$ rpki-client -vvf rpki.apnic.net/member_repository/A91160BB/41CD5D66209D11F0823D4847C4F9AE02/B3AF09C0209D11F0B81D0B48C4F9AE02.roa File: B3AF09C0209D11F0B81D0B48C4F9AE02.roa (raw, json) Hash identifier: hWtosufayWdgaVHIvvIcT7QIe+pwqrjTdl4WzVjv7Xg= Subject key identifier: 3C:88:F2:CA:44:21:C1:67:AC:A6:B9:DA:DF:C1:18:16:94:50:5A:AC Certificate issuer: /CN=A91160BB/serialNumber=A9BBED2D73B8D4BE0116373D57483A0B0198E914 Certificate serial: 02 Authority key identifier: A9:BB:ED:2D:73:B8:D4:BE:01:16:37:3D:57:48:3A:0B:01:98:E9:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbvtLXO41L4BFjc9V0g6CwGY6RQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91160BB/41CD5D66209D11F0823D4847C4F9AE02/B3AF09C0209D11F0B81D0B48C4F9AE02.roa Signing time: Wed 23 Apr 2025 23:50:14 +0000 ROA not before: Wed 23 Apr 2025 23:50:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153809 IP address blocks: 163.227.140.0/23 maxlen: 24 2401:ffa0::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91160BB/41CD5D66209D11F0823D4847C4F9AE02/qbvtLXO41L4BFjc9V0g6CwGY6RQ.crl rsync://rpki.apnic.net/member_repository/A91160BB/41CD5D66209D11F0823D4847C4F9AE02/qbvtLXO41L4BFjc9V0g6CwGY6RQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbvtLXO41L4BFjc9V0g6CwGY6RQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91160BB, serialNumber=A9BBED2D73B8D4BE0116373D57483A0B0198E914 Validity Not Before: Apr 23 23:50:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68097cb6-8a97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:31:b3:79:45:83:44:ae:1a:d6:77:52:63:bf: 23:65:bf:bb:df:98:07:d8:a5:71:82:62:b0:c3:d3: 9d:e3:12:c6:e1:25:8c:75:44:1b:6e:b9:39:04:00: 77:1b:c7:c1:8b:bb:4c:10:bf:7a:4b:51:54:78:bc: b2:d2:f3:e9:f9:3d:85:55:6b:18:fa:8a:2c:2f:b4: 1f:ba:9d:0d:cd:74:5c:7a:f3:9a:6c:cc:80:d8:83: 11:41:59:bf:c2:eb:c9:83:c5:0e:38:9e:5b:f3:5c: 58:68:44:7e:ba:d8:91:96:0b:6a:d7:2f:13:d9:8e: f7:f2:58:b1:52:31:c5:c6:e6:52:e6:ec:30:03:9a: 23:88:27:d3:37:f6:50:3f:64:44:6b:60:1b:e8:fd: 37:b3:4a:8d:9e:5c:b5:25:b9:72:cc:b2:79:40:ef: 0e:4d:78:b5:65:85:8d:7a:7b:28:5b:cf:3e:c8:b0: 29:0b:55:f1:26:75:f0:03:f3:13:f4:88:8d:36:00: e5:3f:26:9d:2a:3b:d2:b1:97:46:45:66:6d:25:67: af:df:1c:62:b1:fa:dd:17:a8:03:03:d1:0d:c6:61: 59:d1:7f:1d:e6:2e:e8:c3:5d:85:53:c4:f9:17:93: 2b:ba:6c:2c:18:b9:1b:ef:76:8b:e3:cf:05:07:32: da:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:88:F2:CA:44:21:C1:67:AC:A6:B9:DA:DF:C1:18:16:94:50:5A:AC X509v3 Authority Key Identifier: keyid:A9:BB:ED:2D:73:B8:D4:BE:01:16:37:3D:57:48:3A:0B:01:98:E9:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91160BB/41CD5D66209D11F0823D4847C4F9AE02/qbvtLXO41L4BFjc9V0g6CwGY6RQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbvtLXO41L4BFjc9V0g6CwGY6RQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91160BB/41CD5D66209D11F0823D4847C4F9AE02/B3AF09C0209D11F0B81D0B48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.140.0/23 