$ rpki-client -vvf rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/FFE6CB36228111EFA702E016C4F9AE02.roa File: FFE6CB36228111EFA702E016C4F9AE02.roa (raw, json) Hash identifier: iyVM1h+Ep3e3RRmXJiIJW8+nb71UCnekaP7xnKvCLmo= Subject key identifier: 07:95:05:A4:DD:44:D5:8D:3E:CC:D3:E8:6B:C3:55:5B:CB:8F:46:4F Certificate issuer: /CN=A9129023/serialNumber=4F146F5CC4F4BC873822FA1E33452A541A1EE546 Certificate serial: FA Authority key identifier: 4F:14:6F:5C:C4:F4:BC:87:38:22:FA:1E:33:45:2A:54:1A:1E:E5:46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxRvXMT0vIc4IvoeM0UqVBoe5UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/FFE6CB36228111EFA702E016C4F9AE02.roa Signing time: Sat 27 Sep 2025 06:03:42 +0000 ROA not before: Sat 27 Sep 2025 06:03:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 147001 IP address blocks: 160.20.134.0/23 maxlen: 23 160.20.134.0/24 maxlen: 24 160.20.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/TxRvXMT0vIc4IvoeM0UqVBoe5UY.crl rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/TxRvXMT0vIc4IvoeM0UqVBoe5UY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxRvXMT0vIc4IvoeM0UqVBoe5UY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 06:58:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129023, serialNumber=4F146F5CC4F4BC873822FA1E33452A541A1EE546 Validity Not Before: Sep 27 06:03:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68d77e3e-dd29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7c:15:df:fd:f3:5c:66:ca:58:96:d6:b0:b7: f6:23:cf:a1:39:d5:4e:c6:c0:6e:0f:1a:c2:1b:8a: 90:c8:5c:31:e5:d4:d5:26:53:d2:16:e2:33:c6:c4: f7:ff:36:cd:c3:f4:49:a6:f2:ac:2f:d3:64:9c:97: 2a:10:2b:87:84:11:e2:7f:d3:d1:d9:27:8a:54:95: a0:61:08:8e:f2:c3:63:c8:ee:10:4e:ee:7b:17:ac: 1c:dc:ad:05:e7:ba:e4:f2:f8:37:e0:61:d1:56:6e: 43:fd:32:c2:45:de:28:6e:0f:8d:2b:09:8b:75:cd: fe:d9:89:52:04:a1:65:51:e4:13:a5:2f:4c:ef:72: 20:f5:3e:cb:58:19:00:19:25:0b:cb:0a:f4:ba:cb: c0:27:b3:2d:43:75:3d:1f:b4:ce:44:ea:59:ee:67: e1:26:1e:55:79:4a:1d:97:35:42:76:62:ea:3e:9d: 1b:5d:94:07:52:f7:cf:53:22:47:2e:ac:4e:35:bb: 7e:0e:de:6c:64:62:f6:3a:fd:05:dd:e3:29:09:dc: 0f:6b:81:3c:9f:52:37:d2:22:5e:c6:8e:ee:e5:c4: eb:07:1a:ba:d5:29:8c:0f:ff:c6:5f:3a:0f:8d:5d: 67:64:88:b6:b9:a6:98:0f:ed:e0:5c:b9:16:d9:b1: e6:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:95:05:A4:DD:44:D5:8D:3E:CC:D3:E8:6B:C3:55:5B:CB:8F:46:4F X509v3 Authority Key Identifier: keyid:4F:14:6F:5C:C4:F4:BC:87:38:22:FA:1E:33:45:2A:54:1A:1E:E5:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/TxRvXMT0vIc4IvoeM0UqVBoe5UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxRvXMT0vIc4IvoeM0UqVBoe5UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/FFE6CB36228111EFA702E016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.134.0/23 