$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/D474730E311C11F08B197B65C4F9AE02.roa File: D474730E311C11F08B197B65C4F9AE02.roa (raw, json) Hash identifier: Pu/QPbX6etZqKvOsEtAWX426lG3kK44YjXzpJvX5ecs= Subject key identifier: 6F:87:A2:E7:DF:88:5A:8E:8F:92:DD:AD:66:96:BE:F6:A9:75:94:E5 Certificate issuer: /CN=A91A5ED2/serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Certificate serial: 04 Authority key identifier: D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/D474730E311C11F08B197B65C4F9AE02.roa Signing time: Wed 14 May 2025 23:40:34 +0000 ROA not before: Wed 14 May 2025 23:40:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 7545 IP address blocks: 160.250.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5ED2, serialNumber=D904D552C0EF32F249ABA4597BD84A15EE5555C1 Validity Not Before: May 14 23:40:34 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=682529f2-00c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6c:2f:9e:9e:0b:f8:45:f6:34:6c:1b:50:47: e5:26:e4:9a:dd:2b:03:2a:18:db:7b:f5:f2:f1:c7: 2c:fa:24:d6:14:87:b9:0a:61:c6:c1:b0:02:cd:e8: 13:d2:21:46:49:6d:64:ee:b0:51:1f:75:d7:4d:b5: e9:7d:20:8f:d0:23:9b:fd:ce:04:d9:f2:a9:ca:30: 5a:69:e1:1e:2f:f2:54:8a:7f:a2:20:72:6f:d1:aa: ce:e4:c2:81:68:7a:e6:d5:73:34:0d:16:4e:1c:7a: 8c:62:f0:20:72:8a:89:8f:36:48:d6:59:ed:80:8a: ce:00:d0:78:3c:eb:11:db:73:19:a5:66:b9:8b:aa: 6c:52:95:b8:43:a0:dc:27:2b:7e:63:e7:5e:d4:01: 5f:d3:a2:da:05:31:37:ba:4d:8b:b9:54:06:84:15: 0b:56:b1:5f:ac:7c:ed:ee:be:2d:32:11:ee:dc:96: 26:8d:f7:52:07:ec:c6:53:2b:39:70:47:e5:4a:7d: a6:f3:34:71:c7:ca:74:c5:75:2d:ed:75:b8:47:59: 1e:bb:af:c3:4d:0b:a1:e5:da:ae:54:19:e1:46:b9: 90:24:c5:61:ad:ca:db:e9:c3:ef:f0:a0:93:8c:c1: c5:d1:a8:b6:e8:37:c5:8f:ae:e4:14:27:26:c8:77: db:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:87:A2:E7:DF:88:5A:8E:8F:92:DD:AD:66:96:BE:F6:A9:75:94:E5 X509v3 Authority Key Identifier: keyid:D9:04:D5:52:C0:EF:32:F2:49:AB:A4:59:7B:D8:4A:15:EE:55:55:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/2QTVUsDvMvJJq6RZe9hKFe5VVcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2QTVUsDvMvJJq6RZe9hKFe5VVcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5ED2/F245B2D6311B11F0A2F51160C4F9AE02/D474730E311C11F08B197B65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.157.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:ad:9b:8e:c2:ea:d9:72:e9:3d:31:f5:c0:94:87:4b:e2:cb: 6c:ea:13:cb:49:22:88:d0:dd:98:43:b7:24:b1:db:46:bf:84: 93:a1:cf:e5:f9:f6:ed:26:3e:8a:34:b2:fa:19:ca:3f:36:f7: 7f:d7:fb:b9:07:e8:9e:37:2a:e1:71:dc:87:08:14:ed:4f:21: a6:c9:81:ec:51:df:22:7b:74:40:1a:70:2d:af:15:e7:1b:6c: 1d:c0:29:1b:a8:47:4f:5a:7c:9c:74:cd:49:d1:82:64:71:15: c1:5b:0c:9a:7c:18:cb:cc:29:4c:96:3d:b4:fd:12:8d:76:1e: be:04:44:12:df:f3:80:55:d1:2d:b2:6a:5d:cc:dc:13:80:1c: 15:08:4e:ce:2e:7c:2e:28:7e:36:80:1f:59:81:0e:c5:84:0a: 48:e5:78:9c:b7:f5:8c:d4:fb:13:99:89:11:d7:d1:ce:3e:9f: 3e:11:45:c5:74:96:ff:a9:4d:95:a3:1d:21:84:e8:b6:6c:0f: cd:15:97:c1:28:43:c9:30:4a:2a:25:42:73:7c:6f:34:61:dc: b2:e7:7d:1a:93:98:d4:4c:d1:bd:d4:cd:f8:fc:73:8e:68:cd: a9:0a:89:6f:a9:f8:1c:81:86:ba:20:f3:14:56:e6:b6:02:c7: e8:76:9a:77 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUVEMjExMC8GA1UEBRMoRDkwNEQ1NTJDMEVGMzJGMjQ5QUJBNDU5N0JEODRBMTVF RTU1NTVDMTAeFw0yNTA1MTQyMzQwMzRaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjUyOWYyLTAwYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFbC+engv4RfY0bBtQR+Um5JrdKwMqGNt79fLxxyz6JNYUh7kKYcbBsALN6BPS IUZJbWTusFEfdddNtel9II/QI5v9zgTZ8qnKMFpp4R4v8lSKf6Igcm/Rqs7kwoFo eubVczQNFk4ceoxi8CByiomPNkjWWe2Ais4A0Hg86xHbcxmlZrmLqmxSlbhDoNwn K35j517UAV/TotoFMTe6TYu5VAaEFQtWsV+sfO3uvi0yEe7cliaN91IH7MZTKzlw R+VKfabzNHHHynTFdS3tdbhHWR67r8NNC6Hl2q5UGeFGuZAkxWGtytvpw+/woJOM wcXRqLboN8WPruQUJybId9vLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUb4ei59+I Wo6Pkt2tZpa+9ql1lOUwHwYDVR0jBBgwFoAU2QTVUsDvMvJJq6RZe9hKFe5VVcEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1RUQyL0YyNDVCMkQ2MzEx QjExRjBBMkY1MTE2MEM0RjlBRTAyLzJRVFZVc0R2TXZKSnE2UlplOWhLRmU1VlZj RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMlFUVlVzRHZNdkpKcTZSWmU5aEtGZTVWVmNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUVEMi9GMjQ1QjJENjMxMUIxMUYwQTJGNTExNjBDNEY5QUUwMi9ENDc0NzMwRTMx MUMxMUYwOEIxOTdCNjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6nTANBgkqhkiG9w0BAQsFAAOCAQEAHa2bjsLq2XLpPTH1 wJSHS+LLbOoTy0kiiNDdmEO3JLHbRr+Ek6HP5fn27SY+ijSy+hnKPzb3f9f7uQfo njcq4XHchwgU7U8hpsmB7FHfInt0QBpwLa8V5xtsHcApG6hHT1p8nHTNSdGCZHEV wVsMmnwYy8wpTJY9tP0SjXYevgREEt/zgFXRLbJqXczcE4AcFQhOzi58Lih+NoAf WYEOxYQKSOV4nLf1jNT7E5mJEdfRzj6fPhFFxXSW/6lNlaMdIYTotmwPzRWXwShD yTBKKiVCc3xvNGHcsud9GpOY1EzRvdTN+PxzjmjNqQqJb6n4HIGGuiDzFFbmtgLH 6Haadw== -----END CERTIFICATE-----Generated at Fri Jun 6 17:18:57 2025 by rpki-client