$ rpki-client -vvf rpki.apnic.net/member_repository/A913A748/A21837B042B111EF92E56578C4F9AE02/1B86A7CCE2CA11EFAA007D32C4F9AE02.roa File: 1B86A7CCE2CA11EFAA007D32C4F9AE02.roa (raw, json) Hash identifier: sPbStdVNUQpgeo3cCvwb+dSIcpm/Yx/AptYb/ozc94k= Subject key identifier: D5:89:4E:46:6A:46:B5:DB:12:28:DD:DD:68:FE:B0:73:B0:71:B4:5E Certificate issuer: /CN=A913A748/serialNumber=694858B92BCA7C08765BC6BBC183923EB5711F81 Certificate serial: 70 Authority key identifier: 69:48:58:B9:2B:CA:7C:08:76:5B:C6:BB:C1:83:92:3E:B5:71:1F:81 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aUhYuSvKfAh2W8a7wYOSPrVxH4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A748/A21837B042B111EF92E56578C4F9AE02/1B86A7CCE2CA11EFAA007D32C4F9AE02.roa Signing time: Tue 04 Feb 2025 07:31:55 +0000 ROA not before: Tue 04 Feb 2025 07:31:55 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151786 IP address blocks: 160.25.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A748/A21837B042B111EF92E56578C4F9AE02/aUhYuSvKfAh2W8a7wYOSPrVxH4E.crl rsync://rpki.apnic.net/member_repository/A913A748/A21837B042B111EF92E56578C4F9AE02/aUhYuSvKfAh2W8a7wYOSPrVxH4E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aUhYuSvKfAh2W8a7wYOSPrVxH4E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 05:21:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A748 Validity Not Before: Feb 4 07:31:55 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67a1c26a-93df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a5:20:15:5e:c2:ed:b4:aa:39:31:45:32:7e: 0d:8b:67:46:5f:a7:81:6f:28:96:3d:07:cc:d9:25: bd:8b:cf:e3:b5:ac:e2:1c:de:e5:3c:fb:05:f1:07: 94:0a:1c:01:5a:3e:ba:c6:26:3d:fc:19:e6:43:41: 37:03:b8:03:ef:49:01:62:b7:ab:4d:16:a7:7e:27: 75:32:ae:1f:08:03:02:46:19:6a:8e:6a:c1:cd:2d: 95:71:5a:56:d0:88:85:d6:32:ff:68:bb:27:58:22: e5:a0:47:e2:f2:b5:ae:9f:45:dc:18:5a:9d:57:c6: 77:89:35:f9:fb:41:7b:d9:78:50:e2:22:d3:75:e4: cc:69:1e:f0:09:93:14:e2:5c:57:e9:f2:55:82:fe: 32:ce:60:90:0c:0a:72:54:c2:b5:70:d4:52:ec:5c: 8a:14:ea:66:0f:50:70:b9:d1:ce:cd:9a:fa:f4:43: c3:54:8c:6f:e4:26:50:85:2d:86:3d:42:4d:51:6e: b5:c0:70:33:33:b9:51:34:77:3b:61:e3:85:2a:30: 9a:1a:b1:f5:09:9e:02:bd:ba:fb:09:cc:a7:96:8e: 93:9d:59:8b:34:11:59:63:12:dd:47:00:04:9c:80: c8:62:d1:f4:a1:99:f4:a0:38:80:9a:31:da:d5:eb: db:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:89:4E:46:6A:46:B5:DB:12:28:DD:DD:68:FE:B0:73:B0:71:B4:5E X509v3 Authority Key Identifier: keyid:69:48:58:B9:2B:CA:7C:08:76:5B:C6:BB:C1:83:92:3E:B5:71:1F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A748/A21837B042B111EF92E56578C4F9AE02/aUhYuSvKfAh2W8a7wYOSPrVxH4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aUhYuSvKfAh2W8a7wYOSPrVxH4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A748/A21837B042B111EF92E56578C4F9AE02/1B86A7CCE2CA11EFAA007D32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.7.0/24 