$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/42230DF42DE211F0A991F83DC4F9AE02.roa File: 42230DF42DE211F0A991F83DC4F9AE02.roa (raw, json) Hash identifier: ak2PMRQUjFtffexIQ55kAPaMfx+wqf8bsH7hFH3Plx4= Subject key identifier: 99:9F:F7:D7:56:D0:5F:16:39:8E:CC:2E:CD:C2:06:AB:C0:8C:27:FD Certificate issuer: /CN=A91F7537/serialNumber=DF5FE21B7C955215934471794D8B070663D2B34E Certificate serial: 64 Authority key identifier: DF:5F:E2:1B:7C:95:52:15:93:44:71:79:4D:8B:07:06:63:D2:B3:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/42230DF42DE211F0A991F83DC4F9AE02.roa Signing time: Sat 10 May 2025 21:03:44 +0000 ROA not before: Sat 10 May 2025 21:03:44 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 137868 IP address blocks: 160.250.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.crl rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 06:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7537, serialNumber=DF5FE21B7C955215934471794D8B070663D2B34E Validity Not Before: May 10 21:03:44 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=681fbf30-67f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:25:9d:4d:e4:88:a0:84:44:27:f6:17:b1:7a: 73:ef:ad:d3:91:8e:64:b4:39:0a:bc:f7:bf:68:6e: c8:11:5d:b5:eb:62:5d:97:7b:71:59:2a:2b:d2:6a: 4c:ec:49:3c:dd:05:49:cd:ee:b7:ff:59:ef:a7:de: 9c:a7:59:83:1a:98:ce:89:b2:90:9d:4e:cf:da:c1: 45:4a:3e:71:88:78:3f:bc:48:6a:5e:70:28:9d:21: ab:30:2f:32:ef:b5:27:95:e7:41:98:0c:4b:73:82: 1c:23:58:01:99:1e:d8:2d:54:0a:8f:df:5c:d7:a7: b4:f3:b7:3e:e9:2c:41:36:86:b5:3c:6b:d5:df:7f: 49:89:17:de:d5:a6:64:a4:27:37:4f:98:ec:77:fc: d0:6e:8a:19:bb:55:6b:f4:27:3e:32:e2:4f:d9:aa: a4:73:17:1f:da:89:89:1c:5b:8d:a1:f9:c0:d3:f1: b9:1c:d8:6b:92:20:c3:1e:41:ae:f3:38:95:77:d6: 71:aa:de:53:be:b0:5a:97:a9:fb:0b:05:3f:77:57: 36:be:59:1a:fc:6e:d0:c9:29:49:4e:be:90:ef:7a: e5:d5:30:71:bc:e1:e0:b0:4a:e0:fd:f2:9d:2c:ee: a0:56:5f:ed:fa:54:a8:30:e6:13:9b:7d:01:7f:d1: 85:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:9F:F7:D7:56:D0:5F:16:39:8E:CC:2E:CD:C2:06:AB:C0:8C:27:FD X509v3 Authority Key Identifier: keyid:DF:5F:E2:1B:7C:95:52:15:93:44:71:79:4D:8B:07:06:63:D2:B3:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/31_iG3yVUhWTRHF5TYsHBmPSs04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/31_iG3yVUhWTRHF5TYsHBmPSs04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7537/802AE646A27111EFA392F079C4F9AE02/42230DF42DE211F0A991F83DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.8.0/24 