$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/57FBE074370111F094BF7862C4F9AE02.roa File: 57FBE074370111F094BF7862C4F9AE02.roa (raw, json) Hash identifier: NzrXfR/7zniLvrCXQlmVGg2isIi5LfwP1ubwC3yxm7E= Subject key identifier: D4:E1:13:B4:16:7E:6C:B3:4B:3C:9A:53:93:91:49:B6:AD:AD:9F:2A Certificate issuer: /CN=A91ADD64/serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Certificate serial: C4 Authority key identifier: FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/57FBE074370111F094BF7862C4F9AE02.roa Signing time: Thu 22 May 2025 11:38:56 +0000 ROA not before: Thu 22 May 2025 11:38:56 +0000 ROA not after: Thu 30 Dec 2027 00:00:00 +0000 asID: 30337 IP address blocks: 167.219.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:31:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Validity Not Before: May 22 11:38:56 2025 GMT Not After : Dec 30 00:00:00 2027 GMT Subject: CN=682f0cd0-6607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7c:a5:3d:c9:3a:cc:a5:83:07:11:8b:e7:82: 84:75:2e:3f:bd:d3:f3:0e:cb:7b:f9:57:02:c9:12: d2:6e:03:8f:be:7b:b3:bc:d2:ed:f2:14:49:b3:06: a9:45:7f:31:b5:cb:f6:d6:d2:1e:e1:ce:de:ff:e3: bc:fe:f1:b9:3f:bd:27:f1:98:e3:0f:75:52:67:fc: e5:0a:0b:f0:e8:ea:b6:d8:b0:05:7c:98:a5:8d:fb: a4:3a:d3:1e:04:27:ce:52:fd:28:7e:38:dd:d5:17: 9d:bb:f3:3c:a0:d5:f3:a4:65:4a:10:9d:d2:65:e9: 2c:f4:10:32:42:e8:c1:6e:3e:12:25:75:4c:f5:84: 6b:55:71:4c:f1:5e:4b:c7:3d:3d:41:56:4e:9a:0c: 6b:8c:45:d3:8f:0e:7f:d2:8e:e3:92:51:c1:89:5f: 8c:a1:9d:58:44:51:26:dc:0c:ba:90:0a:81:1b:d4: 1d:9f:f0:bf:84:1f:e2:00:74:6b:a4:c9:a4:79:dc: a3:48:0e:86:dd:de:53:97:a1:c5:5b:5d:e4:11:d1: 51:1d:b8:05:e0:33:13:34:59:c5:36:96:67:b2:40: b4:7b:3f:da:b4:dc:7f:70:15:ca:2b:84:c6:fc:3d: 4d:fd:1b:d6:aa:0c:d2:47:86:47:33:cd:e0:75:61: 34:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:E1:13:B4:16:7E:6C:B3:4B:3C:9A:53:93:91:49:B6:AD:AD:9F:2A X509v3 Authority Key Identifier: keyid:FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/57FBE074370111F094BF7862C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.219.60.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:17:0d:89:fb:92:67:5e:33:f2:fb:b5:4d:bb:dd:85:a0:43: 50:4d:cc:0a:4e:74:e4:4c:88:db:e2:e2:b9:e2:1b:e0:bc:3f: f9:5e:6c:cd:83:72:23:52:58:1c:00:46:e2:a2:26:86:ab:19: 13:56:00:a2:b5:0b:51:cc:54:dd:ae:89:f1:1f:53:ed:09:40: d8:8b:5e:98:12:6d:69:00:36:31:be:6f:cd:e9:f0:7d:4f:f4: 34:77:59:00:28:82:5a:42:f7:e1:ab:a4:31:cf:f0:fd:0d:76: 6e:bc:8e:59:72:eb:02:98:98:8d:df:b4:08:e4:57:ad:0f:3d: 63:b4:3f:14:d6:1c:c8:1d:f2:f3:49:4e:e1:9e:33:f3:16:f3: bb:d7:ff:d0:72:f1:4f:7c:4a:c9:9b:94:31:79:a3:74:86:9b: 07:fa:df:00:ad:5c:4e:a2:4a:30:67:3a:30:80:90:9d:56:7a: 1f:bf:c2:14:3c:ec:27:e7:90:f5:d8:94:dd:43:2d:01:22:5e: 4f:13:e3:74:18:54:6b:a7:28:4b:9b:ae:c3:ee:a6:f6:0a:3d: c8:8f:38:36:3e:b9:55:8a:26:ce:09:5c:6b:f0:5b:21:54:70: 2c:c6:bc:25:81:ac:80:ec:eb:77:a4:46:6a:22:77:70:fa:af: a4:d4:32:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKEZDQTkzNTVDMUFCRTQwNEYzRjNDRjUxOTJGRDM0QjEy NUEwMEJGMUIwHhcNMjUwNTIyMTEzODU2WhcNMjcxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmMGNkMC02NjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XylPck6zKWDBxGL54KEdS4/vdPzDst7+VcCyRLSbgOPvnuzvNLt8hRJswap RX8xtcv21tIe4c7e/+O8/vG5P70n8ZjjD3VSZ/zlCgvw6Oq22LAFfJiljfukOtMe BCfOUv0ofjjd1Redu/M8oNXzpGVKEJ3SZeks9BAyQujBbj4SJXVM9YRrVXFM8V5L xz09QVZOmgxrjEXTjw5/0o7jklHBiV+MoZ1YRFEm3Ay6kAqBG9Qdn/C/hB/iAHRr pMmkedyjSA6G3d5Tl6HFW13kEdFRHbgF4DMTNFnFNpZnskC0ez/atNx/cBXKK4TG /D1N/RvWqgzSR4ZHM83gdWE0+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNThE7QW fmyzSzyaU5ORSbatrZ8qMB8GA1UdIwQYMBaAFPypNVwavkBPPzz1GS/TSxJaAL8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC80RUIyQjQyODEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9fS2sxWEJxLVFFOF9QUFVaTDlOTEVsb0F2 eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19LazFYQnEtUUU4X1BQVVpMOU5MRWxvQXZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURENjQvNEVCMkI0MjgxMzRCMTFFRjk0NDI0RDNEQzRGOUFFMDIvNTdGQkUwNzQz NzAxMTFGMDk0QkY3ODYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGn2zwwDQYJKoZIhvcNAQELBQADggEBAH8XDYn7kmdeM/L7 tU273YWgQ1BNzApOdORMiNvi4rniG+C8P/lebM2DciNSWBwARuKiJoarGRNWAKK1 C1HMVN2uifEfU+0JQNiLXpgSbWkANjG+b83p8H1P9DR3WQAoglpC9+GrpDHP8P0N dm68jlly6wKYmI3ftAjkV60PPWO0PxTWHMgd8vNJTuGeM/MW87vX/9By8U98Ssmb lDF5o3SGmwf63wCtXE6iSjBnOjCAkJ1Weh+/whQ87CfnkPXYlN1DLQEiXk8T43QY VGunKEubrsPupvYKPciPODY+uVWKJs4JXGvwWyFUcCzGvCWBrIDs63ekRmoid3D6 r6TUMnE= -----END CERTIFICATE-----Generated at Wed Jun 4 12:24:32 2025 by rpki-client