$ rpki-client -vvf rpki.apnic.net/member_repository/A91955D9/C54F2246A28511EFB66B1811C4F9AE02/EC509DE4501211F0BE5D2025C4F9AE02.roa File: EC509DE4501211F0BE5D2025C4F9AE02.roa (raw, json) Hash identifier: 59709TYd4BYZbsPTssB//DoW2gqjEPI/Hf7sdt1S0uw= Subject key identifier: 8D:9A:0A:0C:F9:0B:0D:44:8A:CD:CB:44:E4:2B:9A:37:74:8C:DA:64 Certificate issuer: /CN=A91955D9/serialNumber=57B5832B49001819CAE1CCB92CDB1CB46887E09C Certificate serial: 7B Authority key identifier: 57:B5:83:2B:49:00:18:19:CA:E1:CC:B9:2C:DB:1C:B4:68:87:E0:9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V7WDK0kAGBnK4cy5LNsctGiH4Jw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91955D9/C54F2246A28511EFB66B1811C4F9AE02/EC509DE4501211F0BE5D2025C4F9AE02.roa Signing time: Mon 23 Jun 2025 09:17:45 +0000 ROA not before: Mon 23 Jun 2025 09:17:45 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 153455 IP address blocks: 160.250.6.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91955D9/C54F2246A28511EFB66B1811C4F9AE02/V7WDK0kAGBnK4cy5LNsctGiH4Jw.crl rsync://rpki.apnic.net/member_repository/A91955D9/C54F2246A28511EFB66B1811C4F9AE02/V7WDK0kAGBnK4cy5LNsctGiH4Jw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V7WDK0kAGBnK4cy5LNsctGiH4Jw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91955D9, serialNumber=57B5832B49001819CAE1CCB92CDB1CB46887E09C Validity Not Before: Jun 23 09:17:45 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68591bb9-fa3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3f:18:00:44:9a:d8:4a:97:16:41:6a:ac:76: 36:3f:ce:b4:2a:e7:6f:b2:bf:20:cb:8b:03:77:93: 74:10:d4:ba:a9:40:25:8a:fc:ef:12:21:a8:f3:ad: 12:8b:a4:ab:d1:5c:39:49:22:df:38:37:29:d7:5c: 23:67:b1:66:13:f1:da:58:57:a8:f3:2d:47:19:e2: 3b:0c:d7:57:23:4c:c3:10:51:3d:f1:d4:41:38:94: 99:ad:f0:d7:8f:48:b8:98:59:bf:c0:92:44:80:dc: 5a:7b:a3:5a:59:c5:36:2d:6c:55:a8:6b:a9:41:32: cf:dc:7f:db:7b:c6:70:79:a7:1e:14:a7:71:b8:00: e8:06:bc:34:e4:f7:f8:4e:e8:79:a5:be:22:d1:0f: 3b:4b:32:78:0b:12:b4:5f:ce:c9:97:91:ab:44:66: 54:81:d1:1a:ca:84:0f:e5:bb:01:da:9d:d7:23:3e: a4:cf:1a:86:4a:83:d7:b9:68:ae:90:05:2b:49:a2: 95:36:b3:60:ea:b9:85:7c:b3:e1:73:e1:91:d3:57: a5:d3:12:96:48:63:cb:2d:08:77:a0:26:ee:6a:1c: e8:9e:e1:70:36:9a:7a:3e:16:77:50:21:86:ff:7e: 30:9e:24:6d:5f:0f:eb:a9:1e:1a:44:5d:12:1e:a5: d2:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:9A:0A:0C:F9:0B:0D:44:8A:CD:CB:44:E4:2B:9A:37:74:8C:DA:64 X509v3 Authority Key Identifier: keyid:57:B5:83:2B:49:00:18:19:CA:E1:CC:B9:2C:DB:1C:B4:68:87:E0:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91955D9/C54F2246A28511EFB66B1811C4F9AE02/V7WDK0kAGBnK4cy5LNsctGiH4Jw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/V7WDK0kAGBnK4cy5LNsctGiH4Jw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91955D9/C54F2246A28511EFB66B1811C4F9AE02/EC509DE4501211F0BE5D2025C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.6.