$ rpki-client -vvf rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/BD956DA243A811F0B2160F4CC4F9AE02.roa File: BD956DA243A811F0B2160F4CC4F9AE02.roa (raw, json) Hash identifier: DPMo9JSOcY0Ad4D94vkT1qT0OK/brrqmASVUw6EiS9I= Subject key identifier: B2:84:AA:67:7D:C2:A3:79:09:4B:C0:36:7C:A2:E5:FA:74:0C:89:3E Certificate issuer: /CN=A9117CE3/serialNumber=C26F46FD9952B3AF3A7D715DE1BF3A61E25C798A Certificate serial: CA Authority key identifier: C2:6F:46:FD:99:52:B3:AF:3A:7D:71:5D:E1:BF:3A:61:E2:5C:79:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wm9G_ZlSs686fXFd4b86YeJceYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/BD956DA243A811F0B2160F4CC4F9AE02.roa Signing time: Wed 25 Jun 2025 05:39:47 +0000 ROA not before: Wed 25 Jun 2025 05:39:47 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135883 IP address blocks: 160.25.20.0/23 maxlen: 23 160.25.20.0/24 maxlen: 24 160.25.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/wm9G_ZlSs686fXFd4b86YeJceYo.crl rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/wm9G_ZlSs686fXFd4b86YeJceYo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wm9G_ZlSs686fXFd4b86YeJceYo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117CE3, serialNumber=C26F46FD9952B3AF3A7D715DE1BF3A61E25C798A Validity Not Before: Jun 25 05:39:47 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685b8ba3-b68f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4a:b8:f1:6e:86:5b:24:49:ab:b0:00:89:1b: 73:07:ea:c8:bc:d6:fa:15:b8:c3:8e:8a:57:7e:1a: 87:f4:7b:e5:c3:d8:ac:b7:9f:2c:ff:bd:5b:fa:9d: c4:da:d6:86:ce:97:75:13:d3:37:fc:ae:57:88:4a: 32:3c:48:30:df:41:37:a0:7b:3b:98:1c:f1:1c:39: 5e:29:95:82:6f:42:b5:eb:a7:61:86:f7:2f:0d:43: d0:ce:23:18:ec:2b:e9:f8:63:a3:ef:22:c7:d7:bb: 4e:3e:8b:56:41:6b:db:47:3f:84:3f:86:57:f4:53: 7f:62:1c:a4:3e:ff:3d:22:b8:29:58:d3:3a:03:59: c2:a6:88:b5:e5:32:26:49:e9:dd:86:3b:76:d7:df: b2:65:7b:f8:8c:85:3e:b9:be:14:76:0b:9b:b0:fc: 29:95:77:3b:c5:fa:7f:4d:08:32:9c:7f:af:c4:60: 01:64:3f:0b:ea:d0:94:e3:37:25:b6:eb:3f:81:a1: 64:b0:e2:cd:b3:17:45:90:0b:0c:d5:43:3e:3e:2d: 95:d3:2c:1a:b0:2f:c3:a2:a6:90:d9:e1:b0:fa:d7: 6c:28:e6:8e:fb:65:4a:78:7d:e1:6e:63:b9:e7:fc: f9:c0:c4:76:37:2e:67:62:62:c7:36:fb:7d:84:d2: 93:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:84:AA:67:7D:C2:A3:79:09:4B:C0:36:7C:A2:E5:FA:74:0C:89:3E X509v3 Authority Key Identifier: keyid:C2:6F:46:FD:99:52:B3:AF:3A:7D:71:5D:E1:BF:3A:61:E2:5C:79:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/wm9G_ZlSs686fXFd4b86YeJceYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wm9G_ZlSs686fXFd4b86YeJceYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/BD956DA243A811F0B2160F4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.20.