Signature Algorithm: sha256WithRSAEncryption 57:14:6d:cf:47:1b:f9:ef:c0:33:f1:e1:86:09:f9:b8:bd:c1: 7a:8d:2e:0a:88:9e:c7:26:0b:77:0e:0a:0a:dc:b1:1a:b6:e9: d0:31:99:ae:3d:1f:2b:8a:d8:4f:f6:50:57:a9:7f:c8:99:cd: cd:76:1a:42:87:1d:75:f2:57:e3:85:65:b5:95:a1:9c:31:0e: 0f:e6:c3:50:4c:2b:3e:73:74:35:03:27:fb:5c:62:f1:16:ca: 27:8b:4d:ef:c0:0d:81:24:b6:a5:ea:6d:a0:3d:97:64:ec:ad: d3:c1:bd:6e:25:86:42:05:31:dc:e0:34:30:2d:0a:91:18:b5: f0:2d:97:65:3c:09:74:6c:20:a3:e3:e7:71:fe:96:54:5a:a1: bf:b1:5e:b8:e5:8e:a9:e6:0c:1b:44:c7:ef:87:7a:17:cb:5b: 09:cb:da:00:dc:27:c8:61:05:23:42:60:67:6a:69:4f:66:26: c1:37:8f:77:d7:08:7a:c5:24:90:bb:dc:18:c5:0a:61:d2:9b: 73:09:5b:e7:a7:b2:14:87:cf:d7:85:ae:7f:5f:80:9a:bb:e3: 80:c8:40:20:3f:73:5d:4a:f5:98:58:de:b1:b0:55:7d:6e:9e: dc:bd:c8:e0:7e:8a:28:9e:87:0c:a4:76:aa:15:cb:24:39:22: 94:32:8e:4e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NzUzNzExMC8GA1UEBRMoREY1RkUyMUI3Qzk1NTIxNTkzNDQ3MTc5NEQ4QjA3MDY2 M0QyQjM0RTAeFw0yNTA1MTAyMTAzNDRaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MWZiZjMwLTY3ZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCrJZ1N5IighEQn9hexenPvrdORjmS0OQq8979obsgRXbXrYl2Xe3FZKivSakzs STzdBUnN7rf/We+n3pynWYMamM6JspCdTs/awUVKPnGIeD+8SGpecCidIaswLzLv tSeV50GYDEtzghwjWAGZHtgtVAqP31zXp7Tztz7pLEE2hrU8a9Xff0mJF97VpmSk JzdPmOx3/NBuihm7VWv0Jz4y4k/ZqqRzFx/aiYkcW42h+cDT8bkc2GuSIMMeQa7z OJV31nGq3lO+sFqXqfsLBT93Vza+WRr8btDJKUlOvpDveuXVMHG84eCwSuD98p0s 7qBWX+36VKgw5hObfQF/0YWRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmZ/311bQ XxY5jswuzcIGq8CMJ/0wHwYDVR0jBBgwFoAU31/iG3yVUhWTRHF5TYsHBmPSs04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY3NTM3LzgwMkFFNjQ2QTI3 MTExRUZBMzkyRjA3OUM0RjlBRTAyLzMxX2lHM3lWVWhXVFJIRjVUWXNIQm1QU3Mw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMzFfaUczeVZVaFdUUkhGNVRZc0hCbVBTczA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzUzNy84MDJBRTY0NkEyNzExMUVGQTM5MkYwNzlDNEY5QUUwMi80MjIzMERGNDJE RTIxMUYwQTk5MUY4M0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6CDANBgkqhkiG9w0BAQsFAAOCAQEAVxRtz0cb+e/AM/Hh hgn5uL3Beo0uCoiexyYLdw4KCtyxGrbp0DGZrj0fK4rYT/ZQV6l/yJnNzXYaQocd dfJX44VltZWhnDEOD+bDUEwrPnN0NQMn+1xi8RbKJ4tN78ANgSS2peptoD2XZOyt 08G9biWGQgUx3OA0MC0KkRi18C2XZTwJdGwgo+Pncf6WVFqhv7FeuOWOqeYMG0TH 74d6F8tbCcvaANwnyGEFI0JgZ2ppT2YmwTePd9cIesUkkLvcGMUKYdKbcwlb56ey FIfP14Wuf1+AmrvjgMhAID9zXUr1mFjesbBVfW6e3L3I4H6KKJ6HDKR2qhXLJDki lDKOTg== -----END CERTIFICATE-----Generated at Wed May 14 02:06:14 2025 by rpki-client