$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/666EE7025B7211EF8C1A8E4EC4F9AE02.roa File: 666EE7025B7211EF8C1A8E4EC4F9AE02.roa (raw, json) Hash identifier: yQ9Zz2wr8tjKdfaxVczUpLIfv3iNt/pg9a1JKFuCtos= Subject key identifier: 24:B9:91:C2:CE:7E:93:DA:7E:6D:3B:B6:68:4C:AA:8D:41:2D:3A:57 Certificate issuer: /CN=A9149F3E/serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F Certificate serial: 34FF Authority key identifier: BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/666EE7025B7211EF8C1A8E4EC4F9AE02.roa Signing time: Fri 04 Jul 2025 14:50:16 +0000 ROA not before: Fri 04 Jul 2025 14:50:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 160.30.106.0/24 maxlen: 24 160.30.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:22:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13567 (0x34ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F Validity Not Before: Jul 4 14:50:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6867ea28-e5b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5e:ba:c8:10:6b:2a:17:fb:53:d4:99:8a:54: eb:37:73:61:65:91:82:e3:d0:6c:59:26:fa:42:8f: 08:a5:a0:b3:4b:5f:9e:b9:86:20:9f:b4:25:92:3e: 0b:f8:92:00:7a:78:51:56:d6:38:e4:8f:60:a9:1d: cd:de:93:f6:8e:72:99:85:b8:95:7e:c3:d5:15:f5: a2:d2:2c:34:3a:5b:f4:be:13:28:43:29:79:c8:c5: 92:61:6e:ba:0e:2d:5a:d4:0e:0a:bd:d7:26:28:73: b3:b9:cd:9d:c5:e8:7f:d5:7f:2b:4d:22:0d:4f:24: 4d:cc:54:cf:86:3f:2b:41:07:3e:b0:23:68:c3:60: 1e:8c:97:9f:01:8a:bf:7f:10:a8:75:86:39:5b:22: 14:5a:72:5d:10:51:de:72:83:17:89:68:f2:5b:35: d4:0a:77:26:5f:b8:4e:33:7f:01:77:ed:a6:f7:da: ba:4f:65:c0:41:4a:e3:40:5a:36:98:13:7e:61:37: e6:d4:10:d5:bc:eb:02:1b:f5:82:68:ce:2b:24:24: 70:b1:e5:b3:14:45:ff:f4:0a:78:74:e4:49:5b:e6: 1a:a7:bc:6d:b9:31:9a:a4:6b:05:3f:ba:db:24:08: 8a:b9:ce:95:07:4d:fa:81:ff:00:17:2b:05:d4:a8: 1e:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B9:91:C2:CE:7E:93:DA:7E:6D:3B:B6:68:4C:AA:8D:41:2D:3A:57 X509v3 Authority Key Identifier: keyid:BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/666EE7025B7211EF8C1A8E4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.106.0/23 Signature Algorithm: sha256WithRSAEncryption 48:99:bd:25:a0:2f:33:bb:cd:2c:9f:bf:ea:4c:b9:26:36:1e: fe:87:e2:7c:75:af:36:bd:ab:10:2b:15:3b:48:a3:85:c0:d1: e5:af:01:66:ce:43:df:ee:fc:78:82:5a:68:2a:20:dd:37:1e: dd:15:d1:80:28:0e:9a:d2:7c:77:4f:7c:12:a6:33:7c:85:d3: 16:78:d2:81:5c:6a:f8:e4:9c:4f:57:10:d9:9a:a3:ab:a7:2a: 51:82:18:93:16:df:8e:de:73:9b:2e:2f:f6:db:fb:76:1a:13: 95:d1:88:1e:5c:68:58:49:32:c7:c6:f0:70:1c:95:28:b7:1f: 71:9d:90:cf:6a:07:df:5e:47:2f:a0:9e:bf:e5:1b:17:8f:c2: ed:df:58:31:aa:2b:e4:40:9d:ea:ce:51:34:a9:24:8f:c2:18: bb:38:ce:35:9b:b2:5c:ef:19:33:a4:3a:3d:03:f1:6a:3b:6c: fd:47:46:2a:c8:3c:bc:46:2e:d5:19:35:5b:e7:dc:7b:01:82: 68:25:c1:f0:a9:10:0d:24:5e:5f:f6:a1:7b:1f:a2:d6:f6:3b: a3:18:75:dd:dc:af:15:33:87:c0:d7:58:dd:b0:4f:d9:9c:28: fb:1f:19:e6:7d:dd:84:e6:b7:ec:38:5c:ac:bc:47:19:00:22: b7:b8:9f:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEJGMEU2RjRFRTBFMTdEREU4QzRBMjRCRjg5N0QxOUI4 N0FBNTc1OUYwHhcNMjUwNzA0MTQ1MDE2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3ZWEyOC1lNWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnF66yBBrKhf7U9SZilTrN3NhZZGC49BsWSb6Qo8IpaCzS1+euYYgn7Qlkj4L +JIAenhRVtY45I9gqR3N3pP2jnKZhbiVfsPVFfWi0iw0Olv0vhMoQyl5yMWSYW66 Di1a1A4KvdcmKHOzuc2dxeh/1X8rTSINTyRNzFTPhj8rQQc+sCNow2AejJefAYq/ fxCodYY5WyIUWnJdEFHecoMXiWjyWzXUCncmX7hOM38Bd+2m99q6T2XAQUrjQFo2 mBN+YTfm1BDVvOsCG/WCaM4rJCRwseWzFEX/9Ap4dORJW+Yap7xtuTGapGsFP7rb JAiKuc6VB036gf8AFysF1Kge6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCS5kcLO fpPafm07tmhMqo1BLTpXMB8GA1UdIwQYMBaAFL8Ob07g4X3ejEokv4l9Gbh6pXWf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS85QTg1QkI1MDFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi92dzV2VHVEaGZkNk1TaVNfaVgwWnVIcWxk WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Z3NXZUdURoZmQ2TVNpU19pWDBadUhxbGRaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvOUE4NUJCNTAxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNjY2RUU3MDI1 QjcyMTFFRjhDMUE4RTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHmowDQYJKoZIhvcNAQELBQADggEBAEiZvSWgLzO7zSyf v+pMuSY2Hv6H4nx1rza9qxArFTtIo4XA0eWvAWbOQ9/u/HiCWmgqIN03Ht0V0YAo DprSfHdPfBKmM3yF0xZ40oFcavjknE9XENmao6unKlGCGJMW347ec5suL/bb+3Ya E5XRiB5caFhJMsfG8HAclSi3H3GdkM9qB99eRy+gnr/lGxePwu3fWDGqK+RAnerO UTSpJI/CGLs4zjWbslzvGTOkOj0D8Wo7bP1HRirIPLxGLtUZNVvn3HsBgmglwfCp EA0kXl/2oXsfotb2O6MYdd3crxUzh8DXWN2wT9mcKPsfGeZ93YTmt+w4XKy8RxkA Ire4n88= -----END CERTIFICATE-----Generated at Mon Jul 21 12:50:08 2025 by rpki-client