$ rpki-client -vvf rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/160F265C827311EDA56A8F30C4F9AE02.roa File: 160F265C827311EDA56A8F30C4F9AE02.roa (raw, json) Hash identifier: DFFj/9slvAH+PEbWNXT9e7xoWXrU79TcIDoX6Iil9eI= Subject key identifier: 46:60:66:F8:D9:54:55:AF:17:D3:37:87:0F:9A:F9:BA:0A:1E:77:4D Certificate issuer: /CN=A9148EFA/serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Certificate serial: 0B51 Authority key identifier: 94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/160F265C827311EDA56A8F30C4F9AE02.roa Signing time: Fri 28 Mar 2025 19:30:29 +0000 ROA not before: Fri 28 Mar 2025 19:30:29 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 17995 IP address blocks: 119.42.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 19:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2897 (0xb51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148EFA, serialNumber=948FF87689FA949116F5F7C800EB1D701E65E37B Validity Not Before: Mar 28 19:30:29 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e6f8d5-5073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:c3:cc:8b:b7:5d:8a:76:bd:ee:09:13:62:c2: 24:c4:13:db:4c:29:3e:c8:21:da:a3:ac:5a:c8:b5: 1b:06:45:af:22:6b:9c:c5:b1:03:b4:85:f7:95:fb: 83:7e:0a:2a:be:ce:d2:30:73:9b:52:c4:64:38:11: 45:a1:e2:ec:e3:c4:52:56:f4:78:ae:47:70:b2:ed: ca:c0:80:2d:bf:2e:e6:ba:36:fe:23:e4:5a:14:ae: c4:6b:42:dc:ab:be:62:b8:f5:f6:c2:ae:07:c2:08: 30:48:12:05:4e:5a:05:50:22:67:a3:ef:86:bf:0d: 62:ba:99:25:ab:e7:4f:3f:0d:ee:9d:32:e5:69:9f: 22:1f:d8:24:3a:4b:79:8f:f0:d7:87:ed:a6:be:cb: ae:ac:05:c7:fd:3a:46:c9:de:a4:25:6e:44:da:bd: a3:8b:4c:e5:16:ee:61:fb:d8:7f:60:e1:c3:b6:c5: 35:b7:f7:f6:40:7e:65:6f:b0:ad:48:85:f9:fa:56: 33:82:cd:6b:13:84:bc:ea:01:26:61:55:af:a5:c5: 67:92:0f:1e:25:05:d2:2e:23:4a:06:72:eb:6f:0b: 96:25:fe:49:4d:15:ac:9f:cb:9c:fc:36:1b:d5:c0: 41:f2:44:85:ed:7a:19:24:8a:50:09:3a:94:ac:39: 2f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:60:66:F8:D9:54:55:AF:17:D3:37:87:0F:9A:F9:BA:0A:1E:77:4D X509v3 Authority Key Identifier: keyid:94:8F:F8:76:89:FA:94:91:16:F5:F7:C8:00:EB:1D:70:1E:65:E3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/lI_4don6lJEW9ffIAOsdcB5l43s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lI_4don6lJEW9ffIAOsdcB5l43s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148EFA/E0C951CE306911EABF0D942EC4F9AE02/160F265C827311EDA56A8F30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.42.40.