$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa File: 40F5D9E6354B11F0A873F14DC4F9AE02.roa (raw, json) Hash identifier: Cosb+eMZxQ3sCZz6h4y2hYsraDJKDCIgjZyVYBFmpVk= Subject key identifier: D8:7D:B9:35:E3:2F:E0:A5:1C:EB:4F:74:08:AB:E5:AA:CB:00:29:76 Certificate issuer: /CN=A91AFAAC/serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Certificate serial: 02 Authority key identifier: 4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa Signing time: Tue 20 May 2025 07:22:58 +0000 ROA not before: Tue 20 May 2025 07:22:58 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 136769 IP address blocks: 160.250.24.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 07:32:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFAAC, serialNumber=4D3FC47064F4EA1BDCAB29B9E65B31D74DE264E0 Validity Not Before: May 20 07:22:58 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=682c2dd1-ce0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:14:11:57:60:68:72:c2:64:22:9b:1e:69:16: d4:9d:dd:9e:a9:2e:33:f4:74:a5:f6:86:8f:53:59: b0:5a:da:35:76:9f:cd:a3:e0:67:d1:de:18:0a:a5: e1:8f:b9:f9:c5:35:cc:a4:3a:58:0c:50:1b:bb:be: e2:38:28:22:15:b4:5c:2a:15:6c:8b:ad:b6:67:85: b2:f0:fa:4e:f1:4a:db:ed:fa:c0:7d:a1:96:30:93: 81:9c:df:e2:90:2e:21:e4:b3:f5:e3:3a:2e:1a:4a: f1:43:17:e6:37:cf:76:d9:e4:45:25:a1:77:e2:9f: cc:2b:a0:c3:aa:9d:52:2d:fc:83:8c:71:f3:50:6f: ee:2b:52:9e:ca:b2:6b:55:4d:d3:cc:a2:55:36:97: 62:95:b1:f9:3f:e8:41:78:b6:ed:76:4e:49:62:6d: cd:c4:24:2b:3d:f9:18:11:ee:c9:99:bc:90:d4:d6: 35:c1:66:c2:83:2b:7d:74:b7:d5:09:0e:86:f9:1a: d2:ed:33:b5:1e:9b:33:e0:0d:01:7e:dc:cd:15:ca: bb:dd:8f:0a:d6:a1:be:26:ea:71:8f:08:7e:b0:21: c1:c2:30:d3:a4:3b:84:f1:57:44:f1:66:49:ac:8b: b8:17:15:d1:6b:db:d4:10:6a:de:c1:29:d5:03:53: 53:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:7D:B9:35:E3:2F:E0:A5:1C:EB:4F:74:08:AB:E5:AA:CB:00:29:76 X509v3 Authority Key Identifier: keyid:4D:3F:C4:70:64:F4:EA:1B:DC:AB:29:B9:E6:5B:31:D7:4D:E2:64:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/TT_EcGT06hvcqym55lsx103iZOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TT_EcGT06hvcqym55lsx103iZOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFAAC/4AF0C92A354A11F0BA766E4CC4F9AE02/40F5D9E6354B11F0A873F14DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.24.0/23 Signature Algorithm: sha256WithRSAEncryption 86:04:6f:4c:6b:84:3b:3d:3a:bd:ec:0b:4c:ed:17:95:4e:2f: 7c:40:b9:77:65:b2:c5:47:4f:3d:dd:7c:fe:eb:ac:0c:2d:d7: c8:c7:92:9c:5f:09:7e:fb:68:f4:c4:ed:aa:af:e5:b7:86:43: 8c:89:77:a4:d8:ab:e0:10:de:45:f3:25:7d:ca:37:f5:bc:9b: fb:4a:b4:d1:41:b6:18:1a:8b:33:1b:0d:82:5c:c2:43:4b:2f: 55:ac:21:0c:68:7a:c1:e6:25:c3:e1:43:ce:ce:1d:be:4b:28: 18:1a:9b:2c:8a:28:53:02:2d:d5:f0:bf:a8:5c:49:1f:cc:a4: e9:02:71:5b:a4:bd:13:41:29:db:c9:05:62:a1:d1:b0:16:39: 9b:d4:4b:96:5c:57:cd:e7:b4:8b:20:0b:88:fc:0b:b8:fc:ad: 2b:63:19:3d:52:48:e6:65:b4:c1:f5:89:79:b5:e5:77:2b:a3: 63:39:a4:07:69:1c:27:95:56:3c:6b:8b:8e:ef:17:38:90:5b: fd:ec:47:62:05:4f:cb:c8:6b:16:10:b4:55:0b:f6:16:fa:05: 13:4d:6b:06:51:7e:a3:a6:b3:a5:f1:3f:39:b2:e2:0f:5b:8a: 6b:74:26:d3:69:2c:52:f3:e6:11:a9:78:2f:28:b1:df:43:d1: 2f:8b:79:8c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB RkFBQzExMC8GA1UEBRMoNEQzRkM0NzA2NEY0RUExQkRDQUIyOUI5RTY1QjMxRDc0 REUyNjRFMDAeFw0yNTA1MjAwNzIyNThaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmMyZGQxLWNlMGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBFBFXYGhywmQimx5pFtSd3Z6pLjP0dKX2ho9TWbBa2jV2n82j4GfR3hgKpeGP ufnFNcykOlgMUBu7vuI4KCIVtFwqFWyLrbZnhbLw+k7xStvt+sB9oZYwk4Gc3+KQ LiHks/XjOi4aSvFDF+Y3z3bZ5EUloXfin8wroMOqnVIt/IOMcfNQb+4rUp7KsmtV TdPMolU2l2KVsfk/6EF4tu12Tklibc3EJCs9+RgR7smZvJDU1jXBZsKDK310t9UJ Dob5GtLtM7UemzPgDQF+3M0VyrvdjwrWob4m6nGPCH6wIcHCMNOkO4TxV0TxZkms i7gXFdFr29QQat7BKdUDU1PfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2H25NeMv 4KUc6090CKvlqssAKXYwHwYDVR0jBBgwFoAUTT/EcGT06hvcqym55lsx103iZOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFGQUFDLzRBRjBDOTJBMzU0 QTExRjBCQTc2NkU0Q0M0RjlBRTAyL1RUX0VjR1QwNmh2Y3F5bTU1bHN4MTAzaVpP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVFRfRWNHVDA2aHZjcXltNTVsc3gxMDNpWk9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkFBQy80QUYwQzkyQTM1NEExMUYwQkE3NjZFNENDNEY5QUUwMi80MEY1RDlFNjM1 NEIxMUYwQTg3M0YxNERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6GDANBgkqhkiG9w0BAQsFAAOCAQEAhgRvTGuEOz06vewL TO0XlU4vfEC5d2WyxUdPPd18/uusDC3XyMeSnF8Jfvto9MTtqq/lt4ZDjIl3pNir 4BDeRfMlfco39byb+0q00UG2GBqLMxsNglzCQ0svVawhDGh6weYlw+FDzs4dvkso GBqbLIooUwIt1fC/qFxJH8yk6QJxW6S9E0Ep28kFYqHRsBY5m9RLllxXzee0iyAL iPwLuPytK2MZPVJI5mW0wfWJebXldyujYzmkB2kcJ5VWPGuLju8XOJBb/exHYgVP y8hrFhC0VQv2FvoFE01rBlF+o6azpfE/ObLiD1uKa3Qm02ksUvPmEal4Lyix30PR L4t5jA== -----END CERTIFICATE-----Generated at Thu Jun 5 18:33:36 2025 by rpki-client