$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/C163B1881A4711EDA547FE24C4F9AE02.roa File: C163B1881A4711EDA547FE24C4F9AE02.roa (raw, json) Hash identifier: YyHC9fQHplsWKxQpqgQ61v95ti092y+Fsw7rZXStZmE= Subject key identifier: 55:24:A6:E4:67:6D:E4:8E:D4:E4:0B:A9:F5:09:5F:4F:18:BF:BF:51 Certificate issuer: /CN=A91E2AE5/serialNumber=7C63B283D9B8A06EEAD0621B823ED0F4E699DDF4 Certificate serial: 149F Authority key identifier: 7C:63:B2:83:D9:B8:A0:6E:EA:D0:62:1B:82:3E:D0:F4:E6:99:DD:F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/C163B1881A4711EDA547FE24C4F9AE02.roa Signing time: Fri 28 Feb 2025 15:52:37 +0000 ROA not before: Fri 28 Feb 2025 15:52:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9988 IP address blocks: 136.228.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 15:30:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5279 (0x149f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5 Validity Not Before: Feb 28 15:52:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c1dbc4-c238 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3d:c0:c0:57:53:e1:a7:8b:2f:b6:5f:6f:fe: e7:28:af:95:69:e6:ee:2e:f2:64:d3:fa:d5:e0:7a: 68:bd:4b:0f:0a:b7:bc:f6:62:22:d2:a2:fc:ac:de: 8f:9e:5f:7c:a2:04:b1:aa:45:4f:f6:5a:b3:63:0f: ae:13:26:c0:29:33:89:17:c9:ea:21:f0:b4:72:c1: 4b:6e:1e:69:fd:0b:a7:87:19:7e:8b:b3:46:8b:ad: 9e:10:f9:fc:e7:24:2f:46:9e:77:8a:48:9a:4c:4d: b2:21:ed:87:be:dc:79:5a:6f:43:99:5f:f5:b3:ed: ff:99:a8:40:a0:08:93:49:2c:5c:08:e7:ff:d0:3c: 75:1e:4a:e4:d8:d1:ed:c9:22:b9:3f:e6:32:bd:88: c7:4f:b9:46:ee:52:75:af:78:be:22:6a:02:c6:5f: a8:86:9c:77:83:a0:dc:d1:d8:9a:99:a4:56:ec:1f: 61:32:1a:c8:cd:a3:1d:f8:50:3a:bb:1c:61:9e:14: ff:40:72:57:e9:b3:fd:6b:2a:27:da:6f:72:2c:bc: 1f:e4:b7:0d:70:c0:80:07:5f:b3:e1:72:d3:50:43: 4e:18:31:b0:0b:d8:30:45:60:b5:09:fa:b8:88:89: 08:71:0d:f3:82:42:35:2a:d5:26:16:12:39:4b:71: b0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:24:A6:E4:67:6D:E4:8E:D4:E4:0B:A9:F5:09:5F:4F:18:BF:BF:51 X509v3 Authority Key Identifier: keyid:7C:63:B2:83:D9:B8:A0:6E:EA:D0:62:1B:82:3E:D0:F4:E6:99:DD:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fGOyg9m4oG7q0GIbgj7Q9OaZ3fQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/9D7276B65CA911E8AA42A346C4F9AE02/C163B1881A4711EDA547FE24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.228.160.0/20 Signature Algorithm: sha256WithRSAEncryption 