$ rpki-client -vvf rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/ADAFE3AACD8211EF93F95A60C4F9AE02.roa File: ADAFE3AACD8211EF93F95A60C4F9AE02.roa (raw, json) Hash identifier: rHSLmABxeKGefv4fizfNEKuj+yiAF7dF0zr55F5icfk= Subject key identifier: C1:1F:8F:8F:FB:0A:C2:2F:A1:D2:5E:EA:2C:DA:2C:EB:D0:73:A1:8B Certificate issuer: /CN=A91B165F/serialNumber=5A56C4DE9423B9E2B800AB7E040DCA3E09F23475 Certificate serial: 23 Authority key identifier: 5A:56:C4:DE:94:23:B9:E2:B8:00:AB:7E:04:0D:CA:3E:09:F2:34:75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/ADAFE3AACD8211EF93F95A60C4F9AE02.roa Signing time: Wed 08 Jan 2025 05:37:42 +0000 ROA not before: Wed 08 Jan 2025 05:37:41 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 139053 IP address blocks: 160.187.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.crl rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:37:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B165F Validity Not Before: Jan 8 05:37:41 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=677e0f25-174e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:85:25:6e:89:b9:99:bd:64:15:f1:3e:08:bb: 8a:41:61:a1:8b:2f:5d:ce:30:36:b2:6b:fc:ef:39: 50:9d:93:0f:dd:1a:8c:e8:2d:45:07:c2:f1:95:1a: 4f:eb:5d:05:54:15:ed:ce:1d:ca:7b:2f:0a:c3:e5: 28:08:b0:6a:be:70:91:e8:c7:43:d5:1e:36:a3:df: f6:24:4d:3f:c5:4d:87:d2:46:3f:a1:ac:0c:07:a6: 55:85:2c:64:b9:c0:f1:b6:82:36:3f:31:b7:bb:6c: 18:36:39:6c:62:9a:33:11:0e:e5:87:57:1f:1d:22: bf:c2:c9:7b:74:1e:70:6a:6a:0f:51:86:47:b1:8b: 9d:c8:17:c9:00:1a:19:ea:94:06:a1:4a:61:d8:33: b6:26:8d:ca:52:ee:5d:6d:71:e1:58:2f:a3:09:1f: cb:31:38:0c:37:8c:a8:8e:44:49:27:fa:b3:b5:d5: 7b:ee:9e:65:1a:e9:b2:c5:fc:13:03:d6:e9:de:d3: 91:64:23:39:90:d4:59:2d:42:f6:fe:42:33:f8:5f: bd:25:e9:8f:b9:56:e6:c0:11:83:f7:06:9a:71:54: 12:0c:e4:52:5a:3e:a7:c0:46:7a:83:d8:ea:f5:62: db:9e:c0:25:6a:54:15:a8:d7:af:c2:0d:96:5d:e9: 9e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:1F:8F:8F:FB:0A:C2:2F:A1:D2:5E:EA:2C:DA:2C:EB:D0:73:A1:8B X509v3 Authority Key Identifier: keyid:5A:56:C4:DE:94:23:B9:E2:B8:00:AB:7E:04:0D:CA:3E:09:F2:34:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/ADAFE3AACD8211EF93F95A60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.159.0/24 Signature Algorithm: sha256WithRSAEncryption b8:13:fe:40:26:24:57:b2:b6:3a:7e:64:0e:31:3b:b8:1d:e5: 