Signature Algorithm: sha256WithRSAEncryption 70:55:5f:aa:ec:79:02:b3:7a:46:46:ef:cd:23:94:2a:de:6b: 35:40:72:97:f4:d5:09:1a:2d:1f:65:42:4c:9c:b1:42:79:ff: 41:35:89:6e:a6:3d:37:b2:5f:82:8a:c7:42:5f:d1:63:1a:97: 21:58:c7:26:be:c0:5f:66:4e:58:23:66:ce:75:0c:7a:2a:8e: 5d:de:a5:2d:1c:d6:77:51:82:cf:d9:62:e4:ae:5b:19:04:f4: 39:11:59:6e:45:66:a7:4d:bc:b9:a6:2a:f4:64:1f:fe:ef:4e: f8:46:d7:7d:39:4f:66:c2:1d:b4:eb:ab:80:46:e3:e5:e7:0f: 60:b2:ed:69:91:51:b3:01:24:80:0b:19:c9:47:76:20:e8:e5: f2:57:82:ce:74:40:3a:fd:bb:8d:02:49:fc:c1:fb:b8:4e:e1: 72:dc:c5:f0:f6:75:83:80:5c:b3:a5:17:1f:32:f2:37:9c:4b: bb:03:86:25:aa:09:20:95:c7:d5:03:31:2b:ba:16:82:1e:f0: b6:56:45:ea:92:1d:d6:89:50:84:bc:a8:f4:f8:9b:91:21:1c: 65:2c:95:2c:20:51:79:fa:11:c6:66:74:68:b6:fc:62:c8:26: 2a:09:7b:e7:9e:28:c2:98:0c:4b:f8:17:21:6c:e9:0e:c6:9e: 02:af:3f:23 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QTc0ODExMC8GA1UEBRMoNjk0ODU4QjkyQkNBN0MwODc2NUJDNkJCQzE4MzkyM0VC NTcxMUY4MTAeFw0yNTAyMDQwNzMxNTVaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTFjMjZhLTkzZGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSpSAVXsLttKo5MUUyfg2LZ0Zfp4FvKJY9B8zZJb2Lz+O1rOIc3uU8+wXxB5QK HAFaPrrGJj38GeZDQTcDuAPvSQFit6tNFqd+J3Uyrh8IAwJGGWqOasHNLZVxWlbQ iIXWMv9ouydYIuWgR+Lyta6fRdwYWp1XxneJNfn7QXvZeFDiItN15MxpHvAJkxTi XFfp8lWC/jLOYJAMCnJUwrVw1FLsXIoU6mYPUHC50c7Nmvr0Q8NUjG/kJlCFLYY9 Qk1RbrXAcDMzuVE0dzth44UqMJoasfUJngK9uvsJzKeWjpOdWYs0EVljEt1HAASc gMhi0fShmfSgOICaMdrV69v/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1YlORmpG tdsSKN3daP6wc7BxtF4wHwYDVR0jBBgwFoAUaUhYuSvKfAh2W8a7wYOSPrVxH4Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBNzQ4L0EyMTgzN0IwNDJC MTExRUY5MkU1NjU3OEM0RjlBRTAyL2FVaFl1U3ZLZkFoMlc4YTd3WU9TUHJWeEg0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYVVoWXVTdktmQWgyVzhhN3dZT1NQclZ4SDRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTc0OC9BMjE4MzdCMDQyQjExMUVGOTJFNTY1NzhDNEY5QUUwMi8xQjg2QTdDQ0Uy Q0ExMUVGQUEwMDdEMzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAZBzANBgkqhkiG9w0BAQsFAAOCAQEAcFVfqux5ArN6Rkbv zSOUKt5rNUByl/TVCRotH2VCTJyxQnn/QTWJbqY9N7JfgorHQl/RYxqXIVjHJr7A X2ZOWCNmznUMeiqOXd6lLRzWd1GCz9li5K5bGQT0ORFZbkVmp028uaYq9GQf/u9O +EbXfTlPZsIdtOurgEbj5ecPYLLtaZFRswEkgAsZyUd2IOjl8leCznRAOv27jQJJ /MH7uE7hctzF8PZ1g4Bcs6UXHzLyN5xLuwOGJaoJIJXH1QMxK7oWgh7wtlZF6pId 1olQhLyo9PibkSEcZSyVLCBRefoRxmZ0aLb8YsgmKgl7554owpgMS/gXIWzpDsae Aq8/Iw== -----END CERTIFICATE-----Generated at Mon Apr 7 09:01:39 2025 by rpki-client