$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/1FE0E016B37D11EFBDE18263C4F9AE02.roa File: 1FE0E016B37D11EFBDE18263C4F9AE02.roa (raw, json) Hash identifier: i4QqretrMrfllRlkSz0xUOac9qaskNbaHtNPO9MoQA0= Subject key identifier: AA:14:A9:00:82:E2:07:C7:9F:86:EC:CA:EE:E9:3D:BF:82:B0:0A:59 Certificate issuer: /CN=A91DF233/serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Certificate serial: 02 Authority key identifier: 4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/1FE0E016B37D11EFBDE18263C4F9AE02.roa Signing time: Fri 06 Dec 2024 02:52:26 +0000 ROA not before: Fri 06 Dec 2024 02:52:26 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 151660 IP address blocks: 160.250.144.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:23:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF233, serialNumber=4E759AB2DE245469F8311B9273B555387E750A90 Validity Not Before: Dec 6 02:52:26 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675266ea-ae1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:04:cf:0d:c4:25:c0:91:25:a9:8b:c4:10:dd: d0:f1:ea:47:3b:aa:30:05:66:e8:8d:e8:d8:5c:9a: 51:95:f4:5c:30:98:6a:5c:af:62:38:b8:03:be:b9: a1:27:95:33:51:61:8b:8f:8c:d5:e8:8d:b5:b3:d3: cc:c5:35:e2:a5:91:5e:1d:2b:66:12:a9:dd:af:4f: 6c:2d:bc:de:d2:a5:e9:0b:5c:ff:90:ec:f1:a3:42: 88:d8:5a:c4:18:01:2a:68:91:05:0b:6b:43:a5:1d: f1:12:74:f2:99:09:2f:13:82:ac:2f:ca:dc:93:27: ef:26:ce:31:a8:61:a6:47:1d:bc:aa:9f:b2:90:74: 4a:c7:ed:4f:1c:93:18:49:30:05:9a:42:cc:bb:52: 56:07:6c:a1:1a:77:28:b7:71:23:89:3e:f2:5f:1b: b5:d6:5f:ab:c2:62:09:db:10:94:c8:01:b2:2d:2f: e6:99:d3:1d:df:02:93:3a:f5:5f:31:ff:72:78:32: 3c:d0:19:2b:d2:b5:75:2e:cf:3a:bf:65:4e:ba:74: 47:d0:af:02:4d:ed:f9:81:f5:bd:4e:6b:81:5c:ef: 04:18:cf:50:0a:f9:c2:c1:82:5b:ac:06:de:36:d3: 31:b7:77:91:4e:86:13:cd:d5:8a:13:f4:51:af:74: 2e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:14:A9:00:82:E2:07:C7:9F:86:EC:CA:EE:E9:3D:BF:82:B0:0A:59 X509v3 Authority Key Identifier: keyid:4E:75:9A:B2:DE:24:54:69:F8:31:1B:92:73:B5:55:38:7E:75:0A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/TnWast4kVGn4MRuSc7VVOH51CpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TnWast4kVGn4MRuSc7VVOH51CpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF233/08F05260B37811EF88322B0FC4F9AE02/1FE0E016B37D11EFBDE18263C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.144.0/23 Signature Algorithm: sha256WithRSAEncryption 