IPv6: 2401:ffa0::/32 Signature Algorithm: sha256WithRSAEncryption 17:c3:20:2d:77:f1:bd:8c:c3:12:21:db:ea:c8:11:e4:a4:cd: be:f1:6f:35:20:7c:26:02:ae:41:11:1a:99:6f:78:05:99:6e: 01:4c:17:6e:da:aa:e6:d3:21:a8:ac:3a:45:2c:23:25:2e:5c: 01:37:7d:b3:69:08:56:d6:d0:ca:03:96:66:fe:93:56:51:96: f5:30:bf:ff:52:ab:1d:3e:7f:0c:80:2a:1b:19:9b:44:b8:e8: 70:51:64:9c:f8:ed:4e:ca:53:56:54:1f:41:96:90:46:d6:06: 4c:d9:4d:f7:db:65:fe:e7:c9:e4:e3:77:65:5b:8f:23:33:3e: 77:7b:8a:3b:a6:05:20:f8:fe:24:84:1a:e7:d7:d2:fe:49:f3: 6c:56:c2:0f:8a:f1:dd:95:22:5c:f2:ca:25:78:e5:7d:49:93: b4:04:dc:0b:c9:92:a4:09:c8:13:32:45:4d:5d:ec:ca:b5:32: ac:c2:67:28:59:ff:db:30:21:83:5a:9f:46:90:f7:57:d4:11: ec:67:93:a7:f5:02:10:1a:83:39:04:c7:d6:e8:4a:36:36:24: 3d:c3:9a:30:78:b8:71:d1:62:05:fe:0f:30:97:4e:e2:a1:8b: 30:15:82:76:34:09:70:91:9b:17:d4:80:b1:df:ab:c4:27:84: 8f:bc:14:d0 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NjBCQjExMC8GA1UEBRMoQTlCQkVEMkQ3M0I4RDRCRTAxMTYzNzNENTc0ODNBMEIw MTk4RTkxNDAeFw0yNTA0MjMyMzUwMTRaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MDk3Y2I2LThhOTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDNMbN5RYNErhrWd1JjvyNlv7vfmAfYpXGCYrDD053jEsbhJYx1RBtuuTkEAHcb x8GLu0wQv3pLUVR4vLLS8+n5PYVVaxj6iiwvtB+6nQ3NdFx685pszIDYgxFBWb/C 68mDxQ44nlvzXFhoRH662JGWC2rXLxPZjvfyWLFSMcXG5lLm7DADmiOIJ9M39lA/ ZERrYBvo/TezSo2eXLUluXLMsnlA7w5NeLVlhY16eyhbzz7IsCkLVfEmdfAD8xP0 iI02AOU/Jp0qO9Kxl0ZFZm0lZ6/fHGKx+t0XqAMD0Q3GYVnRfx3mLujDXYVTxPkX kyu6bCwYuRvvdovjzwUHMtohAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUPIjyykQh wWesprna38EYFpRQWqwwHwYDVR0jBBgwFoAUqbvtLXO41L4BFjc9V0g6CwGY6RQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2MEJCLzQxQ0Q1RDY2MjA5 RDExRjA4MjNENDg0N0M0RjlBRTAyL3FidnRMWE80MUw0QkZqYzlWMGc2Q3dHWTZS US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcWJ2dExYTzQxTDRCRmpjOVYwZzZDd0dZNlJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjBCQi80MUNENUQ2NjIwOUQxMUYwODIzRDQ4NDdDNEY5QUUwMi9CM0FGMDlDMDIw OUQxMUYwQjgxRDBCNDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAaPjjDANBAIAAjAHAwUAJAH/oDANBgkqhkiG9w0BAQsFAAOC AQEAF8MgLXfxvYzDEiHb6sgR5KTNvvFvNSB8JgKuQREamW94BZluAUwXbtqq5tMh qKw6RSwjJS5cATd9s2kIVtbQygOWZv6TVlGW9TC//1KrHT5/DIAqGxmbRLjocFFk nPjtTspTVlQfQZaQRtYGTNlN99tl/ufJ5ON3ZVuPIzM+d3uKO6YFIPj+JIQa59fS /knzbFbCD4rx3ZUiXPLKJXjlfUmTtATcC8mSpAnIEzJFTV3syrUyrMJnKFn/2zAh g1qfRpD3V9QR7GeTp/UCEBqDOQTH1uhKNjYkPcOaMHi4cdFiBf4PMJdO4qGLMBWC djQJcJGbF9SAsd+rxCeEj7wU0A== -----END CERTIFICATE-----Generated at Sat Apr 26 08:10:18 2025 by rpki-client