$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/4965F84CAFC011EF82BB1055C4F9AE02.roa File: 4965F84CAFC011EF82BB1055C4F9AE02.roa (raw, json) Hash identifier: jpijFayg1AhLIehVWTrf1nyIqutL0nvGe/8hsMY0L/c= Subject key identifier: 9C:B8:4B:42:41:96:64:80:A1:B7:C8:B8:52:51:F2:F8:C7:D0:5E:EA Certificate issuer: /CN=A91EE5E5/serialNumber=69236E5996300A2FD785EF85783C5C29C5B4E874 Certificate serial: 02 Authority key identifier: 69:23:6E:59:96:30:0A:2F:D7:85:EF:85:78:3C:5C:29:C5:B4:E8:74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/4965F84CAFC011EF82BB1055C4F9AE02.roa Signing time: Sun 01 Dec 2024 08:43:08 +0000 ROA not before: Sun 01 Dec 2024 08:43:08 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153391 IP address blocks: 160.191.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.crl rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:21:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE5E5, serialNumber=69236E5996300A2FD785EF85783C5C29C5B4E874 Validity Not Before: Dec 1 08:43:08 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=674c219b-85f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:cd:da:79:ec:c0:d0:0c:7e:ce:8f:e7:c7:29: 49:1a:90:1c:3d:d7:c3:dc:80:2e:f7:9f:d6:82:75: ca:53:e3:78:98:a2:6a:32:be:da:f2:4d:57:24:19: 42:bf:8e:0f:b5:3e:7d:f4:e0:fb:8d:9f:60:f6:06: 2a:19:ae:66:a7:40:69:0f:e2:5e:5f:5d:bb:83:49: f4:65:8e:fb:c5:d2:91:90:df:ac:ca:4e:aa:1a:b9: 97:e8:ff:cb:4d:2d:b9:95:ab:97:f0:44:f0:d7:1a: 90:8f:7a:7c:c1:6c:e7:cf:0e:40:a6:e3:86:27:7e: da:10:46:63:81:ae:a5:86:2c:8f:21:fe:c0:4c:df: 79:39:a5:43:1c:85:77:0e:98:14:88:06:f1:a4:61: 79:41:64:5d:a3:ee:bf:cb:b3:8e:88:d2:6e:2d:86: 5c:3b:c5:f1:49:c0:99:60:99:1e:56:99:a4:a8:74: 55:f9:71:eb:d7:23:65:93:54:81:ca:10:86:e8:02: 57:7d:c4:91:c7:0a:07:1f:d2:65:4a:95:31:3c:ec: e2:c9:d9:08:74:69:5e:bb:e0:17:39:c5:50:9b:4a: 04:e3:a0:8f:0c:fd:c0:5d:f2:06:81:9c:e6:b6:6e: f9:bb:35:c0:3b:68:02:ce:e4:6a:ae:33:2a:1e:ef: 97:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B8:4B:42:41:96:64:80:A1:B7:C8:B8:52:51:F2:F8:C7:D0:5E:EA X509v3 Authority Key Identifier: keyid:69:23:6E:59:96:30:0A:2F:D7:85:EF:85:78:3C:5C:29:C5:B4:E8:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aSNuWZYwCi_Xhe-FeDxcKcW06HQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE5E5/F0E76E12AFBF11EFA28A3654C4F9AE02/4965F84CAFC011EF82BB1055C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.156.0/23 Signature Algorithm: sha256WithRSAEncryption 73:f5:fb:5b:09:01:46:5d:ff:eb:04:bc:74:97:12:ba:e7:44: e6:c4:fd:b8:7e:dd:f1:6d:ed:68:84:0d:26:ec:5c:28:df:aa: db:ea:77:15:a4:44:bf:80:72:12:99:1d:fa:28:30:80:d4:04: 39:f2:ec:bf:5e:a3:32:6d:33:8f:ef:27:19:04:5b:c5:fe:91: ff:3e:ac:e3:5d:51:06:0e:ee:50:7c:4a:d8:f5:01:ae:ed:4e: ef:d1:02:e0:ae:b6:df:0b:45:4e:6a:f9:8f:36:90:ac:3a:b3: c8:fb:a3:3e:94:de:0c:b4:4d:df:95:ab:9b:a3:eb:2d:a4:26: 3d:4f:6a:34:ef:2d:3c:bd:3d:2e:fd:cd:31:43:ee:32:f6:dc: 94:f5:d1:22:4e:8c:80:e8:86:c9:9b:94:0d:85:15:86:4b:a1: 62:18:1f:a1:fc:4a:b9:2b:93:5c:3c:64:97:54:6c:ea:bf:68: 47:c4:fc:b3:aa:79:58:1a:02:7b:2e:ab:02:73:13:f1:36:f0: c8:86:7e:27:9d:9f:fb:58:92:60:db:05:ed:2a:06:6b:33:f3: 0e:ed:a6:bc:2d:cf:19:5b:49:1b:4d:8d:eb:54:93:61:08:00: 65:30:88:4e:2c:0b:d9:e4:a5:9d:05:b2:81:89:95:08:0e:24: 11:0a:90:d7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RTVFNTExMC8GA1UEBRMoNjkyMzZFNTk5NjMwMEEyRkQ3ODVFRjg1NzgzQzVDMjlD NUI0RTg3NDAeFw0yNDEyMDEwODQzMDhaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NGMyMTliLTg1ZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCZzdp57MDQDH7Oj+fHKUkakBw918PcgC73n9aCdcpT43iYomoyvtryTVckGUK/ jg+1Pn304PuNn2D2BioZrmanQGkP4l5fXbuDSfRljvvF0pGQ36zKTqoauZfo/8tN LbmVq5fwRPDXGpCPenzBbOfPDkCm44YnftoQRmOBrqWGLI8h/sBM33k5pUMchXcO mBSIBvGkYXlBZF2j7r/Ls46I0m4thlw7xfFJwJlgmR5WmaSodFX5cevXI2WTVIHK EIboAld9xJHHCgcf0mVKlTE87OLJ2Qh0aV674Bc5xVCbSgTjoI8M/cBd8gaBnOa2 bvm7NcA7aALO5GquMyoe75d5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUnLhLQkGW ZICht8i4UlHy+MfQXuowHwYDVR0jBBgwFoAUaSNuWZYwCi/Xhe+FeDxcKcW06HQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVFNUU1L0YwRTc2RTEyQUZC RjExRUZBMjhBMzY1NEM0RjlBRTAyL2FTTnVXWll3Q2lfWGhlLUZlRHhjS2NXMDZI US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYVNOdVdaWXdDaV9YaGUtRmVEeGNLY1cwNkhRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RTVFNS9GMEU3NkUxMkFGQkYxMUVGQTI4QTM2NTRDNEY5QUUwMi80OTY1Rjg0Q0FG QzAxMUVGODJCQjEwNTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC/nDANBgkqhkiG9w0BAQsFAAOCAQEAc/X7WwkBRl3/6wS8 dJcSuudE5sT9uH7d8W3taIQNJuxcKN+q2+p3FaREv4ByEpkd+igwgNQEOfLsv16j Mm0zj+8nGQRbxf6R/z6s411RBg7uUHxK2PUBru1O79EC4K623wtFTmr5jzaQrDqz yPujPpTeDLRN35Wrm6PrLaQmPU9qNO8tPL09Lv3NMUPuMvbclPXRIk6MgOiGyZuU DYUVhkuhYhgfofxKuSuTXDxkl1Rs6r9oR8T8s6p5WBoCey6rAnMT8TbwyIZ+J52f +1iSYNsF7SoGazPzDu2mvC3PGVtJG02N61STYQgAZTCITiwL2eSlnQWygYmVCA4k EQqQ1w== -----END CERTIFICATE-----Generated at Wed Nov 5 11:25:28 2025 by rpki-client