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:34:e5:cd:d2:80:33:26:3c:f7:cb:cb:32:73:37:76:1a:b3: 2b:3d:80:2c:72:0f:55:0d:0d:06:a4:8f:d8:8f:1e:5e:d9:ac: 26:a4:74:2e:89:1b:b7:27:d3:47:20:29:2c:4b:a3:bf:ba:bf: 00:8f:3e:44:d5:df:25:fa:22:6b:b8:5c:27:91:e6:b1:5a:54: 04:ce:3b:bb:84:98:3b:b2:b6:9a:34:08:b1:60:be:1d:d8:72: 63:24:e2:72:10:67:83:f9:a3:19:f7:08:f5:6b:2f:d6:1d:81: 7d:4a:6d:3a:9b:ad:a4:07:10:b1:d8:13:56:e6:1d:31:63:2f: 4b:ae:c7:22:24:44:2e:65:8d:eb:ef:4e:25:18:27:a1:bc:4f: 4b:cd:78:5b:8a:e9:a0:45:ca:84:84:3e:f9:f1:ed:3d:13:ec: b5:8e:0b:dc:45:82:d8:7f:5f:75:5e:c8:a1:80:d4:8b:d1:65: 9d:51:ba:6b:53:54:f5:a5:86:df:ca:c1:9c:7c:71:05:bb:59: 3b:53:fb:2a:e6:b6:00:0f:03:df:c8:73:6c:90:30:11:26:54: 35:91:d7:11:ec:63:d9:10:26:3c:f3:29:69:e2:0e:a9:00:a6: 04:35:af:d5:6d:9c:57:7f:ea:68:0b:6e:0d:85:cf:79:9a:39: 0e:e7:db:14 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTVEOTExMC8GA1UEBRMoNTdCNTgzMkI0OTAwMTgxOUNBRTFDQ0I5MkNEQjFDQjQ2 ODg3RTA5QzAeFw0yNTA2MjMwOTE3NDVaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NTkxYmI5LWZhM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFPxgARJrYSpcWQWqsdjY/zrQq52+yvyDLiwN3k3QQ1LqpQCWK/O8SIajzrRKL pKvRXDlJIt84NynXXCNnsWYT8dpYV6jzLUcZ4jsM11cjTMMQUT3x1EE4lJmt8NeP SLiYWb/AkkSA3Fp7o1pZxTYtbFWoa6lBMs/cf9t7xnB5px4Up3G4AOgGvDTk9/hO 6HmlviLRDztLMngLErRfzsmXkatEZlSB0RrKhA/luwHandcjPqTPGoZKg9e5aK6Q BStJopU2s2DquYV8s+Fz4ZHTV6XTEpZIY8stCHegJu5qHOie4XA2mno+FndQIYb/ fjCeJG1fD+upHhpEXRIepdKLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjZoKDPkL DUSKzctE5CuaN3SM2mQwHwYDVR0jBBgwFoAUV7WDK0kAGBnK4cy5LNsctGiH4Jww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1NUQ5L0M1NEYyMjQ2QTI4 NTExRUZCNjZCMTgxMUM0RjlBRTAyL1Y3V0RLMGtBR0JuSzRjeTVMTnNjdEdpSDRK dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVjdXREswa0FHQm5LNGN5NUxOc2N0R2lINEp3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTVEOS9DNTRGMjI0NkEyODUxMUVGQjY2QjE4MTFDNEY5QUUwMi9FQzUwOURFNDUw MTIxMUYwQkU1RDIwMjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD6BjANBgkqhkiG9w0BAQsFAAOCAQEAbTTlzdKAMyY898vL MnM3dhqzKz2ALHIPVQ0NBqSP2I8eXtmsJqR0LokbtyfTRyApLEujv7q/AI8+RNXf Jfoia7hcJ5HmsVpUBM47u4SYO7K2mjQIsWC+HdhyYyTichBng/mjGfcI9Wsv1h2B fUptOputpAcQsdgTVuYdMWMvS67HIiRELmWN6+9OJRgnobxPS814W4rpoEXKhIQ+ +fHtPRPstY4L3EWC2H9fdV7IoYDUi9FlnVG6a1NU9aWG38rBnHxxBbtZO1P7Kua2 AA8D38hzbJAwESZUNZHXEexj2RAmPPMpaeIOqQCmBDWv1W2cV3/qaAtuDYXPeZo5 DufbFA== -----END CERTIFICATE-----Generated at Sat Jul 5 05:23:32 2025 by rpki-client