$ rpki-client -vvf rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/21212316C5FF11EF8E8D5A6AC4F9AE02.roa File: 21212316C5FF11EF8E8D5A6AC4F9AE02.roa (raw, json) Hash identifier: V6Fl4BJJ1t3UeNpBGfvNyvLgQid8VzH7z9vWNtCcihc= Subject key identifier: 0E:B2:14:45:13:62:51:AE:BD:B6:21:99:C1:16:B6:8C:CA:38:C3:3E Certificate issuer: /CN=A91886CC/serialNumber=0B10E5EFEF30F8CE04ED4C5B8F48A9CD24BCBA14 Certificate serial: E6 Authority key identifier: 0B:10:E5:EF:EF:30:F8:CE:04:ED:4C:5B:8F:48:A9:CD:24:BC:BA:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/21212316C5FF11EF8E8D5A6AC4F9AE02.roa Signing time: Fri 25 Apr 2025 02:59:46 +0000 ROA not before: Fri 25 Apr 2025 02:59:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151064 IP address blocks: 157.20.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.crl rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 04 May 2025 02:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91886CC, serialNumber=0B10E5EFEF30F8CE04ED4C5B8F48A9CD24BCBA14 Validity Not Before: Apr 25 02:59:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680afaa2-69fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:82:11:89:4a:bf:74:12:89:3b:32:db:dd:65: 1c:7c:48:f5:54:e6:3d:25:2a:1d:c3:c2:8d:ca:6a: c6:da:ea:32:c6:a0:cf:6a:62:d8:d8:e7:c2:7f:21: 98:93:8f:7d:08:11:5e:e3:46:9d:b3:e1:c6:d1:db: ff:c4:a6:3f:b4:1d:8c:70:14:a3:4d:6c:e2:fc:00: 77:7a:4d:10:3e:4d:f1:c8:68:1a:cb:7c:36:df:8a: 3f:60:08:88:83:d6:ae:57:79:09:7e:f0:79:d6:e8: cb:ea:30:51:d2:74:14:52:d3:34:2a:08:27:d5:3b: a3:6f:55:22:0c:1e:00:c2:64:63:97:bd:3d:ba:2e: 91:6e:07:ba:dc:a2:4f:0b:a4:72:c8:11:85:2d:3b: 25:85:33:c3:ac:b7:01:e1:0d:39:46:4c:7b:85:4b: 82:4b:7a:47:1c:a6:6c:e4:7e:34:62:50:08:2d:0b: 0c:bb:64:a7:a0:6b:84:9e:fc:ca:e4:63:df:e2:1c: cc:ef:5e:ed:cd:1c:e2:e9:23:bd:82:eb:6f:f4:30: 79:4f:04:f8:ae:43:21:fa:6d:b2:06:b0:16:39:48: 74:f2:40:da:2d:c9:7c:95:d6:1b:f8:c5:94:50:96: 27:6b:71:80:27:4f:64:d5:38:39:42:d8:85:18:e0: ab:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B2:14:45:13:62:51:AE:BD:B6:21:99:C1:16:B6:8C:CA:38:C3:3E X509v3 Authority Key Identifier: keyid:0B:10:E5:EF:EF:30:F8:CE:04:ED:4C:5B:8F:48:A9:CD:24:BC:BA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CxDl7-8w-M4E7Uxbj0ipzSS8uhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91886CC/5121415ED5F511EEB0FA605BC4F9AE02/21212316C5FF11EF8E8D5A6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.101.