$ rpki-client -vvf rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/B5E94296025C11F0BDF41912C4F9AE02.roa File: B5E94296025C11F0BDF41912C4F9AE02.roa (raw, json) Hash identifier: vF2hPrjWnGE1wVLs/Ml1OeBVYR8W6IECJw4qVwfrJO0= Subject key identifier: E7:78:72:59:5C:88:B0:F8:C3:8A:AE:BC:CB:80:36:9D:70:BC:C4:FF Certificate issuer: /CN=A91B38F5/serialNumber=79568A38ECDB617E678C08A6CC43C4D6502CEC62 Certificate serial: 02 Authority key identifier: 79:56:8A:38:EC:DB:61:7E:67:8C:08:A6:CC:43:C4:D6:50:2C:EC:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/B5E94296025C11F0BDF41912C4F9AE02.roa Signing time: Sun 16 Mar 2025 11:49:26 +0000 ROA not before: Sun 16 Mar 2025 11:49:26 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 133464 IP address blocks: 160.250.248.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.crl rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B38F5, serialNumber=79568A38ECDB617E678C08A6CC43C4D6502CEC62 Validity Not Before: Mar 16 11:49:26 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67d6bac6-1907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:aa:24:be:01:19:b9:cb:8c:45:b5:d8:15:09: 47:fa:68:ae:a6:42:e0:05:6e:96:54:cd:a8:ae:8e: ce:8a:74:07:85:5c:ff:85:4d:7c:97:39:06:98:c3: d6:d9:f9:f3:63:b2:a1:3f:32:8f:9d:f5:ef:e0:12: 50:d0:4d:cf:db:90:98:7a:ac:4b:4a:4a:b0:87:4d: ff:23:1a:dd:ee:de:e5:d8:26:c5:0a:87:ed:64:31: 7a:6e:2b:b6:49:45:8c:a9:b7:33:3e:7a:66:9f:fe: ff:c5:1d:9e:13:22:e3:69:94:26:2b:01:cd:80:b4: 15:fe:7a:99:11:d0:53:d6:56:f3:6f:97:3d:d5:1b: 64:89:8c:48:9f:bf:9c:ee:62:42:24:51:72:02:4a: 5c:79:52:ff:e2:25:05:70:6c:e8:f9:8b:c0:dd:e7: 18:e0:3b:ee:74:0e:b1:40:78:1a:9d:70:99:00:45: 86:54:a8:f0:a0:68:70:0d:14:84:03:01:b2:d4:40: dd:9c:20:3c:9a:8c:bb:18:9c:7a:6a:0c:f7:af:fc: a9:64:f6:f0:52:91:f0:cd:0a:23:2b:87:81:59:96: d0:aa:22:3e:46:1e:e6:a1:5c:77:88:a5:19:9c:a4: 41:f9:90:10:9b:73:40:e0:c5:2b:7d:9c:9a:8e:e2: 36:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:78:72:59:5C:88:B0:F8:C3:8A:AE:BC:CB:80:36:9D:70:BC:C4:FF X509v3 Authority Key Identifier: keyid:79:56:8A:38:EC:DB:61:7E:67:8C:08:A6:CC:43:C4:D6:50:2C:EC:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/eVaKOOzbYX5njAimzEPE1lAs7GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/eVaKOOzbYX5njAimzEPE1lAs7GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B38F5/E802819E025B11F09ACFD910C4F9AE02/B5E94296025C11F0BDF41912C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.248.0/23 