$ rpki-client -vvf rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/85CDB6087C1211EF8E490677C4F9AE02.roa File: 85CDB6087C1211EF8E490677C4F9AE02.roa (raw, json) Hash identifier: dg3/bJiVaiz5v44anOkDfbtlZGRX3EFlzFQApjSj5Nw= Subject key identifier: 33:77:AB:3E:B6:03:C9:BD:6C:BA:52:F2:44:E7:7F:33:51:A9:58:8B Certificate issuer: /CN=A915B50D/serialNumber=B7CF0B270A7FDB1D717AE8B979D1EE0FF88BD44F Certificate serial: 9E Authority key identifier: B7:CF:0B:27:0A:7F:DB:1D:71:7A:E8:B9:79:D1:EE:0F:F8:8B:D4:4F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t88LJwp_2x1xeui5edHuD_iL1E8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/85CDB6087C1211EF8E490677C4F9AE02.roa Signing time: Fri 11 Jul 2025 07:13:36 +0000 ROA not before: Fri 11 Jul 2025 07:13:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153042 IP address blocks: 160.25.18.0/24 maxlen: 24 160.250.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/t88LJwp_2x1xeui5edHuD_iL1E8.crl rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/t88LJwp_2x1xeui5edHuD_iL1E8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t88LJwp_2x1xeui5edHuD_iL1E8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B50D, serialNumber=B7CF0B270A7FDB1D717AE8B979D1EE0FF88BD44F Validity Not Before: Jul 11 07:13:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6870b9a0-03d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:80:d0:11:5f:15:91:e1:59:04:30:a9:45:50: 8b:57:bc:1d:8e:08:37:f5:aa:15:5e:34:b7:a5:39: 89:5b:a6:a2:a8:5f:ac:2a:ab:75:f6:03:f5:82:04: f7:f2:c9:7a:85:05:a0:f6:82:79:84:21:d6:1f:80: e9:67:d9:3e:1d:2f:83:c2:da:74:1c:5e:b5:dc:4c: 34:6e:43:63:2b:10:3c:57:2a:4d:52:de:18:a1:70: 27:85:76:94:0a:e7:68:96:e5:f7:c7:46:48:02:03: bd:c8:f2:8c:1e:b1:c8:42:65:be:89:1a:2f:00:e1: be:f4:49:5a:97:01:f5:cb:3b:74:e8:77:16:a9:9e: c5:02:99:d3:29:54:75:eb:48:84:f9:ed:44:f3:88: 94:26:76:02:c8:05:96:17:b7:8d:f2:f0:95:c5:b9: 86:03:bd:cd:b9:6e:5b:ec:8a:b8:21:24:83:14:b5: 20:ab:08:4f:6f:af:a0:6b:1d:3e:96:94:ba:1e:91: d9:84:da:00:ec:02:68:50:26:bc:2b:80:f7:1d:36: fb:25:f9:41:b6:d4:f0:68:67:be:76:f0:25:c9:25: ce:e1:e7:c2:38:d0:51:6a:77:3e:d8:b8:c4:75:01: 29:ce:56:f4:3d:f8:59:ca:35:3e:ba:88:0e:2b:7f: 24:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:77:AB:3E:B6:03:C9:BD:6C:BA:52:F2:44:E7:7F:33:51:A9:58:8B X509v3 Authority Key Identifier: keyid:B7:CF:0B:27:0A:7F:DB:1D:71:7A:E8:B9:79:D1:EE:0F:F8:8B:D4:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/t88LJwp_2x1xeui5edHuD_iL1E8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/t88LJwp_2x1xeui5edHuD_iL1E8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B50D/E682683C7BBC11EF92EE1A66C4F9AE02/85CDB6087C1211EF8E490677C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.18.0/24 160.250.141.