$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/2B6A4C480CDC11F0BAA65183C4F9AE02.roa File: 2B6A4C480CDC11F0BAA65183C4F9AE02.roa (raw, json) Hash identifier: PQLVpWWHthzNnD5URwix2MJ4GqKKAheIHq2d7TmXEW0= Subject key identifier: D9:22:A4:17:76:1F:DB:1F:E5:18:8B:2E:FF:64:1F:70:73:B3:B3:FA Certificate issuer: /CN=A91E5EEA/serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Certificate serial: 5F Authority key identifier: D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/2B6A4C480CDC11F0BAA65183C4F9AE02.roa Signing time: Thu 03 Jul 2025 22:44:35 +0000 ROA not before: Thu 03 Jul 2025 22:44:35 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153340 IP address blocks: 160.187.126.0/23 maxlen: 23 160.187.126.0/24 maxlen: 24 160.187.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5EEA, serialNumber=D60C30B1A9F59C959AD4967F2F6D572ACB75299C Validity Not Before: Jul 3 22:44:35 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=686707d3-00aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:85:0a:ca:ab:71:bf:30:69:63:56:ad:7e:b7: e5:c9:57:42:d9:3e:d3:34:70:58:3b:d1:c6:e0:03: 5e:5e:11:2e:0d:a4:ba:bf:76:3a:7f:e2:05:f9:92: 64:6e:c0:72:65:c4:16:0c:7a:83:fd:ff:f0:1f:a2: 1b:06:70:b9:70:2e:12:30:2b:a2:26:3c:ac:83:47: 3f:9e:bb:40:37:ca:06:4a:2e:60:1b:9a:18:c3:fc: 5a:ed:2e:6b:d5:a6:9b:e9:21:4d:17:d7:c3:15:a4: 83:24:eb:64:2b:91:95:ce:f9:d7:11:8b:2c:f5:00: ad:43:e9:f9:55:df:2d:d3:57:9c:26:f9:d5:52:f3: 35:ee:c2:5c:9a:a5:7b:ff:6a:6f:c5:87:ec:80:fd: d7:7b:75:b1:0e:ca:69:e2:fb:32:8c:50:69:6a:84: 55:a5:92:37:50:8b:02:8d:e7:a7:ba:f5:5e:fd:c5: fd:72:64:b3:36:b4:99:54:08:e7:78:94:40:e4:cc: 7c:c6:63:19:88:c1:a1:b7:f1:f0:df:0d:ff:04:d7: e0:1c:90:05:18:14:13:08:84:9d:f0:7d:cc:12:7f: c1:89:22:c5:98:d8:35:d8:73:d6:29:04:7b:97:c3: 19:28:49:58:3c:f3:ab:27:c8:30:b5:94:0a:86:10: 18:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:22:A4:17:76:1F:DB:1F:E5:18:8B:2E:FF:64:1F:70:73:B3:B3:FA X509v3 Authority Key Identifier: keyid:D6:0C:30:B1:A9:F5:9C:95:9A:D4:96:7F:2F:6D:57:2A:CB:75:29:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/1gwwsan1nJWa1JZ_L21XKst1KZw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1gwwsan1nJWa1JZ_L21XKst1KZw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5EEA/E3FCD144D4CF11EF98DF982BC4F9AE02/2B6A4C480CDC11F0BAA65183C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.126.0/23 Signature Algorithm: sha256WithRSAEncryption 