$ rpki-client -vvf rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/DE3EC424979411EF875EE369C4F9AE02.roa File: DE3EC424979411EF875EE369C4F9AE02.roa (raw, json) Hash identifier: 5QE8zDybdgUA94Tpp6+guNsFhK7KXTxJ0yxg/2zsqZo= Subject key identifier: 22:8A:93:5B:CB:7F:86:E8:3B:58:33:CF:A9:BE:78:C3:59:49:ED:72 Certificate issuer: /CN=A9190818/serialNumber=4F45FA69D9E5F55084DDC922895276A640239C1C Certificate serial: 09 Authority key identifier: 4F:45:FA:69:D9:E5:F5:50:84:DD:C9:22:89:52:76:A6:40:23:9C:1C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T0X6adnl9VCE3ckiiVJ2pkAjnBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/DE3EC424979411EF875EE369C4F9AE02.roa Signing time: Thu 31 Oct 2024 14:31:51 +0000 ROA not before: Thu 31 Oct 2024 14:31:51 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153371 IP address blocks: 160.191.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/T0X6adnl9VCE3ckiiVJ2pkAjnBw.crl rsync://rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/T0X6adnl9VCE3ckiiVJ2pkAjnBw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T0X6adnl9VCE3ckiiVJ2pkAjnBw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:06:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190818, serialNumber=4F45FA69D9E5F55084DDC922895276A640239C1C Validity Not Before: Oct 31 14:31:51 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672394d7-4efa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1a:9b:b3:ac:2a:b1:ab:1f:1a:4b:4f:1f:bc: 8f:90:ec:5e:81:1c:94:75:16:81:ef:70:2d:ea:82: 92:a7:3e:26:4e:bd:63:d5:e1:a8:c3:9f:c4:52:90: 7e:f7:ca:af:43:f8:b5:c7:e1:14:e6:27:ee:b4:50: a0:f4:c6:2d:82:d0:5e:81:03:fb:a0:b6:4e:2f:5c: b5:72:ea:5e:96:2f:d2:11:c5:6a:c3:2a:6c:d6:25: cf:52:66:cf:76:1e:85:f4:fb:61:d8:70:b1:75:c4: 1e:51:26:c9:bd:79:dd:e9:ee:08:bb:6d:b2:06:a5: f7:c4:99:88:ed:71:f2:f5:02:67:a6:a6:35:7b:8e: 33:65:a8:57:e8:db:bb:a1:6b:57:10:d1:df:87:ee: ff:43:6d:8a:d2:c8:8c:58:b4:e4:d1:91:97:a5:6c: f6:db:03:93:20:51:70:26:00:a7:df:86:90:17:59: 54:81:f7:f6:14:0b:3c:3d:7f:96:07:7b:a0:86:ae: 72:8d:cd:49:f9:b5:48:e2:f7:61:c0:80:37:71:b5: 58:d1:11:7a:35:f5:80:43:88:01:34:1e:c7:44:83: 95:ca:24:7a:22:75:14:6c:cd:5b:39:80:42:35:d5: 14:e9:25:38:04:e1:a3:4b:f5:dd:b0:17:43:be:c5: 0f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:8A:93:5B:CB:7F:86:E8:3B:58:33:CF:A9:BE:78:C3:59:49:ED:72 X509v3 Authority Key Identifier: keyid:4F:45:FA:69:D9:E5:F5:50:84:DD:C9:22:89:52:76:A6:40:23:9C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/T0X6adnl9VCE3ckiiVJ2pkAjnBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/T0X6adnl9VCE3ckiiVJ2pkAjnBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190818/753C3018909D11EF9717F650C4F9AE02/DE3EC424979411EF875EE369C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.40.0/23 