$ rpki-client -vvf rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/932FE94E6BB911ED97343873C4F9AE02.roa File: 932FE94E6BB911ED97343873C4F9AE02.roa (raw, json) Hash identifier: O/GWNs45gL+188aJUtcbIy1ffH2qMFXWGJpc2ELIi9o= Subject key identifier: 8D:DE:1D:17:48:49:EF:0B:45:6D:15:52:69:17:65:94:F9:FA:4B:E1 Certificate issuer: /CN=A9168494/serialNumber=B13EA4934F41FC4834CD2A6FF8218D40F7A97789 Certificate serial: 0293 Authority key identifier: B1:3E:A4:93:4F:41:FC:48:34:CD:2A:6F:F8:21:8D:40:F7:A9:77:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/932FE94E6BB911ED97343873C4F9AE02.roa Signing time: Tue 03 Jun 2025 01:56:43 +0000 ROA not before: Tue 03 Jun 2025 01:56:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 136961 IP address blocks: 165.220.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.crl rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168494, serialNumber=B13EA4934F41FC4834CD2A6FF8218D40F7A97789 Validity Not Before: Jun 3 01:56:43 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e565b-e162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:72:41:32:59:6b:54:cd:4c:75:12:90:6d:02: bf:c2:1a:26:d8:98:32:1d:15:b1:a9:09:42:1e:1d: 62:ae:1b:eb:cd:62:24:bc:7f:c3:99:45:9b:c5:a8: e1:c3:4b:a7:f9:b6:9e:db:58:99:63:22:9f:c7:40: 0f:2f:8b:c1:53:d0:fb:87:dc:94:f3:7d:35:62:05: a1:7a:1d:de:51:7c:0d:f4:bf:9d:06:ac:15:a7:61: 07:51:03:9c:33:18:5a:2e:86:f0:97:65:2f:87:a3: af:ce:58:9d:21:f5:7b:52:56:82:53:1e:b0:62:d3: ba:a5:a5:10:ca:a6:0a:eb:92:32:83:29:4c:2a:6e: df:2e:b1:44:2d:b3:9f:6f:0e:04:a2:14:13:86:17: 4d:60:31:ff:76:ae:fb:c3:8b:19:6f:15:78:09:c6: e0:80:11:fd:3e:86:1e:74:bb:9f:45:18:8a:6d:e1: ea:11:51:0a:1a:55:f8:ef:52:ef:80:a1:cc:e4:84: 2b:fb:51:7a:b2:49:b6:75:88:66:7b:a2:06:50:d2: de:33:f0:a2:c0:49:05:63:ac:9e:98:18:db:0c:0e: bf:e3:3f:b4:71:2d:73:a8:4f:ef:71:74:0b:57:4c: d7:fc:43:c4:d0:b7:43:94:a9:83:0e:9a:60:c8:49: 80:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:DE:1D:17:48:49:EF:0B:45:6D:15:52:69:17:65:94:F9:FA:4B:E1 X509v3 Authority Key Identifier: keyid:B1:3E:A4:93:4F:41:FC:48:34:CD:2A:6F:F8:21:8D:40:F7:A9:77:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/sT6kk09B_Eg0zSpv-CGNQPepd4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/sT6kk09B_Eg0zSpv-CGNQPepd4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168494/31B8263C099311EDB21C9B4BC4F9AE02/932FE94E6BB911ED97343873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.220.8.