$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa File: 1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa (raw, json) Hash identifier: SVylxSGux2r6NiY34VMNxZj+vlwaAz//7jEY/nsUKVw= Subject key identifier: 1E:6A:F0:13:39:00:DE:FD:42:E3:52:9B:F9:41:9C:2D:16:D0:96:62 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 0504 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa Signing time: Thu 23 Jan 2025 09:41:29 +0000 ROA not before: Thu 23 Jan 2025 09:41:29 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45899 IP address blocks: 157.66.13.0/24 maxlen: 24 160.19.78.0/23 maxlen: 23 160.22.2.0/23 maxlen: 24 160.25.74.0/23 maxlen: 24 160.30.54.0/23 maxlen: 24 160.191.52.0/23 maxlen: 24 160.250.216.0/23 maxlen: 23 161.248.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 14:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1284 (0x504) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Jan 23 09:41:29 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=67920ec9-ad39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:99:c1:1e:ff:5d:96:3c:63:ca:cb:31:e0:dd: c2:c7:4d:ae:66:1a:a9:32:06:4f:e5:60:e8:ed:40: 52:1a:f5:be:5a:d2:29:27:6d:c6:79:9e:ca:11:87: 84:d0:ed:40:04:1b:ea:47:aa:8e:aa:13:74:05:12: 98:cb:16:59:60:39:7d:b2:6b:28:17:7c:6c:60:48: 0e:1a:cb:14:f5:48:0f:35:64:66:4b:92:9e:af:41: 45:4a:a1:f3:0a:b2:06:56:23:8c:50:ae:cd:4d:75: 59:0c:03:17:76:e3:05:f5:cf:a0:32:c1:2e:9d:22: 30:bf:02:30:de:34:d7:fc:f4:36:92:d3:4b:58:e0: c1:66:b5:2e:d0:f8:63:ab:e2:6c:b4:58:b4:17:76: 3a:06:65:dd:90:13:b3:49:88:c3:a7:35:1e:df:87: 8e:5a:13:00:bb:59:e2:df:6c:29:f3:c4:b1:e2:2a: 45:f7:9b:f8:7e:2b:dd:ca:bd:f1:05:af:c2:cc:71: aa:35:9a:f1:76:ae:9b:59:8e:a5:b7:a0:e4:f6:79: 47:d8:10:a2:06:53:44:f1:9d:35:78:78:8c:56:9c: fa:46:13:f3:86:73:e1:36:b6:fc:6a:b5:01:8a:8d: e7:75:a7:b1:ce:e2:a9:13:28:3c:53:ad:13:c6:15: dd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:6A:F0:13:39:00:DE:FD:42:E3:52:9B:F9:41:9C:2D:16:D0:96:62 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.13.0/24 160.19.78.0/23 160.22.2.0/23 160.25.74.0/23 160.30.54.0/23 160.191.52.0/23 160.250.216.0/23 161.248.30.0/23 Signature Algorithm: sha256WithRSAEncryption 69:66:1c:e7:b1:e6:7d:2a:e2:e9:aa:b6:98:d3:67:71:be:ba: 81:af:c1:7f:f0:d8:b4:4c:07:c6:be:68:33:9d:bc:72:d4:25: 2d:54:d1:3d:12:90:1d:f3:18:3b:e5:e3:6e:28:f2:9b:28:71: 89:d9:ed:12:b2:d4:09:d2:e9:4c:e8:a0:b8:76:19:bf:9f:4c: 99:55:a1:40:a1:55:1e:fe:ed:ed:49:9d:aa:cc:2f:d9:d5:a7: 80:ec:0d:75:e5:35:64:31:af:bc:5f:25:92:1c:ee:51:2e:0c: 8b:c9:9c:f6:e7:cd:01:db:4c:f1:1a:17:ff:e6:d8:7c:77:3f: 5d:d6:82:0e:87:0d:b7:18:5f:86:d6:e1:5c:fc:a5:fa:cb:e3: 30:33:d3:b5:92:07:cb:24:c5:1a:49:53:19:07:84:8c:69:74: b7:56:87:5c:50:99:2e:b9:3c:58:ef:77:91:de:f5:e9:0f:2a: d8:d8:0f:da:49:8b:a6:21:3d:29:72:bc:03:e6:f5:99:33:b5: c5:ee:34:13:9b:b5:f8:54:18:c6:04:33:a7:72:4e:a9:c8:65: 4a:18:0c:81:0c:9f:84:72:db:ac:9e:7f:be:d1:02:06:31:25: 37:9a:84:a7:8a:31:65:37:7f:b3:a0:f6:12:e5:59:eb:c1:cc: 4d:ed:cd:50 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICBQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwMTIzMDk0MTI5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkyMGVjOS1hZDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25nBHv9dljxjyssx4N3Cx02uZhqpMgZP5WDo7UBSGvW+WtIpJ23GeZ7KEYeE 0O1ABBvqR6qOqhN0BRKYyxZZYDl9smsoF3xsYEgOGssU9UgPNWRmS5Ker0FFSqHz CrIGViOMUK7NTXVZDAMXduMF9c+gMsEunSIwvwIw3jTX/PQ2ktNLWODBZrUu0Phj q+JstFi0F3Y6BmXdkBOzSYjDpzUe34eOWhMAu1ni32wp88Sx4ipF95v4fivdyr3x Ba/CzHGqNZrxdq6bWY6lt6Dk9nlH2BCiBlNE8Z01eHiMVpz6RhPzhnPhNrb8arUB io3ndaexzuKpEyg8U60TxhXdwwIDAQABo4ICvzCCArswHQYDVR0OBBYEFB5q8BM5 AN79QuNSm/lBnC0W0JZiMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMUQxQzkzM0VG QjlBMTFFRUJGNUMzQzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDADBACdQg0DBAGgE04DBAGgFgIDBAGgGUoDBAGgHjYDBAGgvzQD BAGg+tgDBAGh+B4wDQYJKoZIhvcNAQELBQADggEBAGlmHOex5n0q4umqtpjTZ3G+ uoGvwX/w2LRMB8a+aDOdvHLUJS1U0T0SkB3zGDvl424o8psocYnZ7RKy1AnS6Uzo oLh2Gb+fTJlVoUChVR7+7e1JnarML9nVp4DsDXXlNWQxr7xfJZIc7lEuDIvJnPbn zQHbTPEaF//m2Hx3P13Wgg6HDbcYX4bW4Vz8pfrL4zAz07WSB8skxRpJUxkHhIxp dLdWh1xQmS65PFjvd5He9ekPKtjYD9pJi6YhPSlyvAPm9ZkztcXuNBObtfhUGMYE M6dyTqnIZUoYDIEMn4Ry26yef77RAgYxJTeahKeKMWU3f7Og9hLlWevBzE3tzVA= -----END CERTIFICATE-----Generated at Mon Apr 7 19:32:21 2025 by rpki-client