$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1DF09E5E240211F0AEB8FC4DC4F9AE02.roa File: 1DF09E5E240211F0AEB8FC4DC4F9AE02.roa (raw, json) Hash identifier: cK16m/XyuLWH+QK+UGKFhZQ3XAAU8+ldM+C4g58KnN8= Subject key identifier: 0B:A3:D8:A3:01:DF:C6:3D:7D:F0:B6:94:38:A9:FD:05:9F:0D:52:C5 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4A9C Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1DF09E5E240211F0AEB8FC4DC4F9AE02.roa Signing time: Mon 28 Apr 2025 07:26:36 +0000 ROA not before: Mon 28 Apr 2025 07:26:36 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153650 IP address blocks: 163.223.10.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 05 May 2025 14:37:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19100 (0x4a9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Apr 28 07:26:36 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=680f2dac-5a7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:26:f0:74:e0:60:5c:8e:9e:94:07:9c:58:5d: e7:dd:45:60:85:c0:69:f0:b0:4e:3f:c3:0c:da:16: 19:fc:8c:2d:08:54:68:37:fd:0d:fe:e1:c2:5b:a0: 91:11:4c:a6:f7:f6:20:05:d8:d1:85:1f:bc:59:42: c3:64:70:d9:2d:46:9b:fa:a8:1c:af:00:89:d2:5d: 89:c6:9b:d5:37:ee:2e:bf:2f:07:ae:e2:37:a2:66: a5:16:ef:99:89:3c:52:ea:a5:89:0a:e4:3e:69:41: 55:2a:6f:6c:ee:a5:31:ff:15:5a:f1:13:fa:91:a6: 1c:bf:45:6c:54:71:3b:46:02:7d:f9:ee:c8:4d:e0: 35:6b:f9:cc:1e:16:28:5c:05:97:c3:e4:ba:95:0a: 99:24:52:ee:dc:7b:ba:8a:c3:89:73:a3:40:ae:fc: 7c:fd:d6:eb:7c:4e:7b:e4:20:ce:f0:6d:b7:f0:84: 65:18:11:b6:51:f2:fa:21:cb:f3:bb:f5:1f:bb:e2: 9a:38:82:14:cc:eb:97:0c:ae:2e:74:50:ed:17:de: 03:d5:68:21:4b:1c:1f:f6:31:b9:0e:ec:1d:5c:a4: 19:44:6e:7a:c5:f2:d7:87:eb:1d:9a:22:46:30:31: a2:22:f6:57:af:1a:12:c3:f2:2a:c2:b1:10:2e:c4: 50:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A3:D8:A3:01:DF:C6:3D:7D:F0:B6:94:38:A9:FD:05:9F:0D:52:C5 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1DF09E5E240211F0AEB8FC4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.10.0/23 Signature Algorithm: sha256WithRSAEncryption 95:54:85:d0:28:36:7b:93:5f:ea:97:d3:6e:2e:49:6b:2d:70: ad:70:20:5e:f0:fd:7b:6f:60:d6:e0:73:bd:da:6c:bc:52:4a: e3:34:e5:6d:c5:50:b8:89:2b:35:04:54:db:e3:c6:e1:a3:ac: 17:41:5d:65:81:94:96:ef:2b:71:d5:6a:e1:d1:32:93:66:69: 25:27:5b:09:75:95:54:61:01:e9:81:9d:e3:22:34:37:56:07: f3:92:86:c0:26:19:c6:14:6c:be:8e:d3:22:44:e9:5c:99:1b: be:fa:da:ae:07:1e:2a:d9:e0:35:a7:b1:e0:e5:fe:16:48:b7: ee:0d:76:69:f0:cd:5c:1a:17:f3:68:ce:50:2f:64:78:96:b9: 7c:c0:c1:de:61:bf:82:d5:05:1b:75:30:e7:4b:81:e6:80:65: 55:48:a7:f6:74:da:e9:11:a6:5e:3e:e8:73:b6:2a:d0:ad:fb: e0:cd:b8:cf:4e:9e:5c:4d:6a:71:ce:82:94:d6:58:05:11:95: b3:73:fa:33:17:99:62:e9:18:a3:e2:5e:8a:bc:dd:8c:03:f2: 22:1c:e8:4c:f2:c5:27:45:2e:19:bf:a3:75:b4:fb:89:90:83: bc:1c:b0:9a:d6:30:c8:04:17:16:80:ac:53:e5:96:9f:49:20: e3:75:84:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICSpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwNDI4MDcyNjM2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmMmRhYy01YTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuibwdOBgXI6elAecWF3n3UVghcBp8LBOP8MM2hYZ/IwtCFRoN/0N/uHCW6CR EUym9/YgBdjRhR+8WULDZHDZLUab+qgcrwCJ0l2JxpvVN+4uvy8HruI3omalFu+Z iTxS6qWJCuQ+aUFVKm9s7qUx/xVa8RP6kaYcv0VsVHE7RgJ9+e7ITeA1a/nMHhYo XAWXw+S6lQqZJFLu3Hu6isOJc6NArvx8/dbrfE575CDO8G238IRlGBG2UfL6Icvz u/Ufu+KaOIIUzOuXDK4udFDtF94D1WghSxwf9jG5DuwdXKQZRG56xfLXh+sdmiJG MDGiIvZXrxoSw/IqwrEQLsRQFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAuj2KMB 38Y9ffC2lDip/QWfDVLFMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMURGMDlFNUUy NDAyMTFGMEFFQjhGQzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGj3wowDQYJKoZIhvcNAQELBQADggEBAJVUhdAoNnuTX+qX 024uSWstcK1wIF7w/XtvYNbgc73abLxSSuM05W3FULiJKzUEVNvjxuGjrBdBXWWB lJbvK3HVauHRMpNmaSUnWwl1lVRhAemBneMiNDdWB/OShsAmGcYUbL6O0yJE6VyZ G7762q4HHirZ4DWnseDl/hZIt+4NdmnwzVwaF/NozlAvZHiWuXzAwd5hv4LVBRt1 MOdLgeaAZVVIp/Z02ukRpl4+6HO2KtCt++DNuM9OnlxNanHOgpTWWAURlbNz+jMX mWLpGKPiXoq83YwD8iIc6EzyxSdFLhm/o3W0+4mQg7wcsJrWMMgEFxaArFPllp9J ION1hIc= -----END CERTIFICATE-----Generated at Tue Apr 29 12:47:46 2025 by rpki-client