$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/C6CDBA3E3B9A11F0B7924C1FC4F9AE02.roa File: C6CDBA3E3B9A11F0B7924C1FC4F9AE02.roa (raw, json) Hash identifier: G+4s3zAMADjSVZmHk5FULbhH5AjFBhHH97tW10llI8k= Subject key identifier: D3:BE:74:78:F3:59:BA:F0:C4:7F:C2:7A:2C:77:C2:4E:58:29:AF:E5 Certificate issuer: /CN=A91651CF/serialNumber=AED8010DE4D23FF4D0F9005BAC925BDB7F3DF30A Certificate serial: 78 Authority key identifier: AE:D8:01:0D:E4:D2:3F:F4:D0:F9:00:5B:AC:92:5B:DB:7F:3D:F3:0A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rtgBDeTSP_TQ-QBbrJJb23898wo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/C6CDBA3E3B9A11F0B7924C1FC4F9AE02.roa Signing time: Wed 28 May 2025 08:07:19 +0000 ROA not before: Wed 28 May 2025 08:07:19 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153341 IP address blocks: 160.187.114.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.crl rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rtgBDeTSP_TQ-QBbrJJb23898wo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=AED8010DE4D23FF4D0F9005BAC925BDB7F3DF30A Validity Not Before: May 28 08:07:19 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6836c437-4539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:89:0d:a3:5b:a6:40:47:3f:e1:19:d6:c9:28: 08:82:16:21:d3:47:fe:85:80:ec:8a:86:3f:6e:df: ce:74:15:5a:1a:c6:60:ac:4f:19:80:d5:5e:25:81: 32:3e:77:2a:54:3d:a8:44:de:11:45:dd:8b:83:24: ff:ca:8e:ce:81:67:57:5d:0e:2e:e2:eb:29:73:e9: 1d:52:f8:1e:57:74:0d:50:2c:cd:95:d0:17:96:eb: c5:ba:18:e3:80:4e:2e:51:50:d3:c3:7a:53:70:5b: ea:dd:7e:17:89:d2:ee:35:5d:9f:55:6d:7f:f2:d4: d3:45:72:0f:f0:3a:e1:fa:7b:f4:5e:c3:20:5f:2f: 87:fb:c1:fa:8b:b0:1f:09:04:3f:9b:d9:fc:e9:e1: 32:e1:f0:dc:d5:7d:2d:a9:20:6d:97:08:e5:f3:a0: 5a:ba:dd:f7:b2:05:94:33:61:cf:91:fc:56:51:51: 13:68:b7:e0:6b:61:23:68:60:a4:fc:08:d8:71:ad: b2:6b:a0:6e:64:11:22:99:9a:d1:2f:51:32:cb:3d: 97:a8:2b:e9:8f:24:08:77:f4:8f:37:3a:8f:94:7a: 21:54:1b:49:78:fd:95:f6:47:89:3f:88:ed:79:3e: a6:93:86:08:c9:c4:b0:16:1f:02:3e:05:93:e9:a5: 25:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:BE:74:78:F3:59:BA:F0:C4:7F:C2:7A:2C:77:C2:4E:58:29:AF:E5 X509v3 Authority Key Identifier: keyid:AE:D8:01:0D:E4:D2:3F:F4:D0:F9:00:5B:AC:92:5B:DB:7F:3D:F3:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rtgBDeTSP_TQ-QBbrJJb23898wo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/C6CDBA3E3B9A11F0B7924C1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.114.0/23 Signature