$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/13D21C6EFEBA11ED9D83553FC4F9AE02.roa File: 13D21C6EFEBA11ED9D83553FC4F9AE02.roa (raw, json) Hash identifier: mPVwkbrmgIGFwgmxOu/KgFG11TMB51WhYaitUgpspRc= Subject key identifier: 01:D6:6B:BB:66:4F:02:85:F4:EB:26:64:1C:16:41:1B:49:77:ED:B3 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 10FD Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/13D21C6EFEBA11ED9D83553FC4F9AE02.roa Signing time: Sat 12 Apr 2025 17:26:32 +0000 ROA not before: Sat 12 Apr 2025 17:26:32 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58945 IP address blocks: 220.152.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4349 (0x10fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Apr 12 17:26:32 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67faa248-06c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:79:26:fd:98:0a:f2:56:66:ad:64:92:c1:2b: 67:af:37:aa:61:d1:9d:81:a8:0f:17:3f:c0:d7:15: a7:c6:2d:4d:1a:02:b3:4c:82:a1:b4:fb:fe:3b:31: 05:ff:d3:41:39:56:41:44:10:a9:68:d8:d4:cd:10: 08:4e:22:3f:02:71:cf:96:bb:d3:d7:be:cd:a7:26: 4f:76:b2:4a:40:b6:f0:a9:64:6e:21:18:2e:39:5d: e2:63:97:b6:c1:5a:38:8e:38:59:ae:0d:ea:25:1a: 2e:7c:d4:58:31:a6:73:26:7e:1a:f1:3c:cd:ba:ef: 14:1e:20:f6:69:91:0f:23:57:42:60:e3:56:c8:14: fb:07:1e:f0:06:a5:74:8d:0f:3a:76:39:c7:c5:83: 40:fd:5d:50:73:6c:b0:42:97:75:50:35:fe:f4:47: 9b:27:d5:6d:eb:75:5d:bd:4b:1c:67:ee:12:66:cc: 0d:c4:f0:8d:2d:47:1c:b5:c7:2e:b1:78:0b:a0:52: b5:bd:21:2a:5a:b7:7c:e4:86:ad:65:9e:96:52:a7: 94:b0:03:ef:ef:d8:0f:dc:11:91:04:8d:dd:e9:ed: bd:10:d1:02:37:50:87:31:1b:26:7e:5d:67:cf:15: 8b:81:6a:82:91:99:3f:6b:2f:68:11:71:5c:4d:66: b1:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D6:6B:BB:66:4F:02:85:F4:EB:26:64:1C:16:41:1B:49:77:ED:B3 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/13D21C6EFEBA11ED9D83553FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.152.115.0/24 Signature Algorithm: sha256WithRSAEncryption 75:36:01:ce:ee:c8:05:23:de:4f:a8:f4:7c:3f:ab:fe:50:e0: 2c:22:b2:71:e0:ee:8b:55:13:f9:9e:c4:2f:e0:49:00:df:9b: 81:6d:f2:c5:62:9f:f5:cc:78:49:b2:96:d7:8d:c4:0b:9a:bb: c5:75:8f:2c:bd:be:4b:bd:46:0f:d2:e5:e7:35:48:8f:e8:7c: f6:d8:bd:d5:c7:ec:90:73:fc:70:2a:93:02:40:6b:5a:26:90: c9:fb:57:7f:78:53:88:cd:10:c7:92:75:91:15:a7:55:da:d7: ff:da:2e:36:27:ab:ee:78:e4:b5:bf:28:46:77:16:08:8b:18: 46:ed:0d:fd:69:b7:8b:ab:b7:ac:84:a7:df:72:f9:1d:c9:00: 4b:b9:af:e2:48:c6:6d:e4:39:c4:60:52:93:8d:d7:3c:bb:00: 43:08:96:44:e4:b0:92:a0:73:53:4e:76:e1:d6:4b:ce:14:67: f3:0d:cb:03:1b:07:cb:93:bb:34:c4:66:2b:20:11:8f:fc:cf: d0:9f:23:db:56:31:0f:dc:93:d6:c8:76:88:f3:76:c3:4b:b9: 3f:17:9f:5e:82:e1:65:af:d0:d0:19:8a:9f:6c:b3:16:6e:e3: a8:29:23:70:a7:d2:9a:21:6d:a7:22:c2:43:10:97:f5:e1:7d: a5:b7:de:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUwNDEyMTcyNjMyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhYTI0OC0wNmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Xkm/ZgK8lZmrWSSwStnrzeqYdGdgagPFz/A1xWnxi1NGgKzTIKhtPv+OzEF /9NBOVZBRBCpaNjUzRAITiI/AnHPlrvT177NpyZPdrJKQLbwqWRuIRguOV3iY5e2 wVo4jjhZrg3qJRoufNRYMaZzJn4a8TzNuu8UHiD2aZEPI1dCYONWyBT7Bx7wBqV0 jQ86djnHxYNA/V1Qc2ywQpd1UDX+9EebJ9Vt63VdvUscZ+4SZswNxPCNLUcctccu sXgLoFK1vSEqWrd85IatZZ6WUqeUsAPv79gP3BGRBI3d6e29ENECN1CHMRsmfl1n zxWLgWqCkZk/ay9oEXFcTWax/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAHWa7tm TwKF9OsmZBwWQRtJd+2zMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvMTNEMjFDNkVG RUJBMTFFRDlEODM1NTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcmHMwDQYJKoZIhvcNAQELBQADggEBAHU2Ac7uyAUj3k+o 9Hw/q/5Q4CwisnHg7otVE/mexC/gSQDfm4Ft8sVin/XMeEmylteNxAuau8V1jyy9 vku9Rg/S5ec1SI/ofPbYvdXH7JBz/HAqkwJAa1omkMn7V394U4jNEMeSdZEVp1Xa 1//aLjYnq+545LW/KEZ3FgiLGEbtDf1pt4urt6yEp99y+R3JAEu5r+JIxm3kOcRg UpON1zy7AEMIlkTksJKgc1NOduHWS84UZ/MNywMbB8uTuzTEZisgEY/8z9CfI9tW MQ/ck9bIdojzdsNLuT8Xn16C4WWv0NAZip9ssxZu46gpI3Cn0pohbaciwkMQl/Xh faW33sQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:16:08 2025 by rpki-client