$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/0B65C980136D11F09F542C81C4F9AE02.roa File: 0B65C980136D11F09F542C81C4F9AE02.roa (raw, json) Hash identifier: VBqh2E7rkd2+euZfBVuvn8Wuy6ZridPl7cQmEbFqT/k= Subject key identifier: 16:67:2F:5E:D5:83:3F:98:BE:57:9D:38:5D:D9:56:2C:9B:39:67:8E Certificate issuer: /CN=A91F3B5F/serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Certificate serial: 03 Authority key identifier: DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/0B65C980136D11F09F542C81C4F9AE02.roa Signing time: Mon 07 Apr 2025 04:59:11 +0000 ROA not before: Mon 07 Apr 2025 04:59:11 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153526 IP address blocks: 161.248.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:06:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3B5F, serialNumber=DEB4C0B907FACA1C5D3776BD4946F4BAA8CA6B30 Validity Not Before: Apr 7 04:59:11 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67f35b9f-6c2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c4:a3:23:f8:3f:82:a6:9f:2f:39:48:0e:c4: ff:59:0e:5d:fd:77:16:94:4b:2f:8c:bc:77:d8:a5: 2b:ad:3d:4f:fb:22:22:23:97:60:34:31:e1:f7:d1: 37:a1:0a:52:94:16:92:0e:a0:42:91:6f:71:eb:53: 00:f6:00:08:9d:1c:d3:b6:23:4b:27:51:91:97:97: d4:b1:83:a8:1a:6a:80:6d:f1:30:d5:26:12:1f:80: 9f:03:3f:56:18:4c:70:f2:cf:6b:3f:a5:3f:1f:87: 1b:12:76:59:56:55:90:2b:b1:f3:cd:f9:65:75:bb: 9e:1b:07:1a:45:88:a5:96:ac:c3:c0:6b:24:bd:54: 0f:40:83:ff:9a:ed:b6:51:39:44:7b:eb:5c:8b:e6: f0:d4:ba:7b:44:fc:bb:4a:55:61:38:30:41:3b:50: 97:7a:60:7e:ac:9d:12:64:87:df:29:57:4e:45:d8: 7c:42:7d:ce:1d:d6:46:7d:54:5a:a9:33:ec:b1:e9: fe:fe:dc:bd:c2:9d:eb:2f:e4:61:7b:b8:33:f4:79: 61:bc:08:8b:86:8b:2b:2e:58:61:ba:b5:66:da:3c: 8f:48:de:e2:82:69:81:e7:90:ce:50:44:5f:5c:0d: f0:fb:8c:36:81:fc:13:3d:3e:d0:fb:ee:a7:07:c7: 8d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:67:2F:5E:D5:83:3F:98:BE:57:9D:38:5D:D9:56:2C:9B:39:67:8E X509v3 Authority Key Identifier: keyid:DE:B4:C0:B9:07:FA:CA:1C:5D:37:76:BD:49:46:F4:BA:A8:CA:6B:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/3rTAuQf6yhxdN3a9SUb0uqjKazA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3rTAuQf6yhxdN3a9SUb0uqjKazA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3B5F/B170C912136611F082E3C50DC4F9AE02/0B65C980136D11F09F542C81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.192.0/23 Signature Algorithm: sha256WithRSAEncryption 