$ rpki-client -vvf rpki.apnic.net/member_repository/A913DD09/67B09406622B11F0BE528B1FC4F9AE02/CBEBC99A622B11F09AC60265C4F9AE02.roa File: CBEBC99A622B11F09AC60265C4F9AE02.roa (raw, json) Hash identifier: QeEHUv7mRL56rOWrHXgX3CmbCbxizdK7iED7DkPJ0MU= Subject key identifier: 13:A1:45:E8:66:8B:9F:8D:3F:B6:00:21:A5:4C:E2:7A:B7:C3:9D:92 Certificate issuer: /CN=A913DD09/serialNumber=ABFDA9EE4B4F4E1BD9EA47BBFF85AE93549103E7 Certificate serial: 02 Authority key identifier: AB:FD:A9:EE:4B:4F:4E:1B:D9:EA:47:BB:FF:85:AE:93:54:91:03:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q_2p7ktPThvZ6ke7_4Wuk1SRA-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DD09/67B09406622B11F0BE528B1FC4F9AE02/CBEBC99A622B11F09AC60265C4F9AE02.roa Signing time: Wed 16 Jul 2025 10:01:09 +0000 ROA not before: Wed 16 Jul 2025 10:01:09 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 135158 IP address blocks: 160.250.174.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DD09/67B09406622B11F0BE528B1FC4F9AE02/q_2p7ktPThvZ6ke7_4Wuk1SRA-c.crl rsync://rpki.apnic.net/member_repository/A913DD09/67B09406622B11F0BE528B1FC4F9AE02/q_2p7ktPThvZ6ke7_4Wuk1SRA-c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q_2p7ktPThvZ6ke7_4Wuk1SRA-c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DD09, serialNumber=ABFDA9EE4B4F4E1BD9EA47BBFF85AE93549103E7 Validity Not Before: Jul 16 10:01:09 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68777865-c9f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5d:4a:05:aa:0c:75:31:90:f3:7f:60:b4:99: b3:7a:a5:8b:ce:0d:55:df:24:b9:9e:31:6c:dd:88: 07:11:2f:c2:f3:fa:87:75:55:2f:69:11:c6:4d:da: de:72:d4:ba:f5:32:2c:a2:06:57:6c:52:dd:23:bf: 0c:34:4a:11:d6:08:3f:db:12:9f:f1:d1:92:3b:f4: bd:61:ab:49:e6:13:cc:6d:0d:a8:93:9a:a8:0b:3e: dc:74:de:de:c0:6f:42:fa:4d:06:b7:58:46:6d:5b: 6f:39:7a:32:d9:fe:22:fb:03:45:04:15:c0:30:8d: ce:f9:d7:0a:71:3c:a8:20:99:04:bc:0e:56:2f:cf: de:87:0b:99:71:20:38:4c:de:cc:29:b0:d8:8d:64: 04:b6:94:67:59:cb:fd:96:4f:dd:ad:73:50:89:bf: ec:8a:8c:d8:e0:81:76:ae:74:a9:e9:0a:8e:a5:07: 3e:e5:dc:70:f6:9d:b0:17:15:4d:f9:12:01:23:fc: 61:61:b6:e7:c1:1d:58:8b:7d:27:23:e5:4a:43:8d: c0:5b:dc:1b:e0:7f:b6:3d:c0:3c:3b:03:2e:fc:5b: 0d:41:ad:e8:d5:82:81:92:31:72:7c:b7:94:e9:a4: b5:e5:2b:d0:a2:75:29:91:42:be:8d:cd:3c:0c:1e: 18:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A1:45:E8:66:8B:9F:8D:3F:B6:00:21:A5:4C:E2:7A:B7:C3:9D:92 X509v3 Authority Key Identifier: keyid:AB:FD:A9:EE:4B:4F:4E:1B:D9:EA:47:BB:FF:85:AE:93:54:91:03:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DD09/67B09406622B11F0BE528B1FC4F9AE02/q_2p7ktPThvZ6ke7_4Wuk1SRA-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q_2p7ktPThvZ6ke7_4Wuk1SRA-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DD09/67B09406622B11F0BE528B1FC4F9AE02/CBEBC99A622B11F09AC60265C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.174.0/24 