$ rpki-client -vvf rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/D0B078FA389611EF909AF237C4F9AE02.roa File: D0B078FA389611EF909AF237C4F9AE02.roa (raw, json) Hash identifier: Xtt+dRvGTSadJPsj0h+bYSdSHUpop3mgErELCN/AU2A= Subject key identifier: C4:22:45:47:76:C7:17:CD:F1:14:E8:71:D9:18:E1:DC:F8:40:79:2B Certificate issuer: /CN=A913F2BD/serialNumber=D1EEBD1624DCDE519410ED5D64E6D513984B77D0 Certificate serial: BF Authority key identifier: D1:EE:BD:16:24:DC:DE:51:94:10:ED:5D:64:E6:D5:13:98:4B:77:D0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0e69FiTc3lGUEO1dZObVE5hLd9A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/D0B078FA389611EF909AF237C4F9AE02.roa Signing time: Mon 07 Jul 2025 06:13:36 +0000 ROA not before: Mon 07 Jul 2025 06:13:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153048 IP address blocks: 160.25.40.0/24 maxlen: 24 160.25.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/0e69FiTc3lGUEO1dZObVE5hLd9A.crl rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/0e69FiTc3lGUEO1dZObVE5hLd9A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0e69FiTc3lGUEO1dZObVE5hLd9A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 05 Aug 2025 06:11:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F2BD, serialNumber=D1EEBD1624DCDE519410ED5D64E6D513984B77D0 Validity Not Before: Jul 7 06:13:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686b6590-2f5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:de:63:14:a7:6f:1a:03:8b:de:6e:92:2d:bf: 45:3c:93:ea:19:15:00:94:75:f7:95:fb:c0:1a:29: f6:7e:ec:dc:54:1a:82:04:fe:5b:ef:ec:a2:48:9e: 34:02:54:14:a2:33:77:f6:3d:ad:e1:99:21:7c:6f: 44:dc:70:82:b6:23:19:1f:cd:39:b1:4b:7b:da:bc: bf:7c:54:e1:1d:2e:0a:3c:36:dc:b5:1a:bf:d3:f8: 22:e9:3d:61:57:7f:ab:7a:ce:d1:7f:17:b1:68:98: 82:1c:cf:37:00:51:75:0a:b6:62:0d:12:29:6f:be: 79:f7:22:e3:d1:8e:cf:16:dd:d8:9c:50:71:c4:50: 21:d8:da:10:2a:71:a4:08:0b:fe:18:e6:83:b2:c2: 52:74:60:ad:a3:ea:82:ec:d4:25:a0:ed:22:79:b0: 71:bd:62:c5:53:2a:c6:28:0a:65:d3:53:8b:b9:16: fc:49:ba:97:9d:b6:8e:2e:1d:41:0f:64:1e:28:f3: 1f:b6:6a:84:2f:23:84:23:86:52:34:57:38:e9:e9: a8:c3:d8:b7:a8:da:7d:2d:85:d3:28:90:6c:7d:bb: f6:a1:4f:fd:ea:38:71:be:4e:c7:19:6e:c6:eb:05: c8:12:e5:3c:89:bb:89:cc:f4:5f:06:70:3a:4c:11: 25:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:22:45:47:76:C7:17:CD:F1:14:E8:71:D9:18:E1:DC:F8:40:79:2B X509v3 Authority Key Identifier: keyid:D1:EE:BD:16:24:DC:DE:51:94:10:ED:5D:64:E6:D5:13:98:4B:77:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/0e69FiTc3lGUEO1dZObVE5hLd9A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0e69FiTc3lGUEO1dZObVE5hLd9A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F2BD/3EE27676389611EF9EDE8136C4F9AE02/D0B078FA389611EF909AF237C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.40.0/23 