87:b7:93:1d:b5:f5:94:49:01:fe:0a:63:2f:4f:ab:64:14:cb: 57:46:aa:91:86:b7:aa:0b:29:da:c2:a3:01:e9:94:b9:96:1d: 5a:d5:09:e4:4e:be:4a:25:26:e8:ec:d9:ce:a2:42:81:26:96: 8f:b2:7e:a0:93:46:11:b4:52:90:48:df:11:65:a3:22:e4:e6: 1d:90:ad:bb:ae:1d:d6:9b:b6:fc:7f:ac:c3:e6:5a:9d:6e:34: 7b:fd:0a:36:f3:87:ca:6a:a3:07:2c:5a:a2:0c:63:ee:e8:02: bf:75:be:66:00:9e:f8:3b:13:a5:46:1e:b2:c9:9b:4e:87:76: ce:e9:f6:ac:07:db:1d:c7:ee:e2:96:42:d9:95:af:67:76:b8: 83:96:92:56:f9:3f:23:26:ea:06:8e:5a:85:f3:29:78:e2:04: f9:e8:48:a4:d0:f5:0d:b6:2e:80:8d:67:00:3d:2f:37:33:14: 0c:f5:e3:2b:73:08:51:b2:11:5b:88:a4:bd:dd:af:4d:93:3a: 67:9e:52:29:d3:71:07:5c:3d:8f:51:68:4c:df:3a:83:df:df: 48:37:78:6a:7f:54:d0:cf:97:bf:92:6b:18:09:49:a7:66:32: a6:26:77:ae:9b:79:0e:c1:68:e4:b5:ae:94:d4:4f:ed:5b:89: e6:75:fc:b1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUVFQTExMC8GA1UEBRMoRDYwQzMwQjFBOUY1OUM5NTlBRDQ5NjdGMkY2RDU3MkFD Qjc1Mjk5QzAeFw0yNTA3MDMyMjQ0MzVaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjcwN2QzLTAwYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfhQrKq3G/MGljVq1+t+XJV0LZPtM0cFg70cbgA15eES4NpLq/djp/4gX5kmRu wHJlxBYMeoP9//AfohsGcLlwLhIwK6ImPKyDRz+eu0A3ygZKLmAbmhjD/FrtLmvV ppvpIU0X18MVpIMk62QrkZXO+dcRiyz1AK1D6flV3y3TV5wm+dVS8zXuwlyapXv/ am/Fh+yA/dd7dbEOymni+zKMUGlqhFWlkjdQiwKN56e69V79xf1yZLM2tJlUCOd4 lEDkzHzGYxmIwaG38fDfDf8E1+AckAUYFBMIhJ3wfcwSf8GJIsWY2DXYc9YpBHuX wxkoSVg886snyDC1lAqGEBjvAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU2SKkF3Yf 2x/lGIsu/2QfcHOzs/owHwYDVR0jBBgwFoAU1gwwsan1nJWa1JZ/L21XKst1KZww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1RUVBL0UzRkNEMTQ0RDRD RjExRUY5OERGOTgyQkM0RjlBRTAyLzFnd3dzYW4xbkpXYTFKWl9MMjFYS3N0MUta dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMWd3d3NhbjFuSldhMUpaX0wyMVhLc3QxS1p3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUVFQS9FM0ZDRDE0NEQ0Q0YxMUVGOThERjk4MkJDNEY5QUUwMi8yQjZBNEM0ODBD REMxMUYwQkFBNjUxODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaC7fjANBgkqhkiG9w0BAQsFAAOCAQEAh7eTHbX1lEkB/gpj L0+rZBTLV0aqkYa3qgsp2sKjAemUuZYdWtUJ5E6+SiUm6OzZzqJCgSaWj7J+oJNG EbRSkEjfEWWjIuTmHZCtu64d1pu2/H+sw+ZanW40e/0KNvOHymqjByxaogxj7ugC v3W+ZgCe+DsTpUYessmbTod2zun2rAfbHcfu4pZC2ZWvZ3a4g5aSVvk/IybqBo5a hfMpeOIE+ehIpND1DbYugI1nAD0vNzMUDPXjK3MIUbIRW4ikvd2vTZM6Z55SKdNx B1w9j1FoTN86g9/fSDd4an9U0M+Xv5JrGAlJp2YypiZ3rpt5DsFo5LWulNRP7VuJ 5nX8sQ== -----END CERTIFICATE-----Generated at Sat Jul 5 14:18:11 2025 by rpki-client