$ rpki-client -vvf rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/731ABC30CB5A11EFBEE64062C4F9AE02.roa File: 731ABC30CB5A11EFBEE64062C4F9AE02.roa (raw, json) Hash identifier: Q1rZZ9iM/5ZnKcT/2gghzGKoj09HJfMAmvtogcokE8U= Subject key identifier: 36:5E:5C:C6:FD:8F:1A:C9:E1:70:58:D3:30:14:53:6B:AF:28:27:39 Certificate issuer: /CN=A91982B6/serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Certificate serial: 02 Authority key identifier: 39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/731ABC30CB5A11EFBEE64062C4F9AE02.roa Signing time: Sun 05 Jan 2025 11:44:41 +0000 ROA not before: Sun 05 Jan 2025 11:44:41 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 133446 IP address blocks: 160.250.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91982B6, serialNumber=390A3837ABA6912A2CF29E610DA49555DF2C6FA5 Validity Not Before: Jan 5 11:44:41 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677a70a9-076b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:47:27:8d:fd:cd:a0:b5:bf:7f:4f:54:44:1c: 76:01:c2:e7:95:a5:c0:e0:d1:5f:4a:3e:68:db:1e: 60:99:70:02:08:f1:84:ab:09:81:34:b8:ae:89:33: 08:62:05:31:5a:af:78:b6:fe:a9:45:87:c5:97:57: 37:b9:05:69:51:3d:26:ba:7b:05:4c:76:14:24:fc: ca:29:81:e7:30:cf:e4:50:09:7a:39:3c:10:e6:be: 8f:d8:08:e5:0e:fe:2c:de:60:76:1e:d5:df:98:ba: d4:d2:af:8b:c4:77:c1:c9:1c:78:62:39:c9:f3:73: 99:71:96:fd:db:c1:fc:3c:6b:a1:10:ee:64:c7:bf: 3e:9b:dc:77:99:67:61:8d:c7:c3:15:8b:0d:cb:e1: 62:b7:f2:84:20:96:e7:cf:a2:87:18:10:df:49:15: 03:c0:5e:82:d1:35:2d:7a:a3:ef:0e:3b:7c:2b:60: 83:2a:09:07:37:15:5e:a3:e6:6e:52:a5:c5:07:58: 81:5d:79:2b:3b:14:8b:13:4d:c2:e5:43:70:c6:67: b3:cc:39:fb:6d:bb:6a:62:98:24:2f:06:18:78:d9: d1:c4:50:2e:c9:e6:8e:34:c4:14:cf:b2:f6:a2:a0: 96:2a:ba:66:18:f0:2b:22:1e:c9:aa:17:0f:e7:64: 26:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5E:5C:C6:FD:8F:1A:C9:E1:70:58:D3:30:14:53:6B:AF:28:27:39 X509v3 Authority Key Identifier: keyid:39:0A:38:37:AB:A6:91:2A:2C:F2:9E:61:0D:A4:95:55:DF:2C:6F:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/OQo4N6umkSos8p5hDaSVVd8sb6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OQo4N6umkSos8p5hDaSVVd8sb6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91982B6/DE7E321ECB5911EF86915B61C4F9AE02/731ABC30CB5A11EFBEE64062C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.240.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:00:39:e6:12:6f:fb:90:90:a7:d4:35:0f:ed:eb:93:75:ec: fe:99:61:30:88:9e:5f:8b:ad:65:b3:91:e9:72:8e:fb:df:b1: 37:ba:40:3d:7e:ef:d2:d2:89:1c:c3:be:05:1f:5d:9c:39:83: cd:4b:3e:82:65:a3:5d:e8:1d:70:74:a7:3f:0a:0c:eb:89:e9: 9c:a3:64:54:f8:52:b8:19:ed:46:81:66:40:53:5f:70:47:2b: f8:bc:86:2b:97:6c:98:db:77:4d:65:9b:6f:6d:e6:b8:56:31: ad:3d:ea:99:f6:27:4d:dc:29:b2:d6:32:f5:2f:2f:77:c7:0b: 51:dd:c1:c7:f4:67:81:b2:ae:42:8a:f7:a9:0a:5c:bc:94:e9: 86:2a:1b:40:fc:9c:32:47:ed:79:47:20:c3:13:48:42:fe:0f: 46:2e:7c:5b:3e:e6:6c:5f:80:d0:92:94:2b:af:23:00:0d:26: 39:e2:ab:fb:ad:b6:15:a4:59:b8:c4:bd:a9:91:20:ee:16:2a: 3c:78:06:20:4c:41:a1:ed:d5:96:c6:45:af:c3:5d:7e:f4:18: d9:b3:ca:21:3f:a9:2d:5c:ff:a1:ca:83:75:ad:91:6b:ad:76: 59:85:dc:88:d4:5f:0e:37:b7:e8:cb:c2:1e:67:ac:9d:b8:b6: b1:4d:f6:fa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODJCNjExMC8GA1UEBRMoMzkwQTM4MzdBQkE2OTEyQTJDRjI5RTYxMERBNDk1NTVE RjJDNkZBNTAeFw0yNTAxMDUxMTQ0NDFaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3N2E3MGE5LTA3NmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+RyeN/c2gtb9/T1REHHYBwueVpcDg0V9KPmjbHmCZcAII8YSrCYE0uK6JMwhi BTFar3i2/qlFh8WXVze5BWlRPSa6ewVMdhQk/Mopgecwz+RQCXo5PBDmvo/YCOUO /izeYHYe1d+YutTSr4vEd8HJHHhiOcnzc5lxlv3bwfw8a6EQ7mTHvz6b3HeZZ2GN x8MViw3L4WK38oQglufPoocYEN9JFQPAXoLRNS16o+8OO3wrYIMqCQc3FV6j5m5S pcUHWIFdeSs7FIsTTcLlQ3DGZ7PMOfttu2pimCQvBhh42dHEUC7J5o40xBTPsvai oJYqumYY8CsiHsmqFw/nZCZlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNl5cxv2P GsnhcFjTMBRTa68oJzkwHwYDVR0jBBgwFoAUOQo4N6umkSos8p5hDaSVVd8sb6Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4MkI2L0RFN0UzMjFFQ0I1 OTExRUY4NjkxNUI2MUM0RjlBRTAyL09RbzRONnVta1NvczhwNWhEYVNWVmQ4c2I2 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT1FvNE42dW1rU29zOHA1aERhU1ZWZDhzYjZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODJCNi9ERTdFMzIxRUNCNTkxMUVGODY5MTVCNjFDNEY5QUUwMi83MzFBQkMzMENC NUExMUVGQkVFNjQwNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD68DANBgkqhkiG9w0BAQsFAAOCAQEAXgA55hJv+5CQp9Q1 D+3rk3Xs/plhMIieX4utZbOR6XKO+9+xN7pAPX7v0tKJHMO+BR9dnDmDzUs+gmWj XegdcHSnPwoM64npnKNkVPhSuBntRoFmQFNfcEcr+LyGK5dsmNt3TWWbb23muFYx rT3qmfYnTdwpstYy9S8vd8cLUd3Bx/RngbKuQor3qQpcvJTphiobQPycMkfteUcg wxNIQv4PRi58Wz7mbF+A0JKUK68jAA0mOeKr+622FaRZuMS9qZEg7hYqPHgGIExB oe3VlsZFr8NdfvQY2bPKIT+pLVz/ocqDda2Ra612WYXciNRfDje36MvCHmesnbi2 sU32+g== -----END CERTIFICATE-----Generated at Sat Apr 26 13:07:23 2025 by rpki-client