$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/2ADA37E6790F11EE99D7CB43C4F9AE02.roa File: 2ADA37E6790F11EE99D7CB43C4F9AE02.roa (raw, json) Hash identifier: qZFxZlK/s9XuD9ZwE9EGQRrcfUALnpisB8t9uJ9BMCk= Subject key identifier: 38:7E:37:96:49:10:4F:8D:FE:1C:CE:E4:B1:25:6C:41:F1:F1:EF:15 Certificate issuer: /CN=A91D6DBD/serialNumber=272D71AD62645775CCDFBB5770478E5943EA6595 Certificate serial: 0138 Authority key identifier: 27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/2ADA37E6790F11EE99D7CB43C4F9AE02.roa Signing time: Thu 05 Jun 2025 04:32:53 +0000 ROA not before: Thu 05 Jun 2025 04:32:53 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17559 IP address blocks: 192.160.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 14 Jun 2025 04:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6DBD, serialNumber=272D71AD62645775CCDFBB5770478E5943EA6595 Validity Not Before: Jun 5 04:32:53 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68411df4-7a78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:f3:87:4c:19:1a:95:b8:4b:2c:61:61:1f: 03:56:91:a2:0c:10:5f:e6:4c:06:ed:12:d3:db:51: fc:b1:79:01:16:4d:ca:f5:26:c4:37:f8:d2:c0:3d: 87:2b:12:12:b8:cb:4b:e1:e8:8a:82:20:f0:9c:0c: a4:d4:5d:15:4a:e8:a3:53:1e:c9:97:38:17:cc:cc: 88:31:91:d4:9d:dc:9b:a2:ab:53:1e:91:bd:c3:c5: cb:6b:b3:d3:40:a7:6a:2a:31:00:7d:7f:83:33:b4: 5c:2a:5d:7c:c5:40:3c:a1:7e:a2:14:cd:16:01:7c: 53:32:ae:e2:76:5d:b7:6a:e3:14:3a:93:61:d6:7b: fc:da:e1:bc:98:cc:8e:98:97:1f:da:70:fb:61:7f: 9d:ed:0a:35:70:e4:80:ef:ad:6f:34:bb:b2:d0:42: 33:31:01:07:37:cb:e3:29:74:53:64:a1:ae:0b:df: 88:46:25:aa:e0:fe:10:3a:7c:3a:25:05:71:dc:6f: df:a0:7e:31:63:5f:63:71:42:80:99:31:8e:35:34: e0:08:7a:28:76:58:db:27:ee:45:5f:9c:db:c0:29: 35:68:0e:8b:b5:67:5d:ac:76:01:f1:b5:60:91:2c: c4:26:62:31:f8:fb:b0:2b:32:7f:ce:bc:cb:c5:5e: 70:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:7E:37:96:49:10:4F:8D:FE:1C:CE:E4:B1:25:6C:41:F1:F1:EF:15 X509v3 Authority Key Identifier: keyid:27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/2ADA37E6790F11EE99D7CB43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.160.171.0/24 Signature Algorithm: sha256WithRSAEncryption e7:74:b4:c7:a5:d5:b2:21:2f:c6:db:42:a8:b4:90:83:64:36: aa:54:97:78:46:61:e8:78:73:3a:4b:39:ae:3b:b6:c7:fc:0a: d0:2a:d5:bc:78:bf:42:9b:b3:67:30:07:e6:d7:5a:6f:f0:11: 7b:22:bb:d3:7a:ef:ad:99:32:3a:67:f9:35:e5:b4:35:bf:fe: 0d:d4:a0:34:f2:63:34:41:6a:51:81:99:b9:66:96:be:34:2c: 84:32:93:e9:8d:45:0e:66:e7:e6:35:78:ab:30:7e:c5:b2:8f: 6f:f8:49:e2:59:f5:7b:e5:86:f7:50:db:ce:44:a6:2d:71:07: 2f:d5:86:84:11:42:c1:e2:75:e6:f5:0c:af:bf:2e:03:71:26: 7c:f9:ed:6d:5c:bd:44:84:4a:89:57:3b:1d:2e:97:36:35:f2: f5:8d:d8:f6:7c:05:f2:dc:83:c8:b4:74:2a:ee:49:01:7b:0f: c0:43:e9:fd:37:ca:ce:c6:8e:52:67:cb:e8:96:b8:c5:11:3e: 84:c2:25:4d:0a:a1:de:ce:d8:3c:43:ed:e1:c1:0b:b5:7d:24: 65:89:97:c4:f1:7e:d8:d3:e5:23:ca:20:4d:38:aa:4e:b6:03: 88:ce:97:df:4b:90:d2:c5:42:d3:82:57:19:fc:f5:0a:65:43: 0d:7f:55:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZEQkQxMTAvBgNVBAUTKDI3MkQ3MUFENjI2NDU3NzVDQ0RGQkI1NzcwNDc4RTU5 NDNFQTY1OTUwHhcNMjUwNjA1MDQzMjUzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMWRmNC03YTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEfzh0wZGpW4SyxhYR8DVpGiDBBf5kwG7RLT21H8sXkBFk3K9SbEN/jSwD2H KxISuMtL4eiKgiDwnAyk1F0VSuijUx7JlzgXzMyIMZHUndyboqtTHpG9w8XLa7PT QKdqKjEAfX+DM7RcKl18xUA8oX6iFM0WAXxTMq7idl23auMUOpNh1nv82uG8mMyO mJcf2nD7YX+d7Qo1cOSA761vNLuy0EIzMQEHN8vjKXRTZKGuC9+IRiWq4P4QOnw6 JQVx3G/foH4xY19jcUKAmTGONTTgCHoodljbJ+5FX5zbwCk1aA6LtWddrHYB8bVg kSzEJmIx+PuwKzJ/zrzLxV5wawIDAQABo4IClTCCApEwHQYDVR0OBBYEFDh+N5ZJ EE+N/hzO5LElbEHx8e8VMB8GA1UdIwQYMBaAFCctca1iZFd1zN+7V3BHjllD6mWV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkRCRC9GOUMwRTExRTc5 MDkxMUVFOTlFREQxMUZDNEY5QUUwMi9KeTF4cldKa1YzWE0zN3RYY0VlT1dVUHFa WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0p5MXhyV0prVjNYTTM3dFhjRWVPV1VQcVpaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZEQkQvRjlDMEUxMUU3OTA5MTFFRTk5RUREMTFGQzRGOUFFMDIvMkFEQTM3RTY3 OTBGMTFFRTk5RDdDQjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAoKswDQYJKoZIhvcNAQELBQADggEBAOd0tMel1bIhL8bb Qqi0kINkNqpUl3hGYeh4czpLOa47tsf8CtAq1bx4v0Kbs2cwB+bXWm/wEXsiu9N6 762ZMjpn+TXltDW//g3UoDTyYzRBalGBmblmlr40LIQyk+mNRQ5m5+Y1eKswfsWy j2/4SeJZ9XvlhvdQ285Epi1xBy/VhoQRQsHideb1DK+/LgNxJnz57W1cvUSESolX Ox0ulzY18vWN2PZ8BfLcg8i0dCruSQF7D8BD6f03ys7GjlJny+iWuMURPoTCJU0K od7O2DxD7eHBC7V9JGWJl8TxftjT5SPKIE04qk62A4jOl99LkNLFQtOCVxn89Qpl Qw1/VWE= -----END CERTIFICATE-----Generated at Sat Jun 7 19:53:48 2025 by rpki-client