$ rpki-client -vvf rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/A82042B6FA6B11EFB942DD1EC4F9AE02.roa File: A82042B6FA6B11EFB942DD1EC4F9AE02.roa (raw, json) Hash identifier: WagnJcg5f8efkpfWr+mqkirfnMGP4KyRA+7+p8TOFRM= Subject key identifier: 43:ED:A0:28:C0:D1:81:0D:3B:6B:5E:FC:E2:F3:BF:CC:2E:BD:59:A0 Certificate issuer: /CN=A9160C9E/serialNumber=FD9D7F660F3A130CA48BEBBA66E162BD3034E38D Certificate serial: 50 Authority key identifier: FD:9D:7F:66:0F:3A:13:0C:A4:8B:EB:BA:66:E1:62:BD:30:34:E3:8D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Z1_Zg86Ewyki-u6ZuFivTA0440.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/A82042B6FA6B11EFB942DD1EC4F9AE02.roa Signing time: Thu 06 Mar 2025 09:16:16 +0000 ROA not before: Thu 06 Mar 2025 09:16:16 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153365 IP address blocks: 160.191.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/_Z1_Zg86Ewyki-u6ZuFivTA0440.crl rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/_Z1_Zg86Ewyki-u6ZuFivTA0440.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Z1_Zg86Ewyki-u6ZuFivTA0440.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160C9E, serialNumber=FD9D7F660F3A130CA48BEBBA66E162BD3034E38D Validity Not Before: Mar 6 09:16:16 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67c967e0-2941 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d0:0e:bf:a1:39:b5:e4:35:ba:55:ec:03:67: 1a:03:a0:9b:b3:a6:1a:40:a0:35:48:4e:db:59:21: ae:ab:2b:0f:de:45:9b:96:29:1f:bd:d9:be:ce:b8: 56:52:77:4d:b9:ae:33:1a:e3:e9:5e:8d:0c:5f:40: 5e:3d:d2:48:4d:06:0c:43:c0:df:37:9c:62:81:08: e7:05:62:0a:59:a2:28:a8:8b:52:44:b3:46:a5:4f: da:80:a2:be:57:6e:f6:df:8a:79:b2:40:c0:88:7e: 92:cb:ed:a3:e4:ef:43:16:c7:56:c2:33:bb:7f:88: a2:94:94:91:22:e7:56:e3:be:d6:1d:3a:a2:4c:56: 02:20:2a:95:1c:8e:4a:14:2f:f4:13:08:25:06:4c: 58:00:98:77:cd:91:46:6e:6f:22:a3:cb:e2:a0:39: 09:94:b7:18:03:2c:9e:31:78:1a:18:38:16:7c:a7: 11:c5:67:d4:59:15:ff:c1:36:39:ea:83:a8:33:4a: 0a:b1:0c:90:ad:93:2b:7f:50:5d:a4:d6:06:11:32: ca:8d:7c:86:0c:35:74:ca:c0:28:e5:0b:cd:68:f3: 1d:07:97:02:7d:dc:10:36:d6:af:d7:99:a0:ad:6b: 78:cf:67:2d:c0:14:53:52:4c:a3:40:6f:d9:ea:63: f7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:ED:A0:28:C0:D1:81:0D:3B:6B:5E:FC:E2:F3:BF:CC:2E:BD:59:A0 X509v3 Authority Key Identifier: keyid:FD:9D:7F:66:0F:3A:13:0C:A4:8B:EB:BA:66:E1:62:BD:30:34:E3:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/_Z1_Zg86Ewyki-u6ZuFivTA0440.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Z1_Zg86Ewyki-u6ZuFivTA0440.