$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/206DB948214F11EFAB245D49C4F9AE02.roa File: 206DB948214F11EFAB245D49C4F9AE02.roa (raw, json) Hash identifier: Eb8AfFxkY2lunIzmPfp9ZyHAYk+RBb0a8BG4v3YCxDc= Subject key identifier: C6:38:E5:CE:D8:1C:C0:63:C9:74:4A:41:44:A3:0A:52:CD:63:3F:65 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: C6 Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/206DB948214F11EFAB245D49C4F9AE02.roa Signing time: Thu 05 Jun 2025 05:15:14 +0000 ROA not before: Thu 05 Jun 2025 05:15:14 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152894 IP address blocks: 160.22.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 05:21:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 198 (0xc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Jun 5 05:15:14 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684127e2-b175 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8b:2a:28:65:d2:fb:a9:6c:b9:27:f9:4c:59: 6f:1a:0e:62:38:d8:2b:43:5e:2f:4f:e0:2d:9a:4a: a8:fc:26:7b:dc:dd:3d:67:3b:97:b7:85:50:0e:ba: 01:e2:f6:64:8d:60:02:e4:e7:eb:ec:d5:02:c1:ab: 62:3f:29:1d:df:89:38:db:a1:2f:92:85:86:8f:f4: 4d:05:74:a4:c1:e3:a7:a8:db:01:6a:8a:e7:94:95: f9:32:4f:c6:6f:dc:b1:32:62:01:16:cc:e4:5d:a1: 37:18:ae:4c:d9:13:18:24:ff:33:aa:b3:d7:82:f4: f4:54:9e:1c:50:97:36:4a:2f:c5:ac:14:e5:5d:db: c4:34:a1:89:6d:97:d2:91:d9:c6:c1:75:2b:a7:53: 5c:8b:2e:2f:9c:8f:23:19:34:6b:a6:10:b4:30:f3: f8:55:99:e3:77:5b:b5:79:30:a5:df:ad:c0:cf:6c: 20:88:f9:45:c2:79:11:08:5b:db:a7:cd:d6:16:ae: 13:2a:3d:67:89:47:92:a1:6e:10:be:2e:6f:ed:17: 95:1f:ce:69:64:a7:f2:fc:f6:54:12:f9:b1:f1:0e: 64:50:5c:60:86:9c:be:47:ef:a5:b2:f9:fe:0b:86: c1:47:af:c2:cd:d6:e8:0b:1c:7a:69:e1:a1:1d:a3: 96:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:38:E5:CE:D8:1C:C0:63:C9:74:4A:41:44:A3:0A:52:CD:63:3F:65 X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/206DB948214F11EFAB245D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.43.0/24 Signature Algorithm: sha256WithRSAEncryption 28:d4:8d:46:c8:ac:f5:b3:bf:bc:d8:82:2e:16:4a:43:ec:02: d6:91:8a:ee:3f:5a:7b:df:3c:5c:c9:61:56:f2:79:67:81:90: 89:ad:63:6c:d4:85:f7:37:7b:08:5f:60:f3:7a:64:3d:12:7e: 9d:9b:19:6e:39:d8:24:24:a6:b7:08:2f:49:7b:79:91:2a:22: 19:26:96:66:48:f1:68:76:a8:aa:19:c5:d0:98:0d:a4:54:2a: 87:87:54:f1:72:5a:99:a2:d3:ef:c6:a3:42:f3:a7:88:53:0c: e1:81:a0:78:1a:c7:e9:75:94:03:e0:59:17:cf:5d:f9:59:63: 81:f3:ef:7f:1a:aa:07:15:b6:81:5e:90:3f:da:f0:9d:7a:28: c5:e3:79:0e:2c:50:83:5a:51:6f:0e:c5:5d:c7:45:d0:08:9a: 5b:f3:14:ee:21:46:4d:73:44:f6:da:e8:90:51:e8:5c:d7:24: c7:f6:b8:03:c5:c6:51:bc:27:5a:71:c7:16:19:10:5c:6d:9b: 0b:6b:fa:6e:ea:0e:97:55:b0:ec:0c:97:e3:67:cc:c7:64:b6: fe:a6:56:f0:14:2e:1f:04:73:62:98:9c:c2:a0:88:9f:e1:2e: 34:a3:54:0e:31:4f:70:54:88:d8:8e:7e:46:eb:c0:3b:16:4d: cd:bf:4f:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4RUMxMTAvBgNVBAUTKDREQjNCMkUzNTk5QjY0NkU5RjMwQUY3NEE1OEM2Njc4 RkFGMUQyQjcwHhcNMjUwNjA1MDUxNTE0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMjdlMi1iMTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3IsqKGXS+6lsuSf5TFlvGg5iONgrQ14vT+Atmkqo/CZ73N09ZzuXt4VQDroB 4vZkjWAC5Ofr7NUCwatiPykd34k426EvkoWGj/RNBXSkweOnqNsBaornlJX5Mk/G b9yxMmIBFszkXaE3GK5M2RMYJP8zqrPXgvT0VJ4cUJc2Si/FrBTlXdvENKGJbZfS kdnGwXUrp1Nciy4vnI8jGTRrphC0MPP4VZnjd1u1eTCl363Az2wgiPlFwnkRCFvb p83WFq4TKj1niUeSoW4Qvi5v7ReVH85pZKfy/PZUEvmx8Q5kUFxghpy+R++lsvn+ C4bBR6/CzdboCxx6aeGhHaOWwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMY45c7Y HMBjyXRKQUSjClLNYz9lMB8GA1UdIwQYMBaAFE2zsuNZm2RunzCvdKWMZnj68dK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OThFQy8zQThGODQxMDIx NDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpHNmZNSzkwcFl4bWVQcngw cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDByYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk4RUMvM0E4Rjg0MTAyMTQ5MTFFRkJFODhDRjI5QzRGOUFFMDIvMjA2REI5NDgy MTRGMTFFRkFCMjQ1RDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFiswDQYJKoZIhvcNAQELBQADggEBACjUjUbIrPWzv7zY gi4WSkPsAtaRiu4/WnvfPFzJYVbyeWeBkImtY2zUhfc3ewhfYPN6ZD0Sfp2bGW45 2CQkprcIL0l7eZEqIhkmlmZI8Wh2qKoZxdCYDaRUKoeHVPFyWpmi0+/Go0Lzp4hT DOGBoHgax+l1lAPgWRfPXflZY4Hz738aqgcVtoFekD/a8J16KMXjeQ4sUINaUW8O xV3HRdAImlvzFO4hRk1zRPba6JBR6FzXJMf2uAPFxlG8J1pxxxYZEFxtmwtr+m7q DpdVsOwMl+NnzMdktv6mVvAULh8Ec2KYnMKgiJ/hLjSjVA4xT3BUiNiOfkbrwDsW Tc2/T8k= -----END CERTIFICATE-----Generated at Sun Jun 8 20:50:09 2025 by rpki-client