$ rpki-client -vvf rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/D2D1A4B45BD711F089C6844AC4F9AE02.roa File: D2D1A4B45BD711F089C6844AC4F9AE02.roa (raw, json) Hash identifier: IwSpun4mR93liWUYd7J1ESsaB1Uz4atotyyWq8c/ozo= Subject key identifier: 34:7D:33:3C:74:9A:5A:0F:F1:93:1A:7D:6F:B7:8B:AB:6A:6C:F9:9A Certificate issuer: /CN=A918DAC5/serialNumber=4701CF2D282009D6C6EAF4556FB0DC1B0D5557EF Certificate serial: 75 Authority key identifier: 47:01:CF:2D:28:20:09:D6:C6:EA:F4:55:6F:B0:DC:1B:0D:55:57:EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwHPLSggCdbG6vRVb7DcGw1VV-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/D2D1A4B45BD711F089C6844AC4F9AE02.roa Signing time: Tue 08 Jul 2025 08:44:56 +0000 ROA not before: Tue 08 Jul 2025 08:44:56 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55330 IP address blocks: 160.191.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/RwHPLSggCdbG6vRVb7DcGw1VV-8.crl rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/RwHPLSggCdbG6vRVb7DcGw1VV-8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwHPLSggCdbG6vRVb7DcGw1VV-8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DAC5, serialNumber=4701CF2D282009D6C6EAF4556FB0DC1B0D5557EF Validity Not Before: Jul 8 08:44:56 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=686cda88-0286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d2:a9:65:34:7b:a5:24:1d:b0:06:a3:dc:5a: a5:a9:22:86:a2:b1:55:2a:9c:70:35:c8:a1:72:98: 3e:63:28:e0:1d:cf:08:a0:bb:b3:fe:db:9b:7f:13: 44:e6:2a:37:98:77:a0:27:03:51:d5:75:b0:48:c8: 6f:89:00:ee:0c:c5:46:88:dd:09:04:c5:8d:1b:ad: 10:2c:6c:ff:46:41:3a:20:5a:15:49:cb:64:c6:3d: 4b:a5:f4:85:71:65:ef:c2:29:70:23:97:95:74:70: 65:29:4f:ae:d7:1a:31:9c:23:b6:1b:76:5a:85:0a: 03:f0:22:aa:c3:2e:fd:a7:33:64:b9:c5:9e:a9:3f: 50:b1:1d:50:15:8c:0a:28:f4:b4:dc:4d:ce:82:f3: b9:65:3b:90:0d:df:25:89:e0:b7:e2:65:57:42:82: 3a:97:10:c3:64:3c:79:10:96:80:95:32:4d:60:1e: a9:52:1c:b3:41:1b:1b:a5:70:1e:ac:19:4e:45:08: cd:86:5e:8d:c9:b9:0b:9c:41:65:51:ec:5b:ed:20: 24:4f:e6:37:ec:2e:a0:fb:d0:f0:19:95:ce:4f:b8: 8e:11:a5:f2:64:0a:93:47:81:1b:bd:32:3e:12:43: ff:12:da:c0:5d:4d:d3:0f:b6:48:74:76:b0:db:a2: 20:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7D:33:3C:74:9A:5A:0F:F1:93:1A:7D:6F:B7:8B:AB:6A:6C:F9:9A X509v3 Authority Key Identifier: keyid:47:01:CF:2D:28:20:09:D6:C6:EA:F4:55:6F:B0:DC:1B:0D:55:57:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/RwHPLSggCdbG6vRVb7DcGw1VV-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RwHPLSggCdbG6vRVb7DcGw1VV-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DAC5/C39582C0ABDA11EFA1C14E76C4F9AE02/D2D1A4B45BD711F089C6844AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.141.0/24 