$ rpki-client -vvf rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/992A7358004211F0AC90656CC4F9AE02.roa File: 992A7358004211F0AC90656CC4F9AE02.roa (raw, json) Hash identifier: 6uK19EDHQqPyaVVXXtHQJXfGGnOJLngyIEFvwQHYfKo= Subject key identifier: FC:B2:BA:1F:FB:B0:9F:2B:64:D7:C1:B7:6B:05:FA:14:47:68:7A:5F Certificate issuer: /CN=A91C146D/serialNumber=664E59A000B91E72F803E6D86841154C8056B88A Certificate serial: 0C Authority key identifier: 66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/992A7358004211F0AC90656CC4F9AE02.roa Signing time: Thu 13 Mar 2025 19:37:29 +0000 ROA not before: Thu 13 Mar 2025 19:37:29 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138590 IP address blocks: 160.191.208.0/24 maxlen: 24 160.191.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 07:23:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C146D Validity Not Before: Mar 13 19:37:29 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67d333f8-ce71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:13:79:34:fb:a7:a0:1b:61:64:a5:04:98:4c: 79:ca:aa:42:b4:4d:42:2d:0f:49:5c:42:e3:e9:16: 9c:10:30:6d:d2:5d:47:20:af:b9:97:40:eb:f6:6a: 5f:d3:b0:25:30:2d:4e:f4:42:4d:dc:94:41:e6:e4: 3e:fa:11:4a:74:cf:02:c4:54:ad:12:c8:75:68:05: 7d:06:83:3d:10:e8:f8:38:9a:32:3e:45:41:49:ef: 88:98:11:82:c3:33:76:ff:25:1d:46:24:d1:c9:78: 5f:7f:c0:27:94:48:57:2b:b3:04:0f:38:c5:e1:c3: a3:4c:74:9d:c2:9d:a8:2e:6d:aa:81:21:20:1c:f6: 5e:6a:d4:b4:ba:48:6e:f8:d4:ab:87:83:3c:6f:90: ad:b0:3a:f6:1e:38:d8:9f:8e:c1:69:dc:3b:c9:40: d2:0f:b0:35:dd:45:ed:0a:1a:51:0d:0c:ac:7b:3e: d1:d5:7e:a4:2a:54:ef:25:c7:eb:9c:f1:70:09:a3: 30:7b:95:b3:44:a1:0c:90:ab:06:8d:15:04:3f:cd: dd:0c:8c:62:ab:89:55:24:13:4c:4f:7a:8c:37:0b: d6:99:15:f1:74:d7:d8:50:e2:77:76:7b:50:ff:a2: 2a:4c:0c:0f:99:c9:45:0e:d0:3d:7c:92:d2:32:55: 6b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B2:BA:1F:FB:B0:9F:2B:64:D7:C1:B7:6B:05:FA:14:47:68:7A:5F X509v3 Authority Key Identifier: keyid:66:4E:59:A0:00:B9:1E:72:F8:03:E6:D8:68:41:15:4C:80:56:B8:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zk5ZoAC5HnL4A-bYaEEVTIBWuIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C146D/ECB00B42003711F0BBD72475C4F9AE02/992A7358004211F0AC90656CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.208.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:e9:44:d5:8d:88:14:72:d5:b0:de:0e:4e:a9:37:ed:3d:aa: b9:d1:b3:d0:83:b7:91:f3:86:ae:f7:6e:29:f3:21:f7:6d:f5: 82:71:61:cb:aa:d5:69:58:ae:29:4e:9b:ca:7c:59:8c:2f:e4: de:1d:b3:7f:91:11:ef:9f:b4:24:fd:90:5b:7a:34:db:d2:d5: 21:12:21:7a:2e:03:62:e7:c3:32:f4:9e:34:41:4c:ff:de:e1: 86:1a:52:01:85:0b:ed:8d:7b:fd:e9:34:40:4c:95:89:22:62: 23:36:4f:5e:2f:24:82:b1:05:d7:6e:68:1d:cd:c0:3a:c0:87: 9c:77:dc:a5:19:0f:7c:f5:22:4e:13:2c:17:72:3f:6a:1b:c1: ef:62:0d:8a:a3:9b:04:55:7f:d4:4b:e7:50:7c:39:31:21:f7: 74:35:d7:2e:b7:ce:80:34:0d:15:d9:58:08:5e:20:ac:f8:71: 00:5d:17:46:c2:d2:9d:94:9f:4b:c7:11:35:6e:59:91:51:70: e8:08:f3:46:53:c3:db:d6:5d:8a:56:1c:7f:3f:24:fc:41:56: 5f:e7:e5:60:58:6d:9b:f9:f5:d9:10:21:5c:81:a1:77:07:6a: 6a:af:c2:f0:88:51:a6:e4:b9:48:49:d9:ba:30:b4:6d:99:50: cc:d0:27:6c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTQ2RDExMC8GA1UEBRMoNjY0RTU5QTAwMEI5MUU3MkY4MDNFNkQ4Njg0MTE1NEM4 MDU2Qjg4QTAeFw0yNTAzMTMxOTM3MjlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDMzM2Y4LWNlNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfE3k0+6egG2FkpQSYTHnKqkK0TUItD0lcQuPpFpwQMG3SXUcgr7mXQOv2al/T sCUwLU70Qk3clEHm5D76EUp0zwLEVK0SyHVoBX0Ggz0Q6Pg4mjI+RUFJ74iYEYLD M3b/JR1GJNHJeF9/wCeUSFcrswQPOMXhw6NMdJ3CnagubaqBISAc9l5q1LS6SG74 1KuHgzxvkK2wOvYeONifjsFp3DvJQNIPsDXdRe0KGlENDKx7PtHVfqQqVO8lx+uc 8XAJozB7lbNEoQyQqwaNFQQ/zd0MjGKriVUkE0xPeow3C9aZFfF019hQ4nd2e1D/ oipMDA+ZyUUO0D18ktIyVWttAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/LK6H/uw nytk18G3awX6FEdoel8wHwYDVR0jBBgwFoAUZk5ZoAC5HnL4A+bYaEEVTIBWuIow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxNDZEL0VDQjAwQjQyMDAz NzExRjBCQkQ3MjQ3NUM0RjlBRTAyL1prNVpvQUM1SG5MNEEtYllhRUVWVElCV3VJ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWms1Wm9BQzVIbkw0QS1iWWFFRVZUSUJXdUlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTQ2RC9FQ0IwMEI0MjAwMzcxMUYwQkJENzI0NzVDNEY5QUUwMi85OTJBNzM1ODAw NDIxMUYwQUM5MDY1NkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/0DANBgkqhkiG9w0BAQsFAAOCAQEAmulE1Y2IFHLVsN4O Tqk37T2qudGz0IO3kfOGrvduKfMh9231gnFhy6rVaViuKU6bynxZjC/k3h2zf5ER 75+0JP2QW3o029LVIRIhei4DYufDMvSeNEFM/97hhhpSAYUL7Y17/ek0QEyViSJi IzZPXi8kgrEF125oHc3AOsCHnHfcpRkPfPUiThMsF3I/ahvB72INiqObBFV/1Evn UHw5MSH3dDXXLrfOgDQNFdlYCF4grPhxAF0XRsLSnZSfS8cRNW5ZkVFw6AjzRlPD 29ZdilYcfz8k/EFWX+flYFhtm/n12RAhXIGhdwdqaq/C8IhRpuS5SEnZujC0bZlQ zNAnbA== -----END CERTIFICATE-----Generated at Sun Apr 6 19:52:09 2025 by rpki-client