$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/4513A9F2655E11F08DD08421C4F9AE02.roa File: 4513A9F2655E11F08DD08421C4F9AE02.roa (raw, json) Hash identifier: z9rOS7OxV4xU/wU64+wmR8g5Z2gp4WF60da79pTof2A= Subject key identifier: 72:F4:6B:05:D0:FD:C9:89:60:F0:B5:F3:F3:1D:38:78:69:97:E1:AC Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: 6D Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/4513A9F2655E11F08DD08421C4F9AE02.roa Signing time: Sun 20 Jul 2025 11:40:01 +0000 ROA not before: Sun 20 Jul 2025 11:40:01 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137526 IP address blocks: 160.250.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:10:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Jul 20 11:40:01 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=687cd591-b5af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2b:86:e8:28:6e:af:56:3e:8c:2e:4b:02:c0: c7:a5:c5:12:51:8c:a9:94:07:a0:3b:02:da:83:f3: c2:5f:c7:03:a5:ee:ea:74:92:c0:bc:42:08:8c:3d: ed:a0:0b:c3:24:95:bd:ff:d7:79:f2:ff:62:03:a5: 44:ee:36:92:ae:ee:37:bc:e8:6e:1b:49:71:21:b1: 9e:37:c4:fd:42:89:5a:98:12:44:9e:f7:5d:00:e8: d3:ed:64:25:33:04:54:41:df:0d:f8:56:8f:c7:ee: 86:fe:17:e0:16:19:a8:63:d9:0b:22:5b:73:36:00: 83:ce:e7:11:4f:8e:8c:6f:8a:65:07:91:f7:76:d0: 40:bb:c2:72:7f:94:16:7a:16:c1:32:b0:68:11:92: 63:43:1d:8b:28:50:04:03:fc:91:79:6e:35:fa:b7: 01:b3:1e:ef:b5:1a:6b:38:61:de:6b:5d:1d:ae:d0: fa:25:44:a4:31:29:33:f7:3d:d0:4c:55:e0:4f:a6: 63:d0:b1:40:ef:62:c7:29:0a:bb:81:d1:0f:bb:29: 18:87:9e:74:d2:e1:f6:33:9f:82:c7:ba:5e:a7:a2: dd:e9:37:9d:cf:bd:f6:89:36:53:f5:8d:c6:12:5d: c8:83:2c:60:64:c3:d8:de:76:72:8d:f6:fe:32:cf: aa:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:F4:6B:05:D0:FD:C9:89:60:F0:B5:F3:F3:1D:38:78:69:97:E1:AC X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/4513A9F2655E11F08DD08421C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.240.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:58:dd:29:a0:24:1a:a8:0c:d0:cd:b1:24:58:4e:d2:0f:8c: 71:e6:89:67:53:b8:c8:57:25:a2:d5:c2:09:9f:9e:ce:e4:3a: d1:2d:8f:8a:a8:20:13:ac:18:db:5d:57:92:40:2d:bc:db:87: de:30:55:cb:aa:ed:40:d8:89:be:24:94:16:4c:0e:04:d8:c5: 79:54:ef:38:7b:13:6c:e8:48:af:70:66:0c:44:f6:7a:84:6f: 7d:e6:d1:c2:bc:e9:a2:76:69:14:38:3c:7c:d2:6b:4f:76:ea: 9e:ac:3b:8b:31:69:c2:13:ac:55:f7:1b:1c:fa:83:34:11:6e: ac:a7:68:47:13:8d:41:61:34:27:3b:e4:c1:3e:80:31:78:47: dc:a7:d3:e8:d6:ec:fe:39:f3:2a:ca:33:23:a9:ff:a1:86:88: 77:1b:f1:e8:f6:e1:c9:47:bc:1d:77:86:ce:cd:5a:e6:f7:72: 60:4a:b1:15:32:dd:94:bb:2e:f4:a5:31:f3:5e:27:e5:73:7e: 80:89:94:24:d4:d9:21:43:a7:53:72:53:1b:63:f8:d3:9e:cc: c3:c1:08:74:ce:b8:91:7e:2f:92:60:81:eb:7b:09:de:fe:6d: 09:cf:d4:5b:9b:7b:88:f1:a4:40:ee:b2:4c:34:74:31:b8:fe: ad:99:d3:f0 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJCNjExMC8GA1UEBRMoMzkwQTM4MzdBQkE2OTEyQTJDRjI5RTYxMERBNDk1NTVE RjJDNkZBNTAeFw0yNTA3MjAxMTQwMDFaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2NkNTkxLWI1YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYK4boKG6vVj6MLksCwMelxRJRjKmUB6A7AtqD88JfxwOl7up0ksC8QgiMPe2g C8Mklb3/13ny/2IDpUTuNpKu7je86G4bSXEhsZ43xP1CiVqYEkSe910A6NPtZCUz BFRB3w34Vo/H7ob+F+AWGahj2QsiW3M2AIPO5xFPjoxvimUHkfd20EC7wnJ/lBZ6 FsEysGgRkmNDHYsoUAQD/JF5bjX6twGzHu+1Gms4Yd5rXR2u0PolRKQxKTP3PdBM VeBPpmPQsUDvYscpCruB0Q+7KRiHnnTS4fYzn4LHul6not3pN53PvfaJNlP1jcYS XciDLGBkw9jednKN9v4yz6qZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcvRrBdD9 yYlg8LXz8x04eGmX4awwHwYDVR0jBBgwFoAUOQo4N6umkSos8p5hDaSVVd8sb6Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkI2L0RFN0UzMjFFQ0I1 OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1FvNE42dW1rU29zOHA1aERhU1ZWZDhzYjZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9ERTdFMzIxRUNCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi80NTEzQTlGMjY1 NUUxMUYwOEREMDg0MjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD68DANBgkqhkiG9w0BAQsFAAOCAQEAb1jdKaAkGqgM0M2x JFhO0g+MceaJZ1O4yFclotXCCZ+ezuQ60S2PiqggE6wY211XkkAtvNuH3jBVy6rt QNiJviSUFkwOBNjFeVTvOHsTbOhIr3BmDET2eoRvfebRwrzponZpFDg8fNJrT3bq nqw7izFpwhOsVfcbHPqDNBFurKdoRxONQWE0JzvkwT6AMXhH3KfT6Nbs/jnzKsoz I6n/oYaIdxvx6PbhyUe8HXeGzs1a5vdyYEqxFTLdlLsu9KUx814n5XN+gImUJNTZ IUOnU3JTG2P4057Mw8EIdM64kX4vkmCB63sJ3v5tCc/UW5t7iPGkQO6yTDR0Mbj+ rZnT8A== -----END CERTIFICATE-----Generated at Mon Jul 21 08:57:12 2025 by rpki-client