$ rpki-client -vvf rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/44673792C3E511EEA9660E85C4F9AE02.roa File: 44673792C3E511EEA9660E85C4F9AE02.roa (raw, json) Hash identifier: 9frZlnTUA25wzcLVRZfcMG1N4NRYNcJ6CAVrVhpGid0= Subject key identifier: 38:78:8B:7E:3B:4F:26:FA:87:6E:E7:E8:42:1D:A2:C1:D1:D9:48:27 Certificate issuer: /CN=A91F65C7/serialNumber=2BA1AE93BBF56A6F6C965084F048817BB7A98F0F Certificate serial: DB Authority key identifier: 2B:A1:AE:93:BB:F5:6A:6F:6C:96:50:84:F0:48:81:7B:B7:A9:8F:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/K6Guk7v1am9sllCE8EiBe7epjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/44673792C3E511EEA9660E85C4F9AE02.roa Signing time: Thu 03 Apr 2025 05:02:39 +0000 ROA not before: Thu 03 Apr 2025 05:02:39 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 63526 IP address blocks: 157.15.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/K6Guk7v1am9sllCE8EiBe7epjw8.crl rsync://rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/K6Guk7v1am9sllCE8EiBe7epjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/K6Guk7v1am9sllCE8EiBe7epjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:28:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F65C7, serialNumber=2BA1AE93BBF56A6F6C965084F048817BB7A98F0F Validity Not Before: Apr 3 05:02:39 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67ee166f-90a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:07:2a:8b:b7:98:61:18:c7:6a:f0:04:43:94: 2b:2c:9c:1f:b2:a4:e0:92:64:41:62:c1:60:51:38: e7:19:18:43:a0:4b:19:11:24:51:4b:45:b0:61:7f: 06:ba:2e:39:2a:a3:ee:e3:f3:87:b3:5c:2b:08:1a: 6c:15:fb:41:c9:9f:8c:68:eb:cb:a2:c5:22:ca:af: 24:c1:65:10:3e:d2:a8:cd:64:84:4d:f9:0a:0a:ed: 85:3f:5a:ca:9a:fd:24:75:eb:1f:05:98:d4:a9:5f: af:a4:11:61:7c:fe:7a:36:e4:c8:32:62:58:46:31: 46:dc:36:62:42:fb:72:e7:ae:e0:ae:dd:3d:53:61: 84:35:2e:fd:fb:b3:c8:fe:f5:b5:c4:ab:83:10:c3: f4:34:3e:1f:a9:1d:c1:4c:18:d5:cb:67:3f:98:24: ec:82:1b:04:2f:3f:c7:07:65:ac:fa:b4:e5:7e:0e: e6:41:46:91:de:f2:77:18:be:90:e1:88:9e:7b:10: 31:88:53:c7:5e:74:ef:4e:54:e1:e8:2f:de:55:4d: 98:eb:ef:2d:0f:6a:56:19:54:d3:a6:93:69:6c:78: 41:62:53:f8:91:23:f2:1e:d1:a8:4c:bd:d7:7f:7b: 68:83:8c:54:ca:e5:2f:23:7b:c3:8a:c1:26:a7:c2: 78:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:78:8B:7E:3B:4F:26:FA:87:6E:E7:E8:42:1D:A2:C1:D1:D9:48:27 X509v3 Authority Key Identifier: keyid:2B:A1:AE:93:BB:F5:6A:6F:6C:96:50:84:F0:48:81:7B:B7:A9:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/K6Guk7v1am9sllCE8EiBe7epjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/K6Guk7v1am9sllCE8EiBe7epjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F65C7/E3BEA47AC3E411EE9613F583C4F9AE02/44673792C3E511EEA9660E85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.121.0/24 