$ rpki-client -vvf rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/31C546AE55DB11F0A92F4D10C4F9AE02.roa File: 31C546AE55DB11F0A92F4D10C4F9AE02.roa (raw, json) Hash identifier: /yKnVvqDpWECQg/svbyb0nTDVO6+tTtGiQ1ZiVTs69U= Subject key identifier: B0:52:1F:88:BA:69:E6:1A:84:E1:A0:6C:1F:E4:19:D6:63:89:1A:9D Certificate issuer: /CN=A9167F95/serialNumber=A83BCF6DB288E96470D34D18AFB3E4A812791867 Certificate serial: 35 Authority key identifier: A8:3B:CF:6D:B2:88:E9:64:70:D3:4D:18:AF:B3:E4:A8:12:79:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/31C546AE55DB11F0A92F4D10C4F9AE02.roa Signing time: Mon 30 Jun 2025 17:53:57 +0000 ROA not before: Mon 30 Jun 2025 17:53:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153755 IP address blocks: 163.223.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.crl rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167F95, serialNumber=A83BCF6DB288E96470D34D18AFB3E4A812791867 Validity Not Before: Jun 30 17:53:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6862cf35-a51c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:42:91:38:49:d2:4e:74:27:69:7b:04:fb:8d: db:97:32:30:af:01:70:f3:3c:b2:28:30:d2:cd:a2: 25:ba:4e:31:55:f9:5f:29:84:93:14:dd:8b:ad:ab: 6e:a2:2c:00:3a:f7:c1:03:ca:91:36:4e:3c:17:6c: 15:49:a0:2a:37:43:d2:1b:3e:06:7d:9d:ad:a7:6d: dd:25:1e:f4:ed:75:cf:f2:2b:83:d5:65:76:08:86: 52:97:18:fa:90:cc:f0:3f:61:65:e4:09:df:0f:31: ac:60:65:e6:63:1a:97:3b:a1:e2:da:38:27:5f:59: e7:e7:72:49:66:a9:72:6d:85:82:bd:dc:90:5e:2f: f9:dd:70:88:e2:4b:5e:d8:82:f4:2b:34:60:51:22: 66:2a:93:dc:42:0f:e5:74:24:17:4b:84:74:e3:65: 9f:89:19:73:9b:ed:1c:91:31:77:26:5e:29:3d:c6: 09:4a:d2:7a:28:93:6c:cd:63:fc:ea:69:cc:14:82: 9b:9c:96:bf:4a:de:6e:f2:59:69:40:e6:ed:27:1d: 1a:4b:09:c2:dc:f9:51:fe:17:ee:c0:e5:af:93:9f: dd:b6:da:08:09:1f:8d:ba:4e:30:a4:22:89:cc:82: 46:a7:1c:d2:7c:b3:20:88:4e:03:f0:1f:71:ea:a4: 71:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:52:1F:88:BA:69:E6:1A:84:E1:A0:6C:1F:E4:19:D6:63:89:1A:9D X509v3 Authority Key Identifier: keyid:A8:3B:CF:6D:B2:88:E9:64:70:D3:4D:18:AF:B3:E4:A8:12:79:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/31C546AE55DB11F0A92F4D10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.241.0/24 Signature Algorithm: sha256WithRSAEncryption 11:5a:0b:c0:ef:55:5c:58:c1:9a:4a:20:20:dc:0a:18:8e:e9: 