Signature Algorithm: sha256WithRSAEncryption 95:80:4c:99:75:af:23:9f:53:9a:2d:cb:a1:be:91:3b:82:14: e0:9d:d8:6b:be:fa:5b:5a:e4:2c:3d:d0:3d:9f:29:be:ed:40: 74:9a:74:26:0e:68:33:32:6a:44:b2:e3:ce:96:4c:2e:7c:10: b3:1c:c7:59:3f:4f:45:e5:73:28:c2:1e:e1:ef:51:5f:63:07: 67:76:e7:e5:b6:61:8a:0f:74:9e:76:ee:b8:1e:f4:28:17:ae: ef:94:79:ef:a3:50:26:9d:18:54:6d:09:6d:81:4d:cd:cb:e0: b1:19:0f:07:67:96:d5:82:b0:8c:ad:41:77:fa:aa:72:8c:10: 76:a3:d7:77:b0:c4:52:fb:d9:e5:53:b1:0b:d0:3b:1c:52:f5: a3:bc:10:6f:36:5f:2f:63:66:48:08:7f:2c:ff:c1:93:bb:55: 09:47:25:77:49:b5:30:23:fb:0a:a8:a1:ac:2d:4f:8d:35:91: 0d:15:91:6b:e5:70:de:c0:11:f7:9d:aa:b3:a5:1d:7d:ac:56: 42:1c:d1:fb:34:75:08:e9:d7:7b:b4:92:4a:18:4f:cc:84:4f: 6f:91:42:7d:1d:a0:c5:76:b5:51:be:3f:2c:bb:27:51:6d:af: 03:73:39:b0:3f:ac:e7:68:f7:fa:7b:c6:ef:2c:98:ef:d9:b5: 33:7d:d7:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YyQkQxMTAvBgNVBAUTKEQxRUVCRDE2MjREQ0RFNTE5NDEwRUQ1RDY0RTZENTEz OTg0Qjc3RDAwHhcNMjUwNzA3MDYxMzM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZiNjU5MC0yZjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs95jFKdvGgOL3m6SLb9FPJPqGRUAlHX3lfvAGin2fuzcVBqCBP5b7+yiSJ40 AlQUojN39j2t4ZkhfG9E3HCCtiMZH805sUt72ry/fFThHS4KPDbctRq/0/gi6T1h V3+res7RfxexaJiCHM83AFF1CrZiDRIpb7559yLj0Y7PFt3YnFBxxFAh2NoQKnGk CAv+GOaDssJSdGCto+qC7NQloO0iebBxvWLFUyrGKApl01OLuRb8SbqXnbaOLh1B D2QeKPMftmqELyOEI4ZSNFc46emow9i3qNp9LYXTKJBsfbv2oU/96jhxvk7HGW7G 6wXIEuU8ibuJzPRfBnA6TBEl0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMQiRUd2 xxfN8RTocdkY4dz4QHkrMB8GA1UdIwQYMBaAFNHuvRYk3N5RlBDtXWTm1ROYS3fQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjJCRC8zRUUyNzY3NjM4 OTYxMUVGOUVERTgxMzZDNEY5QUUwMi8wZTY5RmlUYzNsR1VFTzFkWk9iVkU1aExk OUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBlNjlGaVRjM2xHVUVPMWRaT2JWRTVoTGQ5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YyQkQvM0VFMjc2NzYzODk2MTFFRjlFREU4MTM2QzRGOUFFMDIvRDBCMDc4RkEz ODk2MTFFRjkwOUFGMjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGSgwDQYJKoZIhvcNAQELBQADggEBAJWATJl1ryOfU5ot y6G+kTuCFOCd2Gu++lta5Cw90D2fKb7tQHSadCYOaDMyakSy486WTC58ELMcx1k/ T0XlcyjCHuHvUV9jB2d25+W2YYoPdJ527rge9CgXru+Uee+jUCadGFRtCW2BTc3L 4LEZDwdnltWCsIytQXf6qnKMEHaj13ewxFL72eVTsQvQOxxS9aO8EG82Xy9jZkgI fyz/wZO7VQlHJXdJtTAj+wqooawtT401kQ0VkWvlcN7AEfedqrOlHX2sVkIc0fs0 dQjp13u0kkoYT8yET2+RQn0doMV2tVG+Pyy7J1FtrwNzObA/rOdo9/p7xu8smO/Z tTN912I= -----END CERTIFICATE-----Generated at Tue Jul 29 16:37:05 2025 by rpki-client