5b:22:a8:84:4b:0e:6f:a7:41:45:d5:15:f3:e0:93:01:a7:18: ff:a1:2c:53:4d:a0:f4:24:f4:39:3c:29:fd:00:45:43:86:4c: 59:c9:4f:41:97:bf:0c:be:dc:22:67:71:bd:0d:d3:d7:a4:53: 31:d5:aa:a3:4c:f7:59:6f:73:e9:ed:fd:78:65:00:47:a7:77: b4:32:72:bc:7f:3f:35:b6:d7:b9:9e:fc:96:ac:b5:c6:dd:bc: b1:28:ad:5b:59:d9:e8:bb:84:5b:4c:46:46:31:61:61:8a:4a: d0:6a:bd:50:8b:6d:c0:fa:5a:83:0a:5d:91:78:3e:2b:0c:f4: 06:04:8d:6b:e1:d4:f3:4d:e9:38:2e:70:f1:a9:10:19:af:a0: dd:e4:2e:cc:b2:da:f9:d7:3b:e8:9d:6e:e4:dc:b3:bc:4d:ec: f3:16:1b:4b:bf:ac:25:a6:c3:61:b9:16:bc:a0:6b:86:43:94: ba:45:ae:4a:e9:6e:f9:2a:f3:5c:e1:a5:e6:1d:a9:bc:62:47: e4:ad:59:95:1e:26:af:0e:4d:c2:79:4b:6d:ad:d2:59:c7:f3: 0d:93:e6:67:a4:68:00:d1:e4:08:cd:57:60:2c:5b:34:8c:e2: 58:3a:ed:22 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTY1RjExMC8GA1UEBRMoNUE1NkM0REU5NDIzQjlFMkI4MDBBQjdFMDQwRENBM0Uw OUYyMzQ3NTAeFw0yNTAxMDgwNTM3NDFaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2UwZjI1LTE3NGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCahSVuibmZvWQV8T4Iu4pBYaGLL13OMDaya/zvOVCdkw/dGozoLUUHwvGVGk/r XQVUFe3OHcp7LwrD5SgIsGq+cJHox0PVHjaj3/YkTT/FTYfSRj+hrAwHplWFLGS5 wPG2gjY/Mbe7bBg2OWximjMRDuWHVx8dIr/CyXt0HnBqag9Rhkexi53IF8kAGhnq lAahSmHYM7YmjcpS7l1tceFYL6MJH8sxOAw3jKiOREkn+rO11XvunmUa6bLF/BMD 1une05FkIzmQ1FktQvb+QjP4X70l6Y+5VubAEYP3BppxVBIM5FJaPqfARnqD2Or1 YtuewCVqVBWo16/CDZZd6Z6fAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUwR+Pj/sK wi+h0l7qLNos69BzoYswHwYDVR0jBBgwFoAUWlbE3pQjueK4AKt+BA3KPgnyNHUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNjVGLzgzRkQ2QjJFQTRC MzExRUY4ODlDNzY4N0M0RjlBRTAyL1dsYkUzcFFqdWVLNEFLdC1CQTNLUGdueU5I VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV2xiRTNwUWp1ZUs0QUt0LUJBM0tQZ255TkhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTY1Ri84M0ZENkIyRUE0QjMxMUVGODg5Qzc2ODdDNEY5QUUwMi9BREFGRTNBQUNE ODIxMUVGOTNGOTVBNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7nzANBgkqhkiG9w0BAQsFAAOCAQEAuBP+QCYkV7K2On5k DjE7uB3lWyKohEsOb6dBRdUV8+CTAacY/6EsU02g9CT0OTwp/QBFQ4ZMWclPQZe/ DL7cImdxvQ3T16RTMdWqo0z3WW9z6e39eGUAR6d3tDJyvH8/NbbXuZ78lqy1xt28 sSitW1nZ6LuEW0xGRjFhYYpK0Gq9UIttwPpagwpdkXg+Kwz0BgSNa+HU803pOC5w 8akQGa+g3eQuzLLa+dc76J1u5NyzvE3s8xYbS7+sJabDYbkWvKBrhkOUukWuSulu +SrzXOGl5h2pvGJH5K1ZlR4mrw5NwnlLba3SWcfzDZPmZ6RoANHkCM1XYCxbNIzi WDrtIg== -----END CERTIFICATE-----Generated at Sat Apr 5 19:35:07 2025 by rpki-client