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:ea:09:89:a8:96:49:fe:cd:7c:9a:6a:ac:da:e4:72:96:d8: d7:08:fb:3e:01:2e:7c:a9:96:15:73:d3:82:a1:cb:b0:52:ab: da:9b:66:59:62:39:58:5c:e8:f6:38:ed:fb:7f:32:da:2a:aa: 76:b3:b0:1e:92:86:60:2a:e2:c3:3b:8f:14:6e:dc:02:97:75: 9f:27:c7:0d:3d:91:98:27:cf:1b:7e:e2:11:d7:28:d0:44:25: e2:da:ad:34:fd:e4:e6:dc:68:76:ad:8a:66:55:41:52:78:a5: dc:e6:6e:45:24:55:fc:5e:6d:a4:71:48:96:6b:6e:16:6b:cb: be:4a:a7:8b:2b:72:3f:c0:28:71:c1:22:a4:7f:b8:28:46:f4: fc:46:5e:57:ef:bd:d6:2e:bf:89:c6:fa:52:68:23:0e:09:7b: 8b:c9:d4:53:a0:88:82:aa:cf:47:cf:a2:53:a6:d0:ab:a0:3e: e8:76:d7:68:49:c1:51:18:81:41:fc:74:57:08:7d:e6:2e:37: cb:ff:1a:ef:e2:8b:99:11:9c:fd:62:eb:b0:2b:70:d1:4d:fa: af:71:3a:3a:28:c5:08:f6:ae:de:2d:e5:09:48:30:94:50:b4: 4a:da:87:9a:fd:cd:c6:9e:0c:fc:a3:fe:e4:08:85:ef:69:a5: 10:12:33:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg2Q0MxMTAvBgNVBAUTKDBCMTBFNUVGRUYzMEY4Q0UwNEVENEM1QjhGNDhBOUNE MjRCQ0JBMTQwHhcNMjUwNDI1MDI1OTQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBhZmFhMi02OWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4IRiUq/dBKJOzLb3WUcfEj1VOY9JSodw8KNymrG2uoyxqDPamLY2OfCfyGY k499CBFe40ads+HG0dv/xKY/tB2McBSjTWzi/AB3ek0QPk3xyGgay3w234o/YAiI g9auV3kJfvB51ujL6jBR0nQUUtM0Kggn1Tujb1UiDB4AwmRjl709ui6Rbge63KJP C6RyyBGFLTslhTPDrLcB4Q05Rkx7hUuCS3pHHKZs5H40YlAILQsMu2SnoGuEnvzK 5GPf4hzM717tzRzi6SO9gutv9DB5TwT4rkMh+m2yBrAWOUh08kDaLcl8ldYb+MWU UJYna3GAJ09k1Tg5QtiFGOCrpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA6yFEUT YlGuvbYhmcEWtozKOMM+MB8GA1UdIwQYMBaAFAsQ5e/vMPjOBO1MW49Iqc0kvLoU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODZDQy81MTIxNDE1RUQ1 RjUxMUVFQjBGQTYwNUJDNEY5QUUwMi9DeERsNy04dy1NNEU3VXhiajBpcHpTUzh1 aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0N4RGw3LTh3LU00RTdVeGJqMGlwelNTOHVoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg2Q0MvNTEyMTQxNUVENUY1MTFFRUIwRkE2MDVCQzRGOUFFMDIvMjEyMTIzMTZD NUZGMTFFRjhFOEQ1QTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFGUwDQYJKoZIhvcNAQELBQADggEBAB7qCYmolkn+zXya aqza5HKW2NcI+z4BLnyplhVz04Khy7BSq9qbZlliOVhc6PY47ft/MtoqqnazsB6S hmAq4sM7jxRu3AKXdZ8nxw09kZgnzxt+4hHXKNBEJeLarTT95ObcaHatimZVQVJ4 pdzmbkUkVfxebaRxSJZrbhZry75Kp4srcj/AKHHBIqR/uChG9PxGXlfvvdYuv4nG +lJoIw4Je4vJ1FOgiIKqz0fPolOm0KugPuh212hJwVEYgUH8dFcIfeYuN8v/Gu/i i5kRnP1i67ArcNFN+q9xOjooxQj2rt4t5QlIMJRQtErah5r9zcaeDPyj/uQIhe9p pRASM8w= -----END CERTIFICATE-----Generated at Sun Apr 27 05:42:12 2025 by rpki-client on console.sobornost.net