$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/4776F9120CCE11F0A08AA749C4F9AE02.roa File: 4776F9120CCE11F0A08AA749C4F9AE02.roa (raw, json) Hash identifier: 1E9Uj0G9r4nxcyscWv579FgIwgT3cljTL2z6/KS3cW0= Subject key identifier: 51:49:B1:E9:DA:67:A7:DC:A2:39:60:4C:A6:B0:8C:93:F5:48:67:02 Certificate issuer: /CN=A91FBEFA/serialNumber=173C26A086E85B8FDB917AA8D911E1C00AB6A3A1 Certificate serial: 04 Authority key identifier: 17:3C:26:A0:86:E8:5B:8F:DB:91:7A:A8:D9:11:E1:C0:0A:B6:A3:A1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FzwmoIboW4_bkXqo2RHhwAq2o6E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/4776F9120CCE11F0A08AA749C4F9AE02.roa Signing time: Sat 29 Mar 2025 18:47:35 +0000 ROA not before: Sat 29 Mar 2025 18:47:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 152901 IP address blocks: 160.22.76.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/FzwmoIboW4_bkXqo2RHhwAq2o6E.crl rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/FzwmoIboW4_bkXqo2RHhwAq2o6E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FzwmoIboW4_bkXqo2RHhwAq2o6E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 06:54:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBEFA, serialNumber=173C26A086E85B8FDB917AA8D911E1C00AB6A3A1 Validity Not Before: Mar 29 18:47:35 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67e84047-72fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:24:a6:33:52:ec:ef:7d:c2:95:ae:ad:58:73: c7:c1:ad:7d:8e:3c:30:58:f2:a6:b0:5e:20:45:20: da:c7:62:a7:77:09:57:cb:28:03:82:ea:43:87:97: 52:c5:44:5f:0f:29:cc:eb:4d:5e:b4:ac:e4:8f:24: 4a:a4:84:62:43:12:02:6e:67:be:95:47:5c:b7:07: 25:9d:a5:bd:75:49:68:ba:54:2c:f8:d4:b2:88:c7: ee:46:1a:dc:95:7c:17:9d:4e:ed:22:7f:b2:d4:fa: a0:7c:eb:ab:dd:d9:b2:15:b9:fc:44:be:e9:4e:ec: 01:73:9d:cc:2a:5f:19:c7:11:3f:a3:7a:17:d7:60: c5:de:6f:76:03:b8:0e:11:20:e5:02:6e:59:de:9a: 4a:da:75:21:cb:21:d4:dc:b4:59:81:d8:36:20:4a: 49:d0:d4:66:78:4d:ec:12:d0:4e:af:57:1c:0d:82: 47:06:61:4e:fe:16:03:2c:81:5e:40:b7:93:82:9d: c3:ef:94:b0:5d:2d:34:eb:73:60:6b:07:79:74:40: ae:8f:7f:ec:ac:d4:ff:bb:2b:25:f5:9f:ca:7b:3f: 79:98:a0:7e:07:ab:f3:1c:27:91:5c:7e:3e:a0:ae: 61:2b:1c:88:70:5f:76:c4:57:6a:d8:42:ea:bb:54: 36:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:49:B1:E9:DA:67:A7:DC:A2:39:60:4C:A6:B0:8C:93:F5:48:67:02 X509v3 Authority Key Identifier: keyid:17:3C:26:A0:86:E8:5B:8F:DB:91:7A:A8:D9:11:E1:C0:0A:B6:A3:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/FzwmoIboW4_bkXqo2RHhwAq2o6E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FzwmoIboW4_bkXqo2RHhwAq2o6E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBEFA/0DA506CC0B3711F08C239863C4F9AE02/4776F9120CCE11F0A08AA749C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.76.0/23 Signature Algorithm: sha256WithRSAEncryption 8a:ca:b6:29:39:e9:8f:bf:24:e7:75:34:44:47:57:9c:12:7f: 70:6c:9e:d8:91:2f:a7:04:12:0c:77:49:4c:01:56:d8:b9:bb: 4d:66:1b:d8:65:62:0c:2e:6f:6d:a0:3d:7f:2c:59:33:76:85: f9:ab:fe:5a:51:fb:2e:67:d1:3e:53:b0:9b:d1:de:8f:51:38: a4:47:56:80:6c:dc:4a:f7:f6:28:5b:20:a2:21:bd:64:74:85: b2:36:b8:e3:c7:8a:6d:87:d0:7f:98:43:44:14:c5:96:26:6f: 04:d4:bc:60:22:af:69:d6:fd:e9:4e:e1:0d:bd:3d:d7:53:6e: 38:f6:f7:34:61:60:9c:60:61:ca:03:45:a2:02:60:f9:b7:df: 21:04:62:03:a0:aa:ea:eb:5e:62:59:17:1e:dd:f5:94:68:18: e2:20:71:e7:6a:7f:ee:cc:9d:06:61:2c:63:8e:ad:dd:7e:e1: 8e:e5:10:6c:a0:fa:56:ce:7c:80:54:6e:11:1f:e1:d8:a4:88: 89:3a:52:b7:34:81:0c:8a:6a:cd:85:fe:cc:98:45:bd:b1:7e: f5:a3:26:72:0e:6c:d0:4e:8b:28:28:1d:9f:0b:d7:f5:8e:e1: c1:ee:38:ae:63:9a:ed:d9:7d:b2:41:cc:c0:1c:e0:4c:af:ca: c3:15:5c:5a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkVGQTExMC8GA1UEBRMoMTczQzI2QTA4NkU4NUI4RkRCOTE3QUE4RDkxMUUxQzAw QUI2QTNBMTAeFw0yNTAzMjkxODQ3MzVaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZTg0MDQ3LTcyZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyJKYzUuzvfcKVrq1Yc8fBrX2OPDBY8qawXiBFINrHYqd3CVfLKAOC6kOHl1LF RF8PKczrTV60rOSPJEqkhGJDEgJuZ76VR1y3ByWdpb11SWi6VCz41LKIx+5GGtyV fBedTu0if7LU+qB866vd2bIVufxEvulO7AFzncwqXxnHET+jehfXYMXeb3YDuA4R IOUCblnemkradSHLIdTctFmB2DYgSknQ1GZ4TewS0E6vVxwNgkcGYU7+FgMsgV5A t5OCncPvlLBdLTTrc2BrB3l0QK6Pf+ys1P+7KyX1n8p7P3mYoH4Hq/McJ5Fcfj6g rmErHIhwX3bEV2rYQuq7VDb/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUUmx6dpn p9yiOWBMprCMk/VIZwIwHwYDVR0jBBgwFoAUFzwmoIboW4/bkXqo2RHhwAq2o6Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCRUZBLzBEQTUwNkNDMEIz NzExRjA4QzIzOTg2M0M0RjlBRTAyL0Z6d21vSWJvVzRfYmtYcW8yUkhod0FxMm82 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRnp3bW9JYm9XNF9ia1hxbzJSSGh3QXEybzZFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkVGQS8wREE1MDZDQzBCMzcxMUYwOEMyMzk4NjNDNEY5QUUwMi80Nzc2RjkxMjBD Q0UxMUYwQTA4QUE3NDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAWTDANBgkqhkiG9w0BAQsFAAOCAQEAisq2KTnpj78k53U0 REdXnBJ/cGye2JEvpwQSDHdJTAFW2Lm7TWYb2GViDC5vbaA9fyxZM3aF+av+WlH7 LmfRPlOwm9Hej1E4pEdWgGzcSvf2KFsgoiG9ZHSFsja448eKbYfQf5hDRBTFliZv BNS8YCKvadb96U7hDb0911NuOPb3NGFgnGBhygNFogJg+bffIQRiA6Cq6uteYlkX Ht31lGgY4iBx52p/7sydBmEsY46t3X7hjuUQbKD6Vs58gFRuER/h2KSIiTpStzSB DIpqzYX+zJhFvbF+9aMmcg5s0E6LKCgdnwvX9Y7hwe44rmOa7dl9skHMwBzgTK/K wxVcWg== -----END CERTIFICATE-----Generated at Tue Apr 22 14:21:40 2025 by rpki-client