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:ce:6d:55:a8:30:40:e6:88:dc:ba:fa:2e:78:4c:41:ed:94: 2b:5b:19:da:32:da:c2:99:35:b0:f6:86:b3:2e:72:bc:6c:c7: 1a:ee:fd:28:77:2a:fd:5b:47:c9:16:e6:f1:43:cc:60:83:75: 8b:7d:65:4a:c6:c6:b4:ca:7d:43:b6:71:90:00:bb:06:b9:0d: 61:e4:46:a1:a9:e4:25:31:9c:c2:a0:45:9e:df:eb:88:e7:8f: 6b:c2:d2:1a:79:8a:fc:c3:e1:30:00:a2:79:11:0a:db:9c:12: 5f:dc:a1:de:cd:81:fd:31:61:90:6d:36:59:31:1c:be:a0:86: 34:3e:a9:11:61:aa:c6:bc:54:c4:d4:6c:1d:96:7c:23:bb:6a: b4:9a:d7:19:64:92:52:85:a9:dc:5d:da:ff:a2:f2:92:53:d6: 40:9c:ad:43:10:a8:c9:f8:99:ef:f1:87:1d:e9:58:fb:3d:3e: da:6a:0f:13:ae:24:00:2c:20:4f:9f:ff:19:35:89:bb:e2:c9: 8f:36:1d:7f:8d:03:ce:17:bf:b4:df:a1:4d:15:85:cf:2f:97: 6d:8f:62:87:6a:81:9d:ba:e9:6a:8e:eb:c9:65:cb:ff:c6:d8: b1:ed:10:16:1c:ac:a0:01:3e:d0:b0:d1:43:b2:57:3c:d9:02: 1f:81:ae:fb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI1MEQxMTAvBgNVBAUTKEI3Q0YwQjI3MEE3RkRCMUQ3MTdBRThCOTc5RDFFRTBG Rjg4QkQ0NEYwHhcNMjUwNzExMDcxMzM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwYjlhMC0wM2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5IDQEV8VkeFZBDCpRVCLV7wdjgg39aoVXjS3pTmJW6aiqF+sKqt19gP1ggT3 8sl6hQWg9oJ5hCHWH4DpZ9k+HS+Dwtp0HF613Ew0bkNjKxA8VypNUt4YoXAnhXaU CudoluX3x0ZIAgO9yPKMHrHIQmW+iRovAOG+9ElalwH1yzt06HcWqZ7FApnTKVR1 60iE+e1E84iUJnYCyAWWF7eN8vCVxbmGA73NuW5b7Iq4ISSDFLUgqwhPb6+gax0+ lpS6HpHZhNoA7AJoUCa8K4D3HTb7JflBttTwaGe+dvAlySXO4efCONBRanc+2LjE dQEpzlb0PfhZyjU+uogOK38klQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDN3qz62 A8m9bLpS8kTnfzNRqViLMB8GA1UdIwQYMBaAFLfPCycKf9sdcXrouXnR7g/4i9RP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjUwRC9FNjgyNjgzQzdC QkMxMUVGOTJFRTFBNjZDNEY5QUUwMi90ODhMSndwXzJ4MXhldWk1ZWRIdURfaUwx RTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Q4OExKd3BfMngxeGV1aTVlZEh1RF9pTDFFOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI1MEQvRTY4MjY4M0M3QkJDMTFFRjkyRUUxQTY2QzRGOUFFMDIvODVDREI2MDg3 QzEyMTFFRjhFNDkwNjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBACgGRIDBACg+o0wDQYJKoZIhvcNAQELBQADggEBAArObVWo MEDmiNy6+i54TEHtlCtbGdoy2sKZNbD2hrMucrxsxxru/Sh3Kv1bR8kW5vFDzGCD dYt9ZUrGxrTKfUO2cZAAuwa5DWHkRqGp5CUxnMKgRZ7f64jnj2vC0hp5ivzD4TAA onkRCtucEl/cod7Ngf0xYZBtNlkxHL6ghjQ+qRFhqsa8VMTUbB2WfCO7arSa1xlk klKFqdxd2v+i8pJT1kCcrUMQqMn4me/xhx3pWPs9PtpqDxOuJAAsIE+f/xk1ibvi yY82HX+NA84Xv7TfoU0Vhc8vl22PYodqgZ266WqO68lly//G2LHtEBYcrKABPtCw 0UOyVzzZAh+Brvs= -----END CERTIFICATE-----Generated at Mon Jul 21 08:04:34 2025 by rpki-client