Signature Algorithm: sha256WithRSAEncryption 26:ab:5a:63:4f:c6:38:e0:40:3b:1a:52:ee:71:2a:71:02:ff: 02:e1:0a:73:cd:02:3d:69:5c:14:5e:17:41:60:67:2f:1d:2c: 32:f3:39:a5:1f:7b:dc:3d:9e:72:8c:40:23:77:fd:86:44:9f: 64:14:a4:69:82:fd:1d:ce:e5:52:20:6b:2e:60:a5:1c:bc:58: 4b:68:9e:20:a2:9f:53:a2:8c:b0:95:11:e0:7e:71:1a:b7:3c: 3f:ed:95:3e:24:5d:dc:17:62:6e:60:b6:79:be:23:b5:c6:ca: f6:0f:91:89:dd:f7:84:a9:43:4e:25:e3:b6:65:53:20:cc:75: 62:ba:90:23:62:3b:86:dd:dd:0a:4e:59:61:3a:58:14:21:1b: 54:d4:ad:11:8c:43:09:e1:ef:b6:a9:15:13:c4:4a:69:b3:00: 03:4d:d6:90:b8:f4:ac:dd:a9:b8:8f:aa:67:58:40:2a:c9:0f: 47:8f:6b:20:e8:ed:4e:83:d0:6f:56:27:f2:99:de:b4:d5:7a: 97:a7:1e:dd:27:fe:b0:a9:3d:cb:07:e2:9a:4e:11:79:70:f2: 9d:83:70:0b:10:9c:a0:03:9a:09:1f:a2:22:c9:ab:a6:7a:47: e7:bb:20:a2:7f:7e:56:90:fe:0c:dc:2c:1f:10:17:fa:39:4a: 16:12:02:1b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 REFDNTExMC8GA1UEBRMoNDcwMUNGMkQyODIwMDlENkM2RUFGNDU1NkZCMERDMUIw RDU1NTdFRjAeFw0yNTA3MDgwODQ0NTZaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NmNkYTg4LTAyODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy0qllNHulJB2wBqPcWqWpIoaisVUqnHA1yKFymD5jKOAdzwigu7P+25t/E0Tm KjeYd6AnA1HVdbBIyG+JAO4MxUaI3QkExY0brRAsbP9GQTogWhVJy2TGPUul9IVx Ze/CKXAjl5V0cGUpT67XGjGcI7YbdlqFCgPwIqrDLv2nM2S5xZ6pP1CxHVAVjAoo 9LTcTc6C87llO5AN3yWJ4LfiZVdCgjqXEMNkPHkQloCVMk1gHqlSHLNBGxulcB6s GU5FCM2GXo3JuQucQWVR7FvtICRP5jfsLqD70PAZlc5PuI4RpfJkCpNHgRu9Mj4S Q/8S2sBdTdMPtkh0drDboiC3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNH0zPHSa Wg/xkxp9b7eLq2ps+ZowHwYDVR0jBBgwFoAURwHPLSggCdbG6vRVb7DcGw1VV+8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEQUM1L0MzOTU4MkMwQUJE QTExRUZBMUMxNEU3NkM0RjlBRTAyL1J3SFBMU2dnQ2RiRzZ2UlZiN0RjR3cxVlYt OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUndIUExTZ2dDZGJHNnZSVmI3RGNHdzFWVi04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 REFDNS9DMzk1ODJDMEFCREExMUVGQTFDMTRFNzZDNEY5QUUwMi9EMkQxQTRCNDVC RDcxMUYwODlDNjg0NEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKC/jTANBgkqhkiG9w0BAQsFAAOCAQEAJqtaY0/GOOBAOxpS 7nEqcQL/AuEKc80CPWlcFF4XQWBnLx0sMvM5pR973D2ecoxAI3f9hkSfZBSkaYL9 Hc7lUiBrLmClHLxYS2ieIKKfU6KMsJUR4H5xGrc8P+2VPiRd3BdibmC2eb4jtcbK 9g+Rid33hKlDTiXjtmVTIMx1YrqQI2I7ht3dCk5ZYTpYFCEbVNStEYxDCeHvtqkV E8RKabMAA03WkLj0rN2puI+qZ1hAKskPR49rIOjtToPQb1Yn8pnetNV6l6ce3Sf+ sKk9ywfimk4ReXDynYNwCxCcoAOaCR+iIsmrpnpH57sgon9+VpD+DNwsHxAX+jlK FhICGw== -----END CERTIFICATE-----Generated at Sun Jul 20 12:33:05 2025 by rpki-client