$ rpki-client -vvf rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa File: 0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa (raw, json) Hash identifier: BnzgVRQY1lWGd2cFrP1xnxB6cOmKQA86fc66ckx28mQ= Subject key identifier: F2:AA:B0:57:3D:10:A9:DD:03:64:CC:BE:E3:0E:81:96:92:3C:14:C8 Certificate issuer: /CN=A91B15DC/serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Certificate serial: 02 Authority key identifier: D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa Signing time: Fri 10 Jan 2025 00:58:44 +0000 ROA not before: Fri 10 Jan 2025 00:58:44 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 134602 IP address blocks: 160.191.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B15DC, serialNumber=D36E104261F819D68D0F70BB29ADFE8EF463B2ED Validity Not Before: Jan 10 00:58:44 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=678070c4-d6f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ef:a3:f1:53:b5:b5:30:89:b9:75:42:06:38: ca:cb:d3:16:c0:d3:79:0e:72:ab:6b:d1:c7:ab:bd: b3:6c:71:dc:98:8f:2a:3a:ff:47:f7:b3:6f:a2:79: 53:11:dd:61:6b:e7:be:6b:dc:1f:18:46:41:35:40: 0c:1c:40:ac:00:47:09:73:22:34:f9:74:07:f8:cf: f4:8f:03:94:5f:47:ed:ab:19:4a:35:d2:7e:2b:ae: 37:35:0c:d4:33:01:f0:21:53:8d:58:11:1e:06:35: 0b:28:9e:7c:3d:84:d6:0a:a4:7a:c6:ea:dc:86:c9: a4:43:93:3e:cc:25:70:dd:9d:20:e6:b5:fc:2b:47: 8d:ed:56:aa:06:de:c5:2e:e1:38:c7:67:a5:2e:f9: 8f:8e:7b:bb:f5:31:c8:f7:9c:db:c0:d9:72:89:a1: 17:ab:5a:8b:5e:28:96:38:cc:72:51:2a:f4:ac:71: 2d:40:39:db:de:fb:df:04:4f:a4:d0:ca:0b:d1:18: d0:5e:cc:c5:7b:29:24:33:4d:af:89:be:f0:db:21: 2f:06:6b:52:07:9a:c3:2f:5c:6a:2f:53:39:91:2c: aa:09:3b:52:78:8e:5c:17:e3:79:6c:eb:c3:8c:f4: 7e:0f:e8:c3:72:36:52:96:c7:33:36:49:d8:79:90: e7:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:AA:B0:57:3D:10:A9:DD:03:64:CC:BE:E3:0E:81:96:92:3C:14:C8 X509v3 Authority Key Identifier: keyid:D3:6E:10:42:61:F8:19:D6:8D:0F:70:BB:29:AD:FE:8E:F4:63:B2:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/024QQmH4GdaND3C7Ka3-jvRjsu0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/024QQmH4GdaND3C7Ka3-jvRjsu0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B15DC/4FEC1C04CEED11EFBD655511C4F9AE02/0A65ADB6CEEE11EFAA2CA812C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.170.0/24 Signature Algorithm: sha256WithRSAEncryption 16:c9:59:eb:ed:8e:26:16:8d:bb:8b:41:67:25:ce:b7:9f:12: 6e:0a:1d:7c:54:d6:9a:27:68:04:89:af:11:b3:a8:bc:12:ef: 17:f8:0d:27:9f:d5:aa:85:fb:87:0f:ec:6f:de:76:11:54:cc: 63:10:d6:e0:36:fc:1c:1f:9b:5b:56:b0:8d:d4:ed:9f:ad:cf: 36:b5:ff:50:81:0d:89:52:69:b9:42:3f:3b:f2:69:8a:d2:e3: 3f:25:ea:b8:71:da:c0:76:5d:3b:62:bf:3c:a0:60:f8:b0:47: 77:3a:cf:59:b8:f3:95:41:02:b4:0c:e3:89:c7:1c:d9:18:2c: 11:ab:8d:85:33:4b:c7:60:88:0d:8d:1a:90:02:f0:6a:73:4e: b6:5f:c8:17:15:20:04:9d:f7:6f:e0:6c:45:09:c3:43:63:5f: 12:78:63:cd:21:f7:38:a6:a6:f7:52:9f:a8:81:65:ba:4f:34: fe:93:e3:8c:62:1e:2e:a2:3f:81:14:a6:12:d1:06:7c:64:ee: 44:ca:1c:4c:49:18:88:e8:58:19:5d:ee:73:f5:c1:61:6c:15: 36:9d:67:2c:14:8c:32:2d:0b:d1:0a:98:21:c4:67:27:70:a7: 26:b7:45:6c:5f:e9:6b:1b:26:39:81:78:d5:69:5d:57:94:29: e3:f6:0d:e3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTVEQzExMC8GA1UEBRMoRDM2RTEwNDI2MUY4MTlENjhEMEY3MEJCMjlBREZFOEVG NDYzQjJFRDAeFw0yNTAxMTAwMDU4NDRaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ODA3MGM0LWQ2ZjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCc76PxU7W1MIm5dUIGOMrL0xbA03kOcqtr0cervbNscdyYjyo6/0f3s2+ieVMR 3WFr575r3B8YRkE1QAwcQKwARwlzIjT5dAf4z/SPA5RfR+2rGUo10n4rrjc1DNQz AfAhU41YER4GNQsonnw9hNYKpHrG6tyGyaRDkz7MJXDdnSDmtfwrR43tVqoG3sUu 4TjHZ6Uu+Y+Oe7v1Mcj3nNvA2XKJoRerWoteKJY4zHJRKvSscS1AOdve+98ET6TQ ygvRGNBezMV7KSQzTa+JvvDbIS8Ga1IHmsMvXGovUzmRLKoJO1J4jlwX43ls68OM 9H4P6MNyNlKWxzM2Sdh5kOdnAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8qqwVz0Q qd0DZMy+4w6BlpI8FMgwHwYDVR0jBBgwFoAU024QQmH4GdaND3C7Ka3+jvRjsu0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxNURDLzRGRUMxQzA0Q0VF RDExRUZCRDY1NTUxMUM0RjlBRTAyLzAyNFFRbUg0R2RhTkQzQzdLYTMtanZSanN1 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMDI0UVFtSDRHZGFORDNDN0thMy1qdlJqc3UwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTVEQy80RkVDMUMwNENFRUQxMUVGQkQ2NTU1MTFDNEY5QUUwMi8wQTY1QURCNkNF RUUxMUVGQUEyQ0E4MTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/qjANBgkqhkiG9w0BAQsFAAOCAQEAFslZ6+2OJhaNu4tB ZyXOt58SbgodfFTWmidoBImvEbOovBLvF/gNJ5/VqoX7hw/sb952EVTMYxDW4Db8 HB+bW1awjdTtn63PNrX/UIENiVJpuUI/O/JpitLjPyXquHHawHZdO2K/PKBg+LBH dzrPWbjzlUECtAzjiccc2RgsEauNhTNLx2CIDY0akALwanNOtl/IFxUgBJ33b+Bs RQnDQ2NfEnhjzSH3OKam91KfqIFluk80/pPjjGIeLqI/gRSmEtEGfGTuRMocTEkY iOhYGV3uc/XBYWwVNp1nLBSMMi0L0QqYIcRnJ3CnJrdFbF/paxsmOYF41WldV5Qp 4/YN4w== -----END CERTIFICATE-----Generated at Fri Apr 25 08:24:58 2025 by rpki-client on console.sobornost.net