$ rpki-client -vvf rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/9E3D544AFFFD11EF8D8A924EC4F9AE02.roa File: 9E3D544AFFFD11EF8D8A924EC4F9AE02.roa (raw, json) Hash identifier: kvDpEJ4vNqB5v/40TPE8rSrj+LHjgO0UCi0Xf8q1/Kg= Subject key identifier: 6A:AA:32:73:7D:8F:B8:8A:C7:5E:34:02:AC:A3:EB:84:40:FD:CC:B1 Certificate issuer: /CN=A912E53C/serialNumber=7445933637CCA309A4C161ABFEDF8779CB2AB13F Certificate serial: 4D Authority key identifier: 74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/9E3D544AFFFD11EF8D8A924EC4F9AE02.roa Signing time: Thu 13 Mar 2025 11:23:42 +0000 ROA not before: Thu 13 Mar 2025 11:23:42 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152183 IP address blocks: 160.191.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 11:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E53C Validity Not Before: Mar 13 11:23:42 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67d2c03e-8151 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:df:5f:4a:ed:94:5d:5c:9f:84:77:3e:16:d0: 9c:c6:ed:0b:02:2f:0a:8b:f9:83:11:d7:32:6b:65: b8:d3:5d:fd:08:dc:93:f7:07:3e:69:54:b1:23:1b: 47:bf:ce:35:e7:b9:b6:4c:36:ba:29:ff:a3:c5:f1: 32:36:72:6f:06:6f:3f:f8:b2:bc:20:23:38:d3:88: 3a:2a:09:da:af:6b:07:fb:b6:39:17:25:de:4b:72: c1:b2:1f:0a:67:ef:62:c1:0e:4d:9a:0e:4b:ac:76: 05:63:9f:fd:09:28:ff:a2:fa:3f:3a:fc:cd:3d:21: 26:42:85:0d:aa:66:8a:9f:41:2d:7f:b9:2c:51:35: d7:fd:35:35:e9:aa:73:a1:6b:ba:23:b3:fd:d0:60: 73:4a:98:a5:47:35:92:57:c2:0c:bf:c4:bc:7f:32: d3:11:69:76:be:bf:07:ee:c3:7a:90:36:56:b8:2e: bd:fb:71:57:81:c8:9e:28:0e:aa:b2:be:b7:41:9f: 1c:0b:39:3b:88:71:9d:9b:4d:59:80:ff:59:fc:cb: 05:91:41:ae:7f:05:e7:6a:5d:93:72:0f:56:8e:b2: ff:50:43:83:be:e7:ba:ac:54:de:4d:8d:c0:80:a1: d1:a7:0a:ad:00:fb:44:27:ef:47:14:ea:e9:5e:d3: e0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:AA:32:73:7D:8F:B8:8A:C7:5E:34:02:AC:A3:EB:84:40:FD:CC:B1 X509v3 Authority Key Identifier: keyid:74:45:93:36:37:CC:A3:09:A4:C1:61:AB:FE:DF:87:79:CB:2A:B1:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/dEWTNjfMowmkwWGr_t-HecsqsT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dEWTNjfMowmkwWGr_t-HecsqsT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E53C/29B86994903A11EFBF156D81C4F9AE02/9E3D544AFFFD11EF8D8A924EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.57.0/24 Signature Algorithm: sha256WithRSAEncryption 91:1e:d2:35:8e:8b:4d:b4:29:5e:c8:88:9d:09:80:dd:b7:4a: ce:a3:32:77:08:21:21:85:b0:33:51:2e:c9:19:51:2f:0b:ea: 00:11:f5:83:95:2f:2d:1e:21:2b:a3:c4:c9:5f:0f:e4:ea:13: b4:be:a8:63:e7:43:49:12:c6:98:ed:18:5c:ed:5f:59:f4:24: b1:a3:44:9b:50:c6:18:90:4d:46:22:d6:d4:39:22:36:c5:19: 74:88:84:25:df:85:83:66:7e:f6:6b:7f:84:96:7f:63:1e:dc: 4e:e0:60:18:4b:45:fc:dd:04:d3:d9:f0:76:02:af:ee:94:02: df:6b:e8:6d:ec:86:25:57:bb:45:75:e4:fd:eb:8e:00:24:b9: 40:c1:17:22:2f:f0:40:c2:6e:0b:ae:50:8e:78:fe:ad:a3:8e: ba:41:bc:a7:22:c7:5c:64:5e:f2:99:4c:4e:14:54:5c:7f:8b: 2b:ef:86:15:ca:12:1a:7e:73:e6:0d:96:82:54:d6:be:57:9a: 47:21:a7:0f:04:e5:5c:31:43:c7:9d:0c:ae:c6:e8:b5:71:a5: 94:1a:23:74:a6:0c:17:b1:82:5b:38:59:cb:65:9c:38:07:c6: 28:cb:c5:89:d6:b7:d4:47:60:84:44:78:f7:d4:b9:e2:cc:3f: 17:23:65:f5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RTUzQzExMC8GA1UEBRMoNzQ0NTkzMzYzN0NDQTMwOUE0QzE2MUFCRkVERjg3NzlD QjJBQjEzRjAeFw0yNTAzMTMxMTIzNDJaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDJjMDNlLTgxNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDv319K7ZRdXJ+Edz4W0JzG7QsCLwqL+YMR1zJrZbjTXf0I3JP3Bz5pVLEjG0e/ zjXnubZMNrop/6PF8TI2cm8Gbz/4srwgIzjTiDoqCdqvawf7tjkXJd5LcsGyHwpn 72LBDk2aDkusdgVjn/0JKP+i+j86/M09ISZChQ2qZoqfQS1/uSxRNdf9NTXpqnOh a7ojs/3QYHNKmKVHNZJXwgy/xLx/MtMRaXa+vwfuw3qQNla4Lr37cVeByJ4oDqqy vrdBnxwLOTuIcZ2bTVmA/1n8ywWRQa5/BedqXZNyD1aOsv9QQ4O+57qsVN5NjcCA odGnCq0A+0Qn70cU6ule0+DVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaqoyc32P uIrHXjQCrKPrhED9zLEwHwYDVR0jBBgwFoAUdEWTNjfMowmkwWGr/t+HecsqsT8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFNTNDLzI5Qjg2OTk0OTAz QTExRUZCRjE1NkQ4MUM0RjlBRTAyL2RFV1ROamZNb3dta3dXR3JfdC1IZWNzcXNU OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZEVXVE5qZk1vd21rd1dHcl90LUhlY3Nxc1Q4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RTUzQy8yOUI4Njk5NDkwM0ExMUVGQkYxNTZEODFDNEY5QUUwMi85RTNENTQ0QUZG RkQxMUVGOEQ4QTkyNEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/OTANBgkqhkiG9w0BAQsFAAOCAQEAkR7SNY6LTbQpXsiI nQmA3bdKzqMydwghIYWwM1EuyRlRLwvqABH1g5UvLR4hK6PEyV8P5OoTtL6oY+dD SRLGmO0YXO1fWfQksaNEm1DGGJBNRiLW1DkiNsUZdIiEJd+Fg2Z+9mt/hJZ/Yx7c TuBgGEtF/N0E09nwdgKv7pQC32vobeyGJVe7RXXk/euOACS5QMEXIi/wQMJuC65Q jnj+raOOukG8pyLHXGRe8plMThRUXH+LK++GFcoSGn5z5g2WglTWvleaRyGnDwTl XDFDx50MrsbotXGllBojdKYMF7GCWzhZy2WcOAfGKMvFida31EdghER499S54sw/ FyNl9Q== -----END CERTIFICATE-----Generated at Sat Mar 15 05:47:01 2025 by rpki-client