$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa File: 2F4FE7325B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: 3s8uH3WU7dVuraPTfGSJqzavBun+DYBh7A5A+AUgQFo= Subject key identifier: C4:40:EF:36:EE:8A:76:16:52:B0:67:3B:0D:B0:EB:06:C7:FC:E2:B9 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 0231 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa Signing time: Mon 31 Mar 2025 01:59:06 +0000 ROA not before: Mon 31 Mar 2025 01:59:06 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 65501 IP address blocks: 140.168.244.0/22 maxlen: 22 140.168.244.0/24 maxlen: 24 140.168.245.0/24 maxlen: 24 140.168.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 561 (0x231) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Mar 31 01:59:06 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67e9f6e9-ac8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:6d:87:76:de:2a:6d:e1:01:27:0f:5c:f3:9c: ce:7c:dc:e3:64:1d:01:ca:93:29:d0:98:1b:b5:e1: 91:a7:35:17:b8:11:fb:2a:2a:11:f9:1b:93:d2:0e: d9:69:ff:52:ce:1b:8b:87:86:19:bb:89:e0:56:ad: 21:6f:d9:9e:36:c7:b6:5a:72:54:8c:59:d5:74:ac: c7:6c:63:97:97:20:d1:1c:23:6a:4f:ec:2a:8d:23: 34:88:f5:6d:51:5d:d0:e8:d9:d9:6a:1d:13:74:dc: 71:f3:19:ff:88:15:b3:47:f6:ba:e3:91:af:59:c4: ee:96:f9:c3:50:13:2f:31:f8:0b:ad:ab:df:4a:90: 75:a6:b2:36:0c:1f:a6:f0:fa:8c:92:ea:72:4f:32: ce:2b:b6:31:47:80:96:3d:3f:2b:14:70:67:61:77: 3a:08:e8:9f:a3:81:0f:6c:5d:02:c4:a7:a2:a5:80: 3c:8c:e4:be:d2:d5:7e:ff:82:e5:db:42:24:ec:84: f8:d5:4f:39:44:04:9a:84:89:40:78:f5:4a:41:89: b2:dd:72:c3:2f:ff:a4:ce:e2:28:09:13:2e:92:d5: 15:b5:69:29:31:33:e4:57:87:af:ec:bb:e7:fc:bd: 08:e0:0f:4a:ce:92:b6:10:92:d5:85:26:e7:f6:2b: 96:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:40:EF:36:EE:8A:76:16:52:B0:67:3B:0D:B0:EB:06:C7:FC:E2:B9 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.244.0/22 Signature Algorithm: sha256WithRSAEncryption a2:0b:15:49:f1:1f:b8:3e:d6:14:91:34:d1:c7:08:28:7d:ff: 63:86:f9:01:d9:69:49:84:cc:0f:da:2b:2c:ea:87:d1:3f:58: 71:11:34:e9:42:1b:ee:84:37:ac:98:03:b1:ec:16:1f:48:cc: bf:a8:ba:cc:4f:b4:8c:3b:ad:23:85:ed:73:8b:9e:e8:c7:90: 0a:48:7e:d1:8f:d5:5f:d8:c2:29:94:7c:cd:59:2c:b3:1c:3b: dc:9b:22:c7:85:07:8a:b8:cb:98:ea:14:61:87:65:54:c9:e9: ab:79:bb:59:ed:6d:98:73:92:0e:81:ce:ce:f6:a6:9b:c2:ec: 69:92:89:f9:01:74:15:f0:fb:90:f5:52:14:1a:f7:bf:7e:7e: 06:1d:24:01:de:04:ce:81:d4:0d:05:3f:74:bb:8b:77:bc:f3: 6c:69:b7:42:19:68:68:4d:0a:ae:52:e6:59:cf:27:66:4b:b9: f5:05:86:0a:56:0c:21:17:30:62:d2:a5:d7:bd:1e:f1:1a:7d: 04:d2:32:cf:1d:00:4e:90:6a:d2:74:f5:18:ac:54:dc:fd:db: b2:5e:fa:fc:09:d3:3e:d6:50:ec:3a:d0:36:67:c8:ca:6b:ed: d8:4f:a5:32:f8:a3:1d:01:af:7c:63:65:2e:fb:2b:26:1b:a0: 10:8e:3e:95 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUwMzMxMDE1OTA2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5ZjZlOS1hYzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApW2Hdt4qbeEBJw9c85zOfNzjZB0BypMp0JgbteGRpzUXuBH7KioR+RuT0g7Z af9SzhuLh4YZu4ngVq0hb9meNse2WnJUjFnVdKzHbGOXlyDRHCNqT+wqjSM0iPVt UV3Q6NnZah0TdNxx8xn/iBWzR/a645GvWcTulvnDUBMvMfgLravfSpB1prI2DB+m 8PqMkupyTzLOK7YxR4CWPT8rFHBnYXc6COifo4EPbF0CxKeipYA8jOS+0tV+/4Ll 20Ik7IT41U85RASahIlAePVKQYmy3XLDL/+kzuIoCRMuktUVtWkpMTPkV4ev7Lvn /L0I4A9KzpK2EJLVhSbn9iuWNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMRA7zbu inYWUrBnOw2w6wbH/OK5MB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkY0RkU3MzI1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKMqPQwDQYJKoZIhvcNAQELBQADggEBAKILFUnxH7g+1hSR NNHHCCh9/2OG+QHZaUmEzA/aKyzqh9E/WHERNOlCG+6EN6yYA7HsFh9IzL+ousxP tIw7rSOF7XOLnujHkApIftGP1V/YwimUfM1ZLLMcO9ybIseFB4q4y5jqFGGHZVTJ 6at5u1ntbZhzkg6Bzs72ppvC7GmSifkBdBXw+5D1UhQa979+fgYdJAHeBM6B1A0F P3S7i3e882xpt0IZaGhNCq5S5lnPJ2ZLufUFhgpWDCEXMGLSpde9HvEafQTSMs8d AE6QatJ09RisVNz927Je+vwJ0z7WUOw60DZnyMpr7dhPpTL4ox0Br3xjZS77KyYb oBCOPpU= -----END CERTIFICATE-----Generated at Sat Apr 26 13:57:10 2025 by rpki-client