$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/E24B9ECE152B11F0A742CE86C4F9AE02.roa File: E24B9ECE152B11F0A742CE86C4F9AE02.roa (raw, json) Hash identifier: 3Rxi2WwZpfu8F7jhnMuFGFa5sVmkxpF3HfYHLo71KOI= Subject key identifier: 09:55:D5:C0:89:BF:19:D7:EA:05:FF:8E:0B:01:E4:8B:B8:54:82:1D Certificate issuer: /CN=A91F08A5/serialNumber=85E8EE9A8D30528599062D08CB9CB9D513DF6BD7 Certificate serial: 41 Authority key identifier: 85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/E24B9ECE152B11F0A742CE86C4F9AE02.roa Signing time: Wed 09 Apr 2025 10:17:47 +0000 ROA not before: Wed 09 Apr 2025 10:17:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 142647 IP address blocks: 119.160.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 06:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08A5, serialNumber=85E8EE9A8D30528599062D08CB9CB9D513DF6BD7 Validity Not Before: Apr 9 10:17:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f6494b-432e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7c:c3:7e:18:62:39:8d:ca:47:c1:35:b5:d2: 2f:fc:e3:a9:57:ff:65:83:59:c3:a9:61:e8:5b:d1: 01:40:7e:4a:b3:b4:2c:08:11:a0:91:c6:e0:9a:8e: 21:14:18:49:3a:20:8e:5e:2c:37:d2:36:69:b2:37: 25:80:f9:0e:69:56:9c:c4:b7:10:af:40:3b:eb:92: 05:7a:5b:56:24:54:9d:b8:aa:bb:2e:df:cc:71:7a: 9d:fa:3b:39:38:b3:eb:d5:50:c6:b9:d5:20:0d:7d: ca:34:20:61:84:aa:e3:1c:1c:d5:6a:cc:c3:d6:b1: 25:c0:dd:7c:e4:f0:43:2f:b4:7e:fd:89:22:c4:6a: a0:5e:34:90:85:6c:10:5b:6a:66:c1:53:be:31:4b: bd:ea:21:08:25:5c:c6:19:3e:24:6b:02:d5:2e:2f: fa:34:69:d4:5e:cf:19:e9:06:2a:55:e5:07:ef:20: 05:15:f8:0d:54:dc:37:41:ce:8b:d3:15:f8:ba:7c: ec:1c:d2:a8:d2:14:44:a7:1f:ae:24:54:42:7a:d2: 5a:9c:d6:b5:b0:19:ec:e5:a5:17:23:ec:8a:c0:af: 7f:05:a7:47:2e:3e:5e:54:0d:99:1a:64:fd:2c:fd: 48:8d:61:3a:73:e7:23:73:5d:b6:65:bb:a9:78:37: be:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:55:D5:C0:89:BF:19:D7:EA:05:FF:8E:0B:01:E4:8B:B8:54:82:1D X509v3 Authority Key Identifier: keyid:85:E8:EE:9A:8D:30:52:85:99:06:2D:08:CB:9C:B9:D5:13:DF:6B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/hejumo0wUoWZBi0Iy5y51RPfa9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hejumo0wUoWZBi0Iy5y51RPfa9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08A5/D1503136C91B11EF887D6F2CC4F9AE02/E24B9ECE152B11F0A742CE86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.160.214.0/24 Signature Algorithm: sha256WithRSAEncryption