Signature Algorithm: sha256WithRSAEncryption 62:c4:82:22:0e:9b:5f:fa:c9:b4:1e:02:f7:49:45:85:ea:38: df:3c:19:33:53:64:9c:14:17:e3:b7:3e:16:77:24:05:42:ff: 41:14:ba:8d:49:2d:1e:58:be:19:12:f3:73:a7:e1:0c:17:0a: 33:56:b3:40:66:cf:65:fd:cf:cf:6d:6d:99:16:55:0e:7e:44: 2e:cf:c4:a5:e2:52:a0:1e:65:be:6d:21:70:16:11:bc:55:95: 69:eb:04:cd:56:25:d2:40:69:e3:06:7f:8d:f5:ea:14:54:b9: 11:c5:0e:01:de:e2:ac:30:ed:64:f8:ff:19:7b:dc:33:ee:7c: 39:57:f5:85:43:59:5a:bc:b3:b1:dc:06:90:40:61:d2:0c:3f: e4:28:cc:a8:0a:87:a5:74:e7:29:1b:a4:8d:5b:27:ed:bb:ed: 8a:49:e2:dc:96:7f:a0:26:5c:69:3e:31:65:af:06:93:09:4b: 31:3c:bd:4f:35:50:b9:6d:3b:39:a3:06:c3:2b:ab:0c:72:f7: 62:33:bd:9f:3b:bc:a2:30:ac:35:65:58:3b:74:34:a0:28:54: 57:4b:cf:a7:c7:3e:d1:18:f1:b2:ce:d9:db:ce:89:57:19:85: 1c:09:6f:9b:99:3d:0c:e1:37:1f:b0:97:09:0a:ce:db:79:b9: cd:46:99:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjkwMjMxMTAvBgNVBAUTKDRGMTQ2RjVDQzRGNEJDODczODIyRkExRTMzNDUyQTU0 MUExRUU1NDYwHhcNMjUwOTI3MDYwMzQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ3N2UzZS1kZDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHwV3/3zXGbKWJbWsLf2I8+hOdVOxsBuDxrCG4qQyFwx5dTVJlPSFuIzxsT3 /zbNw/RJpvKsL9NknJcqECuHhBHif9PR2SeKVJWgYQiO8sNjyO4QTu57F6wc3K0F 57rk8vg34GHRVm5D/TLCRd4obg+NKwmLdc3+2YlSBKFlUeQTpS9M73Ig9T7LWBkA GSULywr0usvAJ7MtQ3U9H7TOROpZ7mfhJh5VeUodlzVCdmLqPp0bXZQHUvfPUyJH LqxONbt+Dt5sZGL2Ov0F3eMpCdwPa4E8n1I30iJexo7u5cTrBxq61SmMD//GXzoP jV1nZIi2uaaYD+3gXLkW2bHmnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAeVBaTd RNWNPszT6GvDVVvLj0ZPMB8GA1UdIwQYMBaAFE8Ub1zE9LyHOCL6HjNFKlQaHuVG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTAyMy9GMzNCQjRBNjIy ODAxMUVGQTcyODNDMTRDNEY5QUUwMi9UeFJ2WE1UMHZJYzRJdm9lTTBVcVZCb2U1 VVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1R4UnZYTVQwdkljNEl2b2VNMFVxVkJvZTVVWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjkwMjMvRjMzQkI0QTYyMjgwMTFFRkE3MjgzQzE0QzRGOUFFMDIvRkZFNkNCMzYy MjgxMTFFRkE3MDJFMDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgFIYwDQYJKoZIhvcNAQELBQADggEBAGLEgiIOm1/6ybQe AvdJRYXqON88GTNTZJwUF+O3PhZ3JAVC/0EUuo1JLR5YvhkS83On4QwXCjNWs0Bm z2X9z89tbZkWVQ5+RC7PxKXiUqAeZb5tIXAWEbxVlWnrBM1WJdJAaeMGf4316hRU uRHFDgHe4qww7WT4/xl73DPufDlX9YVDWVq8s7HcBpBAYdIMP+QozKgKh6V05ykb pI1bJ+277YpJ4tyWf6AmXGk+MWWvBpMJSzE8vU81ULltOzmjBsMrqwxy92IzvZ87 vKIwrDVlWDt0NKAoVFdLz6fHPtEY8bLO2dvOiVcZhRwJb5uZPQzhNx+wlwkKztt5 uc1GmfM= -----END CERTIFICATE-----Generated at Sat Oct 25 02:47:04 2025 by rpki-client