$ rpki-client -vvf rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/5E85AD042B1B11F0AE3E223BC4F9AE02.roa File: 5E85AD042B1B11F0AE3E223BC4F9AE02.roa (raw, json) Hash identifier: ehnqd1f3QowHKupxZCgtiZG9EfVwv3NoZQIQlB2w/i4= Subject key identifier: 81:95:B7:C6:8C:03:47:E4:5C:3F:07:83:A8:60:01:72:FF:37:9E:4F Certificate issuer: /CN=A91B87FC/serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD Certificate serial: 71 Authority key identifier: 3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/5E85AD042B1B11F0AE3E223BC4F9AE02.roa Signing time: Wed 07 May 2025 08:15:00 +0000 ROA not before: Wed 07 May 2025 08:15:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24499 IP address blocks: 160.30.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.crl rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B87FC, serialNumber=3A87871E3BAE65EDE2F31BB1AD5C59BB7A74ABDD Validity Not Before: May 7 08:15:00 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=681b1684-a7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ee:9d:25:af:97:00:72:30:3a:05:6e:12:4b: 05:75:2b:fc:6a:3a:fd:d1:26:c4:9e:2f:2d:d5:ca: dc:88:88:29:a5:1f:4a:0c:01:68:3c:37:eb:69:34: 04:22:54:44:89:a7:cd:21:79:d9:35:f0:1d:e4:ee: 15:d4:72:ff:76:a2:53:f5:74:dc:a1:98:ea:29:3b: 7c:9d:c0:b0:92:e9:4a:55:52:e6:f7:00:f7:a6:45: 9b:72:51:e2:93:33:e5:9c:89:22:e2:17:75:d6:65: a5:5c:88:be:8b:b1:a3:3f:4c:2c:2c:88:a4:18:99: bc:75:02:1e:5d:3f:bb:89:71:33:44:8b:1d:44:ac: 43:ad:5f:12:28:ee:7c:a8:86:e9:5e:40:35:a8:08: 1f:d2:03:f4:a9:bb:a8:34:0c:ff:e1:97:b8:53:0b: 59:31:8b:1f:f1:ca:f0:e0:cf:6a:22:4f:e9:85:93: 44:ac:ed:73:35:dc:a6:da:64:00:7e:06:34:b9:4a: 1d:05:a7:ed:1c:43:53:10:f4:17:19:9b:96:54:61: 99:69:fe:47:9f:4d:92:9e:0a:ae:56:af:9d:12:5d: 4d:b1:69:ae:fd:76:be:98:71:1e:22:a3:de:27:fa: 60:e6:71:d9:c4:25:cb:92:fc:21:99:4d:cc:b9:ef: 47:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:95:B7:C6:8C:03:47:E4:5C:3F:07:83:A8:60:01:72:FF:37:9E:4F X509v3 Authority Key Identifier: keyid:3A:87:87:1E:3B:AE:65:ED:E2:F3:1B:B1:AD:5C:59:BB:7A:74:AB:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/OoeHHjuuZe3i8xuxrVxZu3p0q90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OoeHHjuuZe3i8xuxrVxZu3p0q90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B87FC/3978E31686E111EF8F773F82C4F9AE02/5E85AD042B1B11F0AE3E223BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.109.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:3b:e6:6f:ae:05:8b:4b:9c:a9:36:ce:86:fe:ad:1f:4f:fd: 92:6c:b6:55:72:66:58:eb:4c:11:27:44:ca:a6:8c:0d:78:52: 44:4b:96:23:d2:bd:73:88:03:db:60:89:b9:75:bb:28:68:4a: 77:83:ce:1a:78:9a:5f:d5:99:28:08:0f:0a:50:d3:4d:01:55: 92:32:46:58:c2:da:cf:8e:f1:1c:a9:94:90:c3:a0:f3:b4:80: 51:c2:6f:20:75:ad:45:19:fd:59:e3:7d:c4:a2:97:46:f5:1c: 99:d0:56:74:44:d2:c5:61:31:6f:03:62:ab:9f:c3:db:5d:91: 2f:07:bc:1c:13:78:42:f4:99:89:87:47:d6:52:7a:3b:39:70: 8d:b0:b8:93:3d:1d:d0:2a:b4:11:89:ef:97:2d:02:ac:80:3b: 8f:94:ef:0a:e3:37:73:b7:c7:bc:5f:c7:d1:8d:68:fa:92:6d: 21:ed:4a:e7:2c:96:e7:fb:75:c6:77:10:45:b7:97:22:a4:26: 47:a4:81:6f:8a:68:3b:5c:00:41:15:aa:29:5e:b0:41:bd:a0: 57:85:65:c4:bd:7a:66:47:6b:01:d5:be:58:36:fe:ad:e1:ac: 38:8f:e3:82:f5:77:e0:6d:be:49:1b:b5:90:3a:31:ea:2c:cd: b2:2d:0a:25 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC ODdGQzExMC8GA1UEBRMoM0E4Nzg3MUUzQkFFNjVFREUyRjMxQkIxQUQ1QzU5QkI3 QTc0QUJERDAeFw0yNTA1MDcwODE1MDBaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MWIxNjg0LWE3YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ7p0lr5cAcjA6BW4SSwV1K/xqOv3RJsSeLy3VytyIiCmlH0oMAWg8N+tpNAQi VESJp80hedk18B3k7hXUcv92olP1dNyhmOopO3ydwLCS6UpVUub3APemRZtyUeKT M+WciSLiF3XWZaVciL6LsaM/TCwsiKQYmbx1Ah5dP7uJcTNEix1ErEOtXxIo7nyo huleQDWoCB/SA/Spu6g0DP/hl7hTC1kxix/xyvDgz2oiT+mFk0Ss7XM13KbaZAB+ BjS5Sh0Fp+0cQ1MQ9BcZm5ZUYZlp/kefTZKeCq5Wr50SXU2xaa79dr6YcR4io94n +mDmcdnEJcuS/CGZTcy570fbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgZW3xowD R+RcPweDqGABcv83nk8wHwYDVR0jBBgwFoAUOoeHHjuuZe3i8xuxrVxZu3p0q90w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI4N0ZDLzM5NzhFMzE2ODZF MTExRUY4Rjc3M0Y4MkM0RjlBRTAyL09vZUhIanV1WmUzaTh4dXhyVnhadTNwMHE5 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvT29lSEhqdXVaZTNpOHh1eHJWeFp1M3AwcTkwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODdGQy8zOTc4RTMxNjg2RTExMUVGOEY3NzNGODJDNEY5QUUwMi81RTg1QUQwNDJC MUIxMUYwQUUzRTIyM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAebTANBgkqhkiG9w0BAQsFAAOCAQEADDvmb64Fi0ucqTbO hv6tH0/9kmy2VXJmWOtMESdEyqaMDXhSREuWI9K9c4gD22CJuXW7KGhKd4POGnia X9WZKAgPClDTTQFVkjJGWMLaz47xHKmUkMOg87SAUcJvIHWtRRn9WeN9xKKXRvUc mdBWdETSxWExbwNiq5/D212RLwe8HBN4QvSZiYdH1lJ6OzlwjbC4kz0d0Cq0EYnv ly0CrIA7j5TvCuM3c7fHvF/H0Y1o+pJtIe1K5yyW5/t1xncQRbeXIqQmR6SBb4po O1wAQRWqKV6wQb2gV4VlxL16ZkdrAdW+WDb+reGsOI/jgvV34G2+SRu1kDox6izN si0KJQ== -----END CERTIFICATE-----Generated at Sat May 10 20:19:32 2025 by rpki-client