$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0B40/1FA0225038E011EF94B84D7FC4F9AE02/F9C8081E4CB511F0B121AE45C4F9AE02.roa File: F9C8081E4CB511F0B121AE45C4F9AE02.roa (raw, json) Hash identifier: XWY3Z0PrjeVbgUGRkkonKlE66Ol3xZjgkZ/1G2BNmmU= Subject key identifier: 86:2F:94:5A:C9:0A:25:5B:D4:15:FC:C9:DF:CE:6C:A8:F4:61:11:EB Certificate issuer: /CN=A91D0B40/serialNumber=2D7484A17F4E9E69410051EF53B7BE71937F9F9C Certificate serial: B8 Authority key identifier: 2D:74:84:A1:7F:4E:9E:69:41:00:51:EF:53:B7:BE:71:93:7F:9F:9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LXSEoX9OnmlBAFHvU7e-cZN_n5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0B40/1FA0225038E011EF94B84D7FC4F9AE02/F9C8081E4CB511F0B121AE45C4F9AE02.roa Signing time: Thu 19 Jun 2025 02:34:51 +0000 ROA not before: Thu 19 Jun 2025 02:34:51 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152905 IP address blocks: 157.15.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0B40/1FA0225038E011EF94B84D7FC4F9AE02/LXSEoX9OnmlBAFHvU7e-cZN_n5w.crl rsync://rpki.apnic.net/member_repository/A91D0B40/1FA0225038E011EF94B84D7FC4F9AE02/LXSEoX9OnmlBAFHvU7e-cZN_n5w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LXSEoX9OnmlBAFHvU7e-cZN_n5w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0B40, serialNumber=2D7484A17F4E9E69410051EF53B7BE71937F9F9C Validity Not Before: Jun 19 02:34:51 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6853774b-694d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5f:9c:0f:bc:f8:c4:7d:51:17:da:89:e2:ce: c4:b7:29:7d:cb:50:7a:4f:a8:6e:38:fd:63:0a:8f: 6f:3a:1e:9f:13:30:c8:2b:bc:92:85:12:84:95:71: de:28:93:a0:f6:79:77:75:81:a4:02:ea:7d:31:de: 13:72:b0:0b:3c:29:43:09:4a:a3:56:d1:79:94:30: b1:fc:86:cf:92:ee:95:c7:e4:27:86:b9:ad:81:bd: ca:e8:c0:36:da:8e:8c:5e:91:e6:30:77:68:a0:74: 88:dc:62:8b:2b:98:7e:42:b0:47:af:b2:e4:f1:55: e6:93:22:d0:d4:a4:bc:03:c8:bc:cf:8d:83:98:2e: 2f:04:b7:7f:df:ba:f2:46:49:21:f0:da:c1:5a:7c: a8:1c:b9:dd:8b:6b:6b:bf:00:70:06:bf:da:c5:94: a8:83:1f:72:2b:12:89:59:e4:9d:a0:bf:bb:63:c2: eb:66:4e:6f:8c:32:2e:63:a0:de:e8:d4:56:e6:ff: 20:28:80:ba:5f:79:8a:37:44:d0:ca:89:fe:7a:c3: 8e:b1:f9:47:fe:2e:dc:ac:81:fb:17:e5:c6:e8:d9: 9e:d4:af:b5:fc:a2:e5:24:b8:89:eb:10:2e:70:f4: 82:a7:7d:3b:69:a3:ad:25:8c:d6:2f:f3:dc:b0:1c: c3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:2F:94:5A:C9:0A:25:5B:D4:15:FC:C9:DF:CE:6C:A8:F4:61:11:EB X509v3 Authority Key Identifier: keyid:2D:74:84:A1:7F:4E:9E:69:41:00:51:EF:53:B7:BE:71:93:7F:9F:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0B40/1FA0225038E011EF94B84D7FC4F9AE02/LXSEoX9OnmlBAFHvU7e-cZN_n5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LXSEoX9OnmlBAFHvU7e-cZN_n5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0B40/1FA0225038E011EF94B84D7FC4F9AE02/F9C8081E4CB511F0B121AE45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.107.0/24 