90:f2:51:43:42:b7:b5:b9:c8:f4:52:bb:2a:6a:20:1a:95:93: 9c:ee:d6:49:fe:61:57:27:be:c3:5f:b6:72:e5:15:cc:eb:1a: b3:6b:b1:89:c7:46:39:b1:fb:fc:6d:0a:5e:32:c7:eb:62:6f: 20:45:37:80:f7:11:4a:27:bb:ab:08:76:62:79:9b:c7:c6:63: 5f:0c:f3:63:8a:9f:a0:07:78:c4:2e:f7:b3:d5:8f:f2:57:27: f5:7c:ef:9d:10:5a:5b:9a:a7:1f:c1:5e:67:63:0c:fe:9f:47: 3c:0d:48:16:28:5f:15:8c:53:b1:f9:04:47:59:f6:d4:31:1f: 4e:48:38:c0:be:58:06:4b:17:a7:6d:e7:7d:1e:28:84:ca:8a: 57:3c:cd:9f:7a:95:71:7b:27:b4:4a:86:c5:dc:0f:bb:18:c2: e9:0d:b4:67:85:e3:70:d7:4f:06:5e:ff:b5:33:e5:b3:ce:ff: b9:2a:1d:dd:a8:98:27:05:5f:57:92:9f:5f:ff:7a:21:42:4c: 27:de:49:e2:19:1e:61:66:f4:b8:c5:59:3d:bb:07:30:21:04: c8:32:7e:9a:ab:25:4b:db:7a:9d:2b:35:00:97:38:e7:42:b1: 88:59:bf:69 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0Y5NTExMC8GA1UEBRMoQTgzQkNGNkRCMjg4RTk2NDcwRDM0RDE4QUZCM0U0QTgx Mjc5MTg2NzAeFw0yNTA2MzAxNzUzNTdaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjJjZjM1LWE1MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhQpE4SdJOdCdpewT7jduXMjCvAXDzPLIoMNLNoiW6TjFV+V8phJMU3Yutq26i LAA698EDypE2TjwXbBVJoCo3Q9IbPgZ9na2nbd0lHvTtdc/yK4PVZXYIhlKXGPqQ zPA/YWXkCd8PMaxgZeZjGpc7oeLaOCdfWefncklmqXJthYK93JBeL/ndcIjiS17Y gvQrNGBRImYqk9xCD+V0JBdLhHTjZZ+JGXOb7RyRMXcmXik9xglK0nook2zNY/zq acwUgpuclr9K3m7yWWlA5u0nHRpLCcLc+VH+F+7A5a+Tn9222ggJH426TjCkIonM gkanHNJ8syCITgPwH3HqpHFZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUsFIfiLpp 5hqE4aBsH+QZ1mOJGp0wHwYDVR0jBBgwFoAUqDvPbbKI6WRw000Yr7PkqBJ5GGcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3Rjk1LzdEMzNGRDM4MTJF NzExRjBCREI5NDU0REM0RjlBRTAyL3FEdlBiYktJNldSdzAwMFlyN1BrcUJKNUdH Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcUR2UGJiS0k2V1J3MDAwWXI3UGtxQko1R0djLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0Y5NS83RDMzRkQzODEyRTcxMUYwQkRCOTQ1NERDNEY5QUUwMi8zMUM1NDZBRTU1 REIxMUYwQTkyRjREMTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKPf8TANBgkqhkiG9w0BAQsFAAOCAQEAEVoLwO9VXFjBmkog INwKGI7pkPJRQ0K3tbnI9FK7KmogGpWTnO7WSf5hVye+w1+2cuUVzOsas2uxicdG ObH7/G0KXjLH62JvIEU3gPcRSie7qwh2Ynmbx8ZjXwzzY4qfoAd4xC73s9WP8lcn 9XzvnRBaW5qnH8FeZ2MM/p9HPA1IFihfFYxTsfkER1n21DEfTkg4wL5YBksXp23n fR4ohMqKVzzNn3qVcXsntEqGxdwPuxjC6Q20Z4XjcNdPBl7/tTPls87/uSod3aiY JwVfV5KfX/96IUJMJ95J4hkeYWb0uMVZPbsHMCEEyDJ+mqslS9t6nSs1AJc450Kx iFm/aQ== -----END CERTIFICATE-----Generated at Sun Jul 20 10:46:51 2025 by rpki-client