$ rpki-client -vvf rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/CA2855CC2F0211EFB28E0271C4F9AE02.roa File: CA2855CC2F0211EFB28E0271C4F9AE02.roa (raw, json) Hash identifier: /1PjZ5NNRMUhyhR9YlRWIkmEIJE+BmHYk2vv+gNzyk8= Subject key identifier: A5:E1:7A:8F:19:84:9F:77:04:EF:75:90:57:DC:86:94:31:D5:2A:DE Certificate issuer: /CN=A9133239/serialNumber=6C9A122115791B8E15048017A9757E587AB56F80 Certificate serial: C5 Authority key identifier: 6C:9A:12:21:15:79:1B:8E:15:04:80:17:A9:75:7E:58:7A:B5:6F:80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJoSIRV5G44VBIAXqXV-WHq1b4A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/CA2855CC2F0211EFB28E0271C4F9AE02.roa Signing time: Sat 05 Jul 2025 06:12:28 +0000 ROA not before: Sat 05 Jul 2025 06:12:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 152924 IP address blocks: 160.22.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/bJoSIRV5G44VBIAXqXV-WHq1b4A.crl rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/bJoSIRV5G44VBIAXqXV-WHq1b4A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJoSIRV5G44VBIAXqXV-WHq1b4A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133239, serialNumber=6C9A122115791B8E15048017A9757E587AB56F80 Validity Not Before: Jul 5 06:12:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6868c24c-4167 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:74:b3:b3:38:85:3d:e7:d5:3f:31:5a:89:69: a6:77:3f:75:25:7b:50:32:d9:f1:01:ac:79:9c:b9: f4:8f:5e:a4:b1:c2:69:de:b7:3e:7b:6b:2a:ff:9d: 48:91:c3:05:97:88:38:1e:e8:cb:93:e3:8c:48:ba: 37:cb:c2:21:f5:34:ab:a1:d7:b6:ee:9e:9b:41:98: b4:ca:da:89:19:57:83:29:50:18:cb:9e:0e:a6:14: ca:a6:cb:78:9c:c2:a0:35:f1:e6:04:f3:7a:e3:cc: a5:20:72:bb:94:96:8b:ad:61:13:da:f7:3f:a8:8b: 71:cc:8a:a4:8b:b0:5f:87:41:24:f1:bf:18:4a:ed: 21:c1:04:52:20:ca:b9:5c:db:e5:63:2a:44:6f:49: 27:2a:e3:8b:37:51:0c:5b:f1:42:b3:f5:e2:2d:28: 13:d6:05:c0:15:3f:33:21:2b:78:64:15:09:b8:3e: c6:21:3d:da:96:ec:2e:2f:35:30:7b:44:39:68:b6: 6c:bb:e3:f0:ba:16:db:21:c6:b5:4a:da:54:63:2b: 99:09:e3:97:c7:da:97:77:02:c4:03:b9:0a:d1:da: 4d:2e:57:12:77:2e:7e:4b:ab:82:2a:cf:d1:bc:70: 6e:83:f5:10:51:25:44:45:8c:e0:30:ff:a3:39:46: 8a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:E1:7A:8F:19:84:9F:77:04:EF:75:90:57:DC:86:94:31:D5:2A:DE X509v3 Authority Key Identifier: keyid:6C:9A:12:21:15:79:1B:8E:15:04:80:17:A9:75:7E:58:7A:B5:6F:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/bJoSIRV5G44VBIAXqXV-WHq1b4A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bJoSIRV5G44VBIAXqXV-WHq1b4A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133239/747AA44A2F0211EF8C7A5870C4F9AE02/CA2855CC2F0211EFB28E0271C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.186.0/24 