$ rpki-client -vvf rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/34060B22C2B311EE97B0B776C4F9AE02.roa File: 34060B22C2B311EE97B0B776C4F9AE02.roa (raw, json) Hash identifier: wRhoUuLabNYzTY9DDaSK06ADTxBJOvjSTEtu7/sVqes= Subject key identifier: 13:B3:C9:FA:BD:0B:CC:C6:A9:26:31:D4:CC:D8:D1:06:09:DE:2A:79 Certificate issuer: /CN=A9150CF2/serialNumber=B03E7BFB2B4BDAFA2EAA50AB7990F74FFCBCADD7 Certificate serial: 0CC2 Authority key identifier: B0:3E:7B:FB:2B:4B:DA:FA:2E:AA:50:AB:79:90:F7:4F:FC:BC:AD:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sD57-ytL2vouqlCreZD3T_y8rdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/34060B22C2B311EE97B0B776C4F9AE02.roa Signing time: Tue 20 May 2025 18:22:41 +0000 ROA not before: Tue 20 May 2025 18:22:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134806 IP address blocks: 160.238.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/sD57-ytL2vouqlCreZD3T_y8rdc.crl rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/sD57-ytL2vouqlCreZD3T_y8rdc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sD57-ytL2vouqlCreZD3T_y8rdc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 18:03:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150CF2, serialNumber=B03E7BFB2B4BDAFA2EAA50AB7990F74FFCBCADD7 Validity Not Before: May 20 18:22:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682cc871-2848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:14:32:d2:15:f6:ac:1b:68:c8:22:a6:8f:17: c5:95:2b:5a:f9:d2:cf:8e:f2:9f:10:5b:f0:94:68: 1d:e0:81:ec:9c:98:57:7a:1a:4f:d2:cb:8d:1a:18: 68:08:5d:27:12:b1:b6:3c:fa:a3:b5:45:e9:82:dd: 85:b0:21:11:da:b4:e7:16:f5:58:8c:ad:62:27:d1: 33:27:7d:df:ac:cb:09:3f:83:a7:cb:13:64:b4:a4: 78:7d:f6:b3:c1:75:22:f5:f9:d2:8d:f0:3d:80:b8: 86:eb:10:7a:19:a5:00:f7:ef:d7:a2:b8:7e:37:f1: 00:d0:58:78:57:e6:88:58:79:6e:19:78:40:40:e9: 21:63:f4:03:2a:e7:83:2a:8a:a3:2d:06:9e:ad:88: 2b:2a:88:78:ed:06:a1:73:96:da:c4:ba:24:b7:4e: 00:2b:77:b9:98:db:60:1e:13:0a:75:dc:77:63:b2: 19:1c:3a:5e:30:55:bb:b8:98:44:cd:16:16:6b:85: 39:03:f5:aa:3b:b4:c1:cd:95:d3:d8:7b:4c:cf:e9: b3:c8:1b:e7:32:a3:36:b8:22:c2:21:16:43:1d:34: 68:44:a8:88:81:3b:1e:1a:68:fb:4b:5e:58:57:ec: 7f:87:a1:f9:99:69:55:81:e8:a3:fd:b1:d9:23:de: 71:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B3:C9:FA:BD:0B:CC:C6:A9:26:31:D4:CC:D8:D1:06:09:DE:2A:79 X509v3 Authority Key Identifier: keyid:B0:3E:7B:FB:2B:4B:DA:FA:2E:AA:50:AB:79:90:F7:4F:FC:BC:AD:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/sD57-ytL2vouqlCreZD3T_y8rdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sD57-ytL2vouqlCreZD3T_y8rdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150CF2/D00DB76EF4EE11E9AEFEA819C4F9AE02/34060B22C2B311EE97B0B776C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.238.0.0/24 