$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa File: 1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa (raw, json) Hash identifier: 6D1z5/hj7iwcN9jvk4ABt6iQgpmoKN4y5uMKnnXGheI= Subject key identifier: 90:2B:59:37:A7:54:50:22:AF:31:75:69:53:F8:B0:64:8A:DA:05:36 Certificate issuer: /CN=A91A560A/serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Certificate serial: 05E3 Authority key identifier: 8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa Signing time: Mon 26 May 2025 15:10:50 +0000 ROA not before: Mon 26 May 2025 15:10:50 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45899 IP address blocks: 157.66.13.0/24 maxlen: 24 160.19.78.0/23 maxlen: 23 160.22.2.0/23 maxlen: 24 160.25.74.0/23 maxlen: 24 160.30.54.0/23 maxlen: 24 160.191.52.0/23 maxlen: 24 160.250.216.0/23 maxlen: 23 161.248.30.0/23 maxlen: 24 165.99.58.0/24 maxlen: 24 165.99.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:35:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1507 (0x5e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=8AC721298F92E10A2EE3051AFBC9114284F80E12 Validity Not Before: May 26 15:10:50 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6834847a-c471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:88:cd:b1:05:62:03:73:29:5e:aa:14:86:b8: d7:d2:59:f9:10:65:c0:b8:62:c8:f5:b9:28:19:df: f4:a9:83:96:1e:ab:1e:36:6c:79:57:33:57:47:b5: 9b:3d:c9:ce:b5:af:e3:8c:0e:e4:87:cf:fd:82:e8: 4b:65:b3:16:0d:e1:75:99:19:ce:e7:16:27:84:bf: 65:73:da:17:79:4b:04:39:29:0b:f6:fe:d0:64:e2: 00:79:b2:96:89:f4:c1:d1:77:45:74:8e:f7:8b:e5: f0:ff:88:31:c1:9d:5a:6d:d8:fa:59:34:be:a4:1e: 2f:92:04:34:34:d0:bb:94:8b:77:0f:28:35:ce:c9: 1b:0f:f6:93:c6:11:91:ae:d8:3b:33:3e:40:04:d6: 13:9b:5f:a0:f8:46:d6:ac:2a:6b:99:45:21:4e:3b: c8:36:8b:0c:c7:b5:ff:12:af:1b:ed:3c:e8:a9:45: 52:37:58:84:61:79:56:1b:e1:da:88:58:37:ad:c6: 7a:71:04:cd:8d:d4:60:62:4e:27:8a:a4:a5:9e:4e: f5:0a:b4:e3:51:43:a8:6c:08:d9:24:9c:4c:b7:73: 3b:10:96:89:72:97:0a:59:14:88:80:d5:d9:e7:b9: 9e:f7:88:ce:aa:11:de:3b:09:16:ab:02:ce:ec:f3: 9e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:2B:59:37:A7:54:50:22:AF:31:75:69:53:F8:B0:64:8A:DA:05:36 X509v3 Authority Key Identifier: keyid:8A:C7:21:29:8F:92:E1:0A:2E:E3:05:1A:FB:C9:11:42:84:F8:0E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/ischKY-S4Qou4wUa-8kRQoT4DhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ischKY-S4Qou4wUa-8kRQoT4DhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/20958618A9DF11EEA356A43EC4F9AE02/1D1C933EFB9A11EEBF5C3C1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.66.13.0/24 160.19.78.0/23 160.22.2.0/23 160.25.74.0/23 160.30.54.0/23 160.191.52.0/23 160.250.216.0/23 161.248.30.0/23 165.99.58.