$ rpki-client -vvf rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/37DEC83C9DEC11EFB004850FC4F9AE02.roa File: 37DEC83C9DEC11EFB004850FC4F9AE02.roa (raw, json) Hash identifier: AzFl0RFcs8OJznRZfBYgmDybc5F7V12CS5camGFMWxA= Subject key identifier: 7E:B9:DD:F3:30:2C:A9:AB:8C:69:1C:36:EB:1B:33:6F:35:FC:7F:68 Certificate issuer: /CN=A915D8F3/serialNumber=32C021311B62FE4500BC8E4E0F4852C64BC5DACB Certificate serial: 32 Authority key identifier: 32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/37DEC83C9DEC11EFB004850FC4F9AE02.roa Signing time: Fri 31 Jan 2025 05:19:48 +0000 ROA not before: Fri 31 Jan 2025 05:19:48 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152165 IP address blocks: 160.191.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 05:06:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D8F3 Validity Not Before: Jan 31 05:19:48 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=679c5d74-ad23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:89:e3:6b:7e:9b:46:6d:cc:13:ca:65:6b:db: b8:29:aa:46:99:c4:1c:d0:ec:38:18:cf:a1:59:fb: 0a:98:ac:7c:f2:88:3a:ed:07:b9:ca:09:27:cf:87: ae:12:2d:c4:e6:37:69:1f:e3:10:58:e3:8a:42:ad: ad:13:2e:ac:93:d0:e8:06:4a:c2:c2:5e:12:77:37: 76:23:ee:94:23:b8:25:a9:83:04:96:ea:d4:8a:9a: d9:13:58:83:8d:72:d5:e7:4b:a2:0c:87:f6:eb:0f: 4d:03:c3:29:95:d2:45:bd:3f:11:ec:ab:8f:a4:f5: c8:bf:26:be:ad:d7:37:de:33:05:2a:40:36:90:c8: 4b:e1:b4:d4:9d:31:b1:ee:49:03:f3:be:e2:41:0b: 73:7c:58:26:48:d9:a4:7a:7e:7e:17:0a:c1:e2:83: 44:91:e0:11:7b:37:76:28:3f:36:7d:1b:3c:54:7b: 81:9c:46:1c:13:bd:6d:ef:a0:ff:cf:92:77:62:9f: 8e:de:8d:91:52:d4:c7:31:36:d7:20:e3:99:7c:51: a8:02:bc:7b:c5:b4:62:2e:2c:ab:d6:67:15:d0:0d: 4e:9c:51:28:ae:a4:94:f2:36:19:df:83:24:41:d2: 85:ec:90:0b:40:ad:58:ae:60:10:6f:96:e2:81:ca: 9e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:B9:DD:F3:30:2C:A9:AB:8C:69:1C:36:EB:1B:33:6F:35:FC:7F:68 X509v3 Authority Key Identifier: keyid:32:C0:21:31:1B:62:FE:45:00:BC:8E:4E:0F:48:52:C6:4B:C5:DA:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/MsAhMRti_kUAvI5OD0hSxkvF2ss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MsAhMRti_kUAvI5OD0hSxkvF2ss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D8F3/C57F23AE9B0711EF837EA012C4F9AE02/37DEC83C9DEC11EFB004850FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.145.0/24 Signature Algorithm: sha256WithRSAEncryption 83:30:4a:d9:52:8e:a8:be:ad:39:f9:e6:6b:57:0a:8a:28:82: 0e:17:cd:04:34:4f:93:b9:98:77:ed:92:c8:04:40:08:b6:93: 7d:8d:55:30:b2:d8:82:f2:af:fc:d6:e8:c5:69:52:1c:c8:09: a8:52:53:ab:ee:cd:34:7b:13:12:86:f4:fe:eb:19:00:30:54: 6d:9c:e3:b5:65:c2:f0:a7:40:30:a3:b7:89:54:5c:73:9d:c9: 3e:ba:07:f8:c7:0e:dd:da:ee:4b:b5:8c:e8:09:d4:4f:d1:34: 00:6b:40:ec:29:fd:78:de:29:d2:ca:d9:b7:62:b1:97:a8:88: 38:e4:a0:82:b9:05:90:79:b3:ae:23:cd:5c:b6:4e:0d:6d:49: 92:bc:43:0e:fd:64:c6:fd:67:7f:a3:0b:96:51:cb:9f:d5:da: e2:96:a2:9d:b7:14:1c:94:d6:0c:6b:52:f1:76:84:da:09:fb: 48:0d:fe:e3:4e:6b:76:aa:84:ea:18:5e:05:92:1a:74:aa:88: f9:8e:5c:dd:6b:ab:e7:a8:02:b9:59:5d:d0:d2:98:61:9e:fd: a8:01:4f:0d:a6:d5:b3:3e:b5:75:93:d3:3d:31:81:f7:14:a7: bb:f1:7b:65:61:04:c8:16:3a:d3:1b:74:c9:2e:a7:23:c1:4b: 3e:6e:b3:78 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RDhGMzExMC8GA1UEBRMoMzJDMDIxMzExQjYyRkU0NTAwQkM4RTRFMEY0ODUyQzY0 QkM1REFDQjAeFw0yNTAxMzEwNTE5NDhaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3OWM1ZDc0LWFkMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDieNrfptGbcwTymVr27gpqkaZxBzQ7DgYz6FZ+wqYrHzyiDrtB7nKCSfPh64S LcTmN2kf4xBY44pCra0TLqyT0OgGSsLCXhJ3N3Yj7pQjuCWpgwSW6tSKmtkTWION ctXnS6IMh/brD00DwymV0kW9PxHsq4+k9ci/Jr6t1zfeMwUqQDaQyEvhtNSdMbHu SQPzvuJBC3N8WCZI2aR6fn4XCsHig0SR4BF7N3YoPzZ9GzxUe4GcRhwTvW3voP/P kndin47ejZFS1McxNtcg45l8UagCvHvFtGIuLKvWZxXQDU6cUSiupJTyNhnfgyRB 0oXskAtArViuYBBvluKByp7pAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUfrnd8zAs qauMaRw26xszbzX8f2gwHwYDVR0jBBgwFoAUMsAhMRti/kUAvI5OD0hSxkvF2ssw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVEOEYzL0M1N0YyM0FFOUIw NzExRUY4MzdFQTAxMkM0RjlBRTAyL01zQWhNUnRpX2tVQXZJNU9EMGhTeGt2RjJz cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTXNBaE1SdGlfa1VBdkk1T0QwaFN4a3ZGMnNzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 RDhGMy9DNTdGMjNBRTlCMDcxMUVGODM3RUEwMTJDNEY5QUUwMi8zN0RFQzgzQzlE RUMxMUVGQjAwNDg1MEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/kTANBgkqhkiG9w0BAQsFAAOCAQEAgzBK2VKOqL6tOfnm a1cKiiiCDhfNBDRPk7mYd+2SyARACLaTfY1VMLLYgvKv/NboxWlSHMgJqFJTq+7N NHsTEob0/usZADBUbZzjtWXC8KdAMKO3iVRcc53JProH+McO3druS7WM6AnUT9E0 AGtA7Cn9eN4p0srZt2Kxl6iIOOSggrkFkHmzriPNXLZODW1JkrxDDv1kxv1nf6ML llHLn9Xa4painbcUHJTWDGtS8XaE2gn7SA3+405rdqqE6hheBZIadKqI+Y5c3Wur 56gCuVld0NKYYZ79qAFPDabVsz61dZPTPTGB9xSnu/F7ZWEEyBY60xt0yS6nI8FL Pm6zeA== -----END CERTIFICATE-----Generated at Sat Apr 5 22:59:40 2025 by rpki-client