$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA618/E6F66DD2BEC311EFAFDC1D29C4F9AE02/1C236FDEE51411EFA6CE3C1EC4F9AE02.roa File: 1C236FDEE51411EFA6CE3C1EC4F9AE02.roa (raw, json) Hash identifier: 6QazPAViDz/vpoTr8YQep/2te+BhGM7kc2XHX85fKFE= Subject key identifier: DC:56:B3:4C:D7:93:66:D6:08:65:D1:9E:86:22:28:6F:A7:86:16:8D Certificate issuer: /CN=A91AA618/serialNumber=C13A8ABD57043AAFA58F5853BE2FABCA9F26F0ED Certificate serial: 24 Authority key identifier: C1:3A:8A:BD:57:04:3A:AF:A5:8F:58:53:BE:2F:AB:CA:9F:26:F0:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wTqKvVcEOq-lj1hTvi-ryp8m8O0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA618/E6F66DD2BEC311EFAFDC1D29C4F9AE02/1C236FDEE51411EFA6CE3C1EC4F9AE02.roa Signing time: Fri 07 Feb 2025 06:32:12 +0000 ROA not before: Fri 07 Feb 2025 06:32:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139922 IP address blocks: 160.250.254.0/23 maxlen: 23 160.250.254.0/24 maxlen: 24 160.250.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA618/E6F66DD2BEC311EFAFDC1D29C4F9AE02/wTqKvVcEOq-lj1hTvi-ryp8m8O0.crl rsync://rpki.apnic.net/member_repository/A91AA618/E6F66DD2BEC311EFAFDC1D29C4F9AE02/wTqKvVcEOq-lj1hTvi-ryp8m8O0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wTqKvVcEOq-lj1hTvi-ryp8m8O0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA618, serialNumber=C13A8ABD57043AAFA58F5853BE2FABCA9F26F0ED Validity Not Before: Feb 7 06:32:12 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=67a5a8ec-bda8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:df:6c:f1:ff:0c:3c:ea:fb:b6:4d:05:c0:11: 94:35:19:6b:43:71:3a:15:c3:8a:bf:4a:2c:e4:3f: 08:2c:7b:0c:ca:91:05:ce:1c:3a:fb:6b:81:2c:ab: ec:03:f8:c6:20:a2:80:eb:c3:91:f2:05:38:a4:78: 22:c5:10:7a:89:5c:14:db:1f:a2:3f:d3:7c:f7:17: d9:a6:3e:e9:00:e7:f8:1d:6a:a1:49:58:3b:19:ee: da:79:94:cb:bc:4e:cd:7e:ef:fd:09:33:0c:f4:9e: cc:e6:a6:22:7b:d9:5e:8e:fc:2c:f5:76:23:56:7f: 96:4d:0e:d5:47:3d:35:ce:74:83:b1:8c:1e:c6:e5: 10:a9:83:ea:5b:5d:8e:3a:b4:53:a5:a0:b0:83:68: 1b:7a:bf:5a:76:b3:cb:14:6b:a6:78:36:0f:a3:5c: 7e:4b:64:ee:a6:cb:e9:1c:a9:81:c4:8f:d9:67:1d: 78:62:a3:50:05:5c:ab:6b:14:3e:d1:0b:83:ef:51: c2:3c:78:0b:bf:65:f1:d4:8e:c4:cb:55:11:78:8c: 35:87:85:b1:89:b9:a2:59:af:38:38:cb:e2:eb:ad: b6:09:0e:dc:3a:3d:f1:5e:bd:50:ae:8d:d6:2c:04: d6:f3:55:b4:6b:e0:ff:dc:22:59:a2:5f:39:b0:ad: 24:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:56:B3:4C:D7:93:66:D6:08:65:D1:9E:86:22:28:6F:A7:86:16:8D X509v3 Authority Key Identifier: keyid:C1:3A:8A:BD:57:04:3A:AF:A5:8F:58:53:BE:2F:AB:CA:9F:26:F0:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA618/E6F66DD2BEC311EFAFDC1D29C4F9AE02/wTqKvVcEOq-lj1hTvi-ryp8m8O0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wTqKvVcEOq-lj1hTvi-ryp8m8O0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA618/E6F66DD2BEC311EFAFDC1D29C4F9AE02/1C236FDEE51411EFA6CE3C1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.254.0/23 Signature Algorithm: sha256WithRSAEncryption 05:cf:4c:53:4b:cb:a3:99:3f:e8:6c:fd:09:6e:6f:0e:5c:61: d0:f5:f5:da:38:d3:74:39:91:84:11:6a:b0:13:a9:63:c8:0e: 19:8e:94:53:07:2a:d2:b2:70:6e:e6:3d:2f:84:c3:47:79:0c: 34:a5:96:fe:cb:29:a0:58:28:65:dd:67:70:b6:69:e3:72:bf: 9b:8e:e0:0c:bc:f0:b5:fc:cc:f3:e4:20:78:53:82:71:b2:a6: eb:0f:e1:8c:4f:ce:25:8e:b9:e9:88:45:4b:e3:73:70:a1:29: 12:a3:79:d4:c9:8c:7a:94:c2:7a:f1:22:04:17:15:1f:e8:45: d1:b9:1d:9e:0c:20:46:f8:b4:0f:9c:4f:46:16:cc:ef:66:76: 97:ac:8f:1c:c0:3d:fa:b7:20:52:66:64:9c:0d:2a:fb:60:24: 75:f9:0a:da:b1:27:97:a4:4e:f4:8a:42:98:c3:af:7e:51:89: b7:db:2e:47:5a:62:8e:8a:93:e2:48:aa:1d:6d:2d:06:13:ba: 57:a0:e5:80:a7:55:0c:d7:a6:c6:5d:06:39:38:9d:5f:3f:e9: d7:f7:9a:82:c7:7f:cf:b7:60:c6:b9:3f:af:09:bf:db:b8:45: 55:6a:93:b9:fe:80:d4:70:f1:e5:43:75:45:f3:76:33:81:da: b6:eb:17:78 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QTYxODExMC8GA1UEBRMoQzEzQThBQkQ1NzA0M0FBRkE1OEY1ODUzQkUyRkFCQ0E5 RjI2RjBFRDAeFw0yNTAyMDcwNjMyMTJaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTVhOGVjLWJkYTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDD32zx/ww86vu2TQXAEZQ1GWtDcToVw4q/SizkPwgsewzKkQXOHDr7a4Esq+wD +MYgooDrw5HyBTikeCLFEHqJXBTbH6I/03z3F9mmPukA5/gdaqFJWDsZ7tp5lMu8 Ts1+7/0JMwz0nszmpiJ72V6O/Cz1diNWf5ZNDtVHPTXOdIOxjB7G5RCpg+pbXY46 tFOloLCDaBt6v1p2s8sUa6Z4Ng+jXH5LZO6my+kcqYHEj9lnHXhio1AFXKtrFD7R C4PvUcI8eAu/ZfHUjsTLVRF4jDWHhbGJuaJZrzg4y+LrrbYJDtw6PfFevVCujdYs BNbzVbRr4P/cIlmiXzmwrSSXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3FazTNeT ZtYIZdGehiIob6eGFo0wHwYDVR0jBBgwFoAUwTqKvVcEOq+lj1hTvi+ryp8m8O0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFBNjE4L0U2RjY2REQyQkVD MzExRUZBRkRDMUQyOUM0RjlBRTAyL3dUcUt2VmNFT3EtbGoxaFR2aS1yeXA4bThP MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd1RxS3ZWY0VPcS1sajFoVHZpLXJ5cDhtOE8wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTYxOC9FNkY2NkREMkJFQzMxMUVGQUZEQzFEMjlDNEY5QUUwMi8xQzIzNkZERUU1 MTQxMUVGQTZDRTNDMUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6/jANBgkqhkiG9w0BAQsFAAOCAQEABc9MU0vLo5k/6Gz9 CW5vDlxh0PX12jjTdDmRhBFqsBOpY8gOGY6UUwcq0rJwbuY9L4TDR3kMNKWW/ssp oFgoZd1ncLZp43K/m47gDLzwtfzM8+QgeFOCcbKm6w/hjE/OJY656YhFS+NzcKEp EqN51MmMepTCevEiBBcVH+hF0bkdngwgRvi0D5xPRhbM72Z2l6yPHMA9+rcgUmZk nA0q+2AkdfkK2rEnl6RO9IpCmMOvflGJt9suR1pijoqT4kiqHW0tBhO6V6DlgKdV DNemxl0GOTidXz/p1/eagsd/z7dgxrk/rwm/27hFVWqTuf6A1HDx5UN1RfN2M4Ha tusXeA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:55:52 2025 by rpki-client