$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa File: 31D902165E7311EB8B143F3BC4F9AE02.roa (raw, json) Hash identifier: 3pZFB7pMfCt+Nb4YQaCn5c2ZIXFgDeE9u77BOFaXST0= Subject key identifier: FF:E1:8C:90:A7:07:2F:30:EF:01:2F:C8:2F:8F:8A:9B:A7:C3:29:30 Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 070B Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa Signing time: Wed 17 Sep 2025 13:32:20 +0000 ROA not before: Wed 17 Sep 2025 13:32:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135063 IP address blocks: 43.254.134.0/24 maxlen: 24 43.254.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 22:12:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438, serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Sep 17 13:32:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68cab863-1a02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:fb:33:68:7b:f2:bb:e9:6d:16:90:1a:37: e2:0f:71:34:6b:7e:53:87:eb:c7:15:94:5b:bb:73: 82:c4:ab:07:05:c7:6b:26:6c:32:7e:28:37:8e:c8: 43:44:de:fa:77:3f:16:ce:73:45:8e:5d:32:98:a6: c8:3a:b2:35:b6:00:ad:d0:49:ed:ab:78:e7:4c:ab: 90:cc:e7:3c:14:50:5c:a4:fa:5e:29:df:60:ab:ad: 1f:9d:0e:34:e8:b8:57:8d:eb:48:62:ba:ec:1f:8a: 9d:f2:c0:7d:60:dc:b0:49:76:f9:9e:c0:46:fe:fb: 66:85:db:f4:4b:c9:f8:af:a8:22:97:63:19:53:7a: 71:70:ca:28:d3:14:51:1d:ff:9b:25:26:a1:7a:a1: 84:fd:3d:42:52:01:79:22:17:23:d8:f8:76:26:a0: cb:53:61:3b:83:48:e6:5a:91:b3:8d:cb:3b:ea:e3: 61:aa:15:33:20:48:23:9e:f2:52:a3:82:5f:81:52: 76:d8:0f:0f:66:a8:73:28:5c:44:17:c4:69:41:fd: b8:05:45:29:01:22:b6:37:ec:36:4f:de:ba:7d:2f: bb:45:33:51:c5:a0:f2:30:2e:7d:c8:ee:73:33:a7: 3a:1e:86:24:25:dd:95:3a:e6:96:4f:5b:9c:49:f1: 2a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:E1:8C:90:A7:07:2F:30:EF:01:2F:C8:2F:8F:8A:9B:A7:C3:29:30 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/31D902165E7311EB8B143F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.134.0/23 Signature Algorithm: sha256WithRSAEncryption 04:03:bf:c3:5d:36:35:2c:6b:b2:c2:15:4d:52:d6:92:4e:39: 6a:70:7d:2e:6c:65:05:30:af:20:fa:e0:c2:75:46:b8:97:fe: e3:fd:fc:71:65:d8:21:a2:e3:10:f8:bb:4e:1a:d7:bb:0f:b8: 37:d8:35:5b:dd:e9:b7:49:e1:d3:da:bd:a1:0c:ac:ed:35:37: 02:a8:30:2d:ce:3b:23:5a:86:3b:f1:a5:b9:a3:2e:72:e3:1e: e1:15:59:57:d6:64:fd:ce:06:c2:88:e2:22:d2:cc:39:72:8d: 26:f7:8c:d1:ba:6f:bf:38:cc:51:b1:af:1b:fc:19:7c:0d:6b: 8c:f4:58:8d:6d:d6:9a:1f:d5:9f:c2:9c:43:e3:5a:cb:cf:96: 3f:dc:e1:05:82:eb:e3:68:2d:09:39:45:90:41:9f:ca:69:63: 8c:d2:5b:d2:e6:b9:a2:a3:e6:fd:db:5d:82:23:27:7e:92:0f: 21:de:f9:86:70:97:98:97:b3:17:07:a0:02:14:d8:99:24:f4: 3b:af:a8:01:94:09:ba:64:dd:32:f3:cd:be:2e:c5:93:8c:0f: bc:1b:c6:83:c9:92:31:a6:b7:75:dc:84:cb:48:d8:f5:e6:e2: 15:5d:32:7f:73:e6:39:64:bd:c0:c1:18:89:28:ee:c6:fe:fe: c2:cd:c3:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjUwOTE3MTMzMjE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNhYjg2My0xYTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBT7M2h78rvpbRaQGjfiD3E0a35Th+vHFZRbu3OCxKsHBcdrJmwyfig3jshD RN76dz8WznNFjl0ymKbIOrI1tgCt0Entq3jnTKuQzOc8FFBcpPpeKd9gq60fnQ40 6LhXjetIYrrsH4qd8sB9YNywSXb5nsBG/vtmhdv0S8n4r6gil2MZU3pxcMoo0xRR Hf+bJSaheqGE/T1CUgF5Ihcj2Ph2JqDLU2E7g0jmWpGzjcs76uNhqhUzIEgjnvJS o4JfgVJ22A8PZqhzKFxEF8RpQf24BUUpASK2N+w2T966fS+7RTNRxaDyMC59yO5z M6c6HoYkJd2VOuaWT1ucSfEqIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP/hjJCn By8w7wEvyC+PipunwykwMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0MzgvQzQ1MDlENTQ1RTcxMTFFQjg0OUMzMzNBQzRGOUFFMDIvMzFEOTAyMTY1 RTczMTFFQjhCMTQzRjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr/oYwDQYJKoZIhvcNAQELBQADggEBAAQDv8NdNjUsa7LC FU1S1pJOOWpwfS5sZQUwryD64MJ1RriX/uP9/HFl2CGi4xD4u04a17sPuDfYNVvd 6bdJ4dPavaEMrO01NwKoMC3OOyNahjvxpbmjLnLjHuEVWVfWZP3OBsKI4iLSzDly jSb3jNG6b784zFGxrxv8GXwNa4z0WI1t1pof1Z/CnEPjWsvPlj/c4QWC6+NoLQk5 RZBBn8ppY4zSW9LmuaKj5v3bXYIjJ36SDyHe+YZwl5iXsxcHoAIU2Jkk9DuvqAGU Cbpk3TLzzb4uxZOMD7wbxoPJkjGmt3XchMtI2PXm4hVdMn9z5jlkvcDBGIko7sb+ /sLNw1A= -----END CERTIFICATE-----Generated at Fri Sep 19 10:40:52 2025 by rpki-client