$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/16C96BAE18E311EFB8960668C4F9AE02.roa File: 16C96BAE18E311EFB8960668C4F9AE02.roa (raw, json) Hash identifier: PDXFymAQeHbTCItIfy8LqqoHr3PVKA+eJZNU6voGL5A= Subject key identifier: 11:19:F2:E1:26:56:B3:E3:33:F6:B8:3C:03:6B:69:88:27:AC:2A:DE Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 10FC Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/16C96BAE18E311EFB8960668C4F9AE02.roa Signing time: Sat 12 Apr 2025 17:26:31 +0000 ROA not before: Sat 12 Apr 2025 17:26:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58655 IP address blocks: 220.152.112.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 17:19:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4348 (0x10fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Apr 12 17:26:31 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67faa247-0be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:84:55:33:ee:10:7d:33:f6:94:aa:0e:31:9a: 1e:6d:c7:6a:d6:1b:c1:6e:21:db:86:4d:46:cd:d1: ee:3c:ce:e8:41:65:a6:c4:95:c4:e4:eb:6b:9b:64: c9:95:b7:3f:e6:ae:a8:72:51:1a:77:1f:1e:b7:71: c3:fc:81:0d:9f:b9:ce:14:76:6a:60:2d:b5:a4:12: f5:58:56:f3:e2:cc:ae:d2:67:2b:13:3d:f1:51:d3: 23:6a:79:11:6b:76:51:42:c3:ac:ae:83:cd:8c:48: 3f:1b:86:51:6e:bb:dd:1d:04:ba:11:d3:e4:6b:c0: 61:f2:6e:12:aa:61:ef:5f:12:af:9e:c3:5b:6b:12: 5e:3c:44:b2:a7:11:99:68:5d:43:41:df:c3:09:26: af:c8:73:60:cd:d2:d5:0f:7c:ce:86:82:ff:d2:91: bc:f6:c5:12:01:0a:c6:59:98:8d:39:74:e4:dc:c3: ae:35:a2:6f:9e:96:da:97:5a:12:65:6f:e0:0a:8e: d6:9a:cd:88:cf:75:67:ec:a5:12:97:0e:22:b8:c7: 51:52:de:6a:ac:39:12:d6:3c:6c:f0:86:fd:64:21: 3a:34:d3:2f:0b:32:c2:ec:dc:5a:a6:fc:d0:88:8a: 4f:a2:db:33:88:2e:7d:1b:7f:90:f8:ed:db:29:a0: 7a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:19:F2:E1:26:56:B3:E3:33:F6:B8:3C:03:6B:69:88:27:AC:2A:DE X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/16C96BAE18E311EFB8960668C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.152.112.0/24 Signature Algorithm: sha256WithRSAEncryption b2:aa:33:d0:5b:2f:2d:d9:05:8c:ba:81:b3:f7:0e:22:8f:bd: 9b:c4:4f:81:10:5f:54:93:49:47:76:0e:67:da:d7:a5:a1:45: 42:f1:d9:f7:6a:e1:dc:84:5f:63:70:e7:07:a7:7d:34:4d:6b: 7f:79:97:c0:f6:fc:0a:0e:5a:c0:23:a9:75:8f:95:2a:da:72: 3a:c9:1a:e1:ec:46:fe:bd:e2:94:9a:09:b9:7c:0b:74:1d:c7: 76:39:c3:01:5c:d7:d5:49:20:9b:b8:ba:3b:49:ae:f9:c0:de: fe:90:e4:14:ba:13:d9:61:ed:17:ca:cf:15:21:10:e2:d7:dd: b3:eb:44:85:e5:71:36:95:50:04:8c:e2:92:0b:10:9f:ad:20: df:a6:87:e0:4a:1e:8d:e3:ad:fd:0b:10:4d:97:9d:3e:d7:0b: df:f9:c3:97:a2:37:31:9d:1a:74:2d:a4:4d:a3:7e:94:33:6f: 28:ca:f4:bd:80:c9:1d:73:5f:d8:7d:60:b8:cb:42:b3:42:f0: f1:5e:57:f4:55:c9:8c:cb:0a:13:76:79:94:ec:ec:b2:13:29: d3:11:3e:b6:13:96:81:48:d5:79:94:8e:4a:ca:1d:4e:ef:54: 0b:f3:a8:17:71:4b:32:2d:c1:7a:d5:88:86:d9:c7:ac:e0:81: 32:1e:76:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUwNDEyMTcyNjMxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhYTI0Ny0wYmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxoRVM+4QfTP2lKoOMZoebcdq1hvBbiHbhk1GzdHuPM7oQWWmxJXE5Otrm2TJ lbc/5q6oclEadx8et3HD/IENn7nOFHZqYC21pBL1WFbz4syu0mcrEz3xUdMjankR a3ZRQsOsroPNjEg/G4ZRbrvdHQS6EdPka8Bh8m4SqmHvXxKvnsNbaxJePESypxGZ aF1DQd/DCSavyHNgzdLVD3zOhoL/0pG89sUSAQrGWZiNOXTk3MOuNaJvnpbal1oS ZW/gCo7Wms2Iz3Vn7KUSlw4iuMdRUt5qrDkS1jxs8Ib9ZCE6NNMvCzLC7NxapvzQ iIpPotsziC59G3+Q+O3bKaB6uwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBEZ8uEm VrPjM/a4PANraYgnrCreMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvMTZDOTZCQUUx OEUzMTFFRkI4OTYwNjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcmHAwDQYJKoZIhvcNAQELBQADggEBALKqM9BbLy3ZBYy6 gbP3DiKPvZvET4EQX1STSUd2Dmfa16WhRULx2fdq4dyEX2Nw5wenfTRNa395l8D2 /AoOWsAjqXWPlSracjrJGuHsRv694pSaCbl8C3Qdx3Y5wwFc19VJIJu4ujtJrvnA 3v6Q5BS6E9lh7RfKzxUhEOLX3bPrRIXlcTaVUASM4pILEJ+tIN+mh+BKHo3jrf0L EE2XnT7XC9/5w5eiNzGdGnQtpE2jfpQzbyjK9L2AyR1zX9h9YLjLQrNC8PFeV/RV yYzLChN2eZTs7LITKdMRPrYTloFI1XmUjkrKHU7vVAvzqBdxSzItwXrViIbZx6zg gTIedjQ= -----END CERTIFICATE-----Generated at Sat Apr 26 08:19:03 2025 by rpki-client