$ rpki-client -vvf rpki.apnic.net/member_repository/A91583E2/43FB787C3B9911F0A0CC5978C4F9AE02/B05F386E3B9911F09DE90D79C4F9AE02.roa File: B05F386E3B9911F09DE90D79C4F9AE02.roa (raw, json) Hash identifier: GaxzV7+DkMGpd57xnNkPMderTpqjXPXFd/uGzJlcq9Q= Subject key identifier: 35:08:6E:9D:11:E6:8E:42:CB:B9:5E:A6:DA:68:20:55:F7:96:ED:87 Certificate issuer: /CN=A91583E2/serialNumber=5D6F267B7AA3CC3647C9313B9EEC7D69A1673958 Certificate serial: 02 Authority key identifier: 5D:6F:26:7B:7A:A3:CC:36:47:C9:31:3B:9E:EC:7D:69:A1:67:39:58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XW8me3qjzDZHyTE7nux9aaFnOVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91583E2/43FB787C3B9911F0A0CC5978C4F9AE02/B05F386E3B9911F09DE90D79C4F9AE02.roa Signing time: Wed 28 May 2025 07:59:32 +0000 ROA not before: Wed 28 May 2025 07:59:32 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153380 IP address blocks: 160.191.102.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91583E2/43FB787C3B9911F0A0CC5978C4F9AE02/XW8me3qjzDZHyTE7nux9aaFnOVg.crl rsync://rpki.apnic.net/member_repository/A91583E2/43FB787C3B9911F0A0CC5978C4F9AE02/XW8me3qjzDZHyTE7nux9aaFnOVg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XW8me3qjzDZHyTE7nux9aaFnOVg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91583E2, serialNumber=5D6F267B7AA3CC3647C9313B9EEC7D69A1673958 Validity Not Before: May 28 07:59:32 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6836c264-f1a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:2b:32:5b:50:ba:ea:88:e7:6c:46:1a:50:11: 30:7e:48:cc:89:33:40:bb:02:67:b0:b3:7a:14:60: 6f:bc:04:d1:2e:07:c7:c6:64:64:c2:fd:df:a6:9c: ef:b8:97:2a:31:f9:7f:86:62:be:d2:e3:da:d2:73: cb:6a:db:8d:51:b3:04:30:63:d2:75:3b:50:f0:68: 56:e8:83:d1:b7:d2:a4:a8:01:01:ae:ec:14:1b:46: fd:68:1b:77:e8:06:7d:e7:0a:5b:62:00:51:42:4a: 88:50:e9:9e:47:09:19:9b:bd:49:45:a2:5c:e8:58: 25:25:98:88:b8:70:13:73:0a:da:1e:e3:1d:8b:62: 79:c8:8a:34:ce:a1:0e:5c:74:c9:fb:db:73:15:20: 97:83:06:3c:26:9e:11:c0:0c:fc:bb:bc:a5:33:a8: 51:fb:61:ec:7d:b5:65:ac:29:d0:75:ba:5c:26:1b: 8b:a8:3e:95:fb:6d:06:57:48:6f:a1:da:99:7d:8d: bf:3c:fa:04:c9:c6:9f:29:0d:96:08:82:0d:4d:68: ef:d6:e1:ac:81:22:0c:56:b4:e6:36:f9:f4:5a:3a: a9:99:c3:d2:12:58:5f:d4:64:a1:de:85:82:ac:81: 22:46:b8:a8:b1:b5:df:4c:bf:b7:7f:3b:84:2b:80: b1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:08:6E:9D:11:E6:8E:42:CB:B9:5E:A6:DA:68:20:55:F7:96:ED:87 X509v3 Authority Key Identifier: keyid:5D:6F:26:7B:7A:A3:CC:36:47:C9:31:3B:9E:EC:7D:69:A1:67:39:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91583E2/43FB787C3B9911F0A0CC5978C4F9AE02/XW8me3qjzDZHyTE7nux9aaFnOVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XW8me3qjzDZHyTE7nux9aaFnOVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91583E2/43FB787C3B9911F0A0CC5978C4F9AE02/B05F386E3B9911F09DE90D79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.102.0/23 