Signature Algorithm: sha256WithRSAEncryption 02:92:4a:01:36:8b:9a:ae:82:b3:89:08:8c:3a:6f:31:d9:d9: e5:ad:fa:3d:a8:58:b6:b7:76:22:eb:3c:fa:f5:12:2d:fc:fd: 8f:dc:0f:3f:9a:5c:60:b6:59:c6:65:9a:11:0f:7a:df:5d:d6: d5:a0:a3:cd:e3:19:30:ad:1c:06:d5:05:a4:39:76:e7:2e:81: 72:13:31:a9:99:7f:4c:71:25:02:96:b7:f9:5d:95:05:32:b0: f5:db:c5:96:10:ae:d1:41:80:09:51:3b:92:eb:05:85:2e:1f: 6d:65:14:09:c9:d0:8f:35:56:8d:75:73:5c:66:cd:74:ac:f6: 0c:33:c2:e3:58:26:7b:0e:fa:e0:8a:92:e5:a6:a2:09:93:f2: 48:db:06:c8:34:52:d3:62:56:fb:b9:ef:36:5c:b5:09:be:ac: 8f:59:21:03:ae:8c:fa:81:ca:e6:af:e2:83:90:b0:67:1b:ef: 93:ec:85:a9:ad:b3:d2:43:c6:10:9c:80:9c:88:ff:fd:d2:da: 30:cc:b0:95:2d:7d:7c:48:fd:0e:1d:fc:dd:ed:70:1c:ed:58: 12:5a:6f:3e:6e:11:a0:35:e8:18:2e:aa:ee:12:7e:30:af:6d: 00:38:cc:fd:7f:00:0f:5c:ee:97:aa:88:01:72:ee:85:82:14: 94:72:7d:3b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz REQwOTExMC8GA1UEBRMoQUJGREE5RUU0QjRGNEUxQkQ5RUE0N0JCRkY4NUFFOTM1 NDkxMDNFNzAeFw0yNTA3MTYxMDAxMDlaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Nzc3ODY1LWM5ZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUXUoFqgx1MZDzf2C0mbN6pYvODVXfJLmeMWzdiAcRL8Lz+od1VS9pEcZN2t5y 1Lr1MiyiBldsUt0jvww0ShHWCD/bEp/x0ZI79L1hq0nmE8xtDaiTmqgLPtx03t7A b0L6TQa3WEZtW285ejLZ/iL7A0UEFcAwjc751wpxPKggmQS8DlYvz96HC5lxIDhM 3swpsNiNZAS2lGdZy/2WT92tc1CJv+yKjNjggXaudKnpCo6lBz7l3HD2nbAXFU35 EgEj/GFhtufBHViLfScj5UpDjcBb3Bvgf7Y9wDw7Ay78Ww1BrejVgoGSMXJ8t5Tp pLXlK9CidSmRQr6NzTwMHhgzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUE6FF6GaL n40/tgAhpUzierfDnZIwHwYDVR0jBBgwFoAUq/2p7ktPThvZ6ke7/4Wuk1SRA+cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNERDA5LzY3QjA5NDA2NjIy QjExRjBCRTUyOEIxRkM0RjlBRTAyL3FfMnA3a3RQVGh2WjZrZTdfNFd1azFTUkEt Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcV8ycDdrdFBUaHZaNmtlN180V3VrMVNSQS1jLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz REQwOS82N0IwOTQwNjYyMkIxMUYwQkU1MjhCMUZDNEY5QUUwMi9DQkVCQzk5QTYy MkIxMUYwOUFDNjAyNjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6rjANBgkqhkiG9w0BAQsFAAOCAQEAApJKATaLmq6Cs4kI jDpvMdnZ5a36PahYtrd2Ius8+vUSLfz9j9wPP5pcYLZZxmWaEQ96313W1aCjzeMZ MK0cBtUFpDl25y6BchMxqZl/THElApa3+V2VBTKw9dvFlhCu0UGACVE7kusFhS4f bWUUCcnQjzVWjXVzXGbNdKz2DDPC41gmew764IqS5aaiCZPySNsGyDRS02JW+7nv Nly1Cb6sj1khA66M+oHK5q/ig5CwZxvvk+yFqa2z0kPGEJyAnIj//dLaMMywlS19 fEj9Dh383e1wHO1YElpvPm4RoDXoGC6q7hJ+MK9tADjM/X8AD1zul6qIAXLuhYIU lHJ9Ow== -----END CERTIFICATE-----Generated at Sun Jul 20 04:46:04 2025 by rpki-client