$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/A94836600F7111F08BC42022C4F9AE02.roa File: A94836600F7111F08BC42022C4F9AE02.roa (raw, json) Hash identifier: 0N1RJZ+KUU/6KCa2mJ/8SF+qnin999m3l+lV+2/P0R0= Subject key identifier: E5:8C:F8:56:BB:AA:9C:BE:D0:43:2E:5B:BA:0E:35:4A:C4:EF:A7:60 Certificate issuer: /CN=A91E6CCA/serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Certificate serial: 04 Authority key identifier: A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/A94836600F7111F08BC42022C4F9AE02.roa Signing time: Wed 02 Apr 2025 03:23:58 +0000 ROA not before: Wed 02 Apr 2025 03:23:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138975 IP address blocks: 160.20.118.0/23 maxlen: 23 160.20.118.0/24 maxlen: 24 160.20.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:05:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6CCA, serialNumber=A89D0FD4F48ABF694FD9DF7704E596464DED2179 Validity Not Before: Apr 2 03:23:58 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67ecadce-c4f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4f:02:2d:ca:b3:e7:f7:f5:54:6c:fd:7d:9c: 72:3a:bc:61:27:a8:f5:72:e7:f3:fe:00:4b:24:42: 20:a3:95:91:6e:21:c4:fd:aa:ee:8d:7c:8b:49:8f: 25:3b:09:68:45:6c:3d:83:03:a0:46:64:0a:0a:e3: b9:a6:aa:af:60:d4:95:ff:2f:12:8e:a7:c6:71:39: ea:a9:17:07:81:75:30:6b:d1:3d:9c:a9:e6:db:5f: e5:e8:cf:73:8b:25:65:35:e8:f5:e5:fa:73:c0:20: 67:b8:70:96:57:bb:93:15:30:cb:cb:b5:0c:6c:0a: 53:34:15:2e:3b:36:90:9d:36:38:7d:53:29:10:af: d5:af:ee:33:01:3b:af:53:c7:48:2f:31:91:b1:1d: 97:5a:b9:fd:4f:22:15:4a:f1:c4:23:f9:d6:5d:52: ce:f7:27:b6:d1:64:df:e1:5a:c3:91:85:b0:e9:c8: 81:c9:78:4b:3d:be:b1:14:41:ed:37:de:14:6a:88: 07:af:4d:40:2b:9e:59:21:1c:25:72:61:57:63:f1: 01:e6:3b:d9:92:3d:5f:ff:ac:21:39:68:b8:44:1b: 18:15:96:3b:6a:b3:35:da:29:f4:bf:a0:fa:b3:48: 94:b9:4e:6b:81:f0:99:3b:a1:a6:56:6c:f8:fe:26: c0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:8C:F8:56:BB:AA:9C:BE:D0:43:2E:5B:BA:0E:35:4A:C4:EF:A7:60 X509v3 Authority Key Identifier: keyid:A8:9D:0F:D4:F4:8A:BF:69:4F:D9:DF:77:04:E5:96:46:4D:ED:21:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/qJ0P1PSKv2lP2d93BOWWRk3tIXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qJ0P1PSKv2lP2d93BOWWRk3tIXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6CCA/1A7ADECA0F7011F09E2F7D1FC4F9AE02/A94836600F7111F08BC42022C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.118.0/23 Signature Algorithm: sha256WithRSAEncryption 89:c2:44:31:78:6e:f0:dc:eb:70:27:95:dc:a5:8d:52:82:21: 9a:5e:c5:12:ac:26:50:58:17:95:5c:a1:da:31:e4:1e:78:51: 1c:e1:4c:c1:b4:77:d7:4a:89:80:ba:96:fd:0c:a8:3e:57:74: de:ee:07:cb:ed:a8:11:4a:36:7b:74:40:0d:ae:38:98:f0:63: bd:bb:72:b8:fa:db:81:00:c9:0e:65:cf:99:1f:a0:5b:87:42: 2f:3e:16:d9:a9:c8:6e:36:4b:a1:31:92:b5:da:a9:60:92:c7: 9b:68:76:8f:a1:d3:68:9e:cf:84:8d:62:c2:66:aa:ef:04:fe: 46:26:0c:b5:ee:f0:ff:f8:ea:e5:73:a2:70:50:69:c9:2c:16: ef:38:b7:8f:e8:ec:e3:07:95:b0:9d:3e:65:29:75:98:48:58: f5:2b:eb:d5:0a:08:1b:ae:4e:97:fc:08:a8:1b:b5:a0:ea:38: 0c:38:53:2b:dc:38:63:7a:71:40:7f:fc:da:b1:bf:13:13:b6: 13:d6:fe:42:86:c2:99:fe:ba:e5:b7:04:5d:54:f3:7f:33:a6: 3f:d5:d1:71:59:b7:86:b1:8b:ce:98:66:91:e7:25:23:0c:e8: 1e:e0:af:42:5c:ee:66:a2:34:48:f0:c9:df:ab:98:dc:c8:e6: ca:18:3c:1c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NkNDQTExMC8GA1UEBRMoQTg5RDBGRDRGNDhBQkY2OTRGRDlERjc3MDRFNTk2NDY0 REVEMjE3OTAeFw0yNTA0MDIwMzIzNThaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZWNhZGNlLWM0ZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHTwItyrPn9/VUbP19nHI6vGEnqPVy5/P+AEskQiCjlZFuIcT9qu6NfItJjyU7 CWhFbD2DA6BGZAoK47mmqq9g1JX/LxKOp8ZxOeqpFweBdTBr0T2cqebbX+Xoz3OL JWU16PXl+nPAIGe4cJZXu5MVMMvLtQxsClM0FS47NpCdNjh9UykQr9Wv7jMBO69T x0gvMZGxHZdauf1PIhVK8cQj+dZdUs73J7bRZN/hWsORhbDpyIHJeEs9vrEUQe03 3hRqiAevTUArnlkhHCVyYVdj8QHmO9mSPV//rCE5aLhEGxgVljtqszXaKfS/oPqz SJS5TmuB8Jk7oaZWbPj+JsDDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5Yz4Vruq nL7QQy5bug41SsTvp2AwHwYDVR0jBBgwFoAUqJ0P1PSKv2lP2d93BOWWRk3tIXkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU2Q0NBLzFBN0FERUNBMEY3 MDExRjA5RTJGN0QxRkM0RjlBRTAyL3FKMFAxUFNLdjJsUDJkOTNCT1dXUmszdElY ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcUowUDFQU0t2MmxQMmQ5M0JPV1dSazN0SVhrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NkNDQS8xQTdBREVDQTBGNzAxMUYwOUUyRjdEMUZDNEY5QUUwMi9BOTQ4MzY2MDBG NzExMUYwOEJDNDIwMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAUdjANBgkqhkiG9w0BAQsFAAOCAQEAicJEMXhu8NzrcCeV 3KWNUoIhml7FEqwmUFgXlVyh2jHkHnhRHOFMwbR310qJgLqW/QyoPld03u4Hy+2o EUo2e3RADa44mPBjvbtyuPrbgQDJDmXPmR+gW4dCLz4W2anIbjZLoTGStdqpYJLH m2h2j6HTaJ7PhI1iwmaq7wT+RiYMte7w//jq5XOicFBpySwW7zi3j+js4weVsJ0+ ZSl1mEhY9Svr1QoIG65Ol/wIqBu1oOo4DDhTK9w4Y3pxQH/82rG/ExO2E9b+QobC mf665bcEXVTzfzOmP9XRcVm3hrGLzphmkeclIwzoHuCvQlzuZqI0SPDJ36uY3Mjm yhg8HA== -----END CERTIFICATE-----Generated at Sat Apr 26 13:41:07 2025 by rpki-client