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160C9E/4EFD15B68BCA11EFABFC1A39C4F9AE02/A82042B6FA6B11EFB942DD1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.20.0/24 Signature Algorithm: sha256WithRSAEncryption 56:9d:5c:3b:fa:f4:df:8a:b6:7a:1d:d4:56:73:67:4a:d6:68: 30:4f:5d:a3:e9:a0:3f:5c:51:35:af:77:d5:59:a0:b7:df:ce: 09:d5:e8:1f:69:13:e7:7b:8d:85:83:d9:6a:c3:13:33:db:e2: 1a:03:fe:a3:87:81:f0:4b:c3:5f:bb:40:41:43:74:3a:4b:0f: d8:02:a9:78:40:f0:7f:e5:f9:e7:dc:67:b4:4b:23:56:ab:4b: 33:70:52:89:fb:a2:9f:46:b1:9d:e1:a8:9e:50:c5:7f:52:d1: 8b:85:b3:b7:0b:71:56:c3:3f:55:c4:16:8f:9e:0b:27:62:de: 03:84:2d:d1:28:3c:1d:40:8a:77:62:2a:b6:22:f2:2b:02:29: d6:76:26:30:57:ba:47:11:d3:cd:77:94:68:11:ef:78:39:21: 2a:0a:8e:96:86:86:fc:77:84:7b:95:7b:ea:53:0f:19:78:0d: 91:ab:c9:0e:82:7c:43:59:08:4b:c9:fc:37:ec:26:c3:70:2f: 24:d5:e4:52:fa:f1:c9:01:3c:c4:e5:81:ee:7f:fa:22:66:e2: d1:23:38:a0:30:61:e5:fb:cd:88:b4:5e:dd:06:ab:1a:ba:3a: e9:36:4e:11:a5:17:cc:79:f5:8e:bb:71:28:66:fc:91:30:cc: 1f:d6:bd:d7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MEM5RTExMC8GA1UEBRMoRkQ5RDdGNjYwRjNBMTMwQ0E0OEJFQkJBNjZFMTYyQkQz MDM0RTM4RDAeFw0yNTAzMDYwOTE2MTZaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Yzk2N2UwLTI5NDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv0A6/oTm15DW6VewDZxoDoJuzphpAoDVITttZIa6rKw/eRZuWKR+92b7OuFZS d025rjMa4+lejQxfQF490khNBgxDwN83nGKBCOcFYgpZoiioi1JEs0alT9qAor5X bvbfinmyQMCIfpLL7aPk70MWx1bCM7t/iKKUlJEi51bjvtYdOqJMVgIgKpUcjkoU L/QTCCUGTFgAmHfNkUZubyKjy+KgOQmUtxgDLJ4xeBoYOBZ8pxHFZ9RZFf/BNjnq g6gzSgqxDJCtkyt/UF2k1gYRMsqNfIYMNXTKwCjlC81o8x0HlwJ93BA21q/XmaCt a3jPZy3AFFNSTKNAb9nqY/ehAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQ+2gKMDR gQ07a1784vO/zC69WaAwHwYDVR0jBBgwFoAU/Z1/Zg86Ewyki+u6ZuFivTA0440w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwQzlFLzRFRkQxNUI2OEJD QTExRUZBQkZDMUEzOUM0RjlBRTAyL19aMV9aZzg2RXd5a2ktdTZadUZpdlRBMDQ0 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvX1oxX1pnODZFd3lraS11Nlp1Rml2VEEwNDQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MEM5RS80RUZEMTVCNjhCQ0ExMUVGQUJGQzFBMzlDNEY5QUUwMi9BODIwNDJCNkZB NkIxMUVGQjk0MkREMUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/FDANBgkqhkiG9w0BAQsFAAOCAQEAVp1cO/r034q2eh3U VnNnStZoME9do+mgP1xRNa931Vmgt9/OCdXoH2kT53uNhYPZasMTM9viGgP+o4eB 8EvDX7tAQUN0OksP2AKpeEDwf+X559xntEsjVqtLM3BSifuin0axneGonlDFf1LR i4WztwtxVsM/VcQWj54LJ2LeA4Qt0Sg8HUCKd2IqtiLyKwIp1nYmMFe6RxHTzXeU aBHveDkhKgqOloaG/HeEe5V76lMPGXgNkavJDoJ8Q1kIS8n8N+wmw3AvJNXkUvrx yQE8xOWB7n/6Imbi0SM4oDBh5fvNiLRe3QarGro66TZOEaUXzHn1jrtxKGb8kTDM H9a91w== -----END CERTIFICATE-----Generated at Sat Apr 26 12:24:19 2025 by rpki-client