Signature Algorithm: sha256WithRSAEncryption 91:57:e0:4f:52:56:63:ad:a4:65:9d:6e:68:8f:37:02:0c:f4: ab:d3:97:8d:e4:86:41:9b:54:fd:93:a4:a7:6d:f1:f1:7c:80: 94:b0:ae:e2:f0:ab:13:f4:a2:92:45:cb:1a:af:04:30:aa:bb: 32:18:9e:0d:6a:d0:fe:e5:7c:1a:52:2f:8f:44:78:29:88:64: da:39:fe:46:fb:0d:c2:34:f8:7c:f7:c5:f3:1f:e9:fb:09:a1: 48:41:04:47:79:de:e6:70:8e:e8:2d:99:d6:e0:46:4a:02:db: e4:62:6f:d4:63:91:6f:89:33:26:2f:31:f5:5e:fa:32:72:0d: 51:d0:d2:28:ab:75:93:c9:4f:4c:1a:fb:08:1c:5c:f4:36:e2: d7:5b:1d:21:05:a4:ad:8f:f1:48:af:83:22:70:19:e5:52:3c: 25:c3:04:77:1b:f8:b0:38:41:08:82:17:2e:54:fd:ff:8f:13: 20:cd:9e:c3:bd:08:60:e5:e0:33:18:b5:a6:59:c3:6f:39:5d: 8a:5b:8f:89:79:86:c5:4a:4c:b1:23:03:30:96:4b:45:1b:bc: 62:f1:7d:45:64:eb:50:42:50:e0:80:33:16:4e:2f:a2:d0:12: 4e:c0:19:38:69:7a:43:fb:b2:1e:2e:3e:79:b8:8a:dd:68:47: a5:b1:5e:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDBCNDAxMTAvBgNVBAUTKDJENzQ4NEExN0Y0RTlFNjk0MTAwNTFFRjUzQjdCRTcx OTM3RjlGOUMwHhcNMjUwNjE5MDIzNDUxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzNzc0Yi02OTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxV+cD7z4xH1RF9qJ4s7Etyl9y1B6T6huOP1jCo9vOh6fEzDIK7yShRKElXHe KJOg9nl3dYGkAup9Md4TcrALPClDCUqjVtF5lDCx/IbPku6Vx+Qnhrmtgb3K6MA2 2o6MXpHmMHdooHSI3GKLK5h+QrBHr7Lk8VXmkyLQ1KS8A8i8z42DmC4vBLd/37ry Rkkh8NrBWnyoHLndi2trvwBwBr/axZSogx9yKxKJWeSdoL+7Y8LrZk5vjDIuY6De 6NRW5v8gKIC6X3mKN0TQyon+esOOsflH/i7crIH7F+XG6Nme1K+1/KLlJLiJ6xAu cPSCp307aaOtJYzWL/PcsBzDLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIYvlFrJ CiVb1BX8yd/ObKj0YRHrMB8GA1UdIwQYMBaAFC10hKF/Tp5pQQBR71O3vnGTf5+c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMEI0MC8xRkEwMjI1MDM4 RTAxMUVGOTRCODREN0ZDNEY5QUUwMi9MWFNFb1g5T25tbEJBRkh2VTdlLWNaTl9u NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0xYU0VvWDlPbm1sQkFGSHZVN2UtY1pOX241dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDBCNDAvMUZBMDIyNTAzOEUwMTFFRjk0Qjg0RDdGQzRGOUFFMDIvRjlDODA4MUU0 Q0I1MTFGMEIxMjFBRTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD2swDQYJKoZIhvcNAQELBQADggEBAJFX4E9SVmOtpGWd bmiPNwIM9KvTl43khkGbVP2TpKdt8fF8gJSwruLwqxP0opJFyxqvBDCquzIYng1q 0P7lfBpSL49EeCmIZNo5/kb7DcI0+Hz3xfMf6fsJoUhBBEd53uZwjugtmdbgRkoC 2+Rib9RjkW+JMyYvMfVe+jJyDVHQ0iirdZPJT0wa+wgcXPQ24tdbHSEFpK2P8Uiv gyJwGeVSPCXDBHcb+LA4QQiCFy5U/f+PEyDNnsO9CGDl4DMYtaZZw285XYpbj4l5 hsVKTLEjAzCWS0UbvGLxfUVk61BCUOCAMxZOL6LQEk7AGThpekP7sh4uPnm4it1o R6WxXlk= -----END CERTIFICATE-----Generated at Fri Jun 20 15:24:35 2025 by rpki-client