$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/A64921C6DB2E11EF9695A34BC4F9AE02.roa File: A64921C6DB2E11EF9695A34BC4F9AE02.roa (raw, json) Hash identifier: jUKtvdvRfj7EpiJjT8XMwLf2VwmiUf/WOa2Bf7gS5kQ= Subject key identifier: EA:DF:1E:76:2E:79:26:90:55:C9:57:40:49:42:60:C1:C8:06:EF:8B Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 050B Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/A64921C6DB2E11EF9695A34BC4F9AE02.roa Signing time: Sat 25 Jan 2025 15:11:28 +0000 ROA not before: Sat 25 Jan 2025 15:11:28 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153539 IP address blocks: 161.248.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 14:32:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1291 (0x50b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Jan 25 15:11:28 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6794ff20-8fd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e7:5c:32:10:c3:3e:a5:9b:48:69:9b:fd:e9: 29:b7:fb:01:0d:b8:74:d6:33:23:aa:bd:10:4b:6b: b3:af:b2:31:c5:ad:df:67:38:54:7b:23:6e:e9:1f: 33:e0:cf:1c:80:b6:75:95:94:13:47:cc:64:62:af: 65:d8:de:38:1a:d2:2f:8c:d8:33:53:ad:12:f2:ca: e2:aa:35:36:82:8f:fc:d3:75:1f:3a:87:44:af:1f: e7:d5:1a:73:c7:5d:86:5e:77:92:19:0f:48:17:02: 15:fb:93:f2:35:17:4a:6f:e0:66:f4:80:59:c0:12: e3:f9:d5:fc:2d:eb:6b:ed:7f:b9:0d:7b:fb:7e:bb: 99:24:d4:73:17:74:88:34:e0:2f:1d:b2:7a:02:0b: d7:18:20:d0:6e:c1:bc:f0:f8:06:b8:11:26:04:ca: c7:37:a3:02:fc:05:f8:70:08:ec:f2:46:16:65:02: 6e:2e:54:33:ca:f5:4b:c8:c6:a0:a7:51:38:7e:d1: b5:14:58:1f:2e:0c:7e:7e:2c:0f:28:76:ba:ce:ae: e3:79:12:0a:6e:c4:1a:6c:b7:c2:91:1d:be:68:d3: 2f:22:c8:d3:9d:df:72:f6:99:f6:7d:f6:d3:7d:21: b2:38:13:2e:9e:99:d7:7f:09:70:97:fb:a4:26:fd: 29:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:DF:1E:76:2E:79:26:90:55:C9:57:40:49:42:60:C1:C8:06:EF:8B X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/A64921C6DB2E11EF9695A34BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.180.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:2a:92:f8:0f:51:d5:a4:f1:7b:61:19:97:24:4e:b0:ac:25: b2:1d:34:bd:4b:d5:e5:7e:69:a9:98:35:72:b5:ae:3f:25:5d: cf:f3:10:09:73:a1:34:cc:f8:53:29:f0:39:7f:63:8f:a9:cd: f8:4a:2a:30:b9:6d:88:33:8a:b8:05:54:95:db:bd:44:15:81: e0:9d:d4:f7:01:cb:27:14:0b:9e:f3:27:44:9b:f2:86:bc:22: e4:87:9b:77:bb:74:ca:ba:49:26:56:dd:48:c0:9a:d8:7d:c9: 81:77:d5:e2:3d:ef:dd:62:15:c3:c5:20:92:02:66:27:4f:d1: 1e:c2:2f:18:db:3c:ec:ef:4d:dd:28:fc:27:29:5d:e5:81:cc: 79:cc:ab:76:e3:26:3f:0e:fd:d6:fb:9a:42:e1:50:3b:d7:0c: 12:49:74:d3:bb:d9:db:65:4f:8e:ea:68:19:4e:18:01:c0:9b: ca:11:7c:59:89:b9:44:0d:fc:60:41:0c:8b:79:85:ec:14:d4: d2:16:e7:a8:3c:9f:25:47:78:c4:aa:3f:63:cf:72:90:b5:a9: 0f:0b:c7:cf:1b:88:61:22:08:60:2d:d3:1f:d2:ba:ac:9d:93: 74:76:38:e8:b2:ec:1b:0f:17:46:9d:38:3f:3b:dd:a4:bb:6a: 36:db:d6:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwMTI1MTUxMTI4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzk0ZmYyMC04ZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxudcMhDDPqWbSGmb/ekpt/sBDbh01jMjqr0QS2uzr7Ixxa3fZzhUeyNu6R8z 4M8cgLZ1lZQTR8xkYq9l2N44GtIvjNgzU60S8sriqjU2go/803UfOodErx/n1Rpz x12GXneSGQ9IFwIV+5PyNRdKb+Bm9IBZwBLj+dX8Letr7X+5DXv7fruZJNRzF3SI NOAvHbJ6AgvXGCDQbsG88PgGuBEmBMrHN6MC/AX4cAjs8kYWZQJuLlQzyvVLyMag p1E4ftG1FFgfLgx+fiwPKHa6zq7jeRIKbsQabLfCkR2+aNMvIsjTnd9y9pn2ffbT fSGyOBMunpnXfwlwl/ukJv0pdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOrfHnYu eSaQVclXQElCYMHIBu+LMB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvQTY0OTIxQzZE QjJFMTFFRjk2OTVBMzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+LQwDQYJKoZIhvcNAQELBQADggEBAF4qkvgPUdWk8Xth GZckTrCsJbIdNL1L1eV+aamYNXK1rj8lXc/zEAlzoTTM+FMp8Dl/Y4+pzfhKKjC5 bYgzirgFVJXbvUQVgeCd1PcByycUC57zJ0Sb8oa8IuSHm3e7dMq6SSZW3UjAmth9 yYF31eI9791iFcPFIJICZidP0R7CLxjbPOzvTd0o/CcpXeWBzHnMq3bjJj8O/db7 mkLhUDvXDBJJdNO72dtlT47qaBlOGAHAm8oRfFmJuUQN/GBBDIt5hewU1NIW56g8 nyVHeMSqP2PPcpC1qQ8Lx88biGEiCGAt0x/Suqydk3R2OOiy7BsPF0adOD873aS7 ajbb1so= -----END CERTIFICATE-----Generated at Mon Apr 7 11:27:39 2025 by rpki-client