Algorithm: sha256WithRSAEncryption dd:df:3f:fd:f5:81:57:6b:b3:ca:8b:4b:cc:6e:52:9b:b0:b4: a4:69:ba:13:a7:88:2a:e1:dc:f0:d8:94:d7:54:2a:c7:62:27: bd:ee:d1:61:9d:93:21:c5:4f:b1:99:04:9b:f2:a5:73:ab:b2: 03:d4:2c:b7:ea:b6:fa:3d:bf:3e:75:98:b6:6c:c8:cb:2d:26: 5b:1b:5a:5d:ee:26:7a:ca:50:f9:08:db:8a:56:02:41:fe:cf: fb:b6:16:ca:d3:d0:14:61:7c:82:dd:4e:bf:3e:a6:c3:48:ad: bf:18:4f:c3:96:4a:9c:08:4d:55:df:4f:03:c4:b1:67:5c:07: d6:8c:3e:b5:e4:58:14:ff:cd:34:83:a6:ea:3f:98:5b:78:ee: c3:ff:a3:d7:6e:c0:e2:d6:c3:0d:3b:9d:49:09:47:1c:3b:5d: 17:e3:fc:f4:89:67:97:79:86:e8:dc:63:12:28:95:d4:12:99: 59:1b:35:86:e4:63:de:4f:7e:08:ee:5f:d4:10:96:d1:f5:4f: 55:24:1e:e4:9a:7c:b8:5b:43:26:23:51:cb:e9:77:72:86:02: 29:d9:ac:f2:62:76:24:56:ab:39:0b:92:39:dd:b8:c7:b7:7a: 0b:24:58:bf:8d:7c:e2:d0:af:5c:12:6d:1c:8a:db:76:d7:0f: 82:4e:60:f0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTFDRjExMC8GA1UEBRMoQUVEODAxMERFNEQyM0ZGNEQwRjkwMDVCQUM5MjVCREI3 RjNERjMwQTAeFw0yNTA1MjgwODA3MTlaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzZjNDM3LTQ1MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDniQ2jW6ZARz/hGdbJKAiCFiHTR/6FgOyKhj9u3850FVoaxmCsTxmA1V4lgTI+ dypUPahE3hFF3YuDJP/Kjs6BZ1ddDi7i6ylz6R1S+B5XdA1QLM2V0BeW68W6GOOA Ti5RUNPDelNwW+rdfheJ0u41XZ9VbX/y1NNFcg/wOuH6e/RewyBfL4f7wfqLsB8J BD+b2fzp4TLh8NzVfS2pIG2XCOXzoFq63feyBZQzYc+R/FZRURNot+BrYSNoYKT8 CNhxrbJroG5kESKZmtEvUTLLPZeoK+mPJAh39I83Oo+UeiFUG0l4/ZX2R4k/iO15 PqaThgjJxLAWHwI+BZPppSWFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0750ePNZ uvDEf8J6LHfCTlgpr+UwHwYDVR0jBBgwFoAUrtgBDeTSP/TQ+QBbrJJb23898wow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MUNGLzI3NDlDN0JFODZE NzExRUY4NTRERDQ3QkM0RjlBRTAyL3J0Z0JEZVRTUF9UUS1RQmJySkpiMjM4OTh3 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcnRnQkRlVFNQX1RRLVFCYnJKSmIyMzg5OHdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8yNzQ5QzdCRTg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9DNkNEQkEzRTNC OUExMUYwQjc5MjRDMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7cjANBgkqhkiG9w0BAQsFAAOCAQEA3d8//fWBV2uzyotL zG5Sm7C0pGm6E6eIKuHc8NiU11Qqx2Inve7RYZ2TIcVPsZkEm/Klc6uyA9Qst+q2 +j2/PnWYtmzIyy0mWxtaXe4mespQ+QjbilYCQf7P+7YWytPQFGF8gt1Ovz6mw0it vxhPw5ZKnAhNVd9PA8SxZ1wH1ow+teRYFP/NNIOm6j+YW3juw/+j127A4tbDDTud SQlHHDtdF+P89Ilnl3mG6NxjEiiV1BKZWRs1huRj3k9+CO5f1BCW0fVPVSQe5Jp8 uFtDJiNRy+l3coYCKdms8mJ2JFarOQuSOd24x7d6CyRYv4184tCvXBJtHIrbdtcP gk5g8A== -----END CERTIFICATE-----Generated at Wed Jun 4 12:05:15 2025 by rpki-client