ad:31:5a:09:01:79:38:5b:6d:ad:ff:d1:43:ba:04:af:81:39: 10:1b:57:66:46:90:ad:ec:e9:cd:8d:4e:12:2c:e8:07:b5:76: db:39:e5:41:e1:98:20:89:d6:62:ab:4f:4d:f1:62:ef:67:4d: 20:64:81:37:61:a6:e0:a0:0c:6a:72:2d:39:e9:a0:77:e5:80: d4:b4:0a:6c:68:9b:25:a0:27:05:d6:a4:60:fd:e3:d5:d2:33: ac:54:58:7a:5c:22:98:d8:da:28:81:a5:7f:99:43:98:58:e1: d9:e5:87:ce:b0:31:be:4b:8e:82:0d:79:f7:e2:e8:ba:db:5e: 46:9b:90:2b:d8:cc:55:8f:0d:02:16:34:fb:67:b3:7b:0e:38: 06:b3:94:90:29:d9:f5:00:cb:cb:8f:f9:22:4c:22:20:07:3a: fe:55:1d:da:e5:ae:fc:8b:fa:fb:55:00:01:9d:9d:13:f1:71: 91:87:ae:57:c6:87:a8:bf:3d:e4:8b:8e:ff:14:cd:67:96:cf: 91:01:45:d2:c4:bd:29:57:ed:92:09:8f:8a:7e:9d:34:35:45: fc:ad:f5:a6:16:c1:ef:98:6f:c3:30:9b:1a:4b:39:52:41:78: 3b:71:88:a8:48:17:dc:5f:ac:46:eb:39:d5:eb:00:2b:0d:fa: 82:6e:1e:a9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhBNTExMC8GA1UEBRMoODVFOEVFOUE4RDMwNTI4NTk5MDYyRDA4Q0I5Q0I5RDUx M0RGNkJENzAeFw0yNTA0MDkxMDE3NDdaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjY0OTRiLTQzMmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxfMN+GGI5jcpHwTW10i/846lX/2WDWcOpYehb0QFAfkqztCwIEaCRxuCajiEU GEk6II5eLDfSNmmyNyWA+Q5pVpzEtxCvQDvrkgV6W1YkVJ24qrsu38xxep36Ozk4 s+vVUMa51SANfco0IGGEquMcHNVqzMPWsSXA3Xzk8EMvtH79iSLEaqBeNJCFbBBb ambBU74xS73qIQglXMYZPiRrAtUuL/o0adRezxnpBipV5QfvIAUV+A1U3DdBzovT Ffi6fOwc0qjSFESnH64kVEJ60lqc1rWwGezlpRcj7IrAr38Fp0cuPl5UDZkaZP0s /UiNYTpz5yNzXbZlu6l4N74LAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCVXVwIm/ GdfqBf+OCwHki7hUgh0wHwYDVR0jBBgwFoAUhejumo0wUoWZBi0Iy5y51RPfa9cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEE1L0QxNTAzMTM2Qzkx QjExRUY4ODdENkYyQ0M0RjlBRTAyL2hlanVtbzB3VW9XWkJpMEl5NXk1MVJQZmE5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaGVqdW1vMHdVb1daQmkwSXk1eTUxUlBmYTljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDhBNS9EMTUwMzEzNkM5MUIxMUVGODg3RDZGMkNDNEY5QUUwMi9FMjRCOUVDRTE1 MkIxMUYwQTc0MkNFODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAHeg1jANBgkqhkiG9w0BAQsFAAOCAQEArTFaCQF5OFttrf/R Q7oEr4E5EBtXZkaQrezpzY1OEizoB7V22znlQeGYIInWYqtPTfFi72dNIGSBN2Gm 4KAManItOemgd+WA1LQKbGibJaAnBdakYP3j1dIzrFRYelwimNjaKIGlf5lDmFjh 2eWHzrAxvkuOgg159+LoutteRpuQK9jMVY8NAhY0+2ezew44BrOUkCnZ9QDLy4/5 IkwiIAc6/lUd2uWu/Iv6+1UAAZ2dE/FxkYeuV8aHqL895IuO/xTNZ5bPkQFF0sS9 KVftkgmPin6dNDVF/K31phbB75hvwzCbGks5UkF4O3GIqEgX3F+sRus51esAKw36 gm4eqQ== -----END CERTIFICATE-----Generated at Sat Apr 26 07:39:18 2025 by rpki-client