$ rpki-client -vvf rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/F060FF0E720D11EDA84BE02EC4F9AE02.roa File: F060FF0E720D11EDA84BE02EC4F9AE02.roa (raw, json) Hash identifier: MTvQaAV2j4a15rRSTpoB41scqYTwrnry9bJaizx2K5M= Subject key identifier: FA:02:9B:56:AE:64:1A:3A:A8:11:BF:03:D9:16:1A:3C:F0:E3:D2:72 Certificate issuer: /CN=A914C4ED/serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Certificate serial: 01D7 Authority key identifier: D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/F060FF0E720D11EDA84BE02EC4F9AE02.roa Signing time: Sat 17 May 2025 01:36:56 +0000 ROA not before: Sat 17 May 2025 01:36:56 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 8220 IP address blocks: 148.109.0.0/16 maxlen: 16 148.109.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:10:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C4ED, serialNumber=D98529148CBA5DDED3B73D6052EE0516C024C4F3 Validity Not Before: May 17 01:36:56 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6827e838-edcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fb:35:96:39:2f:e3:36:75:a8:c2:99:f5:50: 27:56:9f:3e:74:a7:db:06:a3:20:b9:77:ff:f8:60: 1d:5c:81:8f:df:1f:42:b0:e9:60:fb:1b:38:6c:5a: 77:6d:a6:88:ad:ef:47:78:fb:f3:ec:67:7d:51:04: dc:72:f7:01:69:64:84:76:cc:c8:b6:0c:06:95:2a: 84:c8:b8:ab:15:f4:37:b6:c0:4b:87:68:14:d1:6e: 1f:30:b7:bc:aa:a0:3c:34:54:72:1d:4f:fa:1a:c2: 2d:fb:11:46:84:4e:e4:de:90:4d:0b:a8:8e:05:48: 9a:21:f5:f9:55:1c:12:51:be:00:83:49:ce:21:44: 37:fe:38:ec:5c:62:2f:8d:42:35:e4:20:e3:76:25: bb:e8:35:88:27:ab:76:60:27:58:b0:47:1f:78:ff: 02:21:0f:18:4f:7c:20:5d:91:3a:53:c0:6f:6d:e9: 2e:68:b0:53:84:56:dd:01:a1:a5:5f:6e:74:71:cc: 6f:01:fd:96:54:c5:40:8c:60:b5:2a:1b:82:f0:e8: 4b:2e:cf:11:c4:dd:34:12:a1:c2:4d:e7:ab:0f:03: 9b:f2:fa:cc:3b:26:a7:0c:2e:09:ca:1f:c4:d1:75: 3b:43:ef:c8:28:f3:f6:34:73:d2:86:7e:12:8a:d7: 07:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:02:9B:56:AE:64:1A:3A:A8:11:BF:03:D9:16:1A:3C:F0:E3:D2:72 X509v3 Authority Key Identifier: keyid:D9:85:29:14:8C:BA:5D:DE:D3:B7:3D:60:52:EE:05:16:C0:24:C4:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2YUpFIy6Xd7Ttz1gUu4FFsAkxPM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C4ED/75984444720D11EDB545E030C4F9AE02/F060FF0E720D11EDA84BE02EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 85:dc:42:2b:93:ba:6b:79:1c:ca:cb:41:a4:fc:70:37:28:1f: b2:4e:ef:54:8a:71:fc:38:dd:72:b7:a2:aa:54:d8:fe:f9:e2: 1e:62:2e:19:61:70:d0:50:b9:35:d4:8f:93:53:6a:08:ef:a7: f1:d4:5e:82:6c:9b:84:fd:5b:88:f4:c6:8a:46:a9:14:1f:81: 1f:14:31:b7:5f:98:7b:ef:78:5c:54:bb:be:a6:39:bc:fe:ff: bd:24:f4:b8:e3:57:c9:0d:0b:a6:a2:b6:cb:7f:0d:5d:7d:27: 43:e5:51:93:1f:92:28:cd:38:cb:b2:07:d5:a4:e4:0b:d7:ad: 8a:bf:12:1a:9a:f9:eb:a5:85:6c:d4:25:34:51:a8:36:6d:29: b7:cd:30:a3:6e:24:b5:a9:cb:20:61:15:e8:26:7a:d0:74:60: c4:dd:b4:e3:5c:4a:72:28:e7:7c:ae:0c:70:8a:df:9e:6d:4b: 55:90:38:cb:3a:87:e9:b6:85:68:0f:73:30:ce:10:1b:3b:3f: e5:98:8b:6e:23:07:73:63:27:eb:78:c6:37:70:ae:dd:da:da: b2:24:0b:47:11:17:8f:2b:be:86:63:94:97:95:cd:c2:b3:eb: 6f:e1:2c:e6:e1:48:9a:19:62:7e:0a:58:97:56:9e:47:82:1a: fa:7a:6e:2b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0RUQxMTAvBgNVBAUTKEQ5ODUyOTE0OENCQTVEREVEM0I3M0Q2MDUyRUUwNTE2 QzAyNEM0RjMwHhcNMjUwNTE3MDEzNjU2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3ZTgzOC1lZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Ps1ljkv4zZ1qMKZ9VAnVp8+dKfbBqMguXf/+GAdXIGP3x9CsOlg+xs4bFp3 baaIre9HePvz7Gd9UQTccvcBaWSEdszItgwGlSqEyLirFfQ3tsBLh2gU0W4fMLe8 qqA8NFRyHU/6GsIt+xFGhE7k3pBNC6iOBUiaIfX5VRwSUb4Ag0nOIUQ3/jjsXGIv jUI15CDjdiW76DWIJ6t2YCdYsEcfeP8CIQ8YT3wgXZE6U8BvbekuaLBThFbdAaGl X250ccxvAf2WVMVAjGC1KhuC8OhLLs8RxN00EqHCTeerDwOb8vrMOyanDC4Jyh/E 0XU7Q+/IKPP2NHPShn4SitcH2wIDAQABo4IClDCCApAwHQYDVR0OBBYEFPoCm1au ZBo6qBG/A9kWGjzw49JyMB8GA1UdIwQYMBaAFNmFKRSMul3e07c9YFLuBRbAJMTz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzRFRC83NTk4NDQ0NDcy MEQxMUVEQjU0NUUwMzBDNEY5QUUwMi8yWVVwRkl5NlhkN1R0ejFnVXU0RkZzQWt4 UE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJZVXBGSXk2WGQ3VHR6MWdVdTRGRnNBa3hQTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM0RUQvNzU5ODQ0NDQ3MjBEMTFFREI1NDVFMDMwQzRGOUFFMDIvRjA2MEZGMEU3 MjBEMTFFREE4NEJFMDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCUbTANBgkqhkiG9w0BAQsFAAOCAQEAhdxCK5O6a3kcystB pPxwNygfsk7vVIpx/DjdcreiqlTY/vniHmIuGWFw0FC5NdSPk1NqCO+n8dRegmyb hP1biPTGikapFB+BHxQxt1+Ye+94XFS7vqY5vP7/vST0uONXyQ0LpqK2y38NXX0n Q+VRkx+SKM04y7IH1aTkC9etir8SGpr566WFbNQlNFGoNm0pt80wo24ktanLIGEV 6CZ60HRgxN2041xKcijnfK4McIrfnm1LVZA4yzqH6baFaA9zMM4QGzs/5ZiLbiMH c2Mn63jGN3Cu3drasiQLRxEXjyu+hmOUl5XNwrPrb+Es5uFImhlifgpYl1aeR4Ia +npuKw== -----END CERTIFICATE-----Generated at Wed Jun 4 12:21:22 2025 by rpki-client