$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/D714E00CB26F11EFB2BFFC58C4F9AE02.roa File: D714E00CB26F11EFB2BFFC58C4F9AE02.roa (raw, json) Hash identifier: fbK8JApyPVI7CqfBV4idqbGNutPDQ+/1nnEJoajk5Ao= Subject key identifier: 49:80:88:4E:7F:4B:AE:97:E2:30:59:D2:70:47:84:83:04:AC:9B:37 Certificate issuer: /CN=A91ED9F9/serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Certificate serial: D7 Authority key identifier: 88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/D714E00CB26F11EFB2BFFC58C4F9AE02.roa Signing time: Sun 23 Mar 2025 05:21:26 +0000 ROA not before: Sun 23 Mar 2025 05:21:26 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 25855 IP address blocks: 157.15.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED9F9, serialNumber=881CD56B19AB7CC2626337669EAB730A55A72CB6 Validity Not Before: Mar 23 05:21:26 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67df9a55-b1db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0c:01:5b:70:b6:dc:ff:de:74:5c:43:aa:ab: 84:41:9b:6e:5b:61:0a:fa:37:e2:91:fa:c1:56:79: 6c:f7:85:29:fb:3c:ef:6c:66:a3:7e:2d:69:24:fe: 30:74:0f:64:39:93:32:49:de:a4:cc:07:5a:51:e4: 52:8f:d0:97:6c:d1:5f:c2:a1:ee:7f:bf:8c:e6:0b: fb:de:fc:16:dc:f8:d1:e0:6b:87:ff:81:0a:35:67: 23:b2:d9:bd:b2:47:1f:2b:6e:c3:86:b4:b7:29:95: 3e:21:a7:4c:ec:cb:6a:22:c4:ab:6e:eb:c1:1f:ee: 74:df:25:98:63:34:5a:f3:5a:8e:31:46:94:72:69: 24:d7:2d:c7:b1:35:a7:ae:93:34:a3:4d:10:ab:7c: d1:a9:c2:65:95:b6:0a:ce:05:ca:fa:0e:ae:3a:02: 30:39:98:35:c6:b7:14:7c:99:d3:3e:4c:e9:27:f2: 87:13:6d:b1:21:7c:1a:45:b0:2a:f5:35:22:4b:0f: 36:d2:0d:a5:50:15:60:42:3a:83:1d:fc:dd:0e:75: 86:93:d8:fb:de:7e:9b:32:38:4e:b1:c7:98:1b:c8: 1b:b7:85:0c:30:09:2b:6b:40:2b:03:94:c8:9e:b0: bc:a7:e0:38:31:9e:67:1f:d6:77:3b:81:f5:05:7a: 15:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:80:88:4E:7F:4B:AE:97:E2:30:59:D2:70:47:84:83:04:AC:9B:37 X509v3 Authority Key Identifier: keyid:88:1C:D5:6B:19:AB:7C:C2:62:63:37:66:9E:AB:73:0A:55:A7:2C:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/iBzVaxmrfMJiYzdmnqtzClWnLLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iBzVaxmrfMJiYzdmnqtzClWnLLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED9F9/5F379DB0C95211EEB7ADDD4EC4F9AE02/D714E00CB26F11EFB2BFFC58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.220.0/23 Signature Algorithm: sha256WithRSAEncryption 90:9e:ee:02:96:00:7a:69:eb:08:a8:be:f1:6a:89:a8:39:cf: 73:61:ef:6c:16:61:1e:86:73:de:57:90:1f:ec:3f:f8:08:58: b9:6a:02:7b:5c:68:75:8d:51:85:4d:e8:96:1d:5a:28:25:68: 84:f3:1f:29:4e:31:76:25:f7:f5:98:ef:7a:0c:b6:57:d0:29: b7:f9:3e:51:54:25:e3:86:da:de:c1:59:9c:01:75:ea:51:e8: 2b:5c:d0:e1:38:78:af:5e:f0:70:f0:6c:32:e0:09:0d:05:0d: 59:a2:aa:eb:68:61:89:bf:31:9a:29:3d:5d:07:cc:8d:8b:29: ad:f2:48:47:8a:f2:bb:39:8f:92:83:a2:6e:7a:8d:3f:98:54: b8:dc:47:56:3f:93:3e:fb:ce:ae:30:4d:16:1c:11:fc:23:bb: e1:88:3f:a8:c6:3a:ca:94:a6:98:d5:7b:e4:2a:a2:4e:aa:50: f3:27:42:81:6e:a9:ec:95:71:93:26:ea:7a:d6:f3:d6:88:99: c7:30:9b:39:90:88:f8:92:2b:d0:49:31:96:a1:a4:57:8c:f0: 36:86:a0:91:f3:f9:f9:de:b7:b6:1a:85:15:aa:1a:c6:d1:18: aa:3f:13:7b:80:8f:30:05:3e:1f:1b:e1:7e:b3:2a:29:c3:6c: 29:76:88:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5RjkxMTAvBgNVBAUTKDg4MUNENTZCMTlBQjdDQzI2MjYzMzc2NjlFQUI3MzBB NTVBNzJDQjYwHhcNMjUwMzIzMDUyMTI2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2RmOWE1NS1iMWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygwBW3C23P/edFxDqquEQZtuW2EK+jfikfrBVnls94Up+zzvbGajfi1pJP4w dA9kOZMySd6kzAdaUeRSj9CXbNFfwqHuf7+M5gv73vwW3PjR4GuH/4EKNWcjstm9 skcfK27DhrS3KZU+IadM7MtqIsSrbuvBH+503yWYYzRa81qOMUaUcmkk1y3HsTWn rpM0o00Qq3zRqcJllbYKzgXK+g6uOgIwOZg1xrcUfJnTPkzpJ/KHE22xIXwaRbAq 9TUiSw820g2lUBVgQjqDHfzdDnWGk9j73n6bMjhOsceYG8gbt4UMMAkra0ArA5TI nrC8p+A4MZ5nH9Z3O4H1BXoVTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEmAiE5/ S66X4jBZ0nBHhIMErJs3MB8GA1UdIwQYMBaAFIgc1WsZq3zCYmM3Zp6rcwpVpyy2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDlGOS81RjM3OURCMEM5 NTIxMUVFQjdBRERENEVDNEY5QUUwMi9pQnpWYXhtcmZNSmlZemRtbnF0ekNsV25M TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lCelZheG1yZk1KaVl6ZG1ucXR6Q2xXbkxMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ5RjkvNUYzNzlEQjBDOTUyMTFFRUI3QURERDRFQzRGOUFFMDIvRDcxNEUwMENC MjZGMTFFRkIyQkZGQzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdD9wwDQYJKoZIhvcNAQELBQADggEBAJCe7gKWAHpp6wio vvFqiag5z3Nh72wWYR6Gc95XkB/sP/gIWLlqAntcaHWNUYVN6JYdWiglaITzHylO MXYl9/WY73oMtlfQKbf5PlFUJeOG2t7BWZwBdepR6Ctc0OE4eK9e8HDwbDLgCQ0F DVmiqutoYYm/MZopPV0HzI2LKa3ySEeK8rs5j5KDom56jT+YVLjcR1Y/kz77zq4w TRYcEfwju+GIP6jGOsqUppjVe+Qqok6qUPMnQoFuqeyVcZMm6nrW89aImccwmzmQ iPiSK9BJMZahpFeM8DaGoJHz+fnet7YahRWqGsbRGKo/E3uAjzAFPh8b4X6zKinD bCl2iMk= -----END CERTIFICATE-----Generated at Fri Apr 25 08:25:19 2025 by rpki-client on console.sobornost.net