$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/1FFCF508ADF211EE93DC0A12C4F9AE02.roa File: 1FFCF508ADF211EE93DC0A12C4F9AE02.roa (raw, json) Hash identifier: kN/JSLj9TvzMzCv/SkXvYZbvfv6T8T6WGICKq1DXwxA= Subject key identifier: 9D:6D:53:DB:E9:0D:92:4A:36:57:4E:CF:7B:A1:5A:60:CA:8A:6D:BF Certificate issuer: /CN=A91A7F56/serialNumber=9FB741B729803C6B4329BC3B40E76E52ABD8B9F8 Certificate serial: DC Authority key identifier: 9F:B7:41:B7:29:80:3C:6B:43:29:BC:3B:40:E7:6E:52:AB:D8:B9:F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n7dBtymAPGtDKbw7QOduUqvYufg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/1FFCF508ADF211EE93DC0A12C4F9AE02.roa Signing time: Thu 27 Feb 2025 06:59:56 +0000 ROA not before: Thu 27 Feb 2025 06:59:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 140133 IP address blocks: 157.10.78.0/23 maxlen: 23 157.10.78.0/24 maxlen: 24 157.10.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/n7dBtymAPGtDKbw7QOduUqvYufg.crl rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/n7dBtymAPGtDKbw7QOduUqvYufg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n7dBtymAPGtDKbw7QOduUqvYufg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=9FB741B729803C6B4329BC3B40E76E52ABD8B9F8 Validity Not Before: Feb 27 06:59:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c00d6c-3d62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:91:eb:1f:15:00:33:9e:dd:45:39:b1:0d:18: 45:80:58:35:61:14:81:f2:b7:c7:48:1f:3d:4e:47: ea:a5:22:29:e6:9c:26:f3:02:a2:9a:22:ad:da:0c: c1:96:a3:79:8c:a5:d0:85:b5:88:6b:67:6e:88:51: 43:1c:05:31:f3:8b:a9:d2:4d:47:a9:7f:91:3d:93: fb:2b:b6:89:23:ac:85:96:ab:d7:3b:57:0a:57:9a: de:13:76:3d:15:44:85:e4:59:ec:cc:56:44:12:0c: 8a:db:b5:a3:67:16:cb:00:4f:af:15:24:48:5d:33: fb:ef:7c:90:19:32:9e:52:6e:91:86:a3:9c:cd:54: 37:9b:f5:7b:78:96:8c:63:c9:20:a4:91:59:24:72: 07:32:07:95:8e:7c:5f:28:ca:a0:2b:2f:43:57:3d: dd:09:bd:dc:16:48:85:a9:05:de:c0:bc:4e:94:ab: 9d:b5:91:91:d5:47:46:c4:77:ad:22:e2:c9:df:ee: 30:77:d4:c2:ed:12:b8:0f:60:74:9f:d7:a8:72:89: bc:9d:56:4e:ac:5d:89:44:5a:c9:06:8b:63:13:b6: a5:d7:a1:e6:9e:ee:3a:7e:0a:5c:98:21:fd:f5:df: ce:80:13:69:53:a6:56:85:13:4e:30:74:1b:af:ad: 79:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:6D:53:DB:E9:0D:92:4A:36:57:4E:CF:7B:A1:5A:60:CA:8A:6D:BF X509v3 Authority Key Identifier: keyid:9F:B7:41:B7:29:80:3C:6B:43:29:BC:3B:40:E7:6E:52:AB:D8:B9:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/n7dBtymAPGtDKbw7QOduUqvYufg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/n7dBtymAPGtDKbw7QOduUqvYufg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/94D57236ACCD11EE81069050C4F9AE02/1FFCF508ADF211EE93DC0A12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.78.0/23 