Signature Algorithm: sha256WithRSAEncryption 70:54:48:51:96:3f:2f:cf:5b:ab:a3:15:d0:ea:56:6d:57:52: 55:25:db:fa:2f:43:09:e5:be:25:8a:34:b4:41:50:5b:29:d6: af:c2:d5:cb:a4:8a:50:52:73:71:d0:38:90:bf:92:7b:83:8d: db:b6:f6:b7:d7:22:63:bd:37:9a:46:68:8d:5b:7b:d4:a2:cd: 0f:c9:9b:2d:aa:ca:18:8e:1a:dc:58:75:1a:92:6d:3d:df:69: b4:31:1a:23:75:cf:0e:26:8f:87:11:82:0f:bf:ab:d8:d8:e5: fd:e1:39:b3:05:74:a4:fa:d5:db:1b:7b:4d:f5:8c:90:60:45: 28:36:04:99:dd:19:41:a3:fb:28:2e:82:ff:02:37:2b:f7:c0: c1:39:03:85:07:5a:24:b9:d5:3a:40:53:ec:84:69:cc:a1:88: 93:6b:87:32:dc:d7:4c:41:46:99:59:2b:7f:5a:51:3f:9c:48: 70:c6:d2:f0:cd:00:5d:a5:4c:07:48:a3:1c:10:b0:e8:52:bb: cb:e1:63:a3:44:93:d0:0c:75:61:69:42:c0:6c:c7:c5:29:17: c0:80:b9:11:8e:b1:97:38:1b:1c:c5:e1:ff:04:6a:85:64:a8: 36:a7:6e:43:89:c1:91:de:e4:d7:fe:9f:2b:73:ea:4d:ab:34: 99:df:bc:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzMyMzkxMTAvBgNVBAUTKDZDOUExMjIxMTU3OTFCOEUxNTA0ODAxN0E5NzU3RTU4 N0FCNTZGODAwHhcNMjUwNzA1MDYxMjI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4YzI0Yy00MTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynSzsziFPefVPzFaiWmmdz91JXtQMtnxAax5nLn0j16kscJp3rc+e2sq/51I kcMFl4g4HujLk+OMSLo3y8Ih9TSrode27p6bQZi0ytqJGVeDKVAYy54OphTKpst4 nMKgNfHmBPN648ylIHK7lJaLrWET2vc/qItxzIqki7Bfh0Ek8b8YSu0hwQRSIMq5 XNvlYypEb0knKuOLN1EMW/FCs/XiLSgT1gXAFT8zISt4ZBUJuD7GIT3aluwuLzUw e0Q5aLZsu+PwuhbbIca1StpUYyuZCeOXx9qXdwLEA7kK0dpNLlcSdy5+S6uCKs/R vHBug/UQUSVERYzgMP+jOUaKUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKXheo8Z hJ93BO91kFfchpQx1SreMB8GA1UdIwQYMBaAFGyaEiEVeRuOFQSAF6l1flh6tW+A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzIzOS83NDdBQTQ0QTJG MDIxMUVGOEM3QTU4NzBDNEY5QUUwMi9iSm9TSVJWNUc0NFZCSUFYcVhWLVdIcTFi NEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2JKb1NJUlY1RzQ0VkJJQVhxWFYtV0hxMWI0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzMyMzkvNzQ3QUE0NEEyRjAyMTFFRjhDN0E1ODcwQzRGOUFFMDIvQ0EyODU1Q0My RjAyMTFFRkIyOEUwMjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFrowDQYJKoZIhvcNAQELBQADggEBAHBUSFGWPy/PW6uj FdDqVm1XUlUl2/ovQwnlviWKNLRBUFsp1q/C1cukilBSc3HQOJC/knuDjdu29rfX ImO9N5pGaI1be9SizQ/Jmy2qyhiOGtxYdRqSbT3fabQxGiN1zw4mj4cRgg+/q9jY 5f3hObMFdKT61dsbe031jJBgRSg2BJndGUGj+ygugv8CNyv3wME5A4UHWiS51TpA U+yEacyhiJNrhzLc10xBRplZK39aUT+cSHDG0vDNAF2lTAdIoxwQsOhSu8vhY6NE k9AMdWFpQsBsx8UpF8CAuRGOsZc4GxzF4f8EaoVkqDanbkOJwZHe5Nf+nytz6k2r NJnfvPc= -----END CERTIFICATE-----Generated at Sun Jul 20 22:44:02 2025 by rpki-client