$ rpki-client -vvf rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/F7981812F38811EFAC05053AC4F9AE02.roa File: F7981812F38811EFAC05053AC4F9AE02.roa (raw, json) Hash identifier: 5lT3BqV6fkCasuiMvgjtWS+QEDtMQ2WoJeVX5lRFOMY= Subject key identifier: B0:83:03:41:17:43:26:05:8D:F7:78:C3:69:08:45:77:F6:B8:B7:97 Certificate issuer: /CN=A9160A05/serialNumber=14DD8684294F1B33A313AFB8F0EBA1C8A0037809 Certificate serial: 59 Authority key identifier: 14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/F7981812F38811EFAC05053AC4F9AE02.roa Signing time: Tue 25 Feb 2025 14:58:27 +0000 ROA not before: Tue 25 Feb 2025 14:58:27 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151368 IP address blocks: 160.187.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 05:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160A05 Validity Not Before: Feb 25 14:58:27 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67bdda92-c49c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:83:4a:88:a3:06:01:88:8c:ac:cb:f6:0f:8a: ba:4a:d9:8a:92:23:23:72:0c:36:db:e7:73:43:51: bb:74:84:2e:45:94:48:66:7f:56:7e:b9:2a:12:1c: 7c:5a:1f:1d:ff:44:9a:15:85:a6:02:33:08:1c:bc: e9:a9:06:3b:e7:35:99:25:e5:ea:c8:49:1d:14:d9: 4e:fb:ef:57:be:91:f5:15:4e:85:b1:c1:d1:50:6c: 93:6d:58:72:ea:66:5b:23:00:c0:1b:7a:5e:a3:9e: 2c:84:b4:6d:44:b4:a0:b4:a2:9d:3a:27:b5:dc:3e: 64:e3:b3:2a:12:66:3a:6f:61:01:de:ac:c7:ed:89: 63:cd:f3:9c:78:8f:59:07:7d:a3:ab:68:b7:56:62: 0e:bc:d2:82:50:d0:f9:b2:2d:80:60:ca:b9:ea:75: 8c:b7:a8:4e:fa:3d:f8:1b:5c:90:c4:a0:88:9d:ae: 44:d4:e7:2a:aa:7c:45:28:66:db:ce:ae:d6:4c:09: e2:4c:bb:e9:29:48:fe:80:ba:be:0b:ed:41:e2:6e: 03:c4:73:4f:2f:38:17:38:72:07:e2:b7:78:65:47: eb:05:4d:1a:aa:92:1d:0b:46:a8:e0:5b:ab:be:26: a2:a2:01:0d:75:88:7d:4e:b1:d5:a3:22:ba:2f:1d: 30:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:83:03:41:17:43:26:05:8D:F7:78:C3:69:08:45:77:F6:B8:B7:97 X509v3 Authority Key Identifier: keyid:14:DD:86:84:29:4F:1B:33:A3:13:AF:B8:F0:EB:A1:C8:A0:03:78:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/FN2GhClPGzOjE6-48OuhyKADeAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FN2GhClPGzOjE6-48OuhyKADeAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160A05/D17C88687C8A11EF8FAB6909C4F9AE02/F7981812F38811EFAC05053AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.131.0/24 Signature Algorithm: sha256WithRSAEncryption bd:8a:5a:cb:9c:cf:08:96:4f:e5:c3:da:cc:41:e8:86:80:32: 9e:d5:b3:7e:bc:31:67:1f:74:89:5e:e8:b3:7e:5c:12:d3:e4: 56:66:32:8d:c7:9f:78:85:09:7e:0a:dd:fa:85:d1:0b:14:42: 37:ae:17:2a:ae:be:4d:76:b6:f4:58:07:0e:03:73:e3:e8:0b: cb:77:ca:b5:07:8a:65:f9:15:31:6d:d6:e8:7a:2e:11:44:f5: 17:e6:5c:1b:8c:c7:c6:dc:7d:a8:fe:61:a4:ce:5a:b8:08:46: 7f:b3:5f:54:05:2f:6a:ff:e0:c6:20:03:83:fa:ce:72:d6:39: aa:57:53:86:f5:c0:f7:43:f1:85:8a:36:45:6c:14:09:28:a5: 58:c4:f0:39:fd:64:d3:dc:5d:43:cf:73:fe:8c:ad:64:63:70: c0:9c:16:9e:c7:e0:63:6f:d6:f5:d8:c6:e8:01:ff:08:1d:b5: 70:41:31:5a:ee:dd:97:41:12:17:48:1c:df:e3:0c:77:bf:a7: 6f:6b:20:ed:b5:15:45:ed:f9:b2:58:38:48:fe:87:49:e4:46: e9:d9:cb:66:6d:69:12:a0:9d:c9:5f:d1:f4:a6:b7:cf:0c:78: 66:36:bc:18:45:2a:72:56:ab:3c:99:27:a0:da:b1:3b:66:59: 5a:c5:41:d3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MEEwNTExMC8GA1UEBRMoMTRERDg2ODQyOTRGMUIzM0EzMTNBRkI4RjBFQkExQzhB MDAzNzgwOTAeFw0yNTAyMjUxNDU4MjdaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YmRkYTkyLWM0OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKg0qIowYBiIysy/YPirpK2YqSIyNyDDbb53NDUbt0hC5FlEhmf1Z+uSoSHHxa Hx3/RJoVhaYCMwgcvOmpBjvnNZkl5erISR0U2U7771e+kfUVToWxwdFQbJNtWHLq ZlsjAMAbel6jniyEtG1EtKC0op06J7XcPmTjsyoSZjpvYQHerMftiWPN85x4j1kH faOraLdWYg680oJQ0PmyLYBgyrnqdYy3qE76PfgbXJDEoIidrkTU5yqqfEUoZtvO rtZMCeJMu+kpSP6Aur4L7UHibgPEc08vOBc4cgfit3hlR+sFTRqqkh0LRqjgW6u+ JqKiAQ11iH1OsdWjIrovHTArAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsIMDQRdD JgWN93jDaQhFd/a4t5cwHwYDVR0jBBgwFoAUFN2GhClPGzOjE6+48OuhyKADeAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwQTA1L0QxN0M4ODY4N0M4 QTExRUY4RkFCNjkwOUM0RjlBRTAyL0ZOMkdoQ2xQR3pPakU2LTQ4T3VoeUtBRGVB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRk4yR2hDbFBHek9qRTYtNDhPdWh5S0FEZUFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEEwNS9EMTdDODg2ODdDOEExMUVGOEZBQjY5MDlDNEY5QUUwMi9GNzk4MTgxMkYz ODgxMUVGQUMwNTA1M0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7gzANBgkqhkiG9w0BAQsFAAOCAQEAvYpay5zPCJZP5cPa zEHohoAyntWzfrwxZx90iV7os35cEtPkVmYyjcefeIUJfgrd+oXRCxRCN64XKq6+ TXa29FgHDgNz4+gLy3fKtQeKZfkVMW3W6HouEUT1F+ZcG4zHxtx9qP5hpM5auAhG f7NfVAUvav/gxiADg/rOctY5qldThvXA90PxhYo2RWwUCSilWMTwOf1k09xdQ89z /oytZGNwwJwWnsfgY2/W9djG6AH/CB21cEExWu7dl0ESF0gc3+MMd7+nb2sg7bUV Re35slg4SP6HSeRG6dnLZm1pEqCdyV/R9Ka3zwx4Zja8GEUqclarPJknoNqxO2ZZ WsVB0w== -----END CERTIFICATE-----Generated at Sat Mar 15 05:47:02 2025 by rpki-client