$ rpki-client -vvf rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/59FE5CAE624811F0BB5AEE59C4F9AE02.roa File: 59FE5CAE624811F0BB5AEE59C4F9AE02.roa (raw, json) Hash identifier: wCY8d55cux/WQh14eISZpaIEFRVdlSvyJYdlnhvrr3Q= Subject key identifier: E3:62:F4:E5:94:D3:36:B6:1D:3F:05:8A:B8:BC:4A:BA:E3:49:11:BF Certificate issuer: /CN=A916069A/serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Certificate serial: 8C Authority key identifier: D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/59FE5CAE624811F0BB5AEE59C4F9AE02.roa Signing time: Wed 16 Jul 2025 13:25:34 +0000 ROA not before: Wed 16 Jul 2025 13:25:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 151133 IP address blocks: 160.191.184.0/23 maxlen: 23 160.191.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916069A, serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Validity Not Before: Jul 16 13:25:34 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6877a84d-7ee1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:19:60:e1:3b:cd:b1:e6:90:bb:fd:d0:70:46: 11:32:bf:6e:00:6a:e3:5a:fc:3e:90:11:e7:8b:78: e3:18:a6:9e:27:d6:fc:2a:ea:8c:17:11:4e:5d:24: bc:61:5b:f2:8d:97:a1:a4:c4:aa:ca:0a:96:29:97: 31:d5:31:ac:83:2a:84:a9:32:8a:44:fb:b8:a7:8f: b0:80:f1:f6:d2:3d:c4:08:0f:b8:fc:fb:a6:24:8c: 0a:28:02:05:e4:d6:1c:c5:87:37:a5:1b:d3:44:31: 71:0f:bb:97:8d:2b:fa:ee:3b:7b:04:81:e4:ce:bd: 76:8f:11:6d:f9:d9:ac:ef:64:a0:31:8c:bf:5b:78: c9:d5:67:72:24:13:7e:15:36:c3:f8:c1:85:44:fa: 86:5c:4f:50:af:c1:0f:b4:5b:65:a5:bf:84:59:ad: c9:63:9e:3f:3f:d7:fa:64:df:96:36:09:b7:0f:20: cd:f1:d6:2d:70:ac:52:cb:68:36:f6:91:9f:5e:5c: 26:7d:54:f2:0a:e0:0c:a6:17:14:aa:06:23:d9:1e: 9a:3b:56:7a:8d:5e:ef:27:08:29:c6:d6:31:12:66: e5:3e:4c:99:91:e6:14:e9:8b:45:0f:04:f5:f3:e2: 32:c2:57:63:46:ed:3d:64:41:cf:2b:3d:f2:19:44: 55:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:62:F4:E5:94:D3:36:B6:1D:3F:05:8A:B8:BC:4A:BA:E3:49:11:BF X509v3 Authority Key Identifier: keyid:D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/59FE5CAE624811F0BB5AEE59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.184.0/23 Signature Algorithm: sha256WithRSAEncryption 33:69:f6:f4:8b:c3:78:01:cf:2a:7c:6e:f0:e4:8e:3a:20:0b: 2e:60:d7:42:f5:65:c5:52:47:59:19:ba:b4:5f:b5:89:3d:23: 8e:3a:07:ed:45:b8:d2:1a:e9:b4:08:4e:57:1a:a3:e2:34:4c: 41:6f:57:47:11:e4:2b:8d:f5:21:2a:4d:b1:b1:91:26:9e:1e: f8:30:a0:1e:7c:ab:e0:f3:14:d3:43:1a:16:2c:cd:e0:90:9f: 38:29:a4:ac:16:c0:46:2f:74:2f:72:86:a2:65:cf:13:8e:fb: b5:89:b4:2d:f5:99:4b:62:0a:65:a4:fd:5a:27:55:d5:54:98: 0f:4a:54:ae:eb:01:b7:1e:0f:d6:44:6c:e7:8f:ec:3f:aa:9f: 81:3f:ca:19:99:7d:f3:fa:aa:1b:63:02:8a:0d:b5:4a:db:b7: 9e:c7:17:fb:45:0c:25:3e:ea:36:91:71:c7:d6:1c:ec:f1:4c: 40:20:af:85:d6:3c:ac:a9:74:a1:29:fb:62:51:69:35:b5:73: bb:dc:5b:a9:22:fa:2b:04:e0:72:df:96:d3:99:d4:66:72:5b: 22:7c:7e:ea:87:05:c8:45:38:8e:63:43:85:e9:86:1a:a5:1b: 5a:68:59:78:09:5f:33:d5:4e:b4:0c:ef:79:b5:8f:5e:14:dd: a1:b9:1d:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2OUExMTAvBgNVBAUTKEQ5MDgzOTNDNUJBODAzNUFGNjhCN0VDMDA5NTU4RTgx MkVEMDk1RTAwHhcNMjUwNzE2MTMyNTM0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3YTg0ZC03ZWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4xlg4TvNseaQu/3QcEYRMr9uAGrjWvw+kBHni3jjGKaeJ9b8KuqMFxFOXSS8 YVvyjZehpMSqygqWKZcx1TGsgyqEqTKKRPu4p4+wgPH20j3ECA+4/PumJIwKKAIF 5NYcxYc3pRvTRDFxD7uXjSv67jt7BIHkzr12jxFt+dms72SgMYy/W3jJ1WdyJBN+ FTbD+MGFRPqGXE9Qr8EPtFtlpb+EWa3JY54/P9f6ZN+WNgm3DyDN8dYtcKxSy2g2 9pGfXlwmfVTyCuAMphcUqgYj2R6aO1Z6jV7vJwgpxtYxEmblPkyZkeYU6YtFDwT1 8+IywldjRu09ZEHPKz3yGURVrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFONi9OWU 0za2HT8Firi8SrrjSRG/MB8GA1UdIwQYMBaAFNkIOTxbqANa9ot+wAlVjoEu0JXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDY5QS8yRUI2MDc5NjlC RjAxMUVGODFDOTAyNjdDNEY5QUUwMi8yUWc1UEZ1b0ExcjJpMzdBQ1ZXT2dTN1Fs ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJRZzVQRnVvQTFyMmkzN0FDVldPZ1M3UWxlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA2OUEvMkVCNjA3OTY5QkYwMTFFRjgxQzkwMjY3QzRGOUFFMDIvNTlGRTVDQUU2 MjQ4MTFGMEJCNUFFRTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv7gwDQYJKoZIhvcNAQELBQADggEBADNp9vSLw3gBzyp8 bvDkjjogCy5g10L1ZcVSR1kZurRftYk9I446B+1FuNIa6bQITlcao+I0TEFvV0cR 5CuN9SEqTbGxkSaeHvgwoB58q+DzFNNDGhYszeCQnzgppKwWwEYvdC9yhqJlzxOO +7WJtC31mUtiCmWk/VonVdVUmA9KVK7rAbceD9ZEbOeP7D+qn4E/yhmZffP6qhtj AooNtUrbt57HF/tFDCU+6jaRccfWHOzxTEAgr4XWPKypdKEp+2JRaTW1c7vcW6ki +isE4HLfltOZ1GZyWyJ8fuqHBchFOI5jQ4XphhqlG1poWXgJXzPVTrQM73m1j14U 3aG5HTM= -----END CERTIFICATE-----Generated at Sun Jul 20 16:32:37 2025 by rpki-client