$ rpki-client -vvf rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/F2A90F6A86AE11EF999DAD2FC4F9AE02.roa File: F2A90F6A86AE11EF999DAD2FC4F9AE02.roa (raw, json) Hash identifier: Bg47WQyQqPO6vhS9f39oGO32kv0x8D/332r6YxTMVPI= Subject key identifier: 51:B6:6D:F5:73:91:44:07:23:3A:4A:35:E7:91:0D:AD:9F:55:41:C9 Certificate issuer: /CN=A91698EC/serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Certificate serial: C5 Authority key identifier: 4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/F2A90F6A86AE11EF999DAD2FC4F9AE02.roa Signing time: Thu 05 Jun 2025 05:15:13 +0000 ROA not before: Thu 05 Jun 2025 05:15:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140065 IP address blocks: 160.22.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 02:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91698EC, serialNumber=4DB3B2E3599B646E9F30AF74A58C6678FAF1D2B7 Validity Not Before: Jun 5 05:15:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684127e1-4536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d4:7b:59:ff:41:cf:7c:94:e7:ff:56:b2:09: 00:91:dc:9f:80:5b:cf:ed:67:11:c1:eb:f7:e7:06: ac:9a:51:35:2f:1c:4d:c9:a1:ba:10:5a:f4:f3:d6: 1e:86:b0:28:61:8f:41:41:18:36:ef:56:a1:13:31: fc:ca:2b:3d:8c:7e:d7:32:d2:a4:b3:f6:56:08:b7: e1:25:36:92:bf:60:d1:d1:c5:02:b2:a2:7d:88:68: c3:f3:da:5c:52:f1:5d:b8:58:47:09:a5:c5:ac:6f: 33:49:0f:2b:3c:fc:f5:9e:1d:7d:4f:f3:85:3d:51: f6:9a:8e:ab:0a:7d:03:68:17:4b:54:2c:fd:5e:f9: 46:10:51:45:d9:77:4a:9c:43:fe:44:52:2f:5c:97: d5:61:5e:e9:2e:43:e7:7f:5a:eb:00:03:6c:06:2a: d9:26:11:80:76:44:41:61:af:2d:3f:22:ac:f5:2f: 44:52:a2:0c:3f:a7:cb:ca:99:ec:c6:1a:5c:10:12: dd:8c:2e:7b:86:98:e5:7c:34:4e:c7:06:91:36:6c: d4:0a:71:9d:b5:ad:06:ab:b3:22:4a:dc:1f:f8:21: 21:2b:a7:d7:a5:09:6d:2c:80:2a:a1:d1:b8:25:64: c9:c3:00:7d:d2:cc:71:78:a7:04:33:7e:5d:33:2c: af:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B6:6D:F5:73:91:44:07:23:3A:4A:35:E7:91:0D:AD:9F:55:41:C9 X509v3 Authority Key Identifier: keyid:4D:B3:B2:E3:59:9B:64:6E:9F:30:AF:74:A5:8C:66:78:FA:F1:D2:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/TbOy41mbZG6fMK90pYxmePrx0rc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TbOy41mbZG6fMK90pYxmePrx0rc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91698EC/3A8F8410214911EFBE88CF29C4F9AE02/F2A90F6A86AE11EF999DAD2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.43.0/24 Signature Algorithm: sha256WithRSAEncryption 