$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/66E8964AE4B911EE8EC7426CC4F9AE02.roa File: 66E8964AE4B911EE8EC7426CC4F9AE02.roa (raw, json) Hash identifier: 09gHaKHodm8DnpQuTY9BuW6MFW3h5Zayu3XFpgrbJoc= Subject key identifier: 8F:EF:20:65:82:F9:EB:8C:6F:DA:3F:CA:05:D9:88:C5:9E:F1:C8:37 Certificate issuer: /CN=A91F2B47/serialNumber=17D5FE323EBFD9A8D344E77B73799A8E75624352 Certificate serial: 0225 Authority key identifier: 17:D5:FE:32:3E:BF:D9:A8:D3:44:E7:7B:73:79:9A:8E:75:62:43:52 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/66E8964AE4B911EE8EC7426CC4F9AE02.roa Signing time: Wed 05 Mar 2025 03:48:09 +0000 ROA not before: Wed 05 Mar 2025 03:48:09 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 9547 IP address blocks: 166.120.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.crl rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:11:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2B47 Validity Not Before: Mar 5 03:48:09 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c7c979-be10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b7:56:74:fd:83:d5:94:f3:6c:30:b7:a3:58: 31:7f:f6:0f:2b:94:a0:49:47:09:90:52:c7:7e:bb: 58:af:84:05:bc:58:d4:f6:34:b1:9c:df:ca:dc:da: a8:85:a8:7e:0e:43:44:9e:11:83:3e:d4:f9:ab:89: 3f:d3:d6:0f:b8:70:1c:e9:ec:9b:dd:f8:a1:5f:ad: 01:4a:ba:3c:d9:fb:9d:04:9c:68:95:f0:23:42:b4: ff:99:73:b3:1c:0d:a0:8d:23:8d:0b:4a:88:3d:27: 6c:12:c7:7d:02:68:c5:66:42:98:1c:0d:d6:b8:9e: 81:34:d1:3a:f8:a8:98:5f:43:09:11:53:39:68:b2: 71:1c:63:ce:fc:28:e3:f9:89:b6:15:e9:f1:37:63: e3:45:7a:a8:b6:cb:1d:1a:cf:90:e5:fd:ed:1c:f3: a7:e6:8d:b7:98:27:9d:e8:0d:91:02:6c:17:28:82: 6b:4d:c5:af:73:1e:fd:98:8f:29:70:ca:70:d3:28: de:dd:d7:1a:16:83:f7:b0:08:8e:f9:db:f4:4a:dc: 9b:9e:98:bc:1c:7f:05:7c:be:53:f7:1e:1e:98:00: 7b:1f:9f:b2:fb:3d:45:5c:e7:ad:36:3f:06:a9:89: 89:91:13:20:91:32:84:8c:b6:a4:ce:34:79:1e:4a: 35:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EF:20:65:82:F9:EB:8C:6F:DA:3F:CA:05:D9:88:C5:9E:F1:C8:37 X509v3 Authority Key Identifier: keyid:17:D5:FE:32:3E:BF:D9:A8:D3:44:E7:7B:73:79:9A:8E:75:62:43:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/F9X-Mj6_2ajTROd7c3majnViQ1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/F9X-Mj6_2ajTROd7c3majnViQ1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2B47/E88E9C7E33AF11EDB6107434C4F9AE02/66E8964AE4B911EE8EC7426CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 166.120.196.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:ef:ff:d8:40:73:fb:1c:84:12:4e:50:f3:ac:e9:ef:be:0f: 83:bd:8d:b5:d5:0b:4b:f1:13:7a:10:75:37:7a:3f:2d:f3:67: e7:a4:f0:ad:b8:00:7e:cc:84:47:a3:dd:a7:d8:5a:87:41:64: 76:b6:90:af:45:5c:0e:25:5d:fe:35:a4:10:1f:47:0e:96:e0: 47:b6:9e:45:7e:31:1a:34:53:2f:97:89:44:2d:83:f4:6b:97: 59:67:ff:d1:61:ab:7a:d1:45:2d:07:ec:b6:99:43:23:d9:b5: 98:e0:53:6f:68:5c:8b:d1:0b:6e:22:2d:0c:5a:73:d2:fb:08: b4:66:f0:ea:f2:bf:90:fc:e5:83:e2:ee:09:44:0a:e2:a9:f1: c0:24:61:02:27:dc:f4:16:05:22:19:51:45:1f:8a:67:b3:a9: b9:67:12:1e:44:66:da:c2:17:53:2d:42:52:e6:6a:85:5f:7a: 49:c8:56:0b:02:95:de:d5:59:02:e9:b6:53:ae:7a:5d:17:3c: 02:b1:4a:50:23:ee:a7:ab:93:62:c6:e7:1e:6a:9c:1c:14:99: f0:66:e0:34:b9:1d:1a:f8:a2:0f:0a:f6:54:09:72:21:8f:78: 2f:2e:f6:c3:2e:bd:12:2a:70:7d:79:69:24:88:15:38:51:78: c5:e9:04:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJCNDcxMTAvBgNVBAUTKDE3RDVGRTMyM0VCRkQ5QThEMzQ0RTc3QjczNzk5QThF NzU2MjQzNTIwHhcNMjUwMzA1MDM0ODA5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3Yzk3OS1iZTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7dWdP2D1ZTzbDC3o1gxf/YPK5SgSUcJkFLHfrtYr4QFvFjU9jSxnN/K3Nqo hah+DkNEnhGDPtT5q4k/09YPuHAc6eyb3fihX60BSro82fudBJxolfAjQrT/mXOz HA2gjSONC0qIPSdsEsd9AmjFZkKYHA3WuJ6BNNE6+KiYX0MJEVM5aLJxHGPO/Cjj +Ym2FenxN2PjRXqotssdGs+Q5f3tHPOn5o23mCed6A2RAmwXKIJrTcWvcx79mI8p cMpw0yje3dcaFoP3sAiO+dv0Stybnpi8HH8FfL5T9x4emAB7H5+y+z1FXOetNj8G qYmJkRMgkTKEjLakzjR5Hko1iQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI/vIGWC +euMb9o/ygXZiMWe8cg3MB8GA1UdIwQYMBaAFBfV/jI+v9mo00Tne3N5mo51YkNS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkI0Ny9FODhFOUM3RTMz QUYxMUVEQjYxMDc0MzRDNEY5QUUwMi9GOVgtTWo2XzJhalRST2Q3YzNtYWpuVmlR MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0Y5WC1NajZfMmFqVFJPZDdjM21ham5WaVExSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjJCNDcvRTg4RTlDN0UzM0FGMTFFREI2MTA3NDM0QzRGOUFFMDIvNjZFODk2NEFF NEI5MTFFRThFQzc0MjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKmeMQwDQYJKoZIhvcNAQELBQADggEBABvv/9hAc/schBJO UPOs6e++D4O9jbXVC0vxE3oQdTd6Py3zZ+ek8K24AH7MhEej3afYWodBZHa2kK9F XA4lXf41pBAfRw6W4Ee2nkV+MRo0Uy+XiUQtg/Rrl1ln/9Fhq3rRRS0H7LaZQyPZ tZjgU29oXIvRC24iLQxac9L7CLRm8Oryv5D85YPi7glECuKp8cAkYQIn3PQWBSIZ UUUfimezqblnEh5EZtrCF1MtQlLmaoVfeknIVgsCld7VWQLptlOuel0XPAKxSlAj 7qerk2LG5x5qnBwUmfBm4DS5HRr4og8K9lQJciGPeC8u9sMuvRIqcH15aSSIFThR eMXpBKE= -----END CERTIFICATE-----Generated at Sat Apr 5 23:43:54 2025 by rpki-client