77:b3:b5:ac:53:9c:07:e3:52:83:26:29:4d:ba:d3:6f:45:39: 39:0c:6f:67:21:44:db:08:73:72:8d:29:62:cd:07:29:e6:81: 85:38:5e:3e:73:f6:41:9f:4b:34:78:5f:86:da:66:e7:f9:ef: 32:73:22:dd:cc:2c:bc:34:c9:0d:fb:cb:57:3f:85:5f:53:91: 36:7f:fe:b6:0d:92:c6:ba:d9:07:c6:28:bf:cf:63:5c:4e:b8: ab:0b:18:81:b9:d7:23:f2:04:76:8e:2b:49:68:10:4f:66:8e: 05:20:a6:28:fa:05:f1:2f:ed:46:80:9d:99:5a:de:08:a5:61: f4:9d:c9:35:08:33:ac:2c:0e:b0:c7:53:7b:08:21:f7:a4:e3: 87:02:ac:c8:80:45:66:fb:84:3d:95:85:44:27:15:07:aa:a5: 28:0a:06:b2:f0:0a:4b:e8:13:dc:85:65:84:ad:23:dd:0e:4a: 6b:1d:90:05:85:8d:a5:be:85:a0:3b:c0:82:07:ad:22:ca:d1: 5f:62:08:5f:45:a5:e8:28:ca:64:ef:c9:fe:ac:0f:62:14:4e: 33:3c:d7:45:92:8d:4e:ef:7c:a9:9d:38:80:a0:8c:8c:91:df: 1b:63:7a:95:44:25:2d:38:86:3c:bb:34:d9:72:4d:f7:80:00: a8:cf:05:2c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0I1RjExMC8GA1UEBRMoREVCNEMwQjkwN0ZBQ0ExQzVEMzc3NkJENDk0NkY0QkFB OENBNkIzMDAeFw0yNTA0MDcwNDU5MTFaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZjM1YjlmLTZjMmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5xKMj+D+Cpp8vOUgOxP9ZDl39dxaUSy+MvHfYpSutPU/7IiIjl2A0MeH30Teh ClKUFpIOoEKRb3HrUwD2AAidHNO2I0snUZGXl9Sxg6gaaoBt8TDVJhIfgJ8DP1YY THDyz2s/pT8fhxsSdllWVZArsfPN+WV1u54bBxpFiKWWrMPAayS9VA9Ag/+a7bZR OUR761yL5vDUuntE/LtKVWE4MEE7UJd6YH6snRJkh98pV05F2HxCfc4d1kZ9VFqp M+yx6f7+3L3Cnesv5GF7uDP0eWG8CIuGiysuWGG6tWbaPI9I3uKCaYHnkM5QRF9c DfD7jDaB/BM9PtD77qcHx42PAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFmcvXtWD P5i+V504XdlWLJs5Z44wHwYDVR0jBBgwFoAU3rTAuQf6yhxdN3a9SUb0uqjKazAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQjVGL0IxNzBDOTEyMTM2 NjExRjA4MkUzQzUwREM0RjlBRTAyLzNyVEF1UWY2eWh4ZE4zYTlTVWIwdXFqS2F6 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvM3JUQXVRZjZ5aHhkTjNhOVNVYjB1cWpLYXpBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0I1Ri9CMTcwQzkxMjEzNjYxMUYwODJFM0M1MERDNEY5QUUwMi8wQjY1Qzk4MDEz NkQxMUYwOUY1NDJDODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4wDANBgkqhkiG9w0BAQsFAAOCAQEAd7O1rFOcB+NSgyYp TbrTb0U5OQxvZyFE2whzco0pYs0HKeaBhThePnP2QZ9LNHhfhtpm5/nvMnMi3cws vDTJDfvLVz+FX1ORNn/+tg2SxrrZB8Yov89jXE64qwsYgbnXI/IEdo4rSWgQT2aO BSCmKPoF8S/tRoCdmVreCKVh9J3JNQgzrCwOsMdTewgh96TjhwKsyIBFZvuEPZWF RCcVB6qlKAoGsvAKS+gT3IVlhK0j3Q5Kax2QBYWNpb6FoDvAggetIsrRX2IIX0Wl 6CjKZO/J/qwPYhROMzzXRZKNTu98qZ04gKCMjJHfG2N6lUQlLTiGPLs02XJN94AA qM8FLA== -----END CERTIFICATE-----Generated at Sat Apr 26 12:27:20 2025 by rpki-client