$ rpki-client -vvf rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa File: D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa (raw, json) Hash identifier: tE5MO0yGqfdQRPhR9mD7EUVj7T64niX8BINnA3y1Amk= Subject key identifier: 89:EF:1D:6D:65:3D:0D:7F:E4:AD:D0:6F:46:B9:14:6D:8A:C4:BE:42 Certificate issuer: /CN=A91754C0/serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Certificate serial: D0 Authority key identifier: D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa Signing time: Fri 21 Mar 2025 05:11:26 +0000 ROA not before: Fri 21 Mar 2025 05:11:26 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138585 IP address blocks: 157.20.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91754C0, serialNumber=D0F8B006596C7C037CB549305B39690000AAE8A4 Validity Not Before: Mar 21 05:11:26 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67dcf4fd-7e4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5a:0d:86:7c:64:ac:60:6f:ec:65:66:55:cb: 91:07:d8:4a:54:74:98:c2:e2:5a:b5:bb:a3:07:fb: 96:9c:7b:5b:e9:2c:30:d0:f5:06:c6:1b:e3:a5:e1: d6:ef:b0:72:1a:d2:b6:50:ca:85:02:0a:db:f0:48: 61:12:9e:5e:d8:a7:89:95:7a:d7:ad:8d:c2:09:7e: 7b:ef:85:45:f0:93:59:5b:8d:f0:2a:1c:ac:a9:51: 09:84:7b:97:e0:f4:44:5a:55:4a:33:a3:29:fa:c6: cd:bb:f1:2d:2d:8f:7b:26:97:2a:e6:e7:f7:b1:42: a3:40:0a:c3:75:2a:f8:5d:97:44:b7:fb:b0:e1:b9: 99:92:ab:94:5e:00:a5:d2:8c:d6:ab:01:15:d3:c5: ab:ee:1a:88:55:bb:87:66:09:cf:01:c4:e4:72:91: da:f7:68:7f:a4:e4:c2:3f:78:35:53:68:74:f2:f7: ae:5a:07:c5:dd:09:1b:ab:ba:73:5d:5a:70:2a:00: 07:b8:c8:af:b6:3c:69:fa:8e:27:4b:92:53:82:a5: 77:ff:25:13:8a:24:25:2d:ba:a8:2f:fd:f1:3e:7d: ab:08:fa:24:c7:12:ad:7a:b2:04:88:9b:31:4d:40: 3f:1e:fd:27:6a:58:30:4f:47:7b:e3:16:11:ec:e4: 46:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:EF:1D:6D:65:3D:0D:7F:E4:AD:D0:6F:46:B9:14:6D:8A:C4:BE:42 X509v3 Authority Key Identifier: keyid:D0:F8:B0:06:59:6C:7C:03:7C:B5:49:30:5B:39:69:00:00:AA:E8:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/0PiwBllsfAN8tUkwWzlpAACq6KQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0PiwBllsfAN8tUkwWzlpAACq6KQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91754C0/FEDF572ECCBB11EE8A0F7748C4F9AE02/D0CB00D4CCBD11EEAC4BCD4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.57.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:eb:19:6f:a3:2f:2f:25:47:ae:da:0c:6f:58:ac:8b:37:92: e6:f0:96:27:bf:17:db:7e:7d:bf:4d:30:94:10:58:f5:bf:d8: ae:0a:38:2d:88:fb:73:f5:41:d5:71:2c:3c:6f:85:f5:21:69: c2:6d:4e:17:79:e4:ed:75:a9:a1:ac:23:64:1f:db:a5:a4:dc: d4:7c:aa:52:fe:5f:3a:2d:a6:99:91:ae:ec:41:a9:83:5f:e4: 8a:8f:75:65:3d:45:37:c5:23:8d:93:fd:09:fd:85:ab:08:f3: cf:a7:1b:bf:04:9e:40:8f:d5:dd:2d:31:59:a0:d5:2d:7d:26: c4:5d:26:c5:d2:ef:16:15:27:a1:3b:40:0a:90:7a:22:4a:f4: d0:5e:9f:b2:51:6f:44:6b:e2:ae:a2:8b:93:5c:bf:21:11:84: 87:d9:b0:1e:97:8f:50:51:16:da:48:cf:9e:46:f5:a5:cb:79: e0:a5:5d:ce:58:2f:56:c5:3c:0d:b7:01:60:33:a5:a7:df:4e: 1e:7a:8c:6e:fd:eb:d8:f7:49:72:6f:94:5a:b1:a9:73:8f:aa: 45:74:61:ac:c7:3c:6f:a4:bf:90:fb:49:9b:d5:96:3d:a9:f7: 25:cc:06:1c:63:71:16:a3:c9:c3:35:7d:e3:36:fa:ad:8d:d8: 31:68:fc:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU0QzAxMTAvBgNVBAUTKEQwRjhCMDA2NTk2QzdDMDM3Q0I1NDkzMDVCMzk2OTAw MDBBQUU4QTQwHhcNMjUwMzIxMDUxMTI2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RjZjRmZC03ZTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz1oNhnxkrGBv7GVmVcuRB9hKVHSYwuJatbujB/uWnHtb6Sww0PUGxhvjpeHW 77ByGtK2UMqFAgrb8EhhEp5e2KeJlXrXrY3CCX5774VF8JNZW43wKhysqVEJhHuX 4PREWlVKM6Mp+sbNu/EtLY97Jpcq5uf3sUKjQArDdSr4XZdEt/uw4bmZkquUXgCl 0ozWqwEV08Wr7hqIVbuHZgnPAcTkcpHa92h/pOTCP3g1U2h08veuWgfF3Qkbq7pz XVpwKgAHuMivtjxp+o4nS5JTgqV3/yUTiiQlLbqoL/3xPn2rCPokxxKterIEiJsx TUA/Hv0nalgwT0d74xYR7ORG1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFInvHW1l PQ1/5K3Qb0a5FG2KxL5CMB8GA1UdIwQYMBaAFND4sAZZbHwDfLVJMFs5aQAAquik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTRDMC9GRURGNTcyRUND QkIxMUVFOEEwRjc3NDhDNEY5QUUwMi8wUGl3Qmxsc2ZBTjh0VWt3V3pscEFBQ3E2 S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBQaXdCbGxzZkFOOHRVa3dXemxwQUFDcTZLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU0QzAvRkVERjU3MkVDQ0JCMTFFRThBMEY3NzQ4QzRGOUFFMDIvRDBDQjAwRDRD Q0JEMTFFRUFDNEJDRDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFDkwDQYJKoZIhvcNAQELBQADggEBAC3rGW+jLy8lR67a DG9YrIs3kubwlie/F9t+fb9NMJQQWPW/2K4KOC2I+3P1QdVxLDxvhfUhacJtThd5 5O11qaGsI2Qf26Wk3NR8qlL+XzotppmRruxBqYNf5IqPdWU9RTfFI42T/Qn9hasI 88+nG78EnkCP1d0tMVmg1S19JsRdJsXS7xYVJ6E7QAqQeiJK9NBen7JRb0Rr4q6i i5NcvyERhIfZsB6Xj1BRFtpIz55G9aXLeeClXc5YL1bFPA23AWAzpaffTh56jG79 69j3SXJvlFqxqXOPqkV0YazHPG+kv5D7SZvVlj2p9yXMBhxjcRajycM1feM2+q2N 2DFo/Kk= -----END CERTIFICATE-----Generated at Sat Apr 26 14:55:55 2025 by rpki-client