Signature Algorithm: sha256WithRSAEncryption 76:4d:1b:da:f3:74:ec:29:c5:a4:81:7b:1d:7e:72:4e:f4:2b: c5:7d:35:83:0b:91:cc:f9:8c:21:df:35:ec:1f:6f:2f:5f:6c: 47:d6:88:5b:e8:8c:b6:62:55:0e:94:29:9e:3b:10:eb:7e:a7: 41:49:12:d2:39:6f:ce:79:8a:e6:b3:9f:18:47:70:8b:06:e3: e2:b9:55:eb:92:6f:bc:24:f6:60:39:d0:be:33:64:3d:bb:73: 0b:14:88:2a:c4:ec:a8:35:ac:f8:6e:cd:73:49:80:00:80:0c: 85:76:33:d9:2b:4a:83:39:e7:22:94:4a:62:92:61:db:ca:7e: b1:76:1c:b0:9b:a8:13:1e:36:ed:7d:8b:95:e5:ab:b3:f5:a7: 4b:cd:66:dd:11:f1:40:44:6c:76:19:43:41:a5:24:2b:2f:c3: 33:3a:b9:a0:82:3e:fc:d6:f4:14:b3:5a:aa:32:49:7e:7e:e3: ed:27:c7:f4:fb:b4:2c:51:51:63:0f:c7:18:2a:54:dc:20:23: b1:21:07:6e:a0:b2:1a:47:2c:9e:2c:37:f3:6c:9b:8f:6d:01: bb:52:a1:4a:48:30:d1:f6:99:b4:e0:32:8b:70:9f:0f:cf:7c: d3:30:e9:af:d4:02:b9:7f:9b:4a:6e:03:ff:b6:44:ed:92:0b: bb:49:1b:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDlGQjc0MUI3Mjk4MDNDNkI0MzI5QkMzQjQwRTc2RTUy QUJEOEI5RjgwHhcNMjUwMjI3MDY1OTU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MwMGQ2Yy0zZDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJHrHxUAM57dRTmxDRhFgFg1YRSB8rfHSB89TkfqpSIp5pwm8wKimiKt2gzB lqN5jKXQhbWIa2duiFFDHAUx84up0k1HqX+RPZP7K7aJI6yFlqvXO1cKV5reE3Y9 FUSF5FnszFZEEgyK27WjZxbLAE+vFSRIXTP773yQGTKeUm6RhqOczVQ3m/V7eJaM Y8kgpJFZJHIHMgeVjnxfKMqgKy9DVz3dCb3cFkiFqQXewLxOlKudtZGR1UdGxHet IuLJ3+4wd9TC7RK4D2B0n9eocom8nVZOrF2JRFrJBotjE7al16Hmnu46fgpcmCH9 9d/OgBNpU6ZWhRNOMHQbr615aQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ1tU9vp DZJKNldOz3uhWmDKim2/MB8GA1UdIwQYMBaAFJ+3QbcpgDxrQym8O0DnblKr2Ln4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85NEQ1NzIzNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9uN2RCdHltQVBHdERLYnc3UU9kdVVxdll1 ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL243ZEJ0eW1BUEd0REtidzdRT2R1VXF2WXVmZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdGNTYvOTRENTcyMzZBQ0NEMTFFRTgxMDY5MDUwQzRGOUFFMDIvMUZGQ0Y1MDhB REYyMTFFRTkzREMwQTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCk4wDQYJKoZIhvcNAQELBQADggEBAHZNG9rzdOwpxaSB ex1+ck70K8V9NYMLkcz5jCHfNewfby9fbEfWiFvojLZiVQ6UKZ47EOt+p0FJEtI5 b855iuaznxhHcIsG4+K5VeuSb7wk9mA50L4zZD27cwsUiCrE7Kg1rPhuzXNJgACA DIV2M9krSoM55yKUSmKSYdvKfrF2HLCbqBMeNu19i5Xlq7P1p0vNZt0R8UBEbHYZ Q0GlJCsvwzM6uaCCPvzW9BSzWqoySX5+4+0nx/T7tCxRUWMPxxgqVNwgI7EhB26g shpHLJ4sN/Nsm49tAbtSoUpIMNH2mbTgMotwnw/PfNMw6a/UArl/m0puA/+2RO2S C7tJG2o= -----END CERTIFICATE-----Generated at Sat Apr 26 19:35:02 2025 by rpki-client