$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/F74324B0464511EFA4CCFA6DC4F9AE02.roa File: F74324B0464511EFA4CCFA6DC4F9AE02.roa (raw, json) Hash identifier: JKn9arrhKIKLCkrCm7PBh/6X6a8i3r2H/xvsTIl/UOU= Subject key identifier: 55:10:FF:D8:D1:2D:47:96:5D:C2:20:2B:F5:D4:6F:C5:E6:CA:B5:3B Certificate issuer: /CN=A91CF064/serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Certificate serial: 9D Authority key identifier: AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/F74324B0464511EFA4CCFA6DC4F9AE02.roa Signing time: Mon 05 May 2025 05:12:34 +0000 ROA not before: Mon 05 May 2025 05:12:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 141455 IP address blocks: 160.20.126.0/23 maxlen: 23 160.20.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF064, serialNumber=AD4332038272C2DB3215DDA3ADFB015354156913 Validity Not Before: May 5 05:12:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681848c2-fc8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f8:67:e1:e4:eb:57:22:5d:48:84:09:d5:62: f9:94:7c:ba:1f:87:d3:ec:a6:e2:3c:a5:21:10:3c: 7f:af:8c:5b:a8:78:ec:a1:63:2d:2a:cd:dc:2e:72: fd:5d:7a:9e:8c:c5:a5:3a:70:f7:4f:b5:f2:87:91: e3:9c:c2:4b:a8:d5:21:93:4d:a4:80:9d:14:15:66: f6:f0:34:c8:83:c4:15:d5:ae:b6:73:d4:4f:c0:09: 04:ba:f2:40:eb:6f:dd:51:76:ac:96:95:6f:ec:73: bf:d9:0a:16:c1:1d:dd:62:8e:17:f9:13:6e:5a:52: 49:73:c2:6c:62:56:c1:dd:9b:70:cf:b6:f3:ff:e2: ca:93:9a:90:60:2f:34:18:b3:ba:e4:3d:28:05:1e: ce:a4:92:45:7f:48:ed:71:37:4b:79:ec:df:a0:20: 68:38:b1:58:8b:56:6c:2d:2d:4c:f0:c4:89:24:27: 1e:5e:b3:67:29:c5:72:fe:c3:ce:e4:9f:78:cb:e7: ec:de:fd:08:a3:86:1c:87:ab:e2:1d:0f:33:cd:b2: 42:13:e9:21:1b:71:07:75:95:0c:29:bf:90:99:a2: e4:bc:62:cc:91:03:35:ba:50:ab:95:dc:fc:79:da: 54:e6:09:47:09:4f:e7:fa:32:2a:60:55:74:f4:4e: 16:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:10:FF:D8:D1:2D:47:96:5D:C2:20:2B:F5:D4:6F:C5:E6:CA:B5:3B X509v3 Authority Key Identifier: keyid:AD:43:32:03:82:72:C2:DB:32:15:DD:A3:AD:FB:01:53:54:15:69:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/rUMyA4JywtsyFd2jrfsBU1QVaRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rUMyA4JywtsyFd2jrfsBU1QVaRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF064/F3CA617244E211EFB13F2214C4F9AE02/F74324B0464511EFA4CCFA6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.126.0/23 Signature Algorithm: sha256WithRSAEncryption