$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa File: 31D902165E7311EB8B143F3BC4F9AE02.roa (raw, json) Hash identifier: OYtL36rrodU22MW3AXpoCDtJg7l4ViMqS4bFk3tK5VQ= Subject key identifier: 10:07:03:9C:D3:B5:D1:D1:0C:3E:29:E9:0A:B1:63:E8:D9:80:67:E9 Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 06E6 Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa Signing time: Sat 12 Jul 2025 22:33:15 +0000 ROA not before: Sat 12 Jul 2025 22:33:15 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135063 IP address blocks: 43.254.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 22:21:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1766 (0x6e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Jul 12 22:33:15 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6872e2ab-5c03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a7:e4:2d:8d:65:dd:5d:b6:84:61:49:57:50: 54:2d:68:4c:00:db:64:0f:df:ff:cf:62:8c:26:ab: 58:cb:e9:b7:a6:a9:49:da:13:c3:8a:6a:38:17:bf: 49:b4:69:2b:68:61:04:e2:ac:5a:c8:3b:b8:8a:06: c1:e1:a4:fc:05:93:86:ec:ba:e5:a4:c1:83:20:43: e3:61:92:b8:b0:b0:69:74:38:f5:05:bb:76:db:dc: ca:fe:78:cf:7f:5b:27:d1:08:2c:d1:12:52:e0:f6: 30:65:b5:c5:4c:5c:fe:34:b6:fa:40:62:41:1d:7a: 75:17:93:09:f2:a5:f7:83:26:b3:7f:39:9f:c3:8d: 6f:d8:92:8c:b6:73:e7:04:a0:ce:8d:82:b8:d1:c1: 04:f6:4c:ff:e7:2e:60:a3:25:c0:68:a5:9f:ba:8b: 60:a1:eb:2d:8d:99:9b:3c:a4:c3:ef:04:03:29:93: 37:26:ee:95:2c:0f:83:13:96:86:ba:0b:9c:b5:2d: 3f:30:6f:c1:22:81:9c:f9:4e:80:5d:89:c5:34:37: 31:bc:83:f6:80:b0:53:f4:15:4a:00:7f:87:6c:da: fb:98:78:9d:8b:fc:8f:82:42:5b:ef:b4:ee:70:e7: ea:a8:56:db:73:e6:e1:03:f8:06:ba:0a:34:bf:ae: b9:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:07:03:9C:D3:B5:D1:D1:0C:3E:29:E9:0A:B1:63:E8:D9:80:67:E9 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.135.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:33:8b:8e:d2:7d:f1:ec:db:d1:12:f0:48:9f:1f:c5:93:77: d3:9f:58:35:30:37:a4:08:3e:13:35:10:e7:9b:1a:60:95:ec: a2:26:aa:05:76:3e:03:93:de:ad:56:83:b6:4c:13:56:c9:5a: 5c:b8:7d:64:b7:74:7a:ba:55:c5:15:2f:80:3e:03:64:6c:ff: 6f:95:39:39:eb:c7:13:71:41:fd:ad:4b:7a:18:63:9f:6e:82: 93:2c:3a:42:49:1f:6b:44:88:a8:6b:44:46:07:7f:1b:76:73: f7:de:a4:9e:fc:42:af:34:0d:4e:38:41:1e:26:59:4a:8f:bd: 0e:44:00:7b:ce:f8:a3:84:8c:0b:0a:f3:15:e6:26:8a:73:9b: 4f:24:65:30:56:49:e7:56:d7:6a:45:1d:0e:b3:1e:fa:3c:f3: c3:41:a1:5d:e1:09:35:1a:42:fd:c3:33:b3:9b:8a:77:b1:a9: 0c:49:f7:fe:ac:0e:c8:2d:fe:ff:fa:4e:b9:24:2e:aa:1b:48: e6:67:71:cf:90:a0:0d:e2:03:50:fe:9e:81:c5:d7:a5:da:c0: 64:38:f9:9a:6e:e4:34:c4:c7:a3:d4:6d:39:dc:83:1e:a0:9f: be:82:46:12:a2:e9:87:90:00:6a:fa:65:57:e7:ba:03:68:8f: a4:d5:3a:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjUwNzEyMjIzMzE1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcyZTJhYi01YzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKfkLY1l3V22hGFJV1BULWhMANtkD9//z2KMJqtYy+m3pqlJ2hPDimo4F79J tGkraGEE4qxayDu4igbB4aT8BZOG7LrlpMGDIEPjYZK4sLBpdDj1Bbt229zK/njP f1sn0Qgs0RJS4PYwZbXFTFz+NLb6QGJBHXp1F5MJ8qX3gyazfzmfw41v2JKMtnPn BKDOjYK40cEE9kz/5y5goyXAaKWfuotgoestjZmbPKTD7wQDKZM3Ju6VLA+DE5aG uguctS0/MG/BIoGc+U6AXYnFNDcxvIP2gLBT9BVKAH+HbNr7mHidi/yPgkJb77Tu cOfqqFbbc+bhA/gGugo0v6651QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBAHA5zT tdHRDD4p6QqxY+jZgGfpMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0MzgvQzQ1MDlENTQ1RTcxMTFFQjg0OUMzMzNBQzRGOUFFMDIvMzFEOTAyMTY1 RTczMTFFQjhCMTQzRjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr/ocwDQYJKoZIhvcNAQELBQADggEBAI8zi47SffHs29ES 8EifH8WTd9OfWDUwN6QIPhM1EOebGmCV7KImqgV2PgOT3q1Wg7ZME1bJWly4fWS3 dHq6VcUVL4A+A2Rs/2+VOTnrxxNxQf2tS3oYY59ugpMsOkJJH2tEiKhrREYHfxt2 c/fepJ78Qq80DU44QR4mWUqPvQ5EAHvO+KOEjAsK8xXmJopzm08kZTBWSedW12pF HQ6zHvo888NBoV3hCTUaQv3DM7ObinexqQxJ9/6sDsgt/v/6TrkkLqobSOZncc+Q oA3iA1D+noHF16XawGQ4+Zpu5DTEx6PUbTncgx6gn76CRhKi6YeQAGr6ZVfnugNo j6TVOsY= -----END CERTIFICATE-----Generated at Wed Jul 23 02:18:21 2025 by rpki-client