$ rpki-client -vvf rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/6E6FFF6A92F911ED8A66E70CC4F9AE02.roa File: 6E6FFF6A92F911ED8A66E70CC4F9AE02.roa (raw, json) Hash identifier: p54CFofowbUbktzQ5l2cM2w3M6idGp06vDW+Qt3EoTM= Subject key identifier: 0E:1B:C5:68:81:DA:3F:73:00:77:97:BC:CC:DB:9F:CC:86:50:E2:EC Certificate issuer: /CN=A9161A58/serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Certificate serial: 0927 Authority key identifier: B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/6E6FFF6A92F911ED8A66E70CC4F9AE02.roa Signing time: Sat 31 May 2025 20:26:48 +0000 ROA not before: Sat 31 May 2025 20:26:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 41095 IP address blocks: 45.116.8.0/24 maxlen: 24 45.116.9.0/24 maxlen: 24 45.116.10.0/24 maxlen: 24 45.116.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2343 (0x927) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161A58, serialNumber=B4669D30D210E4907CD2888BE74B89A6DD3CB6C8 Validity Not Before: May 31 20:26:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683b6608-5e74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:66:a5:e0:4b:a4:b8:27:dc:58:73:a2:27:a3: 8f:87:f2:a9:17:00:c5:02:b7:96:86:3f:cb:09:f9: 78:c3:e7:18:33:67:9e:6a:24:72:ce:d9:49:ae:9c: c9:6a:9c:46:7f:e4:d2:18:67:01:ad:30:10:10:9c: 76:da:67:26:ab:df:d7:99:fe:98:5a:08:ce:1f:96: 80:4b:0b:f3:ec:3d:c9:6a:96:d2:20:11:21:bc:97: bc:1b:72:be:b7:02:75:97:9a:9b:21:af:58:ce:a9: 44:7a:7b:e6:42:f7:9f:b2:00:89:65:ab:2f:fa:cb: c8:fd:e8:f6:1f:da:f5:85:e4:27:14:7d:af:7a:e6: a0:b8:14:e6:a2:05:6b:f9:53:b2:cd:0e:1f:38:af: 9b:e7:dd:78:1d:7a:1b:4c:d8:2b:5b:6b:58:c5:07: a4:25:a2:3f:1e:b4:a3:b6:2a:7f:f7:4e:82:85:e0: 7d:f2:d5:87:45:ae:10:48:df:07:ac:97:cc:6f:77: 68:5d:ee:f1:3e:7d:47:2b:9a:02:e9:bd:2a:26:6c: 81:46:88:59:da:5d:ee:b1:60:9e:19:ea:d8:2a:a5: 99:8d:a3:31:c3:0e:5b:7e:38:31:fd:e9:d0:b7:e0: 98:8a:4b:9f:ae:df:50:4a:16:52:d3:cf:6b:47:6c: b3:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:1B:C5:68:81:DA:3F:73:00:77:97:BC:CC:DB:9F:CC:86:50:E2:EC X509v3 Authority Key Identifier: keyid:B4:66:9D:30:D2:10:E4:90:7C:D2:88:8B:E7:4B:89:A6:DD:3C:B6:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/tGadMNIQ5JB80oiL50uJpt08tsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tGadMNIQ5JB80oiL50uJpt08tsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161A58/B389304EA7EC11EA80485864C4F9AE02/6E6FFF6A92F911ED8A66E70CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.8.0/22 