$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/459A40A0399111F0B589186BC4F9AE02.roa File: 459A40A0399111F0B589186BC4F9AE02.roa (raw, json) Hash identifier: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o= Subject key identifier: 5B:79:5D:23:A7:F3:E0:A9:F6:B8:E5:2C:DE:B7:93:CF:49:86:ED:56 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 4F Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/459A40A0399111F0B589186BC4F9AE02.roa Signing time: Sun 25 May 2025 17:54:25 +0000 ROA not before: Sun 25 May 2025 17:54:25 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 153490 IP address blocks: 161.248.118.0/23 maxlen: 23 161.248.118.0/24 maxlen: 24 161.248.119.0/24 maxlen: 24 161.248.119.64/27 maxlen: 27 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 06:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: May 25 17:54:25 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68335951-f1b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ec:b1:9d:c4:ec:65:36:ae:d4:39:ce:0e:42: ad:39:6c:a9:97:1d:a3:ae:45:ee:b8:b1:81:94:51: 3a:f5:23:04:08:2e:e2:72:47:a6:1d:e3:8e:e1:ac: fe:38:c0:38:77:07:99:2f:5b:ae:92:7a:89:dd:f9: b3:84:6f:2e:38:4d:b9:07:b1:97:b4:2e:0d:79:57: eb:58:70:63:24:16:39:23:9f:10:9b:cc:31:bc:61: dc:60:d7:32:7d:56:9c:85:cd:cf:61:e3:71:a5:0f: d0:0e:69:f6:c8:18:97:e1:d7:b5:74:75:f7:b3:ac: 78:f3:ee:b4:a5:35:e6:3e:0c:90:86:17:83:85:e7: b8:0f:44:05:be:f3:92:aa:a2:14:f4:27:a9:cd:77: 77:ab:c5:4f:1c:9a:71:ff:de:b3:ac:45:a5:0c:8b: fc:79:8a:ee:b4:9c:b3:50:7c:d3:e2:79:a1:c6:8f: 37:f5:37:19:e8:d1:c6:4d:4e:f6:a6:61:f5:dc:99: 49:08:79:b9:6e:d2:53:5a:46:1b:dc:0f:e9:d2:73: 8e:2f:dc:50:6d:8a:85:e0:46:50:bc:1d:74:0c:98: 9d:40:e8:0d:c2:2b:45:bc:b1:82:77:a6:42:24:26: 7b:0b:3d:1b:aa:cf:b8:34:c8:dd:20:75:00:7b:e8: 85:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:79:5D:23:A7:F3:E0:A9:F6:B8:E5:2C:DE:B7:93:CF:49:86:ED:56 X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/459A40A0399111F0B589186BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.118.0/23 Signature Algorithm: sha256WithRSAEncryption 78:23:9c:53:84:47:ac:8c:5d:6c:28:cb:bc:a6:49:0a:54:c0: 83:2b:e3:75:a1:1b:8f:95:64:14:85:27:7c:99:9e:e2:53:30: 27:64:fe:9f:49:94:1a:c9:9a:3c:d9:4d:31:45:f1:c6:94:fd: 44:1e:88:e4:5e:ee:c7:a9:d0:16:73:82:d0:69:95:b9:12:60: 7f:c6:c9:20:d1:66:dc:30:ca:e4:70:94:58:11:8a:73:9e:a2: 0c:94:44:37:70:24:33:64:17:e7:81:22:17:de:09:fc:78:0e: 71:19:41:fb:aa:ae:8c:02:93:92:59:c1:92:7a:96:dd:f0:47: cf:f3:9a:50:65:53:b3:14:c2:20:0e:cc:7d:60:81:ea:d5:e2: 8b:7a:97:02:c8:e7:74:42:4e:01:76:bd:38:f8:73:be:99:87: 77:80:13:94:14:4a:cf:2c:f5:e5:9a:bd:f1:90:6a:cf:33:53: fa:44:09:b0:44:d8:70:9f:5d:6b:b4:6f:e6:77:00:01:e2:0c: f1:d1:47:fa:66:4d:a7:6e:e8:b3:8e:b8:74:1a:35:c8:29:0d: 6e:83:e9:7d:30:28:fd:e4:2c:56:3d:7c:26:7e:81:61:9d:b2: 60:b7:61:e0:62:da:fa:86:08:1d:41:d8:01:1e:1d:c8:c2:10: 2d:db:53:fa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA1MjUxNzU0MjVaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzM1OTUxLWYxYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE7LGdxOxlNq7UOc4OQq05bKmXHaOuRe64sYGUUTr1IwQILuJyR6Yd447hrP44 wDh3B5kvW66Seond+bOEby44TbkHsZe0Lg15V+tYcGMkFjkjnxCbzDG8Ydxg1zJ9 VpyFzc9h43GlD9AOafbIGJfh17V0dfezrHjz7rSlNeY+DJCGF4OF57gPRAW+85Kq ohT0J6nNd3erxU8cmnH/3rOsRaUMi/x5iu60nLNQfNPieaHGjzf1Nxno0cZNTvam YfXcmUkIeblu0lNaRhvcD+nSc44v3FBtioXgRlC8HXQMmJ1A6A3CK0W8sYJ3pkIk JnsLPRuqz7g0yN0gdQB76IUlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUW3ldI6fz 4Kn2uOUs3reTz0mG7VYwHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi80NTlBNDBBMDM5 OTExMUYwQjU4OTE4NkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4djANBgkqhkiG9w0BAQsFAAOCAQEAeCOcU4RHrIxdbCjL vKZJClTAgyvjdaEbj5VkFIUnfJme4lMwJ2T+n0mUGsmaPNlNMUXxxpT9RB6I5F7u x6nQFnOC0GmVuRJgf8bJINFm3DDK5HCUWBGKc56iDJREN3AkM2QX54EiF94J/HgO cRlB+6qujAKTklnBknqW3fBHz/OaUGVTsxTCIA7MfWCB6tXii3qXAsjndEJOAXa9 OPhzvpmHd4ATlBRKzyz15Zq98ZBqzzNT+kQJsETYcJ9da7Rv5ncAAeIM8dFH+mZN p27os464dBo1yCkNboPpfTAo/eQsVj18Jn6BYZ2yYLdh4GLa+oYIHUHYAR4dyMIQ LdtT+g== -----END CERTIFICATE-----Generated at Thu Jun 5 19:17:10 2025 by rpki-client