$ rpki-client -vvf rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/7C304160FECB11EFB755BB45C4F9AE02.roa File: 7C304160FECB11EFB755BB45C4F9AE02.roa (raw, json) Hash identifier: 96JJ4xS4XL/KIJ4tbueQ63oeM+4CMNy+gkgjGzK0Myk= Subject key identifier: DC:78:DF:5E:FB:60:01:F7:85:EB:ED:2A:8E:7A:A0:0E:FC:3C:FB:F5 Certificate issuer: /CN=A91E554A/serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Certificate serial: 53 Authority key identifier: 12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/7C304160FECB11EFB755BB45C4F9AE02.roa Signing time: Tue 11 Mar 2025 22:52:19 +0000 ROA not before: Tue 11 Mar 2025 22:52:19 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153377 IP address blocks: 160.191.80.0/24 maxlen: 24 160.191.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:04:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E554A, serialNumber=121AF144D903E3F8897DF0FED2071A164775ED4F Validity Not Before: Mar 11 22:52:19 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67d0bea2-2ca0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:fd:87:3a:eb:84:7a:6b:5c:78:d3:6d:f1:cf: ce:78:34:27:ac:b0:e9:4f:60:cf:8a:65:ac:45:b6: e4:42:67:94:a2:8c:0d:13:18:ad:f6:3f:ae:1a:b3: 90:31:ba:e5:4a:25:3c:80:1e:c0:29:f7:94:92:de: 84:cc:33:81:a9:d6:70:d0:c7:58:0b:05:a0:bf:01: 55:ed:d1:89:a9:48:1b:e1:84:59:15:5e:5e:9c:2a: e3:8c:f3:b7:43:0d:b2:75:de:18:03:04:39:b8:6c: 63:8e:69:63:07:86:82:fc:0e:86:c1:89:7f:f9:03: f5:8b:6b:d5:c5:5f:fe:03:0f:69:72:71:7f:f6:8f: 5a:dc:2a:9b:8c:9c:6d:f4:4f:ab:6c:0f:34:b9:50: 34:ad:3f:6b:0d:76:98:4a:39:76:8f:a3:bb:31:73: 18:b3:bc:b2:45:62:f8:32:9b:e1:2d:b0:52:74:51: 07:f8:ef:5c:ef:84:48:f1:fc:09:c4:c2:b1:15:2c: 2f:58:ac:cd:fe:eb:92:4c:6f:8a:c1:41:c0:e9:55: 36:14:dc:2a:50:cb:e5:2c:25:12:f2:1f:0c:62:4f: 30:bc:5a:53:dc:a5:2c:a6:97:16:93:69:e6:c6:4f: 73:18:c3:16:64:55:0a:66:08:73:30:57:9a:45:e1: 4e:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:78:DF:5E:FB:60:01:F7:85:EB:ED:2A:8E:7A:A0:0E:FC:3C:FB:F5 X509v3 Authority Key Identifier: keyid:12:1A:F1:44:D9:03:E3:F8:89:7D:F0:FE:D2:07:1A:16:47:75:ED:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/EhrxRNkD4_iJffD-0gcaFkd17U8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/EhrxRNkD4_iJffD-0gcaFkd17U8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E554A/795E73D091F711EFADE11266C4F9AE02/7C304160FECB11EFB755BB45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.80.0/23 Signature Algorithm: sha256WithRSAEncryption 59:43:9f:44:c7:82:77:d4:c2:f5:b0:7a:3d:0f:e1:a5:00:dd: dc:bb:7d:49:f7:21:be:d5:20:b0:6b:76:3c:a1:6c:27:83:15: 5d:f8:d1:9a:1e:99:16:2d:e9:a8:77:9c:ef:15:dc:cc:63:3f: ca:b3:00:4b:8a:56:af:bc:b4:49:f2:53:a1:e0:d5:44:f9:e9: f2:f7:00:59:81:78:62:05:63:48:1b:ef:2e:3a:2e:80:58:30: 37:b0:a8:93:6f:d0:15:d6:e8:b4:34:f3:18:33:a4:a6:75:5b: 26:4b:cc:6a:d8:db:ef:97:c5:14:fd:02:dc:15:b1:b3:30:f7: 5c:3a:40:ab:a6:89:04:d5:ca:2d:fa:31:2c:5c:b3:05:64:e3: f2:7d:16:a1:24:ec:0a:11:4e:4c:98:a2:6c:79:a7:d8:e9:c0: 9c:6c:77:89:5c:9a:34:4b:d7:f6:61:0c:e3:42:db:d5:f2:ec: db:7b:b6:47:e5:50:89:a2:d7:40:94:ad:bf:32:da:ef:0e:54: 43:70:f8:a6:50:c9:a5:4a:10:94:18:9c:2a:0f:2d:b2:c9:e7: ec:17:c1:06:d9:cd:9d:e4:b1:d0:39:e5:ea:e1:0d:64:1f:0c: ea:bf:89:e7:0d:3a:fb:67:6c:70:bc:df:30:e9:27:65:78:c7: 32:85:9d:6e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NTU0QTExMC8GA1UEBRMoMTIxQUYxNDREOTAzRTNGODg5N0RGMEZFRDIwNzFBMTY0 Nzc1RUQ0RjAeFw0yNTAzMTEyMjUyMTlaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZDBiZWEyLTJjYTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8/Yc664R6a1x4023xz854NCessOlPYM+KZaxFtuRCZ5SijA0TGK32P64as5Ax uuVKJTyAHsAp95SS3oTMM4Gp1nDQx1gLBaC/AVXt0YmpSBvhhFkVXl6cKuOM87dD DbJ13hgDBDm4bGOOaWMHhoL8DobBiX/5A/WLa9XFX/4DD2lycX/2j1rcKpuMnG30 T6tsDzS5UDStP2sNdphKOXaPo7sxcxizvLJFYvgym+EtsFJ0UQf471zvhEjx/AnE wrEVLC9YrM3+65JMb4rBQcDpVTYU3CpQy+UsJRLyHwxiTzC8WlPcpSymlxaTaebG T3MYwxZkVQpmCHMwV5pF4U5XAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU3HjfXvtg AfeF6+0qjnqgDvw8+/UwHwYDVR0jBBgwFoAUEhrxRNkD4/iJffD+0gcaFkd17U8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1NTRBLzc5NUU3M0QwOTFG NzExRUZBREUxMTI2NkM0RjlBRTAyL0VocnhSTmtENF9pSmZmRC0wZ2NhRmtkMTdV OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvRWhyeFJOa0Q0X2lKZmZELTBnY2FGa2QxN1U4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NTU0QS83OTVFNzNEMDkxRjcxMUVGQURFMTEyNjZDNEY5QUUwMi83QzMwNDE2MEZF Q0IxMUVGQjc1NUJCNDVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/UDANBgkqhkiG9w0BAQsFAAOCAQEAWUOfRMeCd9TC9bB6 PQ/hpQDd3Lt9SfchvtUgsGt2PKFsJ4MVXfjRmh6ZFi3pqHec7xXczGM/yrMAS4pW r7y0SfJToeDVRPnp8vcAWYF4YgVjSBvvLjougFgwN7Cok2/QFdbotDTzGDOkpnVb JkvMatjb75fFFP0C3BWxszD3XDpAq6aJBNXKLfoxLFyzBWTj8n0WoSTsChFOTJii bHmn2OnAnGx3iVyaNEvX9mEM40Lb1fLs23u2R+VQiaLXQJStvzLa7w5UQ3D4plDJ pUoQlBicKg8tssnn7BfBBtnNneSx0Dnl6uENZB8M6r+J5w06+2dscLzfMOknZXjH MoWdbg== -----END CERTIFICATE-----Generated at Sat Apr 26 13:54:54 2025 by rpki-client