$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/1976FC0CFA6C11EF99638E1FC4F9AE02.roa File: 1976FC0CFA6C11EF99638E1FC4F9AE02.roa (raw, json) Hash identifier: te5PzAkdFI+eQ5CMJL5Z4aIa9hh81p7zUj8QOmt+SYo= Subject key identifier: A5:4A:77:CF:18:AE:14:77:09:27:8E:B8:E1:19:2E:79:9A:EA:BC:FE Certificate issuer: /CN=A9160C9E/serialNumber=FD9D7F660F3A130CA48BEBBA66E162BD3034E38D Certificate serial: 52 Authority key identifier: FD:9D:7F:66:0F:3A:13:0C:A4:8B:EB:BA:66:E1:62:BD:30:34:E3:8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Z1_Zg86Ewyki-u6ZuFivTA0440.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/1976FC0CFA6C11EF99638E1FC4F9AE02.roa Signing time: Thu 06 Mar 2025 09:19:26 +0000 ROA not before: Thu 06 Mar 2025 09:19:26 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153638 IP address blocks: 160.191.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/_Z1_Zg86Ewyki-u6ZuFivTA0440.crl rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/_Z1_Zg86Ewyki-u6ZuFivTA0440.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Z1_Zg86Ewyki-u6ZuFivTA0440.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C9E, serialNumber=FD9D7F660F3A130CA48BEBBA66E162BD3034E38D Validity Not Before: Mar 6 09:19:26 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67c9689e-92f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e0:6e:1e:26:74:af:c4:7c:d4:8e:61:6f:05: ef:55:2c:4b:da:5b:80:fb:d4:a2:05:76:a7:45:d2: 42:0b:44:b9:28:8f:ed:b7:74:79:af:96:9b:48:15: 6c:c9:b1:b3:1a:e5:4f:ca:36:92:ac:92:60:9e:6c: e6:82:8f:8d:cf:92:d7:28:3a:e2:69:e2:fb:eb:c4: af:bb:90:a4:50:04:62:62:6e:87:6a:f7:5e:ae:a9: dc:ba:00:99:86:ee:8e:52:c3:bb:c4:24:29:8a:e6: 14:67:43:3d:e4:2e:7a:16:2d:90:ea:d7:e0:9c:07: 95:b6:11:bb:86:84:38:f0:82:32:84:78:c7:7b:94: 6e:57:9a:2e:2a:d8:41:ea:3b:85:42:27:7b:65:10: 1c:03:27:f3:5d:1d:7d:1c:7c:fa:53:fa:d7:3a:8c: 27:b4:43:6d:32:23:e3:38:02:d1:11:a2:63:db:70: e7:74:4c:02:cf:ed:62:37:2f:fd:e9:da:af:0d:7f: 07:69:4f:88:58:62:86:20:79:da:4f:80:32:a4:04: 6c:0f:81:b2:8c:4c:06:13:f7:55:77:cd:40:96:1e: 19:5f:06:ff:e6:0c:7b:03:17:63:b2:0a:fa:bc:57: 13:2c:de:0b:26:b6:6b:01:37:f5:f4:12:f1:18:03: e8:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:4A:77:CF:18:AE:14:77:09:27:8E:B8:E1:19:2E:79:9A:EA:BC:FE X509v3 Authority Key Identifier: keyid:FD:9D:7F:66:0F:3A:13:0C:A4:8B:EB:BA:66:E1:62:BD:30:34:E3:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/_Z1_Zg86Ewyki-u6ZuFivTA0440.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Z1_Zg86Ewyki-u6ZuFivTA0440.