$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/029673283B9E11F0AA109D6CC4F9AE02.roa File: 029673283B9E11F0AA109D6CC4F9AE02.roa (raw, json) Hash identifier: /KjXSfmE2q+fXSG5F8CKP1wpSYcVa/XLVf1LpFs9wvg= Subject key identifier: FE:11:5F:AE:4C:33:A8:7D:B0:96:6F:7D:EB:EE:4C:1F:4C:AC:40:85 Certificate issuer: /CN=A91651CF/serialNumber=AED8010DE4D23FF4D0F9005BAC925BDB7F3DF30A Certificate serial: 7A Authority key identifier: AE:D8:01:0D:E4:D2:3F:F4:D0:F9:00:5B:AC:92:5B:DB:7F:3D:F3:0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rtgBDeTSP_TQ-QBbrJJb23898wo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/029673283B9E11F0AA109D6CC4F9AE02.roa Signing time: Wed 28 May 2025 08:30:28 +0000 ROA not before: Wed 28 May 2025 08:30:28 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 399861 IP address blocks: 160.187.114.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.crl rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rtgBDeTSP_TQ-QBbrJJb23898wo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=AED8010DE4D23FF4D0F9005BAC925BDB7F3DF30A Validity Not Before: May 28 08:30:28 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6836c9a4-eca6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:aa:60:57:ca:c1:dc:02:d8:57:aa:66:f8:7b: 82:0e:58:9f:09:a0:29:06:c9:f8:9b:bf:9e:27:52: bc:2e:f4:77:dd:04:17:93:96:11:df:01:aa:c3:71: c0:d9:9d:0f:a7:51:23:4b:4e:5e:fb:82:27:92:38: 81:ef:a7:4f:5f:40:27:f7:5b:6c:a3:5d:70:e6:64: 58:b6:91:ff:c6:dc:28:9a:a5:1c:1a:a3:f4:50:62: 99:44:83:e5:b7:ef:17:10:55:5e:70:73:cc:d6:05: 19:22:c2:8b:c5:d2:8a:f5:9c:51:1b:19:4f:82:01: 4a:26:e2:90:01:d0:d8:10:5e:de:0f:00:68:50:fe: 06:53:9a:34:95:97:8a:ce:56:d1:93:a8:bd:36:77: cb:a8:ef:fc:79:a4:0e:24:38:98:b1:12:d4:89:d0: e9:a5:9e:8f:b7:20:fe:88:e6:72:bc:28:c9:8c:5b: 97:83:37:01:bc:96:04:ad:d5:ef:cf:4e:11:35:2d: 6d:56:9d:9c:eb:3d:f0:b4:f3:d6:5f:6d:6a:7b:c2: f1:3a:a3:d5:17:0f:61:1e:44:fb:10:f0:2f:84:46: 57:20:31:e4:c2:14:7f:3e:25:00:32:80:ed:41:62: f2:c1:62:aa:e9:1c:1b:41:39:b2:76:2b:f5:91:33: 3b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:11:5F:AE:4C:33:A8:7D:B0:96:6F:7D:EB:EE:4C:1F:4C:AC:40:85 X509v3 Authority Key Identifier: keyid:AE:D8:01:0D:E4:D2:3F:F4:D0:F9:00:5B:AC:92:5B:DB:7F:3D:F3:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rtgBDeTSP_TQ-QBbrJJb23898wo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/029673283B9E11F0AA109D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.114.