$ rpki-client -vvf rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/A2516E42DE4511EF8C37E320C4F9AE02.roa File: A2516E42DE4511EF8C37E320C4F9AE02.roa (raw, json) Hash identifier: XfIHm/MhIPSh6jZecIK72twugLDWV563OBM4HVySVuo= Subject key identifier: 5D:F0:B8:0F:B0:50:1C:5E:0A:A5:15:29:EC:76:10:76:3D:47:58:AA Certificate issuer: /CN=A91C167F/serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Certificate serial: 0103 Authority key identifier: C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/A2516E42DE4511EF8C37E320C4F9AE02.roa Signing time: Thu 27 Feb 2025 07:00:40 +0000 ROA not before: Thu 27 Feb 2025 07:00:40 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152462 IP address blocks: 157.15.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:28:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C167F, serialNumber=C7338DF1B768C05074CDAED0FDB1A4C14ADFB8B5 Validity Not Before: Feb 27 07:00:40 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c00d98-26a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:08:c6:40:8c:71:95:b5:90:b3:48:ee:22:5b: 9b:68:52:1d:32:07:67:8d:d8:2e:20:d3:46:06:7d: da:74:94:10:2d:be:e7:8f:16:dd:3d:fe:bf:e8:3a: a4:0d:ee:ee:12:20:b1:d1:6d:87:c6:6d:9e:47:db: 71:88:45:05:25:32:cc:f5:d1:69:4a:14:6a:c7:1f: 75:eb:4b:e2:c9:1d:51:e4:e0:62:47:1a:22:63:e7: 30:99:58:d3:a4:33:dd:d2:67:35:35:99:8c:19:10: e2:82:a4:09:14:a4:06:a0:e8:1a:9e:59:c1:16:07: 25:d6:ca:40:49:f1:02:e7:e2:56:7a:b7:9d:b8:37: 90:51:0d:db:de:49:0b:6e:fa:18:a9:00:d0:75:e5: 86:33:27:cc:0b:15:e3:cd:37:15:46:04:c2:b5:46: 80:8c:58:01:2d:26:03:a0:41:a9:75:23:5c:03:ff: d3:91:1d:15:41:65:8d:0f:de:9f:2e:d0:38:1b:b2: 2c:22:81:c7:ba:1e:cf:72:7a:78:6b:dc:1b:6b:6e: 75:3b:6b:38:ca:e2:d9:04:85:29:c0:18:6a:8a:0b: d0:91:a6:68:f7:b4:d3:10:b9:27:04:31:1e:b2:9a: b2:2c:26:2a:8a:e8:38:9c:aa:40:24:90:c6:0b:5d: 6b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F0:B8:0F:B0:50:1C:5E:0A:A5:15:29:EC:76:10:76:3D:47:58:AA X509v3 Authority Key Identifier: keyid:C7:33:8D:F1:B7:68:C0:50:74:CD:AE:D0:FD:B1:A4:C1:4A:DF:B8:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/xzON8bdowFB0za7Q_bGkwUrfuLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xzON8bdowFB0za7Q_bGkwUrfuLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C167F/4AAB7BCAC47D11EE9FC7C80FC4F9AE02/A2516E42DE4511EF8C37E320C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.134.0/24 Signature Algorithm: sha256WithRSAEncryption 36:ca:0d:5a:71:a4:5d:17:53:43:23:dd:9e:77:f9:c4:e3:91: b3:db:45:04:88:c1:b0:53:15:75:95:9a:30:1e:20:58:6b:db: 40:9c:d9:a3:70:7f:f1:71:a1:27:81:87:e6:2a:f7:72:dd:96: f2:e4:e9:d1:92:25:36:a1:d9:ac:ad:8a:d2:35:b6:b9:d9:38: fd:f2:14:ec:de:a9:75:ab:0c:07:e1:97:fd:6b:11:e9:b0:96: fc:5d:8e:db:35:ef:cd:59:92:13:3f:fe:22:7f:fa:f6:a7:56: 6b:24:8c:30:a5:2a:65:4b:fd:14:2d:ef:b9:25:35:63:b3:9a: 11:32:ad:d6:90:e0:06:6e:c0:bb:01:d5:2e:06:ad:c9:4d:9d: e2:22:3b:e9:bc:93:19:ac:50:14:cd:4d:66:af:c6:b1:ce:1e: 4b:76:a7:b5:dd:87:4f:cf:be:2e:9e:3e:8c:4f:8f:a7:cd:91: 17:61:69:d9:02:9d:75:6a:a4:33:3f:94:97:2e:69:63:e3:2f: 5e:68:b8:b4:d5:d0:b3:99:d5:4d:20:84:da:e8:92:a1:0e:42: fb:4c:be:23:b5:52:2c:99:cb:ec:07:ba:f9:5c:0b:96:f1:ed: 1f:44:c9:cd:85:b3:d8:05:c8:bd:bb:51:64:ca:1b:4d:4f:73: 47:b9:a9:ec -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE2N0YxMTAvBgNVBAUTKEM3MzM4REYxQjc2OEMwNTA3NENEQUVEMEZEQjFBNEMx NEFERkI4QjUwHhcNMjUwMjI3MDcwMDQwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MwMGQ5OC0yNmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4QjGQIxxlbWQs0juIlubaFIdMgdnjdguINNGBn3adJQQLb7njxbdPf6/6Dqk De7uEiCx0W2Hxm2eR9txiEUFJTLM9dFpShRqxx9160viyR1R5OBiRxoiY+cwmVjT pDPd0mc1NZmMGRDigqQJFKQGoOganlnBFgcl1spASfEC5+JWereduDeQUQ3b3kkL bvoYqQDQdeWGMyfMCxXjzTcVRgTCtUaAjFgBLSYDoEGpdSNcA//TkR0VQWWND96f LtA4G7IsIoHHuh7Pcnp4a9wba251O2s4yuLZBIUpwBhqigvQkaZo97TTELknBDEe spqyLCYqiug4nKpAJJDGC11r7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFF3wuA+w UBxeCqUVKex2EHY9R1iqMB8GA1UdIwQYMBaAFMczjfG3aMBQdM2u0P2xpMFK37i1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTY3Ri80QUFCN0JDQUM0 N0QxMUVFOUZDN0M4MEZDNEY5QUUwMi94ek9OOGJkb3dGQjB6YTdRX2JHa3dVcmZ1 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3h6T044YmRvd0ZCMHphN1FfYkdrd1VyZnVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE2N0YvNEFBQjdCQ0FDNDdEMTFFRTlGQzdDODBGQzRGOUFFMDIvQTI1MTZFNDJE RTQ1MTFFRjhDMzdFMzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD4YwDQYJKoZIhvcNAQELBQADggEBADbKDVpxpF0XU0Mj 3Z53+cTjkbPbRQSIwbBTFXWVmjAeIFhr20Cc2aNwf/FxoSeBh+Yq93LdlvLk6dGS JTah2aytitI1trnZOP3yFOzeqXWrDAfhl/1rEemwlvxdjts1781ZkhM//iJ/+van VmskjDClKmVL/RQt77klNWOzmhEyrdaQ4AZuwLsB1S4GrclNneIiO+m8kxmsUBTN TWavxrHOHkt2p7Xdh0/Pvi6ePoxPj6fNkRdhadkCnXVqpDM/lJcuaWPjL15ouLTV 0LOZ1U0ghNrokqEOQvtMviO1UiyZy+wHuvlcC5bx7R9Eyc2Fs9gFyL27UWTKG01P c0e5qew= -----END CERTIFICATE-----Generated at Sat Apr 26 13:38:58 2025 by rpki-client