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:b9:eb:4b:22:d9:3e:52:2b:0c:98:29:9d:0d:cc:9b:c1:56: 58:b6:02:64:af:2d:bd:58:7b:18:0b:ab:66:ee:25:30:34:fd: a2:03:95:37:ab:9e:da:b0:e2:ef:38:22:ad:4b:c3:44:0b:0b: 21:2a:27:3c:b0:c3:e4:ae:75:69:9c:48:37:38:bd:55:79:1b: 6f:b9:17:91:96:1b:f1:8c:82:bb:c6:f9:a5:d5:ab:c8:57:17: 15:ab:47:93:46:43:d1:ed:70:62:ee:56:ed:ef:6c:ae:27:f2: ed:3c:f0:37:cc:8d:ad:6b:7c:9c:5f:7a:1a:c3:91:a8:da:69: 18:7e:fe:6c:81:16:71:75:55:7f:15:65:5d:32:86:16:9e:9f: 14:6a:c7:44:d5:d6:06:95:c9:1b:7a:f7:af:c0:f6:62:34:c2: 0e:da:ec:6d:d1:c3:2d:57:c8:06:20:ff:0a:ae:aa:e4:e6:23: c5:1a:3b:62:c0:90:0c:38:26:92:2d:e3:4b:c4:6f:3f:72:7a: 7a:d4:81:ec:fc:ae:e7:8e:29:40:25:19:d4:4d:6e:f5:fc:49: 04:1a:4e:64:87:49:64:d8:ac:e9:3d:27:36:2c:15:93:12:2b: f0:45:84:43:35:3b:47:52:0f:e7:7d:29:cc:03:37:3a:14:46: 76:52:f5:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg0OTQxMTAvBgNVBAUTKEIxM0VBNDkzNEY0MUZDNDgzNENEMkE2RkY4MjE4RDQw RjdBOTc3ODkwHhcNMjUwNjAzMDE1NjQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNTY1Yi1lMTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8HJBMllrVM1MdRKQbQK/whom2JgyHRWxqQlCHh1irhvrzWIkvH/DmUWbxajh w0un+bae21iZYyKfx0APL4vBU9D7h9yU8301YgWheh3eUXwN9L+dBqwVp2EHUQOc MxhaLobwl2Uvh6OvzlidIfV7UlaCUx6wYtO6paUQyqYK65IygylMKm7fLrFELbOf bw4EohQThhdNYDH/dq77w4sZbxV4CcbggBH9PoYedLufRRiKbeHqEVEKGlX471Lv gKHM5IQr+1F6skm2dYhme6IGUNLeM/CiwEkFY6yemBjbDA6/4z+0cS1zqE/vcXQL V0zX/EPE0LdDlKmDDppgyEmAoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI3eHRdI Se8LRW0VUmkXZZT5+kvhMB8GA1UdIwQYMBaAFLE+pJNPQfxINM0qb/ghjUD3qXeJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODQ5NC8zMUI4MjYzQzA5 OTMxMUVEQjIxQzlCNEJDNEY5QUUwMi9zVDZrazA5Ql9FZzB6U3B2LUNHTlFQZXBk NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3NUNmtrMDlCX0VnMHpTcHYtQ0dOUVBlcGQ0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg0OTQvMzFCODI2M0MwOTkzMTFFREIyMUM5QjRCQzRGOUFFMDIvOTMyRkU5NEU2 QkI5MTFFRDk3MzQzODczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOl3AgwDQYJKoZIhvcNAQELBQADggEBAE2560si2T5SKwyY KZ0NzJvBVli2AmSvLb1YexgLq2buJTA0/aIDlTerntqw4u84Iq1Lw0QLCyEqJzyw w+SudWmcSDc4vVV5G2+5F5GWG/GMgrvG+aXVq8hXFxWrR5NGQ9HtcGLuVu3vbK4n 8u088DfMja1rfJxfehrDkajaaRh+/myBFnF1VX8VZV0yhhaenxRqx0TV1gaVyRt6 96/A9mI0wg7a7G3Rwy1XyAYg/wququTmI8UaO2LAkAw4JpIt40vEbz9yenrUgez8 rueOKUAlGdRNbvX8SQQaTmSHSWTYrOk9JzYsFZMSK/BFhEM1O0dSD+d9KcwDNzoU RnZS9dE= -----END CERTIFICATE-----Generated at Thu Jun 5 19:58:28 2025 by rpki-client