Signature Algorithm: sha256WithRSAEncryption cf:69:d0:ae:14:69:32:bf:9a:fa:69:7f:01:72:b3:99:db:61: 92:a7:5d:94:52:dd:66:b1:2c:85:6a:39:45:48:3c:95:67:99: 12:f1:fa:7c:f5:d1:83:ab:68:dd:02:02:4b:9a:aa:ec:ea:43: f3:8a:df:9d:26:6c:e8:0c:c2:87:86:47:13:a5:d1:3e:71:8e: ea:f6:b0:ed:52:6d:f3:80:fc:22:d7:9e:23:b0:c1:a0:48:95: 33:7c:67:a3:8a:7e:93:f4:9c:02:37:f9:72:ac:9a:d1:55:bd: 37:01:15:b1:b2:15:03:fb:39:43:b2:2b:13:01:ac:bc:c6:48: d2:c1:af:24:fb:28:fa:54:40:36:cc:3c:94:f3:b5:b7:0b:d8: bf:a8:d6:e8:f4:da:f1:bd:a6:7d:21:5e:f5:e6:a0:b1:f2:b8: a9:0c:8d:0c:db:75:51:a0:17:62:de:8f:84:e4:6a:eb:a5:be: 61:34:e5:d9:db:8f:19:b5:c8:c4:fc:08:3d:dc:c1:27:40:f4: 8b:9a:96:c9:ad:df:85:d9:92:33:1e:92:8a:56:9c:f2:9a:7d: 51:fa:49:6b:be:1c:26:bd:44:fb:34:71:61:85:d6:01:77:16: 83:e5:bc:0e:eb:bd:74:7a:de:84:11:eb:4d:e2:a9:49:bb:53: 5c:eb:77:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBDRjIxMTAvBgNVBAUTKEIwM0U3QkZCMkI0QkRBRkEyRUFBNTBBQjc5OTBGNzRG RkNCQ0FERDcwHhcNMjUwNTIwMTgyMjQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjYzg3MS0yODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRQy0hX2rBtoyCKmjxfFlSta+dLPjvKfEFvwlGgd4IHsnJhXehpP0suNGhho CF0nErG2PPqjtUXpgt2FsCER2rTnFvVYjK1iJ9EzJ33frMsJP4OnyxNktKR4ffaz wXUi9fnSjfA9gLiG6xB6GaUA9+/Xorh+N/EA0Fh4V+aIWHluGXhAQOkhY/QDKueD KoqjLQaerYgrKoh47Qahc5baxLokt04AK3e5mNtgHhMKddx3Y7IZHDpeMFW7uJhE zRYWa4U5A/WqO7TBzZXT2HtMz+mzyBvnMqM2uCLCIRZDHTRoRKiIgTseGmj7S15Y V+x/h6H5mWlVgeij/bHZI95xawIDAQABo4IClTCCApEwHQYDVR0OBBYEFBOzyfq9 C8zGqSYx1MzY0QYJ3ip5MB8GA1UdIwQYMBaAFLA+e/srS9r6LqpQq3mQ90/8vK3X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MENGMi9EMDBEQjc2RUY0 RUUxMUU5QUVGRUE4MTlDNEY5QUUwMi9zRDU3LXl0TDJ2b3VxbENyZVpEM1RfeThy ZGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NENTcteXRMMnZvdXFsQ3JlWkQzVF95OHJkYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBDRjIvRDAwREI3NkVGNEVFMTFFOUFFRkVBODE5QzRGOUFFMDIvMzQwNjBCMjJD MkIzMTFFRTk3QjBCNzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACg7gAwDQYJKoZIhvcNAQELBQADggEBAM9p0K4UaTK/mvpp fwFys5nbYZKnXZRS3WaxLIVqOUVIPJVnmRLx+nz10YOraN0CAkuaquzqQ/OK350m bOgMwoeGRxOl0T5xjur2sO1SbfOA/CLXniOwwaBIlTN8Z6OKfpP0nAI3+XKsmtFV vTcBFbGyFQP7OUOyKxMBrLzGSNLBryT7KPpUQDbMPJTztbcL2L+o1uj02vG9pn0h XvXmoLHyuKkMjQzbdVGgF2Lej4TkauulvmE05dnbjxm1yMT8CD3cwSdA9Iualsmt 34XZkjMekopWnPKafVH6SWu+HCa9RPs0cWGF1gF3FoPlvA7rvXR63oQR603iqUm7 U1zrd7A= -----END CERTIFICATE-----Generated at Wed Oct 29 10:50:43 2025 by rpki-client