AE02/FD990E7AF0B311EE9923BC84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.140.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:ec:2c:fe:3b:e4:14:34:1f:2c:90:7f:67:11:8e:21:27:e6: 5a:68:7e:c3:19:ee:a6:f2:46:9c:be:e8:b7:04:70:13:94:de: d6:7d:d3:84:63:c2:b6:9d:90:cd:35:78:13:ee:e7:c3:26:d1: d9:b2:da:06:79:4d:6a:3b:fe:83:57:41:c0:70:f3:5e:74:70: 59:8e:95:7a:dc:2b:6f:e6:22:9d:fe:49:53:bb:ae:70:8a:c0: d5:6e:1b:13:5f:07:6d:ad:c8:b1:d6:59:7e:1b:1b:31:aa:a3: 56:3a:d6:d4:37:ac:40:23:ec:40:8f:51:49:d4:df:f1:23:c3: 7c:b5:64:a6:8e:3a:d4:73:70:a2:03:e3:88:a6:14:70:86:64: 08:79:e6:d2:83:2e:1f:73:64:ae:4e:f9:b5:26:cb:8e:d0:44: 7f:e9:9c:af:bf:2d:ef:5d:45:7e:c8:15:12:fb:98:58:33:ae: c4:ba:1f:10:ba:10:3c:c3:6b:db:00:9e:66:3d:25:4e:b4:75: 4d:36:42:bb:35:13:f6:11:42:26:8f:e2:28:c2:f5:17:bf:b2: a7:8b:2f:56:77:5a:d9:d7:cb:aa:ee:1a:59:82:f5:65:b3:7c: fe:12:80:cb:f9:a0:0e:d5:b8:71:f4:07:40:2d:32:ae:aa:4b: 02:4d:78:fc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4ODIxMTAvBgNVBAUTKDVCQzQ5NEU4OUQwQTQxNTVCNTUyNTM2M0QxMjM1QzVF REMwRkRFMkYwHhcNMjUwMzE3MDQ1MTIwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q3YWE0Ny04OTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo3ljTwIMLqbr5XlaX+APrlaQNA/tZqgnkljwpqwJvHY8nxc55pGFfzLVjbVn o4Dr1IA19Esoyxu+P+yvrWGFGv1IJlXEghXWnddYcPlB+2TD9OeVjv2Ay5Q0KMDY WrJkCVmEIdbSxLsdT2qoJ7nHNYaxQFfB/ASeqT5QfYmRgAjgSloUXMhhM2ssZMar znlcdPc8342i6VZxM3HQHYcz5xfi0dutak8HdkGP6EntCyB1UGfbbJyatl46sWoT 70iqwmpoycHTLQcDeWVJ2NMMxOK1ahnTgT+LyxgvRrLNdCgh8wwTLhVzI1QeP+VD It+Pgx+XicgEB4eCsybj3oyNEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPbdrtX9 3lNtosjUL7J0GiFd4ngdMB8GA1UdIwQYMBaAFFvElOidCkFVtVJTY9EjXF7cD94v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg4Mi9BOEMyNTFFQUYw QjMxMUVFQTRDNzJGODRDNEY5QUUwMi9XOFNVNkowS1FWVzFVbE5qMFNOY1h0d1Az aTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1c4U1U2SjBLUVZXMVVsTmowU05jWHR3UDNpOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4ODIvQThDMjUxRUFGMEIzMTFFRUE0QzcyRjg0QzRGOUFFMDIvRkQ5OTBFN0FG MEIzMTFFRTk5MjNCQzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdFIwwDQYJKoZIhvcNAQELBQADggEBAJzsLP475BQ0HyyQ f2cRjiEn5lpofsMZ7qbyRpy+6LcEcBOU3tZ904RjwradkM01eBPu58Mm0dmy2gZ5 TWo7/oNXQcBw8150cFmOlXrcK2/mIp3+SVO7rnCKwNVuGxNfB22tyLHWWX4bGzGq o1Y61tQ3rEAj7ECPUUnU3/Ejw3y1ZKaOOtRzcKID44imFHCGZAh55tKDLh9zZK5O +bUmy47QRH/pnK+/Le9dRX7IFRL7mFgzrsS6HxC6EDzDa9sAnmY9JU60dU02Qrs1 E/YRQiaP4ijC9Re/sqeLL1Z3WtnXy6ruGlmC9WWzfP4SgMv5oA7VuHH0B0AtMq6q SwJNePw= -----END CERTIFICATE-----Generated at Wed Nov 5 21:42:01 2025 by rpki-client