0f:e4:8f:d4:05:9f:5f:69:2e:99:61:a6:77:4f:1d:1b:47:79: 82:4b:28:20:d1:93:c4:6d:1e:e2:bb:1c:d5:65:fe:2d:7d:6a: 59:6a:e8:31:b0:63:84:bc:3d:14:53:62:b6:78:55:ee:62:be: 58:5b:0f:6c:87:fa:d0:7b:09:03:0e:66:62:54:ba:a9:dd:50: f6:5e:7e:ed:58:22:d5:78:fe:19:9d:04:05:14:1e:cc:14:58: 84:29:59:f7:55:6d:50:68:89:7a:55:1a:83:27:27:7d:f6:35: c8:5c:eb:2a:a2:f2:95:98:d5:ee:c3:1b:e9:9f:0d:d9:b6:23: dd:44:e5:23:18:0f:fa:ae:09:88:d2:06:1d:ad:2c:a3:21:19: 52:a6:e6:07:af:66:34:b4:c2:31:92:cb:40:4d:ec:c2:9c:20: 98:7a:0e:f6:bf:d7:d4:0b:f5:2e:4a:e3:3c:b3:33:88:10:f3: a6:e3:64:70:bf:96:61:33:74:fe:62:2f:a5:61:96:e4:4c:dc: a4:0b:6c:1e:1b:81:c7:aa:6f:d5:1f:82:61:96:33:35:bb:d2: a3:b2:4e:6c:ec:d1:26:2d:b0:ba:f7:2f:a1:47:ad:49:9b:4c: 0c:8f:86:aa:a2:4f:f1:cf:91:e5:87:55:bf:1f:36:09:81:78: 13:f8:bd:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKDdDNjNCMjgzRDlCOEEwNkVFQUQwNjIxQjgyM0VEMEY0 RTY5OURERjQwHhcNMjUwMjI4MTU1MjM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2MxZGJjNC1jMjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoD3AwFdT4aeLL7Zfb/7nKK+VaebuLvJk0/rV4HpovUsPCre89mIi0qL8rN6P nl98ogSxqkVP9lqzYw+uEybAKTOJF8nqIfC0csFLbh5p/Qunhxl+i7NGi62eEPn8 5yQvRp53ikiaTE2yIe2Hvtx5Wm9DmV/1s+3/mahAoAiTSSxcCOf/0Dx1Hkrk2NHt ySK5P+YyvYjHT7lG7lJ1r3i+ImoCxl+ohpx3g6Dc0diamaRW7B9hMhrIzaMd+FA6 uxxhnhT/QHJX6bP9ayon2m9yLLwf5LcNcMCAB1+z4XLTUENOGDGwC9gwRWC1Cfq4 iIkIcQ3zgkI1KtUmFhI5S3Gw4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFUkpuRn beSO1OQLqfUJX08Yv79RMB8GA1UdIwQYMBaAFHxjsoPZuKBu6tBiG4I+0PTmmd30 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS85RDcyNzZCNjVD QTkxMUU4QUE0MkEzNDZDNEY5QUUwMi9mR095ZzltNG9HN3EwR0liZ2o3UTlPYVoz ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZHT3lnOW00b0c3cTBHSWJnajdROU9hWjNmUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJBRTUvOUQ3Mjc2QjY1Q0E5MTFFOEFBNDJBMzQ2QzRGOUFFMDIvQzE2M0IxODgx QTQ3MTFFREE1NDdGRTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBASI5KAwDQYJKoZIhvcNAQELBQADggEBAA/kj9QFn19pLplh pndPHRtHeYJLKCDRk8RtHuK7HNVl/i19allq6DGwY4S8PRRTYrZ4Ve5ivlhbD2yH +tB7CQMOZmJUuqndUPZefu1YItV4/hmdBAUUHswUWIQpWfdVbVBoiXpVGoMnJ332 Nchc6yqi8pWY1e7DG+mfDdm2I91E5SMYD/quCYjSBh2tLKMhGVKm5gevZjS0wjGS y0BN7MKcIJh6Dva/19QL9S5K4zyzM4gQ86bjZHC/lmEzdP5iL6VhluRM3KQLbB4b gceqb9UfgmGWMzW70qOyTmzs0SYtsLr3L6FHrUmbTAyPhqqiT/HPkeWHVb8fNgmB eBP4vVo= -----END CERTIFICATE-----Generated at Mon Apr 7 11:30:21 2025 by rpki-client