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:04:ad:91:2e:34:8a:8c:37:01:ed:2b:8b:88:78:e8:fd:cd: 76:ba:94:ec:6a:50:28:ce:fa:85:32:a9:14:93:f7:4d:f3:bf: 91:00:16:67:0c:db:d3:1c:ef:d2:6f:4c:8a:d9:8c:56:d0:8a: c5:0b:b1:89:2e:ee:05:3a:ed:a3:d8:1c:a0:ff:f8:32:4a:e5: b9:df:63:d0:3b:05:a5:01:10:f9:2c:2e:34:f7:a9:8b:97:10: a3:e9:ed:c8:5b:c1:b1:a6:90:e3:b3:20:92:e8:84:48:78:f6: 6e:3c:b9:46:d4:00:d9:8d:b5:d5:24:9d:85:63:9b:6a:dc:84: 28:bd:67:ba:ac:ac:49:d9:de:1d:8a:58:09:d3:7e:06:c2:35: 54:94:4e:8a:7a:ec:58:ed:44:39:00:ed:1f:6d:01:39:e7:e0: 04:92:51:fa:44:bb:ec:5b:03:34:cd:8e:97:ff:3c:ce:44:2c: e0:a0:f1:13:78:6a:1f:de:8c:d8:3e:22:80:a3:ce:e9:38:65: 60:e6:bb:13:ee:10:b2:da:d7:3b:95:85:a2:af:cf:4a:dd:e5: 69:f4:d8:8d:55:99:73:a2:bc:99:0b:dc:ef:9f:a8:9f:9b:6b: cc:ee:91:ab:7e:52:8c:c3:f4:0d:9d:d1:62:61:5c:83:d7:53: d8:0f:1c:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdDRTMxMTAvBgNVBAUTKEMyNkY0NkZEOTk1MkIzQUYzQTdENzE1REUxQkYzQTYx RTI1Qzc5OEEwHhcNMjUwNjI1MDUzOTQ3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViOGJhMy1iNjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50q48W6GWyRJq7AAiRtzB+rIvNb6FbjDjopXfhqH9Hvlw9ist58s/71b+p3E 2taGzpd1E9M3/K5XiEoyPEgw30E3oHs7mBzxHDleKZWCb0K166dhhvcvDUPQziMY 7Cvp+GOj7yLH17tOPotWQWvbRz+EP4ZX9FN/YhykPv89IrgpWNM6A1nCpoi15TIm Sendhjt219+yZXv4jIU+ub4UdgubsPwplXc7xfp/TQgynH+vxGABZD8L6tCU4zcl tus/gaFksOLNsxdFkAsM1UM+Pi2V0ywasC/DoqaQ2eGw+tdsKOaO+2VKeH3hbmO5 5/z5wMR2Ny5nYmLHNvt9hNKTLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLKEqmd9 wqN5CUvANnyi5fp0DIk+MB8GA1UdIwQYMBaAFMJvRv2ZUrOvOn1xXeG/OmHiXHmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0NFMy9BOTBDQUZDNDM0 NjUxMUVGQjlDMDc2NEZDNEY5QUUwMi93bTlHX1psU3M2ODZmWEZkNGI4NlllSmNl WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3dtOUdfWmxTczY4NmZYRmQ0Yjg2WWVKY2VZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTdDRTMvQTkwQ0FGQzQzNDY1MTFFRkI5QzA3NjRGQzRGOUFFMDIvQkQ5NTZEQTI0 M0E4MTFGMEIyMTYwRjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGRQwDQYJKoZIhvcNAQELBQADggEBAAoErZEuNIqMNwHt K4uIeOj9zXa6lOxqUCjO+oUyqRST903zv5EAFmcM29Mc79JvTIrZjFbQisULsYku 7gU67aPYHKD/+DJK5bnfY9A7BaUBEPksLjT3qYuXEKPp7chbwbGmkOOzIJLohEh4 9m48uUbUANmNtdUknYVjm2rchCi9Z7qsrEnZ3h2KWAnTfgbCNVSUTop67FjtRDkA 7R9tATnn4ASSUfpEu+xbAzTNjpf/PM5ELOCg8RN4ah/ejNg+IoCjzuk4ZWDmuxPu ELLa1zuVhaKvz0rd5Wn02I1VmXOivJkL3O+fqJ+ba8zukat+UozD9A2d0WJhXIPX U9gPHO8= -----END CERTIFICATE-----Generated at Wed Oct 29 07:06:28 2025 by rpki-client