$ rpki-client -vvf rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/D423FF3255D411F0A743B457C4F9AE02.roa File: D423FF3255D411F0A743B457C4F9AE02.roa (raw, json) Hash identifier: v1dnvMV2G1LRQxFOyJdmR+0lqbg+Qd+ZULe9l5QIfdw= Subject key identifier: A5:30:B4:C8:54:36:11:4F:0D:20:96:62:7D:2A:C9:5E:2D:F8:8B:B9 Certificate issuer: /CN=A9167F95/serialNumber=A83BCF6DB288E96470D34D18AFB3E4A812791867 Certificate serial: 30 Authority key identifier: A8:3B:CF:6D:B2:88:E9:64:70:D3:4D:18:AF:B3:E4:A8:12:79:18:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/D423FF3255D411F0A743B457C4F9AE02.roa Signing time: Mon 30 Jun 2025 17:08:23 +0000 ROA not before: Mon 30 Jun 2025 17:08:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 147181 IP address blocks: 163.223.240.0/24 maxlen: 24 2001:df5:5140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.crl rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:52:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167F95, serialNumber=A83BCF6DB288E96470D34D18AFB3E4A812791867 Validity Not Before: Jun 30 17:08:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6862c487-7977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:75:fc:5d:95:65:98:98:5c:ee:ab:01:47:a1: 50:64:e1:1c:9c:58:d3:28:81:b8:f5:2f:50:15:e1: 64:c5:4b:46:10:40:51:1b:e1:93:6b:10:e6:6b:ef: e1:0e:36:20:b2:73:41:6d:c5:50:43:dc:36:e7:aa: f0:35:0e:d5:60:7a:ae:dd:77:49:9d:9d:6e:78:ff: 77:5d:5a:14:97:93:54:03:55:62:f2:d2:f8:81:bf: 8a:16:33:97:31:d6:f0:b2:83:85:a3:fd:c2:a7:9f: 00:ba:fa:81:cc:ae:95:49:94:ee:1c:43:7d:67:41: a9:65:25:5b:ba:be:db:d7:b8:bd:2b:e9:3f:f4:e5: 11:ac:5f:fe:9b:3c:85:8c:e6:06:ad:3f:5a:e7:56: 63:cc:ba:e3:1b:6b:b9:4c:9b:68:f5:78:a6:8f:f7: 24:be:09:61:dc:53:1f:d7:00:33:41:b6:a3:e9:d7: 91:35:ce:6b:d5:f4:58:ee:ca:e0:c7:bb:77:85:39: 2d:32:54:c9:55:b0:b9:87:60:30:9f:80:4d:47:38: e0:d1:16:b1:16:f5:bb:89:3c:ee:18:0f:db:8b:85: d9:b7:22:c7:c8:eb:94:b3:4b:c2:1a:19:22:a5:0e: 7a:52:8d:f9:2a:8e:20:6b:60:aa:df:53:e3:26:b1: b9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:30:B4:C8:54:36:11:4F:0D:20:96:62:7D:2A:C9:5E:2D:F8:8B:B9 X509v3 Authority Key Identifier: keyid:A8:3B:CF:6D:B2:88:E9:64:70:D3:4D:18:AF:B3:E4:A8:12:79:18:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/qDvPbbKI6WRw000Yr7PkqBJ5GGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qDvPbbKI6WRw000Yr7PkqBJ5GGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167F95/7D33FD3812E711F0BDB9454DC4F9AE02/D423FF3255D411F0A743B457C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.240.0/24 