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:05:d5:72:0e:d6:68:25:98:b9:2a:6e:72:2e:e6:55:29:f1: 48:67:16:db:4b:12:d5:8e:e2:0d:e0:6f:d0:01:4b:d8:a8:7f: 94:43:00:07:3b:37:4b:84:42:36:5f:39:e8:17:4f:61:37:fd: ea:c5:8f:a1:35:3e:f1:c2:79:eb:b7:30:7b:c4:99:04:93:68: 2f:3f:b8:c9:5b:73:d9:c6:c6:44:16:82:9c:0d:7f:89:ab:2f: 65:c3:d1:e7:e4:97:e5:89:18:a7:68:b4:d4:7b:1d:5a:8b:cf: ee:13:21:33:ec:b0:88:08:cd:79:f9:91:cc:c2:85:db:8b:3f: 58:cd:9d:8b:7b:bd:e5:75:74:0a:7d:64:81:72:24:a7:8b:a5: e6:1c:2f:f7:bb:c8:03:3c:5c:4f:7c:28:4d:58:38:b0:d9:8a: 5f:d2:29:40:9a:5f:35:65:e3:99:ba:a3:f2:48:08:51:30:72: 57:c6:97:a8:c6:3a:88:da:6e:1d:e0:0b:1e:a9:1f:f2:e0:47: e8:9a:1a:79:f3:bf:6a:48:9d:04:1b:d5:b3:ff:95:fb:a1:8e: 33:a1:cb:5b:04:0d:b7:2e:95:0f:bd:c4:6f:30:84:70:8b:9d: 00:4d:26:24:2b:55:30:6d:ba:98:64:56:d1:cd:2e:b7:78:79: d4:5f:f7:f3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTFDRjExMC8GA1UEBRMoQUVEODAxMERFNEQyM0ZGNEQwRjkwMDVCQUM5MjVCREI3 RjNERjMwQTAeFw0yNTA1MjgwODMwMjhaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzZjOWE0LWVjYTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTqmBXysHcAthXqmb4e4IOWJ8JoCkGyfibv54nUrwu9HfdBBeTlhHfAarDccDZ nQ+nUSNLTl77gieSOIHvp09fQCf3W2yjXXDmZFi2kf/G3CiapRwao/RQYplEg+W3 7xcQVV5wc8zWBRkiwovF0or1nFEbGU+CAUom4pAB0NgQXt4PAGhQ/gZTmjSVl4rO VtGTqL02d8uo7/x5pA4kOJixEtSJ0Omlno+3IP6I5nK8KMmMW5eDNwG8lgSt1e/P ThE1LW1WnZzrPfC089ZfbWp7wvE6o9UXD2EeRPsQ8C+ERlcgMeTCFH8+JQAygO1B YvLBYqrpHBtBObJ2K/WRMzstAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/hFfrkwz qH2wlm996+5MH0ysQIUwHwYDVR0jBBgwFoAUrtgBDeTSP/TQ+QBbrJJb23898wow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MUNGLzI3NDlDN0JFODZE NzExRUY4NTRERDQ3QkM0RjlBRTAyL3J0Z0JEZVRTUF9UUS1RQmJySkpiMjM4OTh3 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcnRnQkRlVFNQX1RRLVFCYnJKSmIyMzg5OHdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8yNzQ5QzdCRTg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi8wMjk2NzMyODNC OUUxMUYwQUExMDlENkNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7cjANBgkqhkiG9w0BAQsFAAOCAQEAWgXVcg7WaCWYuSpu ci7mVSnxSGcW20sS1Y7iDeBv0AFL2Kh/lEMABzs3S4RCNl856BdPYTf96sWPoTU+ 8cJ567cwe8SZBJNoLz+4yVtz2cbGRBaCnA1/iasvZcPR5+SX5YkYp2i01HsdWovP 7hMhM+ywiAjNefmRzMKF24s/WM2di3u95XV0Cn1kgXIkp4ul5hwv97vIAzxcT3wo TVg4sNmKX9IpQJpfNWXjmbqj8kgIUTByV8aXqMY6iNpuHeALHqkf8uBH6JoaefO/ akidBBvVs/+V+6GOM6HLWwQNty6VD73EbzCEcIudAE0mJCtVMG26mGRW0c0ut3h5 1F/38w== -----END CERTIFICATE-----Generated at Wed Jun 4 12:30:29 2025 by rpki-client