$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/95CA439CDAE211ECA14A8254C4F9AE02.roa File: 95CA439CDAE211ECA14A8254C4F9AE02.roa (raw, json) Hash identifier: 16TIMxSDuDuwbvd9GQ+m4o06d2DMg8lDV7WSYdSxPbs= Subject key identifier: 96:72:C6:DC:B3:9C:74:46:4E:4C:80:38:1A:F1:38:B8:C7:94:A6:8E Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 02D1 Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/95CA439CDAE211ECA14A8254C4F9AE02.roa Signing time: Mon 03 Mar 2025 03:25:44 +0000 ROA not before: Mon 03 Mar 2025 03:25:44 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 396982 IP address blocks: 45.250.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 00:58:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 721 (0x2d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2 Validity Not Before: Mar 3 03:25:44 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c52137-b6c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ec:c7:94:3e:a2:15:7c:b7:cf:6d:90:3a:90: c3:54:ac:09:7e:41:48:4b:04:b4:40:13:c2:3a:ed: 6f:73:72:df:c9:5d:9b:e8:1d:33:5f:2d:7e:c0:86: 45:b1:0c:47:37:f2:cc:46:1f:67:ad:8d:b0:a0:51: 3a:25:8f:09:45:22:da:74:f1:ea:58:94:25:fb:ee: 52:c4:46:70:c7:04:a3:ed:55:ac:da:16:ff:3b:9c: 2d:48:b2:3d:8f:4a:99:b8:a0:64:1f:0d:8e:61:b7: b3:99:d3:26:fc:5c:e9:4f:76:e7:6e:de:f1:f6:b1: 89:fb:19:2f:d5:90:97:16:cc:96:2c:32:22:76:77: 93:3f:fa:35:ad:f6:b6:d4:de:7a:ee:c4:06:15:7d: b0:24:3c:7e:5e:8f:96:31:2c:92:80:2d:2c:97:a9: f0:5b:82:0b:39:cb:10:57:4a:35:7d:b6:04:16:20: 9f:89:62:b2:22:3f:7f:aa:3d:82:79:f5:02:45:40: 75:fa:4d:7a:48:d3:0f:c6:8b:21:25:92:c3:b6:85: 7a:91:2f:ec:cc:c5:05:70:a1:78:43:9c:51:17:3d: 25:71:ea:37:66:8c:6c:7e:b8:64:6a:da:9d:aa:e6: 99:1c:33:93:b3:3c:a7:80:5c:68:e5:d8:4d:6a:10: 87:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:72:C6:DC:B3:9C:74:46:4E:4C:80:38:1A:F1:38:B8:C7:94:A6:8E X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/95CA439CDAE211ECA14A8254C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.160.0/24 Signature Algorithm: sha256WithRSAEncryption 88:63:ae:46:91:f5:b3:0d:51:ce:f7:b6:1a:80:35:22:78:35: 03:c8:d0:a4:14:bd:35:67:22:06:03:bb:dc:d3:17:1b:91:21: 11:63:24:c0:5c:ee:3f:a8:80:53:91:c4:f6:b8:ad:83:66:21: fb:fc:11:34:6c:00:31:18:22:d4:fc:6a:76:22:91:57:ec:22: 5d:fc:35:b5:5f:61:1a:f0:74:8c:2a:4f:46:9f:01:3a:a3:f8: d6:57:f6:53:0f:47:6b:97:d1:89:80:ac:6d:80:39:1f:38:90: 7f:2d:c0:05:9c:07:72:94:1d:23:ce:cd:4a:0a:dd:f4:e4:a8: 72:ac:7e:51:d8:bc:29:23:0b:5e:a7:74:86:e5:a6:d6:e0:c4: 5e:93:89:11:22:aa:81:3b:4e:48:53:ed:18:eb:7e:02:1c:b0: 34:c7:3f:43:cb:02:dd:c6:1c:a7:e9:32:c6:68:39:9e:8c:8f: 04:01:ab:ae:e3:63:5a:09:84:36:97:7f:af:0a:34:c0:18:fc: bb:52:7a:05:63:2d:dd:f3:be:de:9c:ee:61:ba:b0:a7:87:11: fe:f4:8d:b9:2c:2c:39:d9:1d:cb:88:ae:40:96:d0:33:0f:8d: 72:25:c1:1c:87:06:cb:0c:2f:97:4a:a3:2d:fc:01:16:0b:24: 0e:3b:e0:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjUwMzAzMDMyNTQ0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1MjEzNy1iNmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuzHlD6iFXy3z22QOpDDVKwJfkFISwS0QBPCOu1vc3LfyV2b6B0zXy1+wIZF sQxHN/LMRh9nrY2woFE6JY8JRSLadPHqWJQl++5SxEZwxwSj7VWs2hb/O5wtSLI9 j0qZuKBkHw2OYbezmdMm/FzpT3bnbt7x9rGJ+xkv1ZCXFsyWLDIidneTP/o1rfa2 1N567sQGFX2wJDx+Xo+WMSySgC0sl6nwW4ILOcsQV0o1fbYEFiCfiWKyIj9/qj2C efUCRUB1+k16SNMPxoshJZLDtoV6kS/szMUFcKF4Q5xRFz0lceo3Zoxsfrhkatqd quaZHDOTszyngFxo5dhNahCHvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJZyxtyz nHRGTkyAOBrxOLjHlKaOMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTgwRDIvRDQyOEQwQzZEQURFMTFFQzg3NzExNDUwQzRGOUFFMDIvOTVDQTQzOUNE QUUyMTFFQ0ExNEE4MjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAt+qAwDQYJKoZIhvcNAQELBQADggEBAIhjrkaR9bMNUc73 thqANSJ4NQPI0KQUvTVnIgYDu9zTFxuRIRFjJMBc7j+ogFORxPa4rYNmIfv8ETRs ADEYItT8anYikVfsIl38NbVfYRrwdIwqT0afATqj+NZX9lMPR2uX0YmArG2AOR84 kH8twAWcB3KUHSPOzUoK3fTkqHKsflHYvCkjC16ndIblptbgxF6TiREiqoE7TkhT 7RjrfgIcsDTHP0PLAt3GHKfpMsZoOZ6MjwQBq67jY1oJhDaXf68KNMAY/LtSegVj Ld3zvt6c7mG6sKeHEf70jbksLDnZHcuIrkCW0DMPjXIlwRyHBssML5dKoy38ARYL JA474Ek= -----END CERTIFICATE-----Generated at Thu Mar 13 21:57:01 2025 by rpki-client