Signature Algorithm: sha256WithRSAEncryption a2:69:f9:c1:fd:01:56:f1:0d:31:4f:4c:a5:29:2b:6a:30:11: bd:24:64:43:a9:31:ee:1a:b9:6f:39:f7:96:71:3f:d4:cf:40: 73:1f:51:3d:2a:88:46:e3:60:12:c8:4c:88:23:c7:14:fa:3b: 46:cd:5a:4a:cb:90:5b:08:df:82:09:d4:f4:48:bb:7b:02:99: 32:00:bb:2b:70:c0:a7:3c:f4:b1:76:65:d1:59:cd:3e:db:32: cc:3d:9a:db:16:cb:22:ae:91:04:0d:2d:87:7b:42:25:e3:57: 34:1c:89:61:e4:03:15:76:cf:26:6d:b8:bf:15:73:0e:8a:3e: 12:35:e3:8b:9f:52:77:3a:7c:d8:05:90:b7:3b:09:28:7f:b5: 3f:dc:7a:12:95:ab:f5:5e:d4:fc:b3:84:15:79:e5:fc:ae:61: a6:e0:4a:7f:09:31:15:0f:72:b6:38:55:b6:3b:09:eb:ea:fb: bc:31:6b:6e:9a:a1:f6:d3:f5:bc:7b:9e:92:e1:2c:d5:1a:e1: 0e:7c:4d:c0:2d:32:75:66:cb:8e:c2:57:e5:cc:fc:41:63:71: f8:63:45:6b:4b:ce:5d:e2:ee:d9:fe:d2:6f:62:00:c6:88:50: d4:71:be:1b:33:92:da:eb:3f:86:f7:3c:57:16:8e:df:f3:3d: d4:3d:ab:2e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODNFMjExMC8GA1UEBRMoNUQ2RjI2N0I3QUEzQ0MzNjQ3QzkzMTNCOUVFQzdENjlB MTY3Mzk1ODAeFw0yNTA1MjgwNzU5MzJaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzZjMjY0LWYxYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBKzJbULrqiOdsRhpQETB+SMyJM0C7Amews3oUYG+8BNEuB8fGZGTC/d+mnO+4 lyox+X+GYr7S49rSc8tq241RswQwY9J1O1DwaFbog9G30qSoAQGu7BQbRv1oG3fo Bn3nCltiAFFCSohQ6Z5HCRmbvUlFolzoWCUlmIi4cBNzCtoe4x2LYnnIijTOoQ5c dMn723MVIJeDBjwmnhHADPy7vKUzqFH7Yex9tWWsKdB1ulwmG4uoPpX7bQZXSG+h 2pl9jb88+gTJxp8pDZYIgg1NaO/W4ayBIgxWtOY2+fRaOqmZw9ISWF/UZKHehYKs gSJGuKixtd9Mv7d/O4QrgLG/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNQhunRHm jkLLuV6m2mggVfeW7YcwHwYDVR0jBBgwFoAUXW8me3qjzDZHyTE7nux9aaFnOVgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4M0UyLzQzRkI3ODdDM0I5 OTExRjBBMENDNTk3OEM0RjlBRTAyL1hXOG1lM3FqekRaSHlURTdudXg5YWFGbk9W Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWFc4bWUzcWp6RFpIeVRFN251eDlhYUZuT1ZnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODNFMi80M0ZCNzg3QzNCOTkxMUYwQTBDQzU5NzhDNEY5QUUwMi9CMDVGMzg2RTNC OTkxMUYwOURFOTBENzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/ZjANBgkqhkiG9w0BAQsFAAOCAQEAomn5wf0BVvENMU9M pSkrajARvSRkQ6kx7hq5bzn3lnE/1M9Acx9RPSqIRuNgEshMiCPHFPo7Rs1aSsuQ WwjfggnU9Ei7ewKZMgC7K3DApzz0sXZl0VnNPtsyzD2a2xbLIq6RBA0th3tCJeNX NByJYeQDFXbPJm24vxVzDoo+EjXji59Sdzp82AWQtzsJKH+1P9x6EpWr9V7U/LOE FXnl/K5hpuBKfwkxFQ9ytjhVtjsJ6+r7vDFrbpqh9tP1vHuekuEs1RrhDnxNwC0y dWbLjsJX5cz8QWNx+GNFa0vOXeLu2f7Sb2IAxohQ1HG+GzOS2us/hvc8VxaO3/M9 1D2rLg== -----END CERTIFICATE-----Generated at Thu Jun 5 19:13:49 2025 by rpki-client