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:49:6d:85:ff:f9:eb:9a:6f:14:b9:89:b9:c2:3b:d5:d8:5b: 2b:e8:31:4c:75:cf:7e:26:d8:f5:ea:c9:06:b4:c2:a4:0f:d8: 72:50:e0:4c:24:c2:eb:59:d8:fc:c8:c3:7d:f6:ec:ab:03:ed: 2c:43:2a:5b:15:e0:50:df:5a:f9:a6:50:9a:7f:0a:37:f5:5e: cd:cc:30:4f:d3:0a:50:f8:90:87:bf:d4:6f:64:fc:9b:1b:37: 0f:f0:e6:b9:d9:ed:73:84:5d:ac:2b:43:5b:7f:8d:21:fc:80: bf:0c:22:6c:1e:38:1e:2c:64:d4:67:93:8a:32:1f:12:5a:24: a7:2f:b0:64:75:66:ba:02:d9:cb:c3:b5:bd:ba:1c:d3:9e:31: 1a:84:0c:9e:89:cb:67:fc:b9:9f:ad:fd:83:7f:fc:29:a8:eb: 82:da:6e:88:06:fa:9f:3a:b6:2e:67:40:23:aa:52:26:3d:5a: c7:47:e5:4f:e2:11:fb:40:ee:ed:42:08:72:81:d9:2b:a1:1f: 7c:8e:08:09:1e:71:90:60:a9:ed:ba:9b:59:19:24:3e:01:9b: d3:b4:d4:58:04:26:53:0b:1d:b4:f7:6b:5d:6d:d2:94:40:8b: ff:68:fe:59:80:35:c2:dc:1c:b2:32:13:ba:09:75:d0:f0:9a: 9a:63:c1:2a -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgICBeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDhBQzcyMTI5OEY5MkUxMEEyRUUzMDUxQUZCQzkxMTQy ODRGODBFMTIwHhcNMjUwNTI2MTUxMDUwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0ODQ3YS1jNDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IjNsQViA3MpXqoUhrjX0ln5EGXAuGLI9bkoGd/0qYOWHqseNmx5VzNXR7Wb PcnOta/jjA7kh8/9guhLZbMWDeF1mRnO5xYnhL9lc9oXeUsEOSkL9v7QZOIAebKW ifTB0XdFdI73i+Xw/4gxwZ1abdj6WTS+pB4vkgQ0NNC7lIt3Dyg1zskbD/aTxhGR rtg7Mz5ABNYTm1+g+EbWrCprmUUhTjvINosMx7X/Eq8b7TzoqUVSN1iEYXlWG+Ha iFg3rcZ6cQTNjdRgYk4niqSlnk71CrTjUUOobAjZJJxMt3M7EJaJcpcKWRSIgNXZ 57me94jOqhHeOwkWqwLO7POevQIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFJArWTen VFAirzF1aVP4sGSK2gU2MB8GA1UdIwQYMBaAFIrHISmPkuEKLuMFGvvJEUKE+A4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS8yMDk1ODYxOEE5 REYxMUVFQTM1NkE0M0VDNEY5QUUwMi9pc2NoS1ktUzRRb3U0d1VhLThrUlFvVDRE aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lzY2hLWS1TNFFvdTR3VWEtOGtSUW9UNERoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvMjA5NTg2MThBOURGMTFFRUEzNTZBNDNFQzRGOUFFMDIvMUQxQzkzM0VG QjlBMTFFRUJGNUMzQzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E QDA+MDwEAgABMDYDBACdQg0DBAGgE04DBAGgFgIDBAGgGUoDBAGgHjYDBAGgvzQD BAGg+tgDBAGh+B4DBAGlYzowDQYJKoZIhvcNAQELBQADggEBAI5JbYX/+euabxS5 ibnCO9XYWyvoMUx1z34m2PXqyQa0wqQP2HJQ4EwkwutZ2PzIw3327KsD7SxDKlsV 4FDfWvmmUJp/Cjf1Xs3MME/TClD4kIe/1G9k/JsbNw/w5rnZ7XOEXawrQ1t/jSH8 gL8MImweOB4sZNRnk4oyHxJaJKcvsGR1ZroC2cvDtb26HNOeMRqEDJ6Jy2f8uZ+t /YN//Cmo64LabogG+p86ti5nQCOqUiY9WsdH5U/iEftA7u1CCHKB2SuhH3yOCAke cZBgqe26m1kZJD4Bm9O01FgEJlMLHbT3a11t0pRAi/9o/lmANcLcHLIyE7oJddDw mppjwSo= -----END CERTIFICATE-----Generated at Wed Jun 4 12:23:33 2025 by rpki-client