$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/B67DB7C42D7611F0A8AF2581C4F9AE02.roa File: B67DB7C42D7611F0A8AF2581C4F9AE02.roa (raw, json) Hash identifier: dX2Tufrh33lS3L7HI7SrvAnH5dQ+euB+KFty6ApiT4c= Subject key identifier: D5:BC:DC:CA:98:AE:0F:22:58:1E:79:E5:E2:02:DE:BC:49:B3:43:3E Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 39 Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/B67DB7C42D7611F0A8AF2581C4F9AE02.roa Signing time: Sat 10 May 2025 08:14:24 +0000 ROA not before: Sat 10 May 2025 08:14:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 10075 IP address blocks: 161.248.118.0/24 maxlen: 24 161.248.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 08:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: May 10 08:14:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=681f0ae0-6335 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:31:57:28:0e:22:fd:44:51:03:06:b4:77:c5: 5a:2a:f5:de:f3:33:ad:de:4e:fc:91:1f:9f:80:ee: 6f:03:72:94:cc:f4:39:db:2b:a5:93:48:9e:fa:6d: d8:af:35:0d:fa:dc:c4:24:7f:9b:46:70:bd:b7:bd: 00:8c:1a:2c:d1:d3:30:76:52:60:64:1f:08:37:f4: eb:d8:04:4d:05:1b:d1:f0:e9:82:51:90:a4:bc:55: 6f:e7:63:a0:ff:77:0c:29:60:fa:47:52:c2:66:3e: ef:93:f1:15:e3:56:96:d9:37:28:2a:0d:3b:dc:12: 6c:f0:bd:9a:1f:26:0a:5c:04:5e:e8:1a:88:fa:75: a1:64:2d:31:07:c0:b1:d0:b9:54:ec:0e:ce:88:39: a0:16:5c:2b:60:3b:97:b6:20:41:50:82:b2:1c:99: be:96:b2:fd:96:10:81:d7:56:0e:78:8b:18:be:62: 6c:26:d7:f6:96:52:51:60:54:c5:f4:68:cc:79:3a: 2b:e4:46:d9:f3:c3:5a:af:43:f5:76:c2:a6:fe:d6: 9c:8a:8d:a9:75:5f:eb:f0:07:6f:3a:e3:dd:b9:d8: 74:43:b3:33:c7:e4:81:8f:08:2d:85:7c:ef:2a:ac: 38:99:84:e1:7a:b2:7c:04:d3:0d:d4:d1:58:51:16: dc:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BC:DC:CA:98:AE:0F:22:58:1E:79:E5:E2:02:DE:BC:49:B3:43:3E X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/B67DB7C42D7611F0A8AF2581C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.118.0/23 Signature Algorithm: sha256WithRSAEncryption 47:63:07:02:8b:cf:9d:db:aa:5d:fd:65:f3:9e:cb:e1:2d:04: 61:a3:f6:56:e2:23:75:a2:b9:9f:c2:50:28:a4:f0:f6:2b:52: 6c:36:a7:53:c4:db:71:d6:9c:d9:5d:94:b4:7e:b1:d6:7b:49: 69:db:e4:ab:36:81:25:10:22:b0:42:8c:c2:19:5b:2d:63:18: 2a:a9:f5:88:ee:d4:aa:a9:25:ae:f7:06:ef:a2:e5:f7:cf:ab: 02:a5:c4:3f:91:99:8d:6f:49:b2:1d:1e:10:07:0e:0b:8d:a2: f4:a2:16:c3:ab:6b:48:92:2d:fa:74:34:59:ba:ba:ae:7a:86: b7:74:df:c5:db:c5:4c:04:ec:ab:d5:08:20:d4:b0:d4:ae:a0: 11:56:5e:57:55:4a:25:d2:1f:ce:bc:fe:24:dc:0c:60:bc:43: 60:bb:aa:53:e7:1f:dd:57:a6:a4:1b:ca:dd:71:17:b4:47:c5: 19:cc:68:2c:7a:9c:ab:d0:e0:59:fe:03:a0:5e:f4:ea:ca:84: fd:d3:19:f8:54:3c:06:a2:90:06:1a:ee:65:dd:68:34:62:94: e3:f0:e7:96:62:23:5d:a9:6b:24:c2:d7:3e:74:71:9f:9c:48: ca:b3:1f:21:f9:99:a5:59:b1:2a:ad:29:a5:10:93:36:bc:27: 3b:e8:2b:31 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA1MTAwODE0MjRaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MWYwYWUwLTYzMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcMVcoDiL9RFEDBrR3xVoq9d7zM63eTvyRH5+A7m8DcpTM9DnbK6WTSJ76bdiv NQ363MQkf5tGcL23vQCMGizR0zB2UmBkHwg39OvYBE0FG9Hw6YJRkKS8VW/nY6D/ dwwpYPpHUsJmPu+T8RXjVpbZNygqDTvcEmzwvZofJgpcBF7oGoj6daFkLTEHwLHQ uVTsDs6IOaAWXCtgO5e2IEFQgrIcmb6Wsv2WEIHXVg54ixi+Ymwm1/aWUlFgVMX0 aMx5OivkRtnzw1qvQ/V2wqb+1pyKjal1X+vwB28649252HRDszPH5IGPCC2FfO8q rDiZhOF6snwE0w3U0VhRFtyTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU1bzcypiu DyJYHnnl4gLevEmzQz4wHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi9CNjdEQjdDNDJE NzYxMUYwQThBRjI1ODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4djANBgkqhkiG9w0BAQsFAAOCAQEAR2MHAovPnduqXf1l 857L4S0EYaP2VuIjdaK5n8JQKKTw9itSbDanU8Tbcdac2V2UtH6x1ntJadvkqzaB JRAisEKMwhlbLWMYKqn1iO7UqqklrvcG76Ll98+rAqXEP5GZjW9Jsh0eEAcOC42i 9KIWw6trSJIt+nQ0Wbq6rnqGt3TfxdvFTATsq9UIINSw1K6gEVZeV1VKJdIfzrz+ JNwMYLxDYLuqU+cf3VempBvK3XEXtEfFGcxoLHqcq9DgWf4DoF706sqE/dMZ+FQ8 BqKQBhruZd1oNGKU4/DnlmIjXalrJMLXPnRxn5xIyrMfIfmZpVmxKq0ppRCTNrwn O+grMQ== -----END CERTIFICATE-----Generated at Sun May 11 06:14:10 2025 by rpki-client