IPv6: 2001:df5:5140::/48 Signature Algorithm: sha256WithRSAEncryption 7f:2a:dd:85:44:0c:72:bb:66:fe:e1:0b:d8:f5:9f:fe:cb:3e: 84:1c:0a:1f:d2:f1:27:13:88:7b:ef:c5:24:12:c5:a7:55:91: 13:b5:84:30:a2:c3:26:a5:ca:5d:f4:a5:4e:e3:06:62:36:61: b2:97:71:cf:3a:5a:a7:06:8b:99:b7:72:da:cc:99:75:cb:d0: b3:7d:57:97:5f:ba:be:dd:ee:02:e4:c7:fe:03:bd:db:79:c5: 46:d1:2c:ae:43:65:fd:90:ad:12:cc:8d:ab:4e:28:43:cb:03: 99:c3:27:be:7e:7f:5a:cf:a0:f4:43:8c:5f:64:10:11:a3:ea: 42:0f:a5:f4:18:c4:fc:b1:08:4d:c3:8c:14:5a:5d:82:15:32: 6a:ed:90:b2:07:73:60:23:68:8c:10:dd:3e:dc:1b:6d:91:83: 63:4b:fa:70:ad:64:55:3e:eb:cb:f0:e6:5d:91:f6:d3:db:a9: 3d:cf:c9:fa:b7:c3:4f:54:25:53:96:0f:3d:99:9e:b5:1e:49: a7:bc:00:ea:38:34:2e:d6:9d:d1:d4:1a:a4:6f:1a:08:de:cf: 88:02:ae:4c:bf:90:b5:13:a6:7a:e3:75:96:2b:d7:56:40:46: 17:36:78:3a:26:1d:46:63:68:9b:a7:25:a1:6e:87:d1:be:66: f9:c3:80:99 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0Y5NTExMC8GA1UEBRMoQTgzQkNGNkRCMjg4RTk2NDcwRDM0RDE4QUZCM0U0QTgx Mjc5MTg2NzAeFw0yNTA2MzAxNzA4MjNaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjJjNDg3LTc5NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDdfxdlWWYmFzuqwFHoVBk4RycWNMogbj1L1AV4WTFS0YQQFEb4ZNrEOZr7+EO NiCyc0FtxVBD3DbnqvA1DtVgeq7dd0mdnW54/3ddWhSXk1QDVWLy0viBv4oWM5cx 1vCyg4Wj/cKnnwC6+oHMrpVJlO4cQ31nQallJVu6vtvXuL0r6T/05RGsX/6bPIWM 5gatP1rnVmPMuuMba7lMm2j1eKaP9yS+CWHcUx/XADNBtqPp15E1zmvV9FjuyuDH u3eFOS0yVMlVsLmHYDCfgE1HOODRFrEW9buJPO4YD9uLhdm3IsfI65SzS8IaGSKl DnpSjfkqjiBrYKrfU+Mmsbk3AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUpTC0yFQ2 EU8NIJZifSrJXi34i7kwHwYDVR0jBBgwFoAUqDvPbbKI6WRw000Yr7PkqBJ5GGcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3Rjk1LzdEMzNGRDM4MTJF NzExRjBCREI5NDU0REM0RjlBRTAyL3FEdlBiYktJNldSdzAwMFlyN1BrcUJKNUdH Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcUR2UGJiS0k2V1J3MDAwWXI3UGtxQko1R0djLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0Y5NS83RDMzRkQzODEyRTcxMUYwQkRCOTQ1NERDNEY5QUUwMi9ENDIzRkYzMjU1 RDQxMUYwQTc0M0I0NTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAKPf8DAPBAIAAjAJAwcAIAEN9VFAMA0GCSqGSIb3DQEBCwUA A4IBAQB/Kt2FRAxyu2b+4QvY9Z/+yz6EHAof0vEnE4h778UkEsWnVZETtYQwosMm pcpd9KVO4wZiNmGyl3HPOlqnBouZt3LazJl1y9CzfVeXX7q+3e4C5Mf+A73becVG 0SyuQ2X9kK0SzI2rTihDywOZwye+fn9az6D0Q4xfZBARo+pCD6X0GMT8sQhNw4wU Wl2CFTJq7ZCyB3NgI2iMEN0+3BttkYNjS/pwrWRVPuvL8OZdkfbT26k9z8n6t8NP VCVTlg89mZ61HkmnvADqODQu1p3R1BqkbxoI3s+IAq5Mv5C1E6Z643WWK9dWQEYX Nng6Jh1GY2ibpyWhbofRvmb5w4CZ -----END CERTIFICATE-----Generated at Sun Jul 20 10:59:21 2025 by rpki-client