$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2E926DC45B7C11EDAAFAB831C4F9AE02.roa File: 2E926DC45B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: 4S6+TvvIlZFl5lZcA3CsU31FWGChPr43XTz66P+tqmo= Subject key identifier: 6A:94:77:1A:DF:02:51:16:CE:AD:E0:B4:7F:14:02:76:29:85:23:03 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 0230 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2E926DC45B7C11EDAAFAB831C4F9AE02.roa Signing time: Mon 31 Mar 2025 01:59:05 +0000 ROA not before: Mon 31 Mar 2025 01:59:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 45867 IP address blocks: 140.168.64.0/18 maxlen: 19 140.168.66.0/24 maxlen: 24 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.80.0/24 maxlen: 24 140.168.81.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.128.0/18 maxlen: 19 140.168.135.0/24 maxlen: 24 140.168.138.0/24 maxlen: 24 140.168.139.0/24 maxlen: 24 140.168.166.0/24 maxlen: 24 140.168.236.0/22 maxlen: 24 140.168.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Mar 31 01:59:05 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67e9f6e9-c207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:36:96:b1:3c:d8:5f:bf:0a:5e:1c:95:04:43: b2:fe:bd:c3:24:65:e8:77:e4:82:0e:15:1d:e6:87: 3a:6c:16:c3:5a:db:37:c2:5e:d9:ca:18:d9:36:dd: e9:b8:f6:73:cf:24:2a:f6:48:6c:12:bf:76:67:bf: bb:2c:57:a4:7a:91:47:db:20:ac:8f:03:f1:13:e5: c2:d0:2c:a0:be:b8:59:5c:0e:30:24:f6:36:7c:34: 8e:11:57:29:50:b7:04:0b:1c:08:08:0d:8f:55:b8: 78:4a:f3:f3:49:cc:54:23:58:d3:74:c7:54:f3:53: 70:50:3e:88:fc:bb:ac:a8:a9:f3:fe:51:22:c7:2f: cb:b6:85:a5:65:c2:79:2e:95:a7:07:b1:9e:4c:b0: 85:da:82:46:7b:a9:6f:87:db:bf:a1:16:fd:96:3d: fe:d5:8c:b5:09:7a:f3:c4:5e:0d:2c:49:4f:b4:c2: b7:57:a2:6e:7f:e8:60:54:ba:53:0c:a9:c7:39:48: f3:b0:f9:79:da:d7:c6:30:5a:19:80:8c:72:37:38: b7:3e:03:9b:4e:52:99:70:0f:16:65:1e:a4:aa:5d: d3:11:e3:89:a7:05:3e:cd:da:d0:3b:16:f6:4e:1c: f7:d1:b9:1e:b0:fc:4c:bd:ee:61:88:51:46:a7:c1: 35:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:94:77:1A:DF:02:51:16:CE:AD:E0:B4:7F:14:02:76:29:85:23:03 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2E926DC45B7C11EDAAFAB831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.64.0-140.168.191.255 140.168.236.0/22 140.168.250.0/24 Signature Algorithm: sha256WithRSAEncryption 74:94:f1:43:18:c4:ba:1c:2a:4b:89:f6:d6:93:4a:67:36:a8: 9a:40:0c:c1:c1:db:e1:46:41:07:8a:2f:48:85:0b:0f:99:8b: d5:3b:f3:34:c3:b4:66:fb:7c:aa:1f:01:42:53:2f:37:f0:43: 9e:78:70:18:b5:a2:38:7c:29:44:43:c9:35:56:ac:39:c1:f7: a8:ae:2e:11:21:d6:3a:df:39:6c:cb:3d:49:03:93:6a:74:42: ad:f5:33:dc:41:ac:cb:a5:16:ea:fb:5d:2c:ff:ec:5c:f7:20: 2d:2b:f8:b5:21:7d:c9:f0:f4:32:d6:5b:99:8d:0a:d6:e9:5d: 1d:08:83:23:90:60:e3:b1:f9:f4:d1:8c:e8:b4:64:65:72:c4: 70:19:09:1f:c3:7e:ec:93:a2:2b:a8:b5:f6:a9:a6:62:ed:b2: a6:d2:0d:25:9e:0f:9b:ac:ae:60:bc:34:4a:72:aa:98:22:9e: 4f:bd:72:9c:d6:76:c5:7c:be:63:81:1d:90:e7:db:5d:c5:ff: 92:8b:28:96:ff:8a:78:cf:87:e9:c1:cf:02:11:d1:7b:40:d8: 09:be:de:31:36:2f:00:ef:ba:6d:3d:e4:e0:2d:b2:04:57:e9: af:d1:45:bb:2f:9a:1d:fb:63:3a:21:ff:1d:e7:87:4f:73:ac: 53:cf:9a:8e -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUwMzMxMDE1OTA1WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5ZjZlOS1jMjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAujaWsTzYX78KXhyVBEOy/r3DJGXod+SCDhUd5oc6bBbDWts3wl7ZyhjZNt3p uPZzzyQq9khsEr92Z7+7LFekepFH2yCsjwPxE+XC0CygvrhZXA4wJPY2fDSOEVcp ULcECxwICA2PVbh4SvPzScxUI1jTdMdU81NwUD6I/LusqKnz/lEixy/LtoWlZcJ5 LpWnB7GeTLCF2oJGe6lvh9u/oRb9lj3+1Yy1CXrzxF4NLElPtMK3V6Juf+hgVLpT DKnHOUjzsPl52tfGMFoZgIxyNzi3PgObTlKZcA8WZR6kql3TEeOJpwU+zdrQOxb2 Thz30bkesPxMve5hiFFGp8E1TwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFGqUdxrf AlEWzq3gtH8UAnYphSMDMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkU5MjZEQzQ1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEBoyoQAMEBoyogAMEAoyo7AMEAIyo+jANBgkqhkiG9w0B AQsFAAOCAQEAdJTxQxjEuhwqS4n21pNKZzaomkAMwcHb4UZBB4ovSIULD5mL1Tvz NMO0Zvt8qh8BQlMvN/BDnnhwGLWiOHwpREPJNVasOcH3qK4uESHWOt85bMs9SQOT anRCrfUz3EGsy6UW6vtdLP/sXPcgLSv4tSF9yfD0MtZbmY0K1uldHQiDI5Bg47H5 9NGM6LRkZXLEcBkJH8N+7JOiK6i19qmmYu2yptINJZ4Pm6yuYLw0SnKqmCKeT71y nNZ2xXy+Y4EdkOfbXcX/kosolv+KeM+H6cHPAhHRe0DYCb7eMTYvAO+6bT3k4C2y BFfpr9FFuy+aHftjOiH/HeeHT3OsU8+ajg== -----END CERTIFICATE-----Generated at Sat Apr 26 12:25:31 2025 by rpki-client