$ rpki-client -vvf rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/003589503F8311F0AA4DF254C4F9AE02.roa File: 003589503F8311F0AA4DF254C4F9AE02.roa (raw, json) Hash identifier: 8eqt950PmXpP3Mdx7FgJY/zBuBaFJX67pkKFWKR83KI= Subject key identifier: 93:70:2A:99:CF:F1:20:9C:EE:C3:E5:22:0E:D7:8D:F7:50:81:49:1D Certificate issuer: /CN=A91972DF/serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Certificate serial: 7E Authority key identifier: 47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/003589503F8311F0AA4DF254C4F9AE02.roa Signing time: Tue 03 Jun 2025 08:44:15 +0000 ROA not before: Tue 03 Jun 2025 08:44:15 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 7540 IP address blocks: 160.191.154.0/23 maxlen: 23 160.191.154.0/24 maxlen: 24 160.191.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 05:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91972DF, serialNumber=4720A2B78C78239926FDEE7344A3680DA0D8071D Validity Not Before: Jun 3 08:44:15 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=683eb5df-5024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1c:09:25:bb:c2:8e:52:f9:44:90:40:c6:b1: c4:08:db:9a:e1:9e:50:0e:5d:d4:e4:7f:da:cd:c8: 3f:4a:17:ed:82:3d:22:a4:f6:68:9f:02:ba:cf:3c: 3d:0d:f8:ee:45:03:07:39:fb:fb:08:e2:08:8d:61: 54:bc:93:84:ba:2d:d5:6e:f0:23:a6:de:c4:a3:d3: f8:2d:35:a0:2e:50:ff:c8:97:6e:22:fd:25:eb:1d: ae:7f:9f:0f:03:53:d7:3f:57:d6:a7:6c:92:23:c5: b4:08:a4:77:5e:25:8c:bf:6c:bd:86:97:46:6b:bf: af:f2:26:d1:4f:cc:d1:ad:0b:8b:ef:ee:80:2a:08: 06:f1:df:fc:5d:24:1b:42:e1:b4:07:f2:fa:4d:4c: 33:0a:69:39:42:18:c5:1f:5a:3c:a8:99:73:af:fc: d3:02:3b:d8:5b:ac:4a:5e:26:99:07:b8:ef:14:9a: c2:92:bf:1f:83:94:bb:cb:5f:c1:9f:e0:c4:7b:87: d6:2f:58:ac:a8:3f:e8:56:58:97:70:f3:25:79:ae: b2:75:03:3d:25:8b:22:a1:5f:8a:13:37:e5:eb:78: 72:a4:8b:3f:d8:f8:4b:7d:b6:94:43:54:b8:2f:20: 6d:1b:c4:b9:23:72:55:b1:57:73:f8:73:12:eb:e2: 4b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:70:2A:99:CF:F1:20:9C:EE:C3:E5:22:0E:D7:8D:F7:50:81:49:1D X509v3 Authority Key Identifier: keyid:47:20:A2:B7:8C:78:23:99:26:FD:EE:73:44:A3:68:0D:A0:D8:07:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/RyCit4x4I5km_e5zRKNoDaDYBx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RyCit4x4I5km_e5zRKNoDaDYBx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91972DF/27E3EDA4983311EF83189A57C4F9AE02/003589503F8311F0AA4DF254C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.154.0/23 Signature