$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/D470A60E294511F0B1412377C4F9AE02.roa File: D470A60E294511F0B1412377C4F9AE02.roa (raw, json) Hash identifier: R5e5Pbe0gCRILBx2wr55E5wPwG2ILhIOGtJI6e+r29g= Subject key identifier: 17:6B:16:77:6F:67:34:F1:6B:E5:CE:F2:FA:90:06:22:DD:68:21:9F Certificate issuer: /CN=A91B7DCB/serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Certificate serial: 02 Authority key identifier: B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/D470A60E294511F0B1412377C4F9AE02.roa Signing time: Mon 05 May 2025 00:13:54 +0000 ROA not before: Mon 05 May 2025 00:13:54 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 45586 IP address blocks: 161.248.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:55:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=B54F8AD1CECAC136FCAF4792EBFD00E68EA1D368 Validity Not Before: May 5 00:13:54 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=681802c2-5037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:ad:ea:5d:4a:22:8d:71:13:89:1c:57:eb:a7: 50:0d:ff:14:79:cf:6d:5c:dd:88:f0:f5:87:81:df: 0a:cf:2a:7c:03:c7:16:19:d4:cd:89:ff:57:f5:88: eb:9c:1b:8b:a0:46:ad:13:e8:3b:78:4b:c8:fa:1c: a1:3f:df:c1:ca:92:c8:30:7c:83:a3:d9:62:1a:ab: 6d:64:f5:73:e4:47:10:b3:dc:af:0c:b4:a4:9d:d2: c0:22:02:55:8d:9c:f4:a7:60:d3:29:1d:c0:25:5a: ca:19:2b:c6:6e:0d:f0:ed:6e:ee:f9:7c:90:2f:cf: 76:6d:52:16:7d:d2:94:22:7e:33:04:41:f1:19:55: 8d:e4:8b:fc:52:f3:6c:c9:48:34:b2:eb:14:a7:d7: 0b:2e:78:d8:52:68:27:bb:7c:83:32:13:57:bf:2e: 8a:bc:15:e9:eb:39:19:03:80:b0:b5:1c:9f:a5:02: 03:0d:82:15:f1:85:43:1f:bf:8f:b6:4a:78:86:bd: 77:da:04:08:8a:eb:0a:a6:43:a5:13:96:b4:63:32: 48:7b:12:48:2c:d4:0a:2e:03:5d:ff:c3:6a:4d:42: c0:d2:cb:86:dc:39:b1:df:f3:ce:ab:c2:b9:c2:25: 26:ef:3b:25:6d:c6:9f:a2:82:b4:db:db:1d:18:b6: 69:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:6B:16:77:6F:67:34:F1:6B:E5:CE:F2:FA:90:06:22:DD:68:21:9F X509v3 Authority Key Identifier: keyid:B5:4F:8A:D1:CE:CA:C1:36:FC:AF:47:92:EB:FD:00:E6:8E:A1:D3:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/tU-K0c7KwTb8r0eS6_0A5o6h02g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tU-K0c7KwTb8r0eS6_0A5o6h02g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/F83AC494294411F0AE1ABC74C4F9AE02/D470A60E294511F0B1412377C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.127.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:0c:b2:43:23:47:48:23:22:51:af:cb:b6:65:d0:e3:2a:84: 09:a7:bd:10:9e:ee:d8:c4:8d:26:ee:50:76:08:a1:80:34:65: 72:e2:6e:fa:97:e5:a4:6e:5c:2f:17:f1:9b:25:58:73:23:50: fe:f0:93:67:da:e2:87:70:41:3e:0e:a1:8b:b2:0a:8f:7e:76: d0:55:f5:91:0c:56:44:82:bd:f1:34:37:d1:9d:7e:9b:88:87: 9b:ff:9e:90:29:aa:3f:1d:b2:2e:88:b6:5b:68:9c:5e:76:29: 6b:83:f9:cb:c7:82:c5:ed:fd:39:09:5b:56:49:b0:3c:b1:3f: 1b:95:22:33:57:30:b6:a4:92:c5:a2:46:f9:c2:1e:ca:2c:e9: 0f:68:42:0f:7e:89:b0:7c:ec:4e:75:9f:a8:dd:f1:b8:bc:58: e6:c7:e5:dd:45:cd:9a:72:f0:88:f7:6f:02:8f:a4:8d:2f:2a: 04:55:47:74:2a:e1:3c:02:63:2f:2d:08:ac:d3:aa:b5:2d:74: 15:d3:32:a0:e9:36:95:9b:94:78:ff:26:31:b6:7e:8e:4d:f0: 36:43:8e:22:82:75:bf:2d:e3:ab:90:5f:55:68:2e:44:c8:b8: 54:dd:8f:11:5c:a8:13:00:49:6f:d8:69:76:6a:fa:0c:b2:30: cf:25:26:ae -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoQjU0RjhBRDFDRUNBQzEzNkZDQUY0NzkyRUJGRDAwRTY4 RUExRDM2ODAeFw0yNTA1MDUwMDEzNTRaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTgwMmMyLTUwMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDxrepdSiKNcROJHFfrp1AN/xR5z21c3Yjw9YeB3wrPKnwDxxYZ1M2J/1f1iOuc G4ugRq0T6Dt4S8j6HKE/38HKksgwfIOj2WIaq21k9XPkRxCz3K8MtKSd0sAiAlWN nPSnYNMpHcAlWsoZK8ZuDfDtbu75fJAvz3ZtUhZ90pQifjMEQfEZVY3ki/xS82zJ SDSy6xSn1wsueNhSaCe7fIMyE1e/Loq8FenrORkDgLC1HJ+lAgMNghXxhUMfv4+2 SniGvXfaBAiK6wqmQ6UTlrRjMkh7Ekgs1AouA13/w2pNQsDSy4bcObHf886rwrnC JSbvOyVtxp+igrTb2x0YtmmRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUF2sWd29n NPFr5c7y+pAGIt1oIZ8wHwYDVR0jBBgwFoAUtU+K0c7KwTb8r0eS6/0A5o6h02gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCL0Y4M0FDNDk0Mjk0 NDExRjBBRTFBQkM3NEM0RjlBRTAyL3RVLUswYzdLd1RiOHIwZVM2XzBBNW82aDAy Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdFUtSzBjN0t3VGI4cjBlUzZfMEE1bzZoMDJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi9GODNBQzQ5NDI5NDQxMUYwQUUxQUJDNzRDNEY5QUUwMi9ENDcwQTYwRTI5 NDUxMUYwQjE0MTIzNzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH4fzANBgkqhkiG9w0BAQsFAAOCAQEAmgyyQyNHSCMiUa/L tmXQ4yqECae9EJ7u2MSNJu5QdgihgDRlcuJu+pflpG5cLxfxmyVYcyNQ/vCTZ9ri h3BBPg6hi7IKj3520FX1kQxWRIK98TQ30Z1+m4iHm/+ekCmqPx2yLoi2W2icXnYp a4P5y8eCxe39OQlbVkmwPLE/G5UiM1cwtqSSxaJG+cIeyizpD2hCD36JsHzsTnWf qN3xuLxY5sfl3UXNmnLwiPdvAo+kjS8qBFVHdCrhPAJjLy0IrNOqtS10FdMyoOk2 lZuUeP8mMbZ+jk3wNkOOIoJ1vy3jq5BfVWguRMi4VN2PEVyoEwBJb9hpdmr6DLIw zyUmrg== -----END CERTIFICATE-----Generated at Wed Jun 4 12:16:32 2025 by rpki-client