64:a4:8c:f3:d2:5b:2d:8f:f4:71:05:a8:c5:11:d7:5a:7d:6f: 8f:e0:b6:72:7b:e5:0e:db:e5:29:3d:b4:8f:7a:28:07:77:3b: 72:67:74:d9:b3:56:1a:23:3c:a9:74:81:f5:cc:7f:53:a5:cd: 87:af:17:59:10:03:e7:69:3c:e6:0c:f9:70:2e:56:a0:65:4c: bb:aa:7c:63:38:fb:7c:3e:50:d7:3e:c9:4d:b0:3d:91:89:56: cf:98:4e:f7:4e:f0:e7:3c:97:23:08:37:3b:1e:45:28:65:a9: bf:b5:81:1f:93:54:3d:f3:31:45:e3:22:87:9f:de:25:6b:fa: 96:bb:66:26:eb:9c:eb:ad:c5:2d:e4:01:2c:a2:bf:b2:4f:2e: e9:ac:e5:c5:53:1d:7a:c2:c8:a0:b2:05:3b:b4:e4:70:de:c9: 0a:2d:e6:37:bb:d0:fd:e4:16:43:85:dd:d0:c7:c1:c3:50:2f: da:da:d7:72:20:41:5c:88:68:3a:75:2b:ff:63:e7:17:8c:6f: 9f:f5:9f:53:95:2d:e4:42:b7:6b:07:0f:c2:6d:2b:4e:c9:ad: 5e:a4:83:ef:36:5c:63:df:bd:ff:9e:ff:64:d8:6b:aa:5a:85: 1e:61:73:9a:a5:8f:0d:eb:56:9e:a7:d8:4c:77:6c:62:57:48: c2:c9:8d:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4RUMxMTAvBgNVBAUTKDREQjNCMkUzNTk5QjY0NkU5RjMwQUY3NEE1OEM2Njc4 RkFGMUQyQjcwHhcNMjUwNjA1MDUxNTEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMjdlMS00NTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNR7Wf9Bz3yU5/9WsgkAkdyfgFvP7WcRwev35wasmlE1LxxNyaG6EFr089Ye hrAoYY9BQRg271ahEzH8yis9jH7XMtKks/ZWCLfhJTaSv2DR0cUCsqJ9iGjD89pc UvFduFhHCaXFrG8zSQ8rPPz1nh19T/OFPVH2mo6rCn0DaBdLVCz9XvlGEFFF2XdK nEP+RFIvXJfVYV7pLkPnf1rrAANsBirZJhGAdkRBYa8tPyKs9S9EUqIMP6fLypns xhpcEBLdjC57hpjlfDROxwaRNmzUCnGdta0Gq7MiStwf+CEhK6fXpQltLIAqodG4 JWTJwwB90sxxeKcEM35dMyyvWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFG2bfVz kUQHIzpKNeeRDa2fVUHJMB8GA1UdIwQYMBaAFE2zsuNZm2RunzCvdKWMZnj68dK3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OThFQy8zQThGODQxMDIx NDkxMUVGQkU4OENGMjlDNEY5QUUwMi9UYk95NDFtYlpHNmZNSzkwcFl4bWVQcngw cmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RiT3k0MW1iWkc2Zk1LOTBwWXhtZVByeDByYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk4RUMvM0E4Rjg0MTAyMTQ5MTFFRkJFODhDRjI5QzRGOUFFMDIvRjJBOTBGNkE4 NkFFMTFFRjk5OURBRDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFiswDQYJKoZIhvcNAQELBQADggEBAGSkjPPSWy2P9HEF qMUR11p9b4/gtnJ75Q7b5Sk9tI96KAd3O3JndNmzVhojPKl0gfXMf1OlzYevF1kQ A+dpPOYM+XAuVqBlTLuqfGM4+3w+UNc+yU2wPZGJVs+YTvdO8Oc8lyMINzseRShl qb+1gR+TVD3zMUXjIoef3iVr+pa7ZibrnOutxS3kASyiv7JPLums5cVTHXrCyKCy BTu05HDeyQot5je70P3kFkOF3dDHwcNQL9ra13IgQVyIaDp1K/9j5xeMb5/1n1OV LeRCt2sHD8JtK07JrV6kg+82XGPfvf+e/2TYa6pahR5hc5qljw3rVp6n2Ex3bGJX SMLJjWo= -----END CERTIFICATE-----Generated at Tue Jun 17 06:17:44 2025 by rpki-client