Signature Algorithm: sha256WithRSAEncryption 53:4f:6f:24:60:31:96:d8:07:af:e8:12:56:27:3c:9a:60:c8: 35:a2:68:db:80:b3:da:00:c3:9e:97:03:db:06:60:50:cb:13: 2a:87:c7:cc:bc:33:a9:7f:6e:42:58:1d:43:28:5c:99:4f:64: de:14:1b:2d:d9:5f:af:09:42:a5:a3:11:19:cf:cb:b4:f0:f1: 59:1f:08:fc:2a:96:f3:03:17:65:2a:c9:db:71:ad:9f:e8:55: 97:01:fb:9d:8a:74:21:ca:9b:e9:2a:ad:49:9f:a5:e5:3a:69: a1:3b:2f:c6:97:f3:53:9a:95:01:ad:9f:b1:dc:05:47:6b:65: ab:3c:21:9b:59:24:8e:5d:8d:57:86:32:d9:73:b9:a6:1f:c9: 95:43:ea:f6:91:33:da:4e:b4:b5:e2:d4:29:4d:c4:10:0b:7a: 6f:ce:c3:8d:f3:8e:24:55:db:70:dc:3a:12:8d:b7:43:d2:98: e8:3a:b2:49:c2:4d:bb:95:87:7b:7a:ef:c5:b9:81:af:e7:a9: 65:bd:97:98:8f:90:1b:89:39:79:8c:ce:26:c5:7d:64:8e:80: da:a4:81:29:da:d9:bb:5d:30:f7:c3:34:f5:99:80:37:de:f4: be:d5:bd:08:ca:29:52:6e:fe:fc:bb:f0:46:b3:6d:a4:46:c8: 32:7d:c0:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFBNTgxMTAvBgNVBAUTKEI0NjY5RDMwRDIxMEU0OTA3Q0QyODg4QkU3NEI4OUE2 REQzQ0I2QzgwHhcNMjUwNTMxMjAyNjQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiNjYwOC01ZTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlmal4EukuCfcWHOiJ6OPh/KpFwDFAreWhj/LCfl4w+cYM2eeaiRyztlJrpzJ apxGf+TSGGcBrTAQEJx22mcmq9/Xmf6YWgjOH5aASwvz7D3JapbSIBEhvJe8G3K+ twJ1l5qbIa9YzqlEenvmQvefsgCJZasv+svI/ej2H9r1heQnFH2veuaguBTmogVr +VOyzQ4fOK+b5914HXobTNgrW2tYxQekJaI/HrSjtip/906CheB98tWHRa4QSN8H rJfMb3doXe7xPn1HK5oC6b0qJmyBRohZ2l3usWCeGerYKqWZjaMxww5bfjgx/enQ t+CYikufrt9QShZS089rR2yz+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFA4bxWiB 2j9zAHeXvMzbn8yGUOLsMB8GA1UdIwQYMBaAFLRmnTDSEOSQfNKIi+dLiabdPLbI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUE1OC9CMzg5MzA0RUE3 RUMxMUVBODA0ODU4NjRDNEY5QUUwMi90R2FkTU5JUTVKQjgwb2lMNTB1SnB0MDh0 c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RHYWRNTklRNUpCODBvaUw1MHVKcHQwOHRzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFBNTgvQjM4OTMwNEVBN0VDMTFFQTgwNDg1ODY0QzRGOUFFMDIvNkU2RkZGNkE5 MkY5MTFFRDhBNjZFNzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAItdAgwDQYJKoZIhvcNAQELBQADggEBAFNPbyRgMZbYB6/o ElYnPJpgyDWiaNuAs9oAw56XA9sGYFDLEyqHx8y8M6l/bkJYHUMoXJlPZN4UGy3Z X68JQqWjERnPy7Tw8VkfCPwqlvMDF2UqydtxrZ/oVZcB+52KdCHKm+kqrUmfpeU6 aaE7L8aX81OalQGtn7HcBUdrZas8IZtZJI5djVeGMtlzuaYfyZVD6vaRM9pOtLXi 1ClNxBALem/Ow43zjiRV23DcOhKNt0PSmOg6sknCTbuVh3t678W5ga/nqWW9l5iP kBuJOXmMzibFfWSOgNqkgSna2btdMPfDNPWZgDfe9L7VvQjKKVJu/vy78EazbaRG yDJ9wFA= -----END CERTIFICATE-----Generated at Mon Jun 2 07:17:02 2025 by rpki-client