40:6f:13:cc:05:ac:8c:2b:bf:38:05:39:ca:cb:b9:80:0b:45: af:8c:df:24:a9:21:13:c2:cb:c9:9c:e6:a2:51:9c:88:5a:b5: 66:05:cb:60:da:bf:3d:ef:86:ce:70:03:37:54:e2:a5:e7:bc: 46:21:fa:43:bb:e4:09:dd:c1:de:65:cd:de:df:6f:be:da:22: 4b:39:ff:4b:3f:02:fa:4f:1c:79:b7:3b:69:6a:d4:c3:d4:b6: 7b:14:cf:4e:9d:0e:20:ac:1c:bb:9d:a4:40:ec:b2:c2:d9:fa: c5:04:11:3b:02:72:26:5c:ca:84:0c:19:86:d7:42:61:cf:b4: e5:94:35:9c:6b:f3:c5:c1:8d:f4:77:ff:48:ef:17:9c:09:ff: 56:2a:85:1d:69:9d:ae:05:8a:6f:d2:e4:a4:80:7a:57:99:7e: 53:f3:97:46:15:9e:78:24:21:f4:01:6e:b3:7e:93:8d:62:3a: 28:de:a7:35:af:a6:fe:d3:04:85:2d:8d:da:64:07:2b:6b:fd: 4d:ac:ff:8a:7a:ea:24:94:8c:e2:38:4e:cb:1a:a8:1b:ba:17: ed:38:99:28:8d:5d:3b:83:54:51:1c:89:bf:6a:d5:f4:ae:c9: f5:22:61:d9:9c:5d:44:08:bc:37:e2:8d:f7:4f:6e:29:d3:06: c9:ec:4a:60 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjIzMzExMC8GA1UEBRMoNEU3NTlBQjJERTI0NTQ2OUY4MzExQjkyNzNCNTU1Mzg3 RTc1MEE5MDAeFw0yNDEyMDYwMjUyMjZaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NTI2NmVhLWFlMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtBM8NxCXAkSWpi8QQ3dDx6kc7qjAFZuiN6NhcmlGV9FwwmGpcr2I4uAO+uaEn lTNRYYuPjNXojbWz08zFNeKlkV4dK2YSqd2vT2wtvN7SpekLXP+Q7PGjQojYWsQY ASpokQULa0OlHfESdPKZCS8TgqwvytyTJ+8mzjGoYaZHHbyqn7KQdErH7U8ckxhJ MAWaQsy7UlYHbKEadyi3cSOJPvJfG7XWX6vCYgnbEJTIAbItL+aZ0x3fApM69V8x /3J4MjzQGSvStXUuzzq/ZU66dEfQrwJN7fmB9b1Oa4Fc7wQYz1AK+cLBglusBt42 0zG3d5FOhhPN1YoT9FGvdC5NAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUqhSpAILi B8efhuzK7uk9v4KwClkwHwYDVR0jBBgwFoAUTnWast4kVGn4MRuSc7VVOH51CpAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMjMzLzA4RjA1MjYwQjM3 ODExRUY4ODMyMkIwRkM0RjlBRTAyL1RuV2FzdDRrVkduNE1SdVNjN1ZWT0g1MUNw QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVG5XYXN0NGtWR240TVJ1U2M3VlZPSDUxQ3BBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjIzMy8wOEYwNTI2MEIzNzgxMUVGODgzMjJCMEZDNEY5QUUwMi8xRkUwRTAxNkIz N0QxMUVGQkRFMTgyNjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6kDANBgkqhkiG9w0BAQsFAAOCAQEAQG8TzAWsjCu/OAU5 ysu5gAtFr4zfJKkhE8LLyZzmolGciFq1ZgXLYNq/Pe+GznADN1Tipee8RiH6Q7vk Cd3B3mXN3t9vvtoiSzn/Sz8C+k8cebc7aWrUw9S2exTPTp0OIKwcu52kQOyywtn6 xQQROwJyJlzKhAwZhtdCYc+05ZQ1nGvzxcGN9Hf/SO8XnAn/ViqFHWmdrgWKb9Lk pIB6V5l+U/OXRhWeeCQh9AFus36TjWI6KN6nNa+m/tMEhS2N2mQHK2v9Taz/inrq JJSM4jhOyxqoG7oX7TiZKI1dO4NUURyJv2rV9K7J9SJh2ZxdRAi8N+KN909uKdMG yexKYA== -----END CERTIFICATE-----Generated at Wed Nov 5 19:49:44 2025 by rpki-client