Signature Algorithm: sha256WithRSAEncryption c5:31:d0:fa:03:7b:a4:8a:c2:f1:c8:f2:e2:00:cc:6b:86:31: 8b:6b:2f:05:eb:01:2c:41:36:89:c5:5e:93:2c:c5:ae:46:3b: 81:3a:79:e0:2a:13:09:e0:67:48:45:ed:ae:6f:19:04:7d:44: 96:af:c6:fe:a8:f6:29:12:41:11:12:58:50:63:85:67:70:fa: 6b:d3:f1:c2:8b:11:2a:f8:03:8c:6b:b9:88:46:62:17:b8:be: 0c:6f:ec:2a:68:84:47:f0:94:ca:e9:95:39:54:1c:77:12:05: e4:4d:80:59:68:34:6d:99:15:eb:7d:de:43:7d:96:88:50:59: 1c:c4:e6:3e:7d:93:40:a2:82:6b:78:d0:15:ab:60:39:6e:1b: a2:d1:c0:bb:80:ee:c2:ba:a0:b2:6b:7f:0d:a2:d0:3c:62:fb: 90:0e:5d:84:6c:0c:a8:0f:50:28:c8:b4:36:33:6e:5d:54:96: 61:cf:17:cc:42:34:b7:31:20:76:a5:4b:1c:a6:e2:bd:e1:2c: fb:29:e2:7d:c4:c3:6b:cf:5d:6e:2d:f6:c4:df:eb:47:df:e2: 95:de:aa:3c:83:3a:fd:0f:7c:c2:45:56:58:af:8b:c9:36:aa: 6c:02:82:95:4a:ed:34:73:58:81:b8:f0:79:93:67:84:9d:1c: 55:f3:58:2a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzhGNTExMC8GA1UEBRMoNzk1NjhBMzhFQ0RCNjE3RTY3OEMwOEE2Q0M0M0M0RDY1 MDJDRUM2MjAeFw0yNTAzMTYxMTQ5MjZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDZiYWM2LTE5MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDqiS+ARm5y4xFtdgVCUf6aK6mQuAFbpZUzaiujs6KdAeFXP+FTXyXOQaYw9bZ +fNjsqE/Mo+d9e/gElDQTc/bkJh6rEtKSrCHTf8jGt3u3uXYJsUKh+1kMXpuK7ZJ RYyptzM+emaf/v/FHZ4TIuNplCYrAc2AtBX+epkR0FPWVvNvlz3VG2SJjEifv5zu YkIkUXICSlx5Uv/iJQVwbOj5i8Dd5xjgO+50DrFAeBqdcJkARYZUqPCgaHANFIQD AbLUQN2cIDyajLsYnHpqDPev/Klk9vBSkfDNCiMrh4FZltCqIj5GHuahXHeIpRmc pEH5kBCbc0DgxSt9nJqO4jZTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU53hyWVyI sPjDiq68y4A2nXC8xP8wHwYDVR0jBBgwFoAUeVaKOOzbYX5njAimzEPE1lAs7GIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzOEY1L0U4MDI4MTlFMDI1 QjExRjA5QUNGRDkxMEM0RjlBRTAyL2VWYUtPT3piWVg1bmpBaW16RVBFMWxBczdH SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvZVZhS09PemJZWDVuakFpbXpFUEUxbEFzN0dJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzhGNS9FODAyODE5RTAyNUIxMUYwOUFDRkQ5MTBDNEY5QUUwMi9CNUU5NDI5NjAy NUMxMUYwQkRGNDE5MTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6+DANBgkqhkiG9w0BAQsFAAOCAQEAxTHQ+gN7pIrC8cjy 4gDMa4Yxi2svBesBLEE2icVekyzFrkY7gTp54CoTCeBnSEXtrm8ZBH1Elq/G/qj2 KRJBERJYUGOFZ3D6a9PxwosRKvgDjGu5iEZiF7i+DG/sKmiER/CUyumVOVQcdxIF 5E2AWWg0bZkV633eQ32WiFBZHMTmPn2TQKKCa3jQFatgOW4botHAu4Duwrqgsmt/ DaLQPGL7kA5dhGwMqA9QKMi0NjNuXVSWYc8XzEI0tzEgdqVLHKbiveEs+ynifcTD a89dbi32xN/rR9/ild6qPIM6/Q98wkVWWK+LyTaqbAKClUrtNHNYgbjweZNnhJ0c VfNYKg== -----END CERTIFICATE-----Generated at Sat Apr 26 12:56:46 2025 by rpki-client