$ rpki-client -vvf rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/8BDA27AECD8211EF9AF32B60C4F9AE02.roa File: 8BDA27AECD8211EF9AF32B60C4F9AE02.roa (raw, json) Hash identifier: lR4n9Kwcmr6TKngQVZYuPG5nB4EmQJXT4ATIoMZffCw= Subject key identifier: D1:5C:F4:29:F4:91:DF:BB:85:21:E4:0E:8C:02:27:0E:AC:3E:3B:4F Certificate issuer: /CN=A91B165F/serialNumber=5A56C4DE9423B9E2B800AB7E040DCA3E09F23475 Certificate serial: 57 Authority key identifier: 5A:56:C4:DE:94:23:B9:E2:B8:00:AB:7E:04:0D:CA:3E:09:F2:34:75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/8BDA27AECD8211EF9AF32B60C4F9AE02.roa Signing time: Sun 13 Apr 2025 09:40:39 +0000 ROA not before: Sun 13 Apr 2025 09:40:39 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 140219 IP address blocks: 160.187.158.0/24 maxlen: 24 160.187.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.crl rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 87 (0x57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B165F, serialNumber=5A56C4DE9423B9E2B800AB7E040DCA3E09F23475 Validity Not Before: Apr 13 09:40:39 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67fb8696-f39b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:aa:e8:b6:04:08:56:f0:3d:fe:8b:b1:f4:50: bb:53:a5:37:46:47:02:65:41:48:ab:83:98:9e:59: 1a:96:b7:a2:02:98:62:aa:97:52:88:39:83:a8:b5: 8f:ae:7b:54:8c:55:c4:79:a8:dd:3e:2b:cd:8c:6f: 8c:a5:ed:bf:ba:12:96:c1:3e:b1:8c:f6:93:be:ac: 5a:e8:58:ec:82:ab:b1:cb:8e:c9:86:42:37:96:af: f5:86:df:20:37:6e:21:4b:7c:84:63:c0:80:80:28: 43:e0:b3:32:da:5d:25:b3:8b:df:d7:0e:03:06:e2: af:82:78:57:36:82:32:f4:3e:5d:da:53:84:3d:fc: c3:7d:8d:cc:80:37:8e:ce:20:ed:c9:11:fc:a6:73: 01:e7:76:f5:39:17:c8:fa:3a:dd:83:3a:0a:42:fc: 92:63:82:9b:5d:b4:5c:94:1f:c4:0d:49:68:99:dd: d3:72:ef:09:b8:dc:37:83:0d:73:cb:cc:07:92:c3: 57:5e:fa:66:c5:bc:ca:a6:2d:d4:63:69:36:da:20: 64:7f:97:d6:7b:a6:00:cc:a5:d9:9b:61:c9:e3:b1: a7:b7:b5:02:8e:8e:6d:81:65:9b:a2:dd:10:cd:e4: 49:e8:c5:e6:8e:ab:06:ae:b6:68:73:87:74:1e:8a: 86:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:5C:F4:29:F4:91:DF:BB:85:21:E4:0E:8C:02:27:0E:AC:3E:3B:4F X509v3 Authority Key Identifier: keyid:5A:56:C4:DE:94:23:B9:E2:B8:00:AB:7E:04:0D:CA:3E:09:F2:34:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/WlbE3pQjueK4AKt-BA3KPgnyNHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WlbE3pQjueK4AKt-BA3KPgnyNHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B165F/83FD6B2EA4B311EF889C7687C4F9AE02/8BDA27AECD8211EF9AF32B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.158.0/23 