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:25:a7:d9:dd:7d:ac:53:2d:45:5e:50:87:ae:2c:d1:89:f6: 39:e6:a5:f7:4e:cd:35:d9:4d:4d:05:f2:a6:80:65:f6:c0:f7: 0e:9c:e9:9b:43:0c:29:a0:77:8d:92:3a:c4:fd:b0:a2:22:e2: 81:bf:dd:17:d9:ff:24:19:26:3c:d6:5a:c1:2c:67:d4:14:1a: 6b:99:9a:3b:aa:e1:3a:92:53:b9:28:25:e3:c8:70:c2:d8:c0: 16:04:3e:88:1b:80:e1:55:02:40:c4:99:b1:19:bd:93:09:9e: b1:a9:39:95:d8:2a:c1:1b:f8:c0:ee:ab:a4:bf:d9:51:01:51: 2c:f7:41:4e:5f:92:57:03:6d:ca:86:c5:c4:c8:89:6f:06:fa: 0b:4a:1a:a9:68:95:46:c8:06:dd:3e:32:8f:4a:5d:6e:fd:e4: 8e:bf:6a:52:ac:dd:fd:50:09:45:1e:b4:1f:6c:34:c7:1f:3c: 9e:86:4e:fc:26:51:0c:9b:08:d7:6d:38:2f:b0:da:13:de:6e: 18:06:82:42:a0:c6:a3:3b:0f:da:96:f9:bf:1c:47:09:a6:36: 65:c6:78:30:86:b3:a7:09:02:4f:d7:d8:36:a4:40:2a:35:ae: 13:7b:e7:d1:25:97:d3:33:ea:03:b0:7c:59:04:07:56:4e:5c: fe:86:2c:83 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhFRkExMTAvBgNVBAUTKDk0OEZGODc2ODlGQTk0OTExNkY1RjdDODAwRUIxRDcw MUU2NUUzN0IwHhcNMjUwMzI4MTkzMDI5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U2ZjhkNS01MDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnMPMi7ddina97gkTYsIkxBPbTCk+yCHao6xayLUbBkWvImucxbEDtIX3lfuD fgoqvs7SMHObUsRkOBFFoeLs48RSVvR4rkdwsu3KwIAtvy7mujb+I+RaFK7Ea0Lc q75iuPX2wq4HwggwSBIFTloFUCJno++Gvw1iupklq+dPPw3unTLlaZ8iH9gkOkt5 j/DXh+2mvsuurAXH/TpGyd6kJW5E2r2ji0zlFu5h+9h/YOHDtsU1t/f2QH5lb7Ct SIX5+lYzgs1rE4S86gEmYVWvpcVnkg8eJQXSLiNKBnLrbwuWJf5JTRWsn8uc/DYb 1cBB8kSF7XoZJIpQCTqUrDkvKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEZgZvjZ VFWvF9M3hw+a+boKHndNMB8GA1UdIwQYMBaAFJSP+HaJ+pSRFvX3yADrHXAeZeN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEVGQS9FMEM5NTFDRTMw NjkxMUVBQkYwRDk0MkVDNEY5QUUwMi9sSV80ZG9uNmxKRVc5ZmZJQU9zZGNCNWw0 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xJXzRkb242bEpFVzlmZklBT3NkY0I1bDQzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhFRkEvRTBDOTUxQ0UzMDY5MTFFQUJGMEQ5NDJFQzRGOUFFMDIvMTYwRjI2NUM4 MjczMTFFREE1NkE4RjMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ3KigwDQYJKoZIhvcNAQELBQADggEBAFslp9ndfaxTLUVe UIeuLNGJ9jnmpfdOzTXZTU0F8qaAZfbA9w6c6ZtDDCmgd42SOsT9sKIi4oG/3RfZ /yQZJjzWWsEsZ9QUGmuZmjuq4TqSU7koJePIcMLYwBYEPogbgOFVAkDEmbEZvZMJ nrGpOZXYKsEb+MDuq6S/2VEBUSz3QU5fklcDbcqGxcTIiW8G+gtKGqlolUbIBt0+ Mo9KXW795I6/alKs3f1QCUUetB9sNMcfPJ6GTvwmUQybCNdtOC+w2hPebhgGgkKg xqM7D9qW+b8cRwmmNmXGeDCGs6cJAk/X2DakQCo1rhN759Ell9Mz6gOwfFkEB1ZO XP6GLIM= -----END CERTIFICATE-----Generated at Sat Apr 26 08:04:49 2025 by rpki-client