Algorithm: sha256WithRSAEncryption 69:1b:97:6f:31:c2:6b:5c:22:ba:20:fe:a6:0d:fd:d6:7b:81: 36:72:da:48:b8:4e:38:45:49:44:91:89:40:79:05:4b:2f:a3: 89:17:cd:67:6f:44:cd:ff:a8:59:3e:87:36:f3:bf:d6:57:a7: fa:46:e6:ff:a9:da:b0:20:49:88:9a:24:e9:ed:a4:86:29:c9: de:20:ee:f1:42:de:7a:62:ff:84:96:dc:54:46:6c:80:df:d6: 12:7d:58:3f:f6:7a:b2:44:2c:9f:a1:22:37:b6:26:30:ec:0b: d1:00:7c:5a:5a:d8:f7:f2:19:35:ec:5b:01:cb:7f:48:62:90: 11:68:73:4b:e3:e3:90:7f:e4:e8:45:f1:71:3b:70:10:3f:45: e4:4c:cb:c5:27:c4:6a:39:e4:d4:52:7e:33:5a:55:26:3d:94: 54:fa:6c:03:a6:d1:15:5c:2e:28:92:e4:a4:f3:28:65:34:16: 56:9d:c8:5f:8b:14:b9:a5:2d:64:06:9d:af:97:01:b5:23:ea: a2:37:f6:88:44:ea:39:1d:99:a8:46:62:1e:6c:91:9e:47:c4: aa:4c:bd:ce:53:f3:88:7b:06:a1:fc:e2:ad:0b:9e:5a:2a:43: 12:cc:26:3a:30:66:b6:7d:ab:61:b9:f2:2d:53:d4:d1:8b:7e: cb:c5:ae:d6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzJERjExMC8GA1UEBRMoNDcyMEEyQjc4Qzc4MjM5OTI2RkRFRTczNDRBMzY4MERB MEQ4MDcxRDAeFw0yNTA2MDMwODQ0MTVaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2ViNWRmLTUwMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGHAklu8KOUvlEkEDGscQI25rhnlAOXdTkf9rNyD9KF+2CPSKk9mifArrPPD0N +O5FAwc5+/sI4giNYVS8k4S6LdVu8COm3sSj0/gtNaAuUP/Il24i/SXrHa5/nw8D U9c/V9anbJIjxbQIpHdeJYy/bL2Gl0Zrv6/yJtFPzNGtC4vv7oAqCAbx3/xdJBtC 4bQH8vpNTDMKaTlCGMUfWjyomXOv/NMCO9hbrEpeJpkHuO8UmsKSvx+DlLvLX8Gf 4MR7h9YvWKyoP+hWWJdw8yV5rrJ1Az0liyKhX4oTN+XreHKkiz/Y+Et9tpRDVLgv IG0bxLkjclWxV3P4cxLr4kv5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUk3Aqmc/x IJzuw+UiDteN91CBSR0wHwYDVR0jBBgwFoAURyCit4x4I5km/e5zRKNoDaDYBx0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3MkRGLzI3RTNFREE0OTgz MzExRUY4MzE4OUE1N0M0RjlBRTAyL1J5Q2l0NHg0STVrbV9lNXpSS05vRGFEWUJ4 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUnlDaXQ0eDRJNWttX2U1elJLTm9EYURZQngwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzJERi8yN0UzRURBNDk4MzMxMUVGODMxODlBNTdDNEY5QUUwMi8wMDM1ODk1MDNG ODMxMUYwQUE0REYyNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/mjANBgkqhkiG9w0BAQsFAAOCAQEAaRuXbzHCa1wiuiD+ pg391nuBNnLaSLhOOEVJRJGJQHkFSy+jiRfNZ29Ezf+oWT6HNvO/1len+kbm/6na sCBJiJok6e2khinJ3iDu8ULeemL/hJbcVEZsgN/WEn1YP/Z6skQsn6EiN7YmMOwL 0QB8WlrY9/IZNexbAct/SGKQEWhzS+PjkH/k6EXxcTtwED9F5EzLxSfEajnk1FJ+ M1pVJj2UVPpsA6bRFVwuKJLkpPMoZTQWVp3IX4sUuaUtZAadr5cBtSPqojf2iETq OR2ZqEZiHmyRnkfEqky9zlPziHsGofzirQueWipDEswmOjBmtn2rYbnyLVPU0Yt+ y8Wu1g== -----END CERTIFICATE-----Generated at Thu Jun 5 19:19:22 2025 by rpki-client