$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/F37B99DE2D7611F0B2EFB30CC4F9AE02.roa File: F37B99DE2D7611F0B2EFB30CC4F9AE02.roa (raw, json) Hash identifier: qk4LNX+6CfjLwZVDTIa28ZXQ7DnqqepMSq/jQ9PQEug= Subject key identifier: 58:56:6D:E0:3E:B6:03:EB:59:AD:9F:35:8B:A0:AC:81:31:7F:3A:DE Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 3B Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/F37B99DE2D7611F0B2EFB30CC4F9AE02.roa Signing time: Sat 10 May 2025 08:15:36 +0000 ROA not before: Sat 10 May 2025 08:15:36 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 58682 IP address blocks: 161.248.118.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 08:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: May 10 08:15:36 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=681f0b28-c856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:15:f0:4f:3a:3b:a8:29:81:d9:13:89:5c:21: b5:5b:98:3f:4d:0c:0b:06:22:42:65:79:d4:b1:8f: 75:78:1f:05:d3:aa:cc:0f:c2:6b:33:55:69:c3:94: 0e:a3:c7:52:8d:17:72:3d:ce:56:94:23:e3:0e:78: c9:02:b8:c5:b9:cc:ee:6e:72:72:51:12:4e:ee:8f: 51:50:f0:10:42:9f:86:57:49:41:5e:1b:ef:b6:99: dc:fa:31:6d:97:10:06:02:05:04:d9:bf:d9:c5:41: 48:5b:22:f1:c9:94:9a:61:bf:a9:76:7b:ce:79:41: 30:48:07:f2:54:84:53:b8:c3:6a:07:fb:e0:97:ec: 86:11:d0:b5:5b:13:8c:f8:d7:57:28:ee:8d:55:28: a3:98:7d:56:48:d7:6c:13:52:cb:93:53:39:8e:b8: 5e:97:4d:a0:1a:bb:9c:05:a2:9c:50:ae:1b:0b:81: 31:d4:da:75:5b:e5:67:68:ef:f7:9b:69:22:ba:e5: 5a:62:61:8e:95:ec:10:1a:0e:28:58:ca:99:7c:b6: ee:1a:28:79:1d:2e:39:3d:d8:4a:75:e1:29:4e:d8: 4e:ba:ea:7a:21:a1:42:44:3f:a9:0c:ee:2e:31:6e: e1:ac:9b:7e:9a:09:0d:47:55:62:c3:21:46:73:e9: 7c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:56:6D:E0:3E:B6:03:EB:59:AD:9F:35:8B:A0:AC:81:31:7F:3A:DE X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/F37B99DE2D7611F0B2EFB30CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.118.0/23 Signature Algorithm: sha256WithRSAEncryption a9:a9:3d:2b:78:bb:a2:52:3d:3e:25:38:86:48:e4:6f:2c:a0: e5:64:fe:3e:c1:d3:27:92:6e:90:46:0f:61:25:95:93:3f:14: 14:e5:54:b2:46:60:3d:0c:2a:47:17:01:f1:6e:ee:2c:2c:17: e1:f7:a7:5f:05:dd:c9:ab:67:a6:ad:d8:46:b9:f7:3c:d0:17: 8c:78:38:aa:62:64:bf:cd:9a:7f:cb:5f:a5:2c:fc:b5:9d:46: 05:98:7c:d7:93:bb:20:da:ab:eb:43:99:da:05:c2:c7:67:39: 2e:70:d9:1d:45:a5:21:7c:ce:83:91:ef:47:7c:84:a4:b5:f3: 5b:c9:e0:40:be:96:3f:4e:a5:33:f4:92:08:56:e6:26:25:6c: 93:62:30:ef:88:6f:0f:6b:16:16:70:d2:fe:81:1b:62:b6:30: a2:12:f9:5b:97:ba:ca:41:10:64:2a:47:85:ff:12:4f:49:f4: ce:53:2c:ff:f1:df:e1:7e:d2:94:8d:39:53:da:cd:a9:56:06: a9:84:57:7e:81:6f:85:a3:f6:e7:36:6e:65:e7:23:29:2a:13: 8d:79:30:4e:85:6f:07:5f:0d:47:f4:0f:8b:d8:b6:1b:19:fa: 40:ea:07:c6:58:d3:3f:d9:31:b4:f0:20:06:64:33:3a:f3:3a: 50:31:8b:38 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OUNBODExMC8GA1UEBRMoQ0JDNjYwMzM3MEZCRTg0Q0NDRTA2NEU4NEY0RjI2RURC RUMyNjdCMTAeFw0yNTA1MTAwODE1MzZaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MWYwYjI4LWM4NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3FfBPOjuoKYHZE4lcIbVbmD9NDAsGIkJledSxj3V4HwXTqswPwmszVWnDlA6j x1KNF3I9zlaUI+MOeMkCuMW5zO5ucnJREk7uj1FQ8BBCn4ZXSUFeG++2mdz6MW2X EAYCBQTZv9nFQUhbIvHJlJphv6l2e855QTBIB/JUhFO4w2oH++CX7IYR0LVbE4z4 11co7o1VKKOYfVZI12wTUsuTUzmOuF6XTaAau5wFopxQrhsLgTHU2nVb5Wdo7/eb aSK65VpiYY6V7BAaDihYypl8tu4aKHkdLjk92Ep14SlO2E666nohoUJEP6kM7i4x buGsm36aCQ1HVWLDIUZz6Xz5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWFZt4D62 A+tZrZ81i6CsgTF/Ot4wHwYDVR0jBBgwFoAUy8ZgM3D76EzM4GToT08m7b7CZ7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5Q0E4LzIwREEyNzQ2RTRG RDExRUZBQzFDRTY3RkM0RjlBRTAyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIveThaZ00zRDc2RXpNNEdUb1QwOG03YjdDWjdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi9GMzdCOTlERTJE NzYxMUYwQjJFRkIzMENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH4djANBgkqhkiG9w0BAQsFAAOCAQEAqak9K3i7olI9PiU4 hkjkbyyg5WT+PsHTJ5JukEYPYSWVkz8UFOVUskZgPQwqRxcB8W7uLCwX4fenXwXd yatnpq3YRrn3PNAXjHg4qmJkv82af8tfpSz8tZ1GBZh815O7INqr60OZ2gXCx2c5 LnDZHUWlIXzOg5HvR3yEpLXzW8ngQL6WP06lM/SSCFbmJiVsk2Iw74hvD2sWFnDS /oEbYrYwohL5W5e6ykEQZCpHhf8ST0n0zlMs//Hf4X7SlI05U9rNqVYGqYRXfoFv haP25zZuZecjKSoTjXkwToVvB18NR/QPi9i2Gxn6QOoHxljTP9kxtPAgBmQzOvM6 UDGLOA== -----END CERTIFICATE-----Generated at Sun May 11 06:44:28 2025 by rpki-client