Signature Algorithm: sha256WithRSAEncryption 24:3f:be:fa:1a:4d:37:25:6c:54:df:e9:6d:f4:6f:c5:46:9e: 9e:fc:c9:62:2f:27:a5:66:e2:e2:1f:31:31:e8:fb:ea:e0:f9: 78:70:a1:6a:e4:4e:c2:d0:be:9a:35:16:4c:ea:ad:dd:19:4a: 3c:ef:11:0c:b1:7c:ee:c2:cf:66:42:64:75:1d:b7:22:f7:2a: b9:75:c2:bb:7e:af:70:92:44:3e:65:4d:a5:8e:ef:5c:16:57: a9:f8:86:38:c7:3d:86:ff:f7:e8:d5:92:5f:19:64:6e:07:84: c2:52:b6:65:b0:24:67:0d:02:85:83:29:3b:f1:99:31:b9:28: e8:3e:98:2a:87:7d:bb:2a:45:6a:99:3c:9d:96:94:ad:1b:fc: 51:f9:fc:cd:30:1b:73:b8:86:de:1a:b4:73:95:48:8d:fb:21: 6c:28:94:b7:dd:8d:90:b4:d7:ad:75:a6:4c:89:28:20:1e:74: 6b:23:95:0d:2e:9d:28:e5:54:f6:d4:da:21:3d:de:45:4e:61: ad:a6:a4:bc:05:13:ff:c2:a2:90:cc:14:c4:72:ab:6b:ab:aa: 5f:ee:84:8c:af:b6:3c:7a:34:8d:e3:a3:32:9e:c9:56:07:74: 51:a9:d3:1c:6f:83:66:b7:0f:14:3d:35:8d:fe:e2:d5:a3:d0: 87:e6:03:28 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTY1RjExMC8GA1UEBRMoNUE1NkM0REU5NDIzQjlFMkI4MDBBQjdFMDQwRENBM0Uw OUYyMzQ3NTAeFw0yNTA0MTMwOTQwMzlaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZmI4Njk2LWYzOWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYqui2BAhW8D3+i7H0ULtTpTdGRwJlQUirg5ieWRqWt6ICmGKql1KIOYOotY+u e1SMVcR5qN0+K82Mb4yl7b+6EpbBPrGM9pO+rFroWOyCq7HLjsmGQjeWr/WG3yA3 biFLfIRjwICAKEPgszLaXSWzi9/XDgMG4q+CeFc2gjL0Pl3aU4Q9/MN9jcyAN47O IO3JEfymcwHndvU5F8j6Ot2DOgpC/JJjgptdtFyUH8QNSWiZ3dNy7wm43DeDDXPL zAeSw1de+mbFvMqmLdRjaTbaIGR/l9Z7pgDMpdmbYcnjsae3tQKOjm2BZZui3RDN 5EnoxeaOqwautmhzh3QeiobTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0Vz0KfSR 37uFIeQOjAInDqw+O08wHwYDVR0jBBgwFoAUWlbE3pQjueK4AKt+BA3KPgnyNHUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNjVGLzgzRkQ2QjJFQTRC MzExRUY4ODlDNzY4N0M0RjlBRTAyL1dsYkUzcFFqdWVLNEFLdC1CQTNLUGdueU5I VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvV2xiRTNwUWp1ZUs0QUt0LUJBM0tQZ255TkhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTY1Ri84M0ZENkIyRUE0QjMxMUVGODg5Qzc2ODdDNEY5QUUwMi84QkRBMjdBRUNE ODIxMUVGOUFGMzJCNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7njANBgkqhkiG9w0BAQsFAAOCAQEAJD+++hpNNyVsVN/p bfRvxUaenvzJYi8npWbi4h8xMej76uD5eHChauROwtC+mjUWTOqt3RlKPO8RDLF8 7sLPZkJkdR23IvcquXXCu36vcJJEPmVNpY7vXBZXqfiGOMc9hv/36NWSXxlkbgeE wlK2ZbAkZw0ChYMpO/GZMbko6D6YKod9uypFapk8nZaUrRv8Ufn8zTAbc7iG3hq0 c5VIjfshbCiUt92NkLTXrXWmTIkoIB50ayOVDS6dKOVU9tTaIT3eRU5hraakvAUT /8KikMwUxHKra6uqX+6EjK+2PHo0jeOjMp7JVgd0UanTHG+DZrcPFD01jf7i1aPQ h+YDKA== -----END CERTIFICATE-----Generated at Sat Apr 26 17:03:04 2025 by rpki-client