$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa File: 2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: yyzsnoKe2xrHXVjufeheWpYqsGoX6iG/JlHj0H/JHAE= Subject key identifier: 02:F9:2A:DF:5A:90:AA:64:31:71:BE:D0:92:05:B9:E5:BD:1B:98:49 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 0232 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa Signing time: Mon 31 Mar 2025 01:59:07 +0000 ROA not before: Mon 31 Mar 2025 01:59:07 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 65510 IP address blocks: 140.168.64.0/19 maxlen: 19 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 01:54:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 562 (0x232) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Mar 31 01:59:07 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67e9f6ea-ee8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:80:30:79:7b:2e:64:ac:71:f5:84:63:82:7b: d9:fb:c2:6b:d3:af:da:30:f1:72:d7:62:2c:bc:e8: d5:ae:cb:ce:a9:bb:bc:27:a0:37:ac:0e:ae:e4:e2: 0b:ca:b5:88:4f:fc:f6:20:07:61:1e:17:69:ae:66: 37:4b:39:e7:2c:39:ca:14:8e:09:0d:eb:83:0e:61: 90:03:fe:b7:fb:9a:c1:fc:58:63:72:ef:23:7c:49: 5f:bb:6c:ad:b6:44:bc:42:51:6a:39:08:01:bb:a3: ca:55:b7:d3:78:53:61:f2:72:3a:f2:86:e2:23:87: 29:f2:de:43:d3:f6:a6:23:a9:07:61:11:b5:2d:65: 06:cf:03:50:04:27:f2:61:f3:a9:4a:75:f7:fa:76: 07:ff:e9:03:01:23:c3:94:3c:6c:39:c3:de:cc:dd: db:7e:6d:0e:f5:ed:43:20:e2:7f:3a:32:b2:e9:f4: ec:e3:e6:e7:29:be:33:c7:85:4b:76:20:d1:0f:21: 13:27:93:3f:28:00:f4:ff:44:02:63:4f:b7:e5:ba: 54:78:aa:82:2d:74:dd:8d:b8:83:89:2d:ab:a2:af: 06:2e:89:48:e5:b2:71:de:03:3e:c3:9b:6c:9e:e0: 9c:de:76:16:91:f0:1c:00:4d:76:53:41:61:f6:9d: f7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:F9:2A:DF:5A:90:AA:64:31:71:BE:D0:92:05:B9:E5:BD:1B:98:49 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.64.0/18 Signature Algorithm: sha256WithRSAEncryption 6c:31:db:f2:79:2f:84:85:c7:97:92:75:bc:9b:9c:33:6d:e8: e4:7a:e1:4c:7a:b2:75:4e:a2:ed:52:63:16:c4:10:cd:df:ed: 5f:f6:3d:2e:74:46:30:5d:29:1c:c2:ce:ce:e3:77:af:cd:dc: fd:2b:65:17:86:f7:30:40:d1:4e:37:1c:2a:a9:89:46:d3:e5: 7d:4b:d6:0a:1c:52:c8:92:cd:de:f4:54:85:fa:66:1a:02:ee: 5f:15:de:27:3d:6b:be:fd:30:55:4e:28:0e:15:75:ee:d7:41: 26:39:4a:bb:b4:52:19:2d:07:6b:36:f7:f0:aa:e1:2c:9f:d3: 5c:83:d6:55:4e:02:85:38:05:d3:07:36:48:30:7e:52:62:33: d0:b2:63:f2:77:26:eb:e3:51:c9:6d:1c:ae:a1:d6:a3:8b:05: 07:95:bd:c6:56:cc:ce:f7:a0:0d:e1:39:0d:9f:ff:49:c2:7d: c0:39:69:bc:49:96:a9:e4:e0:50:2e:86:91:da:3b:ce:a0:af: 09:c0:27:6e:c5:aa:3a:bb:a6:21:a4:3a:6e:1c:51:5d:db:7f: e0:17:c0:68:9f:5d:22:e9:e1:66:28:fd:78:07:23:16:62:ab: fd:b0:10:1f:87:dd:a3:73:07:c3:4f:3b:b1:96:3d:63:fb:34: 8f:6a:77:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUwMzMxMDE1OTA3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5ZjZlYS1lZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv4AweXsuZKxx9YRjgnvZ+8Jr06/aMPFy12IsvOjVrsvOqbu8J6A3rA6u5OIL yrWIT/z2IAdhHhdprmY3SznnLDnKFI4JDeuDDmGQA/63+5rB/Fhjcu8jfElfu2yt tkS8QlFqOQgBu6PKVbfTeFNh8nI68obiI4cp8t5D0/amI6kHYRG1LWUGzwNQBCfy YfOpSnX3+nYH/+kDASPDlDxsOcPezN3bfm0O9e1DIOJ/OjKy6fTs4+bnKb4zx4VL diDRDyETJ5M/KAD0/0QCY0+35bpUeKqCLXTdjbiDiS2roq8GLolI5bJx3gM+w5ts nuCc3nYWkfAcAE12U0Fh9p33KQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAL5Kt9a kKpkMXG+0JIFueW9G5hJMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkZEOEE0NkU1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAaMqEAwDQYJKoZIhvcNAQELBQADggEBAGwx2/J5L4SFx5eS dbybnDNt6OR64Ux6snVOou1SYxbEEM3f7V/2PS50RjBdKRzCzs7jd6/N3P0rZReG 9zBA0U43HCqpiUbT5X1L1gocUsiSzd70VIX6ZhoC7l8V3ic9a779MFVOKA4Vde7X QSY5Sru0UhktB2s29/Cq4Syf01yD1lVOAoU4BdMHNkgwflJiM9CyY/J3JuvjUclt HK6h1qOLBQeVvcZWzM73oA3hOQ2f/0nCfcA5abxJlqnk4FAuhpHaO86grwnAJ27F qjq7piGkOm4cUV3bf+AXwGifXSLp4WYo/XgHIxZiq/2wEB+H3aNzB8NPO7GWPWP7 NI9qd3Q= -----END CERTIFICATE-----Generated at Sat Apr 26 13:00:29 2025 by rpki-client