$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/F84FF96A493911ED805EB686C4F9AE02.roa File: F84FF96A493911ED805EB686C4F9AE02.roa (raw, json) Hash identifier: k6OUPpome7pEAtnI12aWT99EGCFOt7JboBTF3+d34UE= Subject key identifier: 64:CC:B1:56:FC:70:6E:51:B5:FB:CA:20:16:6B:88:92:E1:BA:11:35 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 022F Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/F84FF96A493911ED805EB686C4F9AE02.roa Signing time: Mon 31 Mar 2025 01:59:02 +0000 ROA not before: Mon 31 Mar 2025 01:59:02 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 32787 IP address blocks: 140.168.240.0/24 maxlen: 24 140.168.241.0/24 maxlen: 24 140.168.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:18:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 559 (0x22f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98 Validity Not Before: Mar 31 01:59:02 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67e9f6e6-d439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bf:6e:55:1d:48:38:0d:51:f6:0d:ec:1c:11: dd:17:63:61:a9:35:1e:10:94:1b:fd:6b:ab:b4:32: 4d:e6:51:b3:f2:37:d1:4f:72:15:05:af:35:c6:37: 9c:43:fe:51:fc:6d:51:3d:70:af:6a:ae:e4:a3:8a: 80:27:d5:da:a9:5d:00:df:e7:d9:85:6e:2c:c5:44: 48:13:ba:45:8a:b0:28:88:3d:2e:9f:d8:62:7a:df: 54:5b:8e:7e:a1:d3:21:31:24:4f:43:d7:d8:7c:49: 11:bb:84:13:26:4a:7c:9b:4c:44:8c:57:1e:dd:8c: dc:81:8e:25:b4:dd:61:eb:97:0a:09:71:e7:2c:9a: ea:ab:9d:11:87:72:8b:c7:40:b0:02:0c:8a:cf:e0: a9:0e:0a:7d:5c:84:af:3d:99:c6:4b:fe:25:4b:26: 44:e1:af:55:16:dd:de:33:1e:39:3e:dd:ad:84:dd: 54:0c:e4:b0:a6:0c:4d:91:d6:a6:c5:bc:0c:e3:d0: f9:6f:73:ef:06:c8:3c:4d:10:e7:28:5c:29:95:72: e9:96:ea:13:ec:73:bd:04:cd:6b:25:b6:4b:52:80: c9:6a:ee:cb:20:9d:da:fd:9e:07:ab:fe:5d:5a:11: 46:14:34:e7:9e:65:75:92:76:6d:c0:e8:75:54:1a: 62:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:CC:B1:56:FC:70:6E:51:B5:FB:CA:20:16:6B:88:92:E1:BA:11:35 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/F84FF96A493911ED805EB686C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.240.0/23 140.168.243.0/24 Signature Algorithm: sha256WithRSAEncryption 70:a0:f0:e4:03:f3:31:e4:69:ff:e8:50:e4:33:0c:17:72:58: 36:ac:48:d1:5b:59:18:ae:6f:10:3f:b1:84:66:fa:fe:d0:e6: bc:6f:c2:d0:ff:56:2e:26:92:89:28:dc:50:52:ec:9e:f3:53: 74:9f:dd:24:37:01:08:38:bf:c9:db:22:86:1e:f8:7e:99:04: db:5f:2d:e0:99:75:4d:49:c5:a3:7e:27:f2:64:bc:bd:3d:03: ef:b2:2c:0b:b1:50:16:29:02:15:4f:56:2c:2e:11:1f:ed:c2: 23:c2:88:48:3a:0b:07:57:04:ce:67:c4:45:c7:f0:5f:a9:1e: f0:92:df:4c:aa:8a:fa:48:d0:5e:95:40:78:b5:24:4f:d1:35: 2b:d5:bf:bd:67:2a:b6:f9:19:7e:9a:28:3c:bb:57:25:9a:54: ef:88:73:14:5c:b3:e7:be:63:fd:6c:6f:38:2b:cb:5b:68:17: 81:dd:19:d0:50:9b:bd:84:06:d1:c1:1f:cc:e3:9c:1d:7e:15: 7b:ba:f6:4c:85:44:4b:3c:54:95:8f:de:8c:c1:c6:e2:96:4c: 4d:b8:eb:93:1a:ec:99:5a:00:44:b5:fb:8f:70:3b:7f:53:5c: 44:4a:82:92:88:eb:95:53:c7:88:ba:72:9c:14:2b:c0:41:fc: 6f:83:0b:c7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUwMzMxMDE1OTAyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5ZjZlNi1kNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwL9uVR1IOA1R9g3sHBHdF2NhqTUeEJQb/WurtDJN5lGz8jfRT3IVBa81xjec Q/5R/G1RPXCvaq7ko4qAJ9XaqV0A3+fZhW4sxURIE7pFirAoiD0un9hiet9UW45+ odMhMSRPQ9fYfEkRu4QTJkp8m0xEjFce3YzcgY4ltN1h65cKCXHnLJrqq50Rh3KL x0CwAgyKz+CpDgp9XISvPZnGS/4lSyZE4a9VFt3eMx45Pt2thN1UDOSwpgxNkdam xbwM49D5b3PvBsg8TRDnKFwplXLpluoT7HO9BM1rJbZLUoDJau7LIJ3a/Z4Hq/5d WhFGFDTnnmV1knZtwOh1VBpiUwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGTMsVb8 cG5RtfvKIBZriJLhuhE1MB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvRjg0RkY5NkE0 OTM5MTFFRDgwNUVCNjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGMqPADBACMqPMwDQYJKoZIhvcNAQELBQADggEBAHCg8OQD 8zHkaf/oUOQzDBdyWDasSNFbWRiubxA/sYRm+v7Q5rxvwtD/Vi4mkoko3FBS7J7z U3Sf3SQ3AQg4v8nbIoYe+H6ZBNtfLeCZdU1JxaN+J/JkvL09A++yLAuxUBYpAhVP ViwuER/twiPCiEg6CwdXBM5nxEXH8F+pHvCS30yqivpI0F6VQHi1JE/RNSvVv71n Krb5GX6aKDy7VyWaVO+IcxRcs+e+Y/1sbzgry1toF4HdGdBQm72EBtHBH8zjnB1+ FXu69kyFREs8VJWP3ozBxuKWTE2465Ma7JlaAES1+49wO39TXERKgpKI65VTx4i6 cpwUK8BB/G+DC8c= -----END CERTIFICATE-----Generated at Sat Apr 5 21:55:44 2025 by rpki-client