$ rpki-client -vvf rpki.apnic.net/member_repository/A91879AC/60946CD6A80111EFA406753BC4F9AE02/F5BB256ECE9611EF97EBCF65C4F9AE02.roa File: F5BB256ECE9611EF97EBCF65C4F9AE02.roa (raw, json) Hash identifier: RrU3CkYFdXPh/xjxUTbpuTN6rb1MmkQpXUXbfG9JUVQ= Subject key identifier: 45:80:5C:76:E3:10:2A:E0:15:70:8A:C5:68:E0:F3:CA:E7:DD:12:B9 Certificate issuer: /CN=A91879AC/serialNumber=98CA494DF69DEDF616E41D059A14E7F6879CDFB3 Certificate serial: 1E Authority key identifier: 98:CA:49:4D:F6:9D:ED:F6:16:E4:1D:05:9A:14:E7:F6:87:9C:DF:B3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mMpJTfad7fYW5B0FmhTn9oec37M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91879AC/60946CD6A80111EFA406753BC4F9AE02/F5BB256ECE9611EF97EBCF65C4F9AE02.roa Signing time: Thu 09 Jan 2025 14:35:24 +0000 ROA not before: Thu 09 Jan 2025 14:35:24 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135341 IP address blocks: 160.187.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91879AC/60946CD6A80111EFA406753BC4F9AE02/mMpJTfad7fYW5B0FmhTn9oec37M.crl rsync://rpki.apnic.net/member_repository/A91879AC/60946CD6A80111EFA406753BC4F9AE02/mMpJTfad7fYW5B0FmhTn9oec37M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mMpJTfad7fYW5B0FmhTn9oec37M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91879AC, serialNumber=98CA494DF69DEDF616E41D059A14E7F6879CDFB3 Validity Not Before: Jan 9 14:35:24 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=677fdeab-5c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:31:bf:55:b0:5a:89:27:0c:d1:9e:ca:b7:b5: 6a:e7:91:f3:ce:11:38:89:e3:9e:cf:18:ef:9e:fe: c0:89:94:5a:f6:d8:b7:40:1e:55:48:7e:c4:3b:cb: 9a:19:b2:18:9d:a1:e3:fe:cb:ea:48:f7:b8:5e:ba: fe:d8:d6:46:2a:1c:90:62:34:a0:8f:52:32:e5:6c: 0f:6d:a8:fd:9d:73:93:66:88:4a:27:73:dc:19:15: 75:25:18:14:78:ec:41:9f:08:9f:7a:9c:45:51:17: 93:cf:0e:78:a1:56:46:b7:8b:3f:6c:75:69:58:43: 6d:d6:f1:82:86:94:f3:8f:65:b8:25:07:dd:68:54: 14:da:41:29:40:e4:2e:b8:2c:6b:fd:35:4e:f6:f1: 55:38:6e:3c:f6:db:7f:5e:4c:3d:5a:3c:d2:ad:69: 20:0e:25:0d:94:9c:81:46:c6:ba:84:e6:1d:a4:e6: 8f:20:cf:2d:2c:30:08:96:3e:d7:57:89:77:65:f2: 55:eb:fa:e3:a6:52:57:25:60:10:df:e6:79:ca:20: 52:d4:cd:46:5e:25:11:cf:98:3e:c9:2d:49:89:a5: 81:9c:64:a9:a3:8c:8c:64:cd:56:85:ea:c9:71:d7: 66:e7:5a:5d:83:b7:60:71:f4:5a:b4:06:65:a9:0c: e1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:80:5C:76:E3:10:2A:E0:15:70:8A:C5:68:E0:F3:CA:E7:DD:12:B9 X509v3 Authority Key Identifier: keyid:98:CA:49:4D:F6:9D:ED:F6:16:E4:1D:05:9A:14:E7:F6:87:9C:DF:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91879AC/60946CD6A80111EFA406753BC4F9AE02/mMpJTfad7fYW5B0FmhTn9oec37M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mMpJTfad7fYW5B0FmhTn9oec37M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91879AC/60946CD6A80111EFA406753BC4F9AE02/F5BB256ECE9611EF97EBCF65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.108.