$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/62B87A26895B11EFBA2A3B22C4F9AE02.roa File: 62B87A26895B11EFBA2A3B22C4F9AE02.roa (raw, json) Hash identifier: GkfnFa85sf2ihLyLByQY01IPDXpueRzZ4fB3mmtkqLo= Subject key identifier: 30:A3:AA:6D:9E:74:5D:D6:54:92:22:04:EE:3B:91:DF:79:5B:B8:17 Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: BC Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/62B87A26895B11EFBA2A3B22C4F9AE02.roa Signing time: Sun 09 Mar 2025 05:22:46 +0000 ROA not before: Sun 09 Mar 2025 05:22:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 401106 IP address blocks: 160.20.121.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 04:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Mar 9 05:22:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=67cd25a6-cf28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b3:e1:c1:25:bc:b3:67:dc:59:20:bd:02:8a: 85:b8:d5:6b:bd:36:04:6e:7e:bc:c8:a6:f5:cc:f0: 12:8a:19:58:e0:ef:77:6f:05:14:38:be:c9:ae:a5: d1:2b:8b:b4:ce:a2:51:f7:e9:3a:c4:6e:1f:32:0f: 70:3c:eb:c6:50:24:25:2c:9f:cc:53:a7:b8:e8:6b: d7:ac:1d:28:41:f8:5e:0e:60:78:2a:35:0b:c0:7d: f3:90:b4:a7:cd:3b:91:50:ec:29:d1:f9:59:e2:4a: 96:fc:ac:8c:86:58:42:a7:70:b6:2d:5d:38:8b:6a: 01:9d:93:9d:33:77:46:22:b3:80:5f:7d:2f:ec:48: 4d:6d:fc:aa:18:10:79:9b:15:bf:8d:a5:27:01:75: 9b:59:35:bf:df:e6:0c:41:f8:18:16:fc:22:26:ef: b7:fa:8d:f2:70:fd:36:47:67:92:65:c2:7c:93:e9: af:4f:77:86:97:e3:26:6e:bf:1a:3c:0e:3e:6c:d6: 84:9b:29:39:07:cd:9d:2b:a0:8d:8f:c4:67:03:a7: 90:f9:f5:68:bb:f4:5b:ca:84:d5:7c:7b:e1:46:55: e6:70:e1:f3:d3:ed:b6:6e:b4:49:7b:fb:46:dd:30: 42:08:b3:ed:44:3a:e1:97:10:4c:55:ca:ab:e1:2b: 61:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:A3:AA:6D:9E:74:5D:D6:54:92:22:04:EE:3B:91:DF:79:5B:B8:17 X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/62B87A26895B11EFBA2A3B22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.121.0/24 Signature Algorithm: sha256WithRSAEncryption ca:3d:bc:df:9f:89:fa:a4:5b:5f:98:37:32:9a:72:5c:64:f5: 31:22:72:9e:f3:7a:00:87:42:3d:05:7a:d8:be:08:ac:6c:f4: ac:69:fb:ee:7c:d5:c4:d0:c7:87:6a:2e:66:45:31:26:2b:a8: cc:cc:66:b9:49:5b:9e:7b:61:a7:3f:4d:ba:8d:ea:4a:22:96: 5a:ad:d7:dd:f1:b8:18:e6:ba:5d:42:93:fc:39:1f:5b:a0:8a: c9:22:1b:13:d7:a7:fc:6e:1b:34:1a:f1:c9:8c:c4:56:07:bd: ab:45:86:29:28:cb:58:dd:2d:68:99:d0:3f:d1:ec:fb:61:01: da:2c:97:5c:58:dc:25:8c:af:be:12:3e:bc:f1:49:31:9c:e2: c9:54:46:2e:6a:56:83:72:1a:89:ec:c8:6d:cc:61:90:da:3e: a2:ff:74:7a:73:17:56:99:51:c0:c5:98:cc:7a:f3:5e:a0:6b: 96:65:e6:2b:5b:23:4d:75:37:24:ef:d0:b7:ca:c7:a2:7a:11: 2f:da:f0:b1:1c:a8:41:59:ab:f7:c4:ab:9e:4d:b0:1d:ca:15: 0f:8a:4a:42:50:bd:19:a9:c4:fc:e5:1e:75:e5:3d:a3:37:33: 58:c7:18:84:9e:36:84:43:5c:dd:40:86:bf:d9:b9:a8:82:09: 22:31:36:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjUwMzA5MDUyMjQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NkMjVhNi1jZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy7PhwSW8s2fcWSC9AoqFuNVrvTYEbn68yKb1zPASihlY4O93bwUUOL7JrqXR K4u0zqJR9+k6xG4fMg9wPOvGUCQlLJ/MU6e46GvXrB0oQfheDmB4KjULwH3zkLSn zTuRUOwp0flZ4kqW/KyMhlhCp3C2LV04i2oBnZOdM3dGIrOAX30v7EhNbfyqGBB5 mxW/jaUnAXWbWTW/3+YMQfgYFvwiJu+3+o3ycP02R2eSZcJ8k+mvT3eGl+Mmbr8a PA4+bNaEmyk5B82dK6CNj8RnA6eQ+fVou/RbyoTVfHvhRlXmcOHz0+22brRJe/tG 3TBCCLPtRDrhlxBMVcqr4Sth0wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDCjqm2e dF3WVJIiBO47kd95W7gXMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgwQzIvOTgzRTYxNTAxNzFBMTFFRjg2NTc3NTRGQzRGOUFFMDIvNjJCODdBMjY4 OTVCMTFFRkJBMkEzQjIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFHkwDQYJKoZIhvcNAQELBQADggEBAMo9vN+fifqkW1+Y NzKaclxk9TEicp7zegCHQj0Feti+CKxs9Kxp++581cTQx4dqLmZFMSYrqMzMZrlJ W557Yac/TbqN6koillqt193xuBjmul1Ck/w5H1ugiskiGxPXp/xuGzQa8cmMxFYH vatFhikoy1jdLWiZ0D/R7PthAdosl1xY3CWMr74SPrzxSTGc4slURi5qVoNyGons yG3MYZDaPqL/dHpzF1aZUcDFmMx6816ga5Zl5itbI011NyTv0LfKx6J6ES/a8LEc qEFZq/fEq55NsB3KFQ+KSkJQvRmpxPzlHnXlPaM3M1jHGISeNoRDXN1Ahr/ZuaiC CSIxNsA= -----END CERTIFICATE-----Generated at Mon Apr 14 02:04:48 2025 by rpki-client