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/1976FC0CFA6C11EF99638E1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.21.0/24 Signature Algorithm: sha256WithRSAEncryption 19:61:d9:a6:51:a3:49:43:da:98:39:44:e1:ed:44:94:e7:03: 1f:38:18:c1:a1:cb:27:38:d6:a3:a9:04:54:3c:1f:25:40:99: c9:40:36:86:da:1d:bc:d1:98:68:e1:fe:34:df:c5:0e:6b:12: 79:9c:0a:88:b4:ba:b3:bd:9b:88:c7:04:d2:5f:a8:a1:ec:c2: 30:d7:93:7c:50:c0:d5:cd:98:65:1d:00:15:af:48:c6:ee:7e: 28:0d:0b:8a:e2:5f:05:21:05:3b:64:1a:71:7f:5c:a1:8f:2e: 62:cd:4c:15:29:9d:7d:31:ba:5e:46:dc:b8:ec:6e:54:07:5d: f8:5c:75:eb:90:80:0b:72:1e:3f:dc:ba:01:e1:29:e0:d0:9d: 53:33:2b:61:54:23:6f:e4:5b:bd:09:ab:02:f6:6a:bd:f9:22: d3:a6:03:1a:75:5f:66:e5:16:5f:02:d3:0f:e2:98:80:38:cb: 1d:d3:60:a3:39:f7:19:db:c8:20:0b:9a:e0:be:b1:bb:7a:ff: 7e:8d:e1:af:03:24:ff:e5:c9:25:c5:e0:73:4d:f8:f6:43:7f: 83:83:bd:64:7c:3e:56:5b:f6:d2:78:d4:b8:80:b2:37:e5:24: ac:cb:ba:8f:3b:ea:9d:65:85:80:72:fa:76:1f:0f:5d:fa:de: 00:12:33:81 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MEM5RTExMC8GA1UEBRMoRkQ5RDdGNjYwRjNBMTMwQ0E0OEJFQkJBNjZFMTYyQkQz MDM0RTM4RDAeFw0yNTAzMDYwOTE5MjZaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Yzk2ODllLTkyZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCg4G4eJnSvxHzUjmFvBe9VLEvaW4D71KIFdqdF0kILRLkoj+23dHmvlptIFWzJ sbMa5U/KNpKskmCebOaCj43PktcoOuJp4vvrxK+7kKRQBGJibodq916uqdy6AJmG 7o5Sw7vEJCmK5hRnQz3kLnoWLZDq1+CcB5W2EbuGhDjwgjKEeMd7lG5Xmi4q2EHq O4VCJ3tlEBwDJ/NdHX0cfPpT+tc6jCe0Q20yI+M4AtERomPbcOd0TALP7WI3L/3p 2q8NfwdpT4hYYoYgedpPgDKkBGwPgbKMTAYT91V3zUCWHhlfBv/mDHsDF2OyCvq8 VxMs3gsmtmsBN/X0EvEYA+jZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUpUp3zxiu FHcJJ4644RkueZrqvP4wHwYDVR0jBBgwFoAU/Z1/Zg86Ewyki+u6ZuFivTA0440w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwQzlFLzRFRkQxNUI2OEJD QTExRUZBQkZDMUEzOUM0RjlBRTAyL19aMV9aZzg2RXd5a2ktdTZadUZpdlRBMDQ0 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX1oxX1pnODZFd3lraS11Nlp1Rml2VEEwNDQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5RS80RUZEMTVCNjhCQ0ExMUVGQUJGQzFBMzlDNEY5QUUwMi8xOTc2RkMwQ0ZB NkMxMUVGOTk2MzhFMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/FTANBgkqhkiG9w0BAQsFAAOCAQEAGWHZplGjSUPamDlE 4e1ElOcDHzgYwaHLJzjWo6kEVDwfJUCZyUA2htodvNGYaOH+NN/FDmsSeZwKiLS6 s72biMcE0l+ooezCMNeTfFDA1c2YZR0AFa9Ixu5+KA0LiuJfBSEFO2QacX9coY8u Ys1MFSmdfTG6XkbcuOxuVAdd+Fx165CAC3IeP9y6AeEp4NCdUzMrYVQjb+RbvQmr AvZqvfki06YDGnVfZuUWXwLTD+KYgDjLHdNgozn3GdvIIAua4L6xu3r/fo3hrwMk /+XJJcXgc0349kN/g4O9ZHw+Vlv20njUuICyN+UkrMu6jzvqnWWFgHL6dh8PXfre ABIzgQ== -----END CERTIFICATE-----Generated at Sat Apr 26 12:38:56 2025 by rpki-client