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:41:53:fa:3b:41:7a:aa:64:7b:3a:92:61:c9:17:56:81:68: a2:fe:4f:25:b5:ed:44:3f:4d:7e:4c:de:dd:d6:cd:3c:bc:f2: da:7d:14:3f:76:9c:a0:d9:8c:12:a9:b7:57:16:c6:29:6b:bc: a2:35:87:48:39:57:72:58:3f:9d:47:fb:31:35:b7:09:2b:8d: bb:bc:88:9f:68:33:85:8f:7f:69:9c:dd:66:1f:7b:ee:18:20: d3:03:5b:89:8a:fc:82:54:40:cb:e9:61:ff:4a:a2:1f:53:37: 9e:d7:2d:17:91:3d:35:40:4a:40:c0:60:e4:e7:33:eb:46:fe: 5e:4f:85:9f:3b:36:e1:23:d7:46:ff:44:3a:f8:48:af:54:2f: f0:c2:de:4a:b4:18:03:3a:59:e6:60:f1:dc:95:46:e4:3e:62: 07:84:65:73:4e:6e:7d:56:c6:91:be:84:95:20:f0:de:55:b1: ea:0e:32:d9:14:f8:80:0d:87:9b:09:22:4e:e9:5a:c1:38:99: 57:32:39:23:ed:68:d4:4a:05:73:0a:da:b4:7f:e4:8b:84:3a: c4:9c:41:ec:8d:a6:43:78:64:e8:d6:9f:8a:40:29:d6:54:a0: f5:35:f7:92:1a:04:1c:57:7c:96:42:e1:50:69:be:ce:09:68: bc:df:93:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzlBQzExMC8GA1UEBRMoOThDQTQ5NERGNjlERURGNjE2RTQxRDA1OUExNEU3RjY4 NzlDREZCMzAeFw0yNTAxMDkxNDM1MjRaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2ZkZWFiLTVjNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzMb9VsFqJJwzRnsq3tWrnkfPOETiJ457PGO+e/sCJlFr22LdAHlVIfsQ7y5oZ shidoeP+y+pI97heuv7Y1kYqHJBiNKCPUjLlbA9tqP2dc5NmiEonc9wZFXUlGBR4 7EGfCJ96nEVRF5PPDnihVka3iz9sdWlYQ23W8YKGlPOPZbglB91oVBTaQSlA5C64 LGv9NU728VU4bjz2239eTD1aPNKtaSAOJQ2UnIFGxrqE5h2k5o8gzy0sMAiWPtdX iXdl8lXr+uOmUlclYBDf5nnKIFLUzUZeJRHPmD7JLUmJpYGcZKmjjIxkzVaF6slx 12bnWl2Dt2Bx9Fq0BmWpDOG7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURYBcduMQ KuAVcIrFaODzyufdErkwHwYDVR0jBBgwFoAUmMpJTfad7fYW5B0FmhTn9oec37Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3OUFDLzYwOTQ2Q0Q2QTgw MTExRUZBNDA2NzUzQkM0RjlBRTAyL21NcEpUZmFkN2ZZVzVCMEZtaFRuOW9lYzM3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbU1wSlRmYWQ3ZllXNUIwRm1oVG45b2VjMzdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzlBQy82MDk0NkNENkE4MDExMUVGQTQwNjc1M0JDNEY5QUUwMi9GNUJCMjU2RUNF OTYxMUVGOTdFQkNGNjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC7bDANBgkqhkiG9w0BAQsFAAOCAQEAikFT+jtBeqpkezqS YckXVoFoov5PJbXtRD9Nfkze3dbNPLzy2n0UP3acoNmMEqm3VxbGKWu8ojWHSDlX clg/nUf7MTW3CSuNu7yIn2gzhY9/aZzdZh977hgg0wNbiYr8glRAy+lh/0qiH1M3 ntctF5E9NUBKQMBg5Ocz60b+Xk+Fnzs24SPXRv9EOvhIr1Qv8MLeSrQYAzpZ5mDx 3JVG5D5iB4Rlc05ufVbGkb6ElSDw3lWx6g4y2RT4gA2HmwkiTulawTiZVzI5I+1o 1EoFcwratH/ki4Q6xJxB7I2mQ3hk6NafikAp1lSg9TX3khoEHFd8lkLhUGm+zglo vN+TgA== -----END CERTIFICATE-----Generated at Sat Apr 26 12:36:31 2025 by rpki-client