Signature Algorithm: sha256WithRSAEncryption a1:54:29:57:f7:02:ba:ce:ab:c4:3f:20:39:66:23:35:24:08: de:85:95:80:0a:cf:46:af:7e:3c:e9:e6:fc:c1:1a:c6:ff:c6: e9:e7:0f:43:f1:da:db:ea:9a:49:77:68:b3:a0:18:72:8f:4d: 12:3b:61:58:c1:1d:3a:2e:aa:0d:26:f5:7d:8c:4a:a2:fc:53: e6:5e:70:8c:e8:42:35:27:82:6d:3e:83:28:25:56:36:68:c3: 52:4b:e3:25:55:b9:6c:c3:a7:08:41:81:59:ad:4a:e8:1b:d2: b7:43:3e:10:ca:f9:33:44:93:f6:ad:dd:ac:8e:3d:07:21:6a: 90:fc:9a:68:35:fc:4e:f8:80:4f:56:6d:70:aa:8c:e3:aa:71: a6:15:f4:8b:c2:c0:ac:1d:3f:61:e7:8b:3f:b8:1f:86:ac:2f: ab:7c:3b:3d:39:14:40:75:6e:1a:04:d2:31:1b:3e:00:0e:0d: 28:c7:d6:be:ca:8f:f0:9f:d8:f3:a7:b7:dc:6a:df:5c:0d:07: 6a:56:3c:3e:53:91:01:06:f4:9d:34:5d:78:79:8c:85:92:dc: 99:84:48:15:b7:1d:34:4c:ce:42:c4:2c:1a:47:88:b9:af:c3: 4f:ca:ae:53:6a:97:bd:82:4d:28:a3:6e:84:59:14:14:92:ba: ae:36:8b:81 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MDgxODExMC8GA1UEBRMoNEY0NUZBNjlEOUU1RjU1MDg0RERDOTIyODk1Mjc2QTY0 MDIzOUMxQzAeFw0yNDEwMzExNDMxNTFaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjM5NGQ3LTRlZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsGpuzrCqxqx8aS08fvI+Q7F6BHJR1FoHvcC3qgpKnPiZOvWPV4ajDn8RSkH73 yq9D+LXH4RTmJ+60UKD0xi2C0F6BA/ugtk4vXLVy6l6WL9IRxWrDKmzWJc9SZs92 HoX0+2HYcLF1xB5RJsm9ed3p7gi7bbIGpffEmYjtcfL1AmempjV7jjNlqFfo27uh a1cQ0d+H7v9DbYrSyIxYtOTRkZelbPbbA5MgUXAmAKffhpAXWVSB9/YUCzw9f5YH e6CGrnKNzUn5tUji92HAgDdxtVjREXo19YBDiAE0HsdEg5XKJHoidRRszVs5gEI1 1RTpJTgE4aNL9d2wF0O+xQ8HAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUIoqTW8t/ hug7WDPPqb54w1lJ7XIwHwYDVR0jBBgwFoAUT0X6adnl9VCE3ckiiVJ2pkAjnBww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkwODE4Lzc1M0MzMDE4OTA5 RDExRUY5NzE3RjY1MEM0RjlBRTAyL1QwWDZhZG5sOVZDRTNja2lpVkoycGtBam5C dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVDBYNmFkbmw5VkNFM2NraWlWSjJwa0FqbkJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDgxOC83NTNDMzAxODkwOUQxMUVGOTcxN0Y2NTBDNEY5QUUwMi9ERTNFQzQyNDk3 OTQxMUVGODc1RUUzNjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/KDANBgkqhkiG9w0BAQsFAAOCAQEAoVQpV/cCus6rxD8g OWYjNSQI3oWVgArPRq9+POnm/MEaxv/G6ecPQ/Ha2+qaSXdos6AYco9NEjthWMEd Oi6qDSb1fYxKovxT5l5wjOhCNSeCbT6DKCVWNmjDUkvjJVW5bMOnCEGBWa1K6BvS t0M+EMr5M0ST9q3drI49ByFqkPyaaDX8TviAT1ZtcKqM46pxphX0i8LArB0/YeeL P7gfhqwvq3w7PTkUQHVuGgTSMRs+AA4NKMfWvsqP8J/Y86e33GrfXA0HalY8PlOR AQb0nTRdeHmMhZLcmYRIFbcdNEzOQsQsGkeIua/DT8quU2qXvYJNKKNuhFkUFJK6 rjaLgQ== -----END CERTIFICATE-----Generated at Wed Oct 22 19:03:45 2025 by rpki-client