$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/E9B0903AF38811EF81B8CE39C4F9AE02.roa File: E9B0903AF38811EF81B8CE39C4F9AE02.roa (raw, json) Hash identifier: fdQ7jvoBEvlEALSb2JWdt2czQvJjt/S2kzFg/FmzHag= Subject key identifier: D1:EA:5F:B7:04:15:99:8E:D5:B0:ED:DD:DD:E7:1C:DD:9C:BC:E2:93 Certificate issuer: /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Certificate serial: 57 Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/E9B0903AF38811EF81B8CE39C4F9AE02.roa Signing time: Tue 25 Feb 2025 14:58:04 +0000 ROA not before: Tue 25 Feb 2025 14:58:04 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150142 IP address blocks: 160.187.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 05:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160A05 Validity Not Before: Feb 25 14:58:04 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67bdda7b-d23c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7b:95:50:a1:ae:e5:02:14:e0:7b:cd:30:4d: 05:eb:05:24:3d:a7:da:b4:dd:ae:da:23:f4:f2:d7: 01:05:7f:0a:24:50:12:d2:f0:d8:84:0c:b5:43:db: 3a:3a:9b:dd:c9:78:66:78:00:26:f1:e6:56:cc:82: ed:f3:53:22:30:75:4c:68:7c:28:ee:af:ec:81:6b: 2e:15:84:ec:e2:83:01:2c:9e:dd:9b:71:1a:5e:9c: 44:59:35:2b:b7:60:54:2d:63:1b:a0:99:5d:95:07: 94:9e:7f:d0:7c:99:f9:c2:dd:c7:53:a4:60:10:ba: a5:d8:79:fd:c6:02:46:a8:db:e5:b2:6f:d4:06:e7: 01:a4:3a:b5:25:f2:e7:6f:b0:a2:72:de:29:cb:5e: 1b:eb:5b:3c:00:b0:04:83:87:c3:d2:84:e3:bc:4f: af:1b:b6:77:6b:24:2d:a1:a1:63:8a:f5:e0:fd:3d: 07:8a:2c:ba:39:70:bf:cc:97:cd:1d:a5:78:98:07: a8:d7:d4:27:f9:37:06:e9:67:54:d5:77:69:af:45: b0:2f:93:6d:23:42:4e:0c:5b:8c:99:6d:92:dc:ac: 77:69:f4:9e:09:36:23:9f:7e:ff:f2:20:69:4d:94: 1e:c1:44:5c:9a:52:44:46:08:21:d2:2a:70:a7:08: 65:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:EA:5F:B7:04:15:99:8E:D5:B0:ED:DD:DD:E7:1C:DD:9C:BC:E2:93 X509v3 Authority Key Identifier: keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/E9B0903AF38811EF81B8CE39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.130.0/24 Signature Algorithm: sha256WithRSAEncryption 04:f5:f9:2c:e7:b3:0b:1e:c4:06:d5:8c:0a:87:71:d9:63:4c: fd:00:f7:bb:9d:a7:d5:37:b3:9c:4b:ea:6b:71:e9:00:a0:04: 8f:e2:1b:ab:a7:b4:d6:e6:d8:fc:37:8d:e9:1d:ef:d6:38:09: 78:32:9d:75:35:44:92:3e:e8:58:12:37:98:43:e0:85:cf:43: 55:ad:4d:45:cb:94:6f:e9:00:7d:e2:a0:63:d7:a3:60:c1:03: 68:7c:56:38:b5:01:99:3b:52:9f:87:48:15:12:6a:86:de:23: 7b:fd:77:92:55:30:73:20:ac:d0:34:79:40:41:b5:84:2d:39: aa:34:27:a4:e4:ad:f8:e8:08:a5:83:e2:dd:32:97:3a:4f:e1: e2:52:32:49:c6:22:e6:c8:7c:a9:29:46:ec:d1:93:c4:83:3f: e9:cf:66:2c:7a:3a:1f:82:20:97:d7:58:98:02:fe:5b:33:83: 82:32:bb:f2:a8:ae:15:57:db:88:dc:1a:37:fb:7f:ea:e3:32: 50:a6:86:9f:28:41:b2:80:55:b0:2e:1f:39:d1:cf:4a:8a:cb: b0:c1:12:5b:ef:fa:ea:97:54:2f:b7:62:6a:a4:73:0e:c1:6a: b0:ae:4a:9a:33:3c:ec:bb:73:1d:de:27:ce:d5:46:aa:d1:39: 88:e2:db:c0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MEEwNTExMC8GA1UEBRMoMTRERDg2ODQyOTRGMUIzM0EzMTNBRkI4RjBFQkExQzhB MDAzNzgwOTAeFw0yNTAyMjUxNDU4MDRaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YmRkYTdiLWQyM2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9e5VQoa7lAhTge80wTQXrBSQ9p9q03a7aI/Ty1wEFfwokUBLS8NiEDLVD2zo6 m93JeGZ4ACbx5lbMgu3zUyIwdUxofCjur+yBay4VhOzigwEsnt2bcRpenERZNSu3 YFQtYxugmV2VB5Sef9B8mfnC3cdTpGAQuqXYef3GAkao2+Wyb9QG5wGkOrUl8udv sKJy3inLXhvrWzwAsASDh8PShOO8T68btndrJC2hoWOK9eD9PQeKLLo5cL/Ml80d pXiYB6jX1Cf5NwbpZ1TVd2mvRbAvk20jQk4MW4yZbZLcrHdp9J4JNiOffv/yIGlN lB7BRFyaUkRGCCHSKnCnCGX9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0epftwQV mY7VsO3d3ecc3Zy84pMwHwYDVR0jBBgwFoAUFN2GhClPGzOjE6+48OuhyKADeAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwQTA1L0QxN0M4ODY4N0M4 QTExRUY4RkFCNjkwOUM0RjlBRTAyL0ZOMkdoQ2xQR3pPakU2LTQ4T3VoeUtBRGVB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRk4yR2hDbFBHek9qRTYtNDhPdWh5S0FEZUFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEEwNS9EMTdDODg2ODdDOEExMUVGOEZBQjY5MDlDNEY5QUUwMi9FOUIwOTAzQUYz ODgxMUVGODFCOENFMzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7gjANBgkqhkiG9w0BAQsFAAOCAQEABPX5LOezCx7EBtWM Codx2WNM/QD3u52n1TeznEvqa3HpAKAEj+Ibq6e01ubY/DeN6R3v1jgJeDKddTVE kj7oWBI3mEPghc9DVa1NRcuUb+kAfeKgY9ejYMEDaHxWOLUBmTtSn4dIFRJqht4j e/13klUwcyCs0DR5QEG1hC05qjQnpOSt+OgIpYPi3TKXOk/h4lIyScYi5sh8qSlG 7NGTxIM/6c9mLHo6H4Igl9dYmAL+WzODgjK78qiuFVfbiNwaN/t/6uMyUKaGnyhB soBVsC4fOdHPSorLsMESW+/66pdUL7diaqRzDsFqsK5KmjM87LtzHd4nztVGqtE5 iOLbwA== -----END CERTIFICATE-----Generated at Sat Mar 15 05:47:03 2025 by rpki-client