Signature Algorithm: sha256WithRSAEncryption 01:07:c4:ea:f0:22:af:9a:09:cb:7b:ee:8e:6a:f4:88:12:bf: 66:be:c3:5b:7d:6b:b0:98:31:68:3d:72:c8:22:e8:ab:53:ce: 0b:3f:92:cd:b4:53:4d:8b:94:af:4d:ed:f5:95:91:f4:39:50: 4c:ff:61:ba:01:82:bd:a9:ad:fc:95:af:70:54:6c:95:4f:8a: 57:26:97:fd:9d:72:20:f9:a5:2e:20:f4:73:02:ef:cc:b0:c3: 37:9d:f4:61:2c:03:15:06:2e:30:8a:a7:5c:4c:0b:57:93:8a: 65:33:08:71:95:0a:9c:dd:37:d0:d0:ca:1a:61:6c:c6:9c:28: 26:72:a6:6a:9a:11:15:53:69:ab:b3:69:a0:4e:96:07:d1:24: 0f:4a:17:06:b2:ce:c3:4f:f9:61:ee:03:0c:6c:bb:12:1d:73: eb:ea:3a:15:26:5c:45:0a:20:ea:8e:cf:c8:41:b2:52:95:c0: d5:f9:5f:e5:6c:33:79:06:9e:5a:ed:93:1e:2c:58:e7:fb:62: 30:09:32:9b:ba:b4:c9:fc:7b:54:ce:88:a4:88:94:7f:8e:8c: 5d:95:b4:8e:45:26:04:e2:b7:40:5a:2b:13:3f:84:f0:37:c3: 45:c1:c7:31:ff:09:42:4c:8f:d8:72:ff:cb:17:55:99:a6:ba: 8c:35:35:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY1QzcxMTAvBgNVBAUTKDJCQTFBRTkzQkJGNTZBNkY2Qzk2NTA4NEYwNDg4MTdC QjdBOThGMEYwHhcNMjUwNDAzMDUwMjM5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VlMTY2Zi05MGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAcqi7eYYRjHavAEQ5QrLJwfsqTgkmRBYsFgUTjnGRhDoEsZESRRS0WwYX8G ui45KqPu4/OHs1wrCBpsFftByZ+MaOvLosUiyq8kwWUQPtKozWSETfkKCu2FP1rK mv0kdesfBZjUqV+vpBFhfP56NuTIMmJYRjFG3DZiQvty567grt09U2GENS79+7PI /vW1xKuDEMP0ND4fqR3BTBjVy2c/mCTsghsELz/HB2Ws+rTlfg7mQUaR3vJ3GL6Q 4YieexAxiFPHXnTvTlTh6C/eVU2Y6+8tD2pWGVTTppNpbHhBYlP4kSPyHtGoTL3X f3tog4xUyuUvI3vDisEmp8J4pwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDh4i347 Tyb6h27n6EIdosHR2UgnMB8GA1UdIwQYMBaAFCuhrpO79WpvbJZQhPBIgXu3qY8P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjVDNy9FM0JFQTQ3QUMz RTQxMUVFOTYxM0Y1ODNDNEY5QUUwMi9LNkd1azd2MWFtOXNsbENFOEVpQmU3ZXBq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0s2R3VrN3YxYW05c2xsQ0U4RWlCZTdlcGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY1QzcvRTNCRUE0N0FDM0U0MTFFRTk2MTNGNTgzQzRGOUFFMDIvNDQ2NzM3OTJD M0U1MTFFRUE5NjYwRTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD3kwDQYJKoZIhvcNAQELBQADggEBAAEHxOrwIq+aCct7 7o5q9IgSv2a+w1t9a7CYMWg9csgi6KtTzgs/ks20U02LlK9N7fWVkfQ5UEz/YboB gr2prfyVr3BUbJVPilcml/2dciD5pS4g9HMC78ywwzed9GEsAxUGLjCKp1xMC1eT imUzCHGVCpzdN9DQyhphbMacKCZypmqaERVTaauzaaBOlgfRJA9KFwayzsNP+WHu AwxsuxIdc+vqOhUmXEUKIOqOz8hBslKVwNX5X+VsM3kGnlrtkx4sWOf7YjAJMpu6 tMn8e1TOiKSIlH+OjF2VtI5FJgTit0BaKxM/hPA3w0XBxzH/CUJMj9hy/8sXVZmm uow1Ndk= -----END CERTIFICATE-----Generated at Sat Apr 26 12:52:54 2025 by rpki-client