$ rpki-client -vvf rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/FF3D553675B711EF83FAAE42C4F9AE02.roa File: FF3D553675B711EF83FAAE42C4F9AE02.roa (raw, json) Hash identifier: 2GAN4cx4QTuzJoHXcS0SxuhQPJxWZFMWGY3rZM3hC3g= Subject key identifier: 2E:80:11:E1:87:7B:F0:81:F9:49:7B:28:B1:7A:2E:33:86:0C:C7:29 Certificate issuer: /CN=A91777B9/serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Certificate serial: B9 Authority key identifier: 8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/FF3D553675B711EF83FAAE42C4F9AE02.roa Signing time: Sun 31 Aug 2025 06:53:59 +0000 ROA not before: Sun 31 Aug 2025 06:53:59 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153324 IP address blocks: 160.187.18.0/24 maxlen: 24 160.187.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91777B9, serialNumber=8DD414485917CD4C80167BDA19D7249646B06725 Validity Not Before: Aug 31 06:53:59 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68b3f187-0226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9b:3c:28:79:c9:ef:27:8b:9e:1e:39:8f:96: 17:a7:01:b8:a5:c6:eb:75:39:41:dd:1f:ed:c0:94: 33:9b:29:d3:a8:f6:89:d8:5d:5d:ea:f2:c6:f6:66: 71:e3:f6:7c:8a:3f:cf:ad:99:62:d3:dc:0c:cd:c9: af:e5:d4:0b:97:3b:35:0e:c7:5a:d5:5a:4f:d7:9e: a2:61:3e:70:41:29:69:35:34:2e:0e:67:8e:84:9e: fc:c6:26:2e:49:2d:86:cb:22:09:f1:2c:63:98:75: 7d:2a:2a:ea:87:ed:37:54:33:ca:fa:c3:ce:94:5c: e5:7f:b5:f7:57:a5:6e:aa:13:cb:71:ea:31:a1:6c: 7a:15:71:7f:13:77:16:3a:a5:67:7d:f0:a4:c3:fc: 44:2d:10:68:04:c2:27:26:99:20:58:ad:f9:fb:dc: b3:5a:ed:0d:e4:08:85:10:ea:92:16:88:ee:fb:c1: 39:80:96:3b:18:f3:23:37:f9:ce:3e:0b:e6:87:f5: 35:23:2e:47:6e:b2:b3:5b:15:7f:11:31:1a:d9:d3: 05:7e:16:1a:4e:21:be:76:b7:33:df:da:e5:24:3e: ce:26:10:d1:7e:35:c3:60:77:40:6c:2f:2c:ca:d2: 19:49:3b:c0:9e:87:93:11:4d:5a:52:8b:de:c3:fd: 3a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:80:11:E1:87:7B:F0:81:F9:49:7B:28:B1:7A:2E:33:86:0C:C7:29 X509v3 Authority Key Identifier: keyid:8D:D4:14:48:59:17:CD:4C:80:16:7B:DA:19:D7:24:96:46:B0:67:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/jdQUSFkXzUyAFnvaGdcklkawZyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/jdQUSFkXzUyAFnvaGdcklkawZyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91777B9/D27C915C75B611EFB8E21514C4F9AE02/FF3D553675B711EF83FAAE42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.18.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:74:3f:1b:dc:20:fa:4a:29:11:91:31:b2:5f:1c:e7:a9:6f: 3b:b9:34:bb:3b:e3:09:2c:71:04:95:f3:50:56:05:2b:29:25: 65:5e:e2:35:cd:aa:4f:54:ba:00:0f:40:23:95:04:ad:53:11: f9:ce:20:3c:32:d9:6f:0f:87:66:76:95:3d:7b:04:6f:78:69: 06:89:a5:70:60:1e:00:70:2b:37:2c:c0:44:1a:39:80:13:2b: 16:b6:ee:36:90:09:cd:ac:b0:d9:f2:ec:85:9d:22:95:98:0e: df:7f:6e:62:fc:4b:32:ce:b4:69:40:d4:6c:2d