$ rpki-client -vvf rpki.apnic.net/member_repository/A911911C/807DBCBC6E4211EFB907797DC4F9AE02/880F25226E5311EFB4671957C4F9AE02.roa File: 880F25226E5311EFB4671957C4F9AE02.roa (raw, json) Hash identifier: J/A0Tcht/6BAxrksZsepsZObquBupiicduR/i0K3+O4= Subject key identifier: 57:2E:40:3F:6E:29:F6:39:38:61:3F:A2:FB:8F:74:8D:4F:73:EE:2B Certificate issuer: /CN=A911911C/serialNumber=F1C942632FA6FC7710816088F0CB8C1335251CDD Certificate serial: 7D Authority key identifier: F1:C9:42:63:2F:A6:FC:77:10:81:60:88:F0:CB:8C:13:35:25:1C:DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8clCYy-m_HcQgWCI8MuMEzUlHN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911911C/807DBCBC6E4211EFB907797DC4F9AE02/880F25226E5311EFB4671957C4F9AE02.roa Signing time: Wed 30 Apr 2025 14:50:17 +0000 ROA not before: Wed 30 Apr 2025 14:50:17 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133062 IP address blocks: 160.187.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911911C/807DBCBC6E4211EFB907797DC4F9AE02/8clCYy-m_HcQgWCI8MuMEzUlHN0.crl rsync://rpki.apnic.net/member_repository/A911911C/807DBCBC6E4211EFB907797DC4F9AE02/8clCYy-m_HcQgWCI8MuMEzUlHN0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8clCYy-m_HcQgWCI8MuMEzUlHN0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 14:22:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911911C, serialNumber=F1C942632FA6FC7710816088F0CB8C1335251CDD Validity Not Before: Apr 30 14:50:17 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=681238a9-a930 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:99:d1:a0:73:c5:0d:77:08:51:08:7b:0b:ee: 11:68:83:14:de:4e:a6:22:84:f1:49:9f:0e:0c:c6: 54:7e:9f:7b:8e:3a:50:da:3d:2e:fb:4b:7a:a2:52: c4:e6:f0:fe:1b:e1:a1:86:8c:12:ef:8a:fc:42:e2: 8b:f9:69:c9:a0:9a:7c:30:b1:1a:3b:88:f3:c7:fb: bf:06:95:14:4d:fa:0f:d6:53:5f:eb:fd:5f:bb:e5: 2b:e7:6f:a7:9e:6a:43:bb:9e:01:6a:83:4a:8f:fc: 8e:1e:0c:2f:9d:d6:d8:97:8d:ff:2f:bd:46:42:2f: 6e:d2:20:86:7f:52:44:1a:6e:72:0d:38:bc:37:12: 91:cc:d0:23:35:b1:2c:49:d9:ee:81:f1:26:19:e4: 95:2a:99:fd:05:53:4d:38:48:ea:e6:f2:57:89:57: 27:d9:88:7d:a1:61:aa:e0:cf:2d:f2:6d:97:ad:63: 81:f4:cc:65:d3:85:c8:55:77:5d:6a:f9:48:58:2d: bd:65:e6:f0:c0:9c:40:fc:38:24:27:65:9a:7d:5b: 56:e2:fb:76:fc:eb:59:16:59:f3:80:18:80:26:d2: 33:20:1e:f4:e2:a5:54:29:ec:ac:fb:19:7e:c9:00: e0:74:ac:20:0c:df:a7:8f:cc:7a:e5:e5:5a:c7:d9: 8e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:2E:40:3F:6E:29:F6:39:38:61:3F:A2:FB:8F:74:8D:4F:73:EE:2B X509v3 Authority Key Identifier: keyid:F1:C9:42:63:2F:A6:FC:77:10:81:60:88:F0:CB:8C:13:35:25:1C:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911911C/807DBCBC6E4211EFB907797DC4F9AE02/8clCYy-m_HcQgWCI8MuMEzUlHN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8clCYy-m_HcQgWCI8MuMEzUlHN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911911C/807DBCBC6E4211EFB907797DC4F9AE02/880F25226E5311EFB4671957C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.16.0/23 Signature Algorithm: sha256WithRSAEncryption 1c:2f:7f:c8:c2:23:cb:c6:04:fb:36:47:37:02:29:ba:86:f7: 7f:b8:91:ce:b6:51:36:3b:fe:45:42:eb:2c:6a:5b:96:15:58: bc:a1:d5:14:98:d1:a9:de:56:1f:78:99:2b:d7:09:78:42:ee: 43:bd:c4:0c:10:08:3e:3b:2e:51:8f:20:d1:ff:cb:e3:be:56: 0a:cf:c9:a6:81:53:8a:cb:e6:8f:b8:c0:5e:05:ee:8e:d7:38: d4:cf:7d:15:7c:0d:f8:b9:33:0f:28:ff:28:63:8c:af:89:9e: ad:62:a3:84:25:01:22:b9:2d:4f:7e:df:52:0e:5a:88:01:f8: 71:fa:0c:89:4d:4e:83:2d:84:dc:b8:bc:34:ae:f2:a5:de:25: 9e:7a:03:c3:2a:60:77:7c:e2:fc:91:72:fd:66:21:29:78:b2: 47:d9:30:69:d9:6a:fb:86:f4:6a:b0:07:d6:e4:1d:ef:1c:6a: 4f:37:05:3a:65:35:25:47:bd:ff:b7:43:46:9c:3c:a7:9d:5b: b5:77:a5:41:6f:ca:0e:b0:98:5c:80:b9:d7:c1:6a:5a:e7:74: ae:cf:1c:23:55:22:44:12:c0:26:fc:23:ba:ae:c7:27:da:bb: 0b:6c:2a:65:7e:00:ef:18:d8:c7:13:6c:f7:9c:32:d5:a0:fb: f3:0b:24:c3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTExQzExMC8GA1UEBRMoRjFDOTQyNjMyRkE2RkM3NzEwODE2MDg4RjBDQjhDMTMz NTI1MUNERDAeFw0yNTA0MzAxNDUwMTdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTIzOGE5LWE5MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9mdGgc8UNdwhRCHsL7hFogxTeTqYihPFJnw4MxlR+n3uOOlDaPS77S3qiUsTm 8P4b4aGGjBLvivxC4ov5acmgmnwwsRo7iPPH+78GlRRN+g/WU1/r/V+75Svnb6ee akO7ngFqg0qP/I4eDC+d1tiXjf8vvUZCL27SIIZ/UkQabnINOLw3EpHM0CM1sSxJ 2e6B8SYZ5JUqmf0FU004SOrm8leJVyfZiH2hYargzy3ybZetY4H0zGXThchVd11q +UhYLb1l5vDAnED8OCQnZZp9W1bi+3b861kWWfOAGIAm0jMgHvTipVQp7Kz7GX7J AOB0rCAM36ePzHrl5VrH2Y6jAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVy5AP24p 9jk4YT+i+490jU9z7iswHwYDVR0jBBgwFoAU8clCYy+m/HcQgWCI8MuMEzUlHN0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5MTFDLzgwN0RCQ0JDNkU0 MjExRUZCOTA3Nzk3REM0RjlBRTAyLzhjbENZeS1tX0hjUWdXQ0k4TXVNRXpVbEhO MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOGNsQ1l5LW1fSGNRZ1dDSThNdU1FelVsSE4wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTExQy84MDdEQkNCQzZFNDIxMUVGQjkwNzc5N0RDNEY5QUUwMi84ODBGMjUyMjZF NTMxMUVGQjQ2NzE5NTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7EDANBgkqhkiG9w0BAQsFAAOCAQEAHC9/yMIjy8YE+zZH NwIpuob3f7iRzrZRNjv+RULrLGpblhVYvKHVFJjRqd5WH3iZK9cJeELuQ73EDBAI PjsuUY8g0f/L475WCs/JpoFTisvmj7jAXgXujtc41M99FXwN+LkzDyj/KGOMr4me rWKjhCUBIrktT37fUg5aiAH4cfoMiU1Ogy2E3Li8NK7ypd4lnnoDwypgd3zi/JFy /WYhKXiyR9kwadlq+4b0arAH1uQd7xxqTzcFOmU1JUe9/7dDRpw8p51btXelQW/K DrCYXIC518FqWud0rs8cI1UiRBLAJvwjuq7HJ9q7C2wqZX4A7xjYxxNs95wy1aD7 8wskww== -----END CERTIFICATE-----Generated at Thu May 15 19:26:33 2025 by rpki-client