$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/2031308808A111F09B131E5BC4F9AE02.roa File: 2031308808A111F09B131E5BC4F9AE02.roa (raw, json) Hash identifier: FyXjLRCgkRt49xci/u6DJz1qKlOyAWBczjrKc036O0s= Subject key identifier: 65:55:92:25:6C:19:8B:A1:2F:14:53:8F:09:4A:93:49:CC:97:9A:A2 Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 02 Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/2031308808A111F09B131E5BC4F9AE02.roa Signing time: Mon 24 Mar 2025 11:14:17 +0000 ROA not before: Mon 24 Mar 2025 11:14:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150694 IP address blocks: 163.223.186.0/24 maxlen: 24 163.223.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA Validity Not Before: Mar 24 11:14:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67e13e89-63d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c2:4a:e5:18:24:19:ed:fb:84:d7:d5:d3:cb: 32:d9:ce:64:75:83:42:f5:9c:42:e5:b1:33:c0:77: 3c:4d:e0:1a:37:37:e5:89:a7:d9:fa:6b:de:dc:b8: 19:ef:18:61:10:56:26:c7:3c:b8:da:7f:24:c5:07: 5d:6c:90:33:3a:53:c8:32:59:ed:b9:fc:db:22:dd: 0e:1f:0e:78:3b:15:9c:3f:9c:ed:44:87:e1:35:27: b0:bb:54:9a:7b:04:3b:d2:fe:03:83:61:e3:27:d2: f6:e2:52:4a:2d:ad:6a:b8:6c:ec:e6:1c:83:5e:2e: 6e:2f:13:2c:98:71:04:a2:92:a2:7b:08:5b:a4:60: ab:b5:15:96:d9:2c:a8:dd:ae:33:ab:b4:09:19:ab: ed:1c:08:91:9f:31:89:66:da:ab:1e:03:a4:a4:fb: b8:9a:30:19:a0:78:ed:71:c6:68:a5:62:d2:c1:91: eb:b4:c4:02:1a:69:13:f7:37:60:3f:a2:70:36:67: ff:f2:79:06:3d:a6:c5:ef:0c:6e:f6:fc:b7:5a:e1: 36:8a:17:6c:fa:8a:68:fc:da:ea:55:f0:8e:da:42: 68:d8:a2:a7:37:4e:17:f2:a4:a5:10:21:48:1e:bd: 0f:90:a2:9a:9a:e8:ff:bf:57:31:c1:5c:33:d6:ff: 5c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:55:92:25:6C:19:8B:A1:2F:14:53:8F:09:4A:93:49:CC:97:9A:A2 X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/2031308808A111F09B131E5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.186.0/23 Signature Algorithm: sha256WithRSAEncryption 74:51:6a:7c:6d:2c:13:c8:d1:d9:d1:84:e6:c2:83:f4:f6:83: 8e:1b:a1:8d:bd:15:87:05:db:65:f2:58:d5:da:69:6e:f6:a4: 30:da:06:16:9b:d3:be:26:cb:5a:11:50:30:f8:ce:9f:3c:c8: 40:01:14:e5:6e:21:ad:15:16:ad:ee:51:3c:4a:2a:5f:56:c3: 84:7c:5e:f8:c3:46:67:57:e0:33:3e:11:29:be:c4:3b:bf:d9: 37:a9:d5:8a:d4:ba:64:0c:3d:9b:c0:f5:a7:92:4d:3e:a7:5d: 0f:a4:03:c4:30:8f:d8:46:e7:8c:13:0d:5d:78:37:ca:d7:d0: c7:a3:fa:49:44:cd:97:e7:9d:b9:1e:6e:33:1f:62:53:4d:7e: 65:d3:41:12:b4:d6:c6:c0:5d:37:f2:aa:2b:35:92:c7:fc:78: 0f:42:f3:64:21:53:22:7b:6d:d6:79:87:6a:a4:dd:2b:21:82: e1:e4:89:ca:0e:de:d4:11:fd:3b:b1:2c:2e:fb:c5:a4:f7:1b: 62:36:21:b5:a3:53:e3:49:27:ef:6a:1e:37:4b:d7:7a:53:9b: c0:72:94:a7:fe:4f:10:43:f3:70:db:82:62:3f:10:3d:4a:29: ab:b4:0b:20:16:bb:5a:c4:c4:e8:18:28:56:59:91:b5:9e:45: 9f:58:2b:c7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTAzMjQxMTE0MTdaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTEzZTg5LTYzZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBwkrlGCQZ7fuE19XTyzLZzmR1g0L1nELlsTPAdzxN4Bo3N+WJp9n6a97cuBnv GGEQVibHPLjafyTFB11skDM6U8gyWe25/Nsi3Q4fDng7FZw/nO1Eh+E1J7C7VJp7 BDvS/gODYeMn0vbiUkotrWq4bOzmHINeLm4vEyyYcQSikqJ7CFukYKu1FZbZLKjd rjOrtAkZq+0cCJGfMYlm2qseA6Sk+7iaMBmgeO1xxmilYtLBkeu0xAIaaRP3N2A/ onA2Z//yeQY9psXvDG72/Lda4TaKF2z6imj82upV8I7aQmjYoqc3ThfypKUQIUge vQ+Qopqa6P+/VzHBXDPW/1z5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZVWSJWwZ i6EvFFOPCUqTScyXmqIwHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTlDQS9BOUYyNzIyRTA4QTAxMUYwQjE1ODU2NUFDNEY5QUUwMi8yMDMxMzA4ODA4 QTExMUYwOUIxMzFFNUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPfujANBgkqhkiG9w0BAQsFAAOCAQEAdFFqfG0sE8jR2dGE 5sKD9PaDjhuhjb0VhwXbZfJY1dppbvakMNoGFpvTvibLWhFQMPjOnzzIQAEU5W4h rRUWre5RPEoqX1bDhHxe+MNGZ1fgMz4RKb7EO7/ZN6nVitS6ZAw9m8D1p5JNPqdd D6QDxDCP2EbnjBMNXXg3ytfQx6P6SUTNl+eduR5uMx9iU01+ZdNBErTWxsBdN/Kq KzWSx/x4D0LzZCFTIntt1nmHaqTdKyGC4eSJyg7e1BH9O7EsLvvFpPcbYjYhtaNT 40kn72oeN0vXelObwHKUp/5PEEPzcNuCYj8QPUopq7QLIBa7WsTE6BgoVlmRtZ5F n1grxw== -----END CERTIFICATE-----Generated at Mon Apr 7 01:50:32 2025 by rpki-client