c8:bf:8e:65:a4:a2:6b:42:18:c4:4d:ea:26:e5:1f:ca:07:84: e3:f4:af:6b:92:47:79:fc:aa:c6:7a:e2:c8:84:38:65:e3:4a: 39:72:18:f3:34:7c:b8:b5:62:f5:c3:0e:6a:59:81:f8:7a:db: b6:65:dc:73:8b:45:26:5a:6f:a4:26:8f:5d:7e:78:b5:0a:49: a0:2f:8b:7e:a3:ae:5c:3e:4a:86:c1:1c:20:3b:b0:0b:b6:3a: be:19:14:b7:0b:6d:cc:c0:29:28:e0:5d:f4:de:a3:9c:b5:cd: 2e:a0:16:c2:43:23:86:0a:27:60:06:e1:db:7c:6b:5f:f3:46: 40:4f:1e:76:74:24:58:50:ae:a4:b2:ad:cb:ac:79:30:f1:f0: 20:fc:95:d5:3a:63:a2:5b:44:53:bb:8c:60:e7:5b:9e:2e:13: b1:88:e0:52:a3:10:cd:8f:1c:92:64:a1:9d:b6:f4:f9:3f:07: 00:34:5a:70:8d:e7:68:10:8d:79:fc:48:e2:a3:a5:84:52:5a: a3:31:55:ea:b9:35:2f:d4:63:37:5f:4d:a1:a2:94:59:07:01: a5:5c:f6:ca:04:ba:fd:13:35:52:f0:83:0d:69:ab:71:9d:17: 00:95:f0:f1:cf:2a:a8:5e:f0:1c:c0:eb:ad:2b:8e:ad:50:96: 75:50:c6:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YwNjQxMTAvBgNVBAUTKEFENDMzMjAzODI3MkMyREIzMjE1RERBM0FERkIwMTUz NTQxNTY5MTMwHhcNMjUwNTA1MDUxMjM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE4NDhjMi1mYzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/hn4eTrVyJdSIQJ1WL5lHy6H4fT7KbiPKUhEDx/r4xbqHjsoWMtKs3cLnL9 XXqejMWlOnD3T7Xyh5HjnMJLqNUhk02kgJ0UFWb28DTIg8QV1a62c9RPwAkEuvJA 62/dUXaslpVv7HO/2QoWwR3dYo4X+RNuWlJJc8JsYlbB3Ztwz7bz/+LKk5qQYC80 GLO65D0oBR7OpJJFf0jtcTdLeezfoCBoOLFYi1ZsLS1M8MSJJCceXrNnKcVy/sPO 5J94y+fs3v0Io4Ych6viHQ8zzbJCE+khG3EHdZUMKb+QmaLkvGLMkQM1ulCrldz8 edpU5glHCU/n+jIqYFV09E4WWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFUQ/9jR LUeWXcIgK/XUb8XmyrU7MB8GA1UdIwQYMBaAFK1DMgOCcsLbMhXdo637AVNUFWkT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjA2NC9GM0NBNjE3MjQ0 RTIxMUVGQjEzRjIyMTRDNEY5QUUwMi9yVU15QTRKeXd0c3lGZDJqcmZzQlUxUVZh Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JVTXlBNEp5d3RzeUZkMmpyZnNCVTFRVmFSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0YwNjQvRjNDQTYxNzI0NEUyMTFFRkIxM0YyMjE0QzRGOUFFMDIvRjc0MzI0QjA0 NjQ1MTFFRkE0Q0NGQTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgFH4wDQYJKoZIhvcNAQELBQADggEBAMi/jmWkomtCGMRN 6iblH8oHhOP0r2uSR3n8qsZ64siEOGXjSjlyGPM0fLi1YvXDDmpZgfh627Zl3HOL RSZab6Qmj11+eLUKSaAvi36jrlw+SobBHCA7sAu2Or4ZFLcLbczAKSjgXfTeo5y1 zS6gFsJDI4YKJ2AG4dt8a1/zRkBPHnZ0JFhQrqSyrcuseTDx8CD8ldU6Y6JbRFO7 jGDnW54uE7GI4FKjEM2PHJJkoZ229Pk/BwA0WnCN52gQjXn8SOKjpYRSWqMxVeq5 NS/UYzdfTaGilFkHAaVc9soEuv0TNVLwgw1pq3GdFwCV8PHPKqhe8BzA660rjq1Q lnVQxjE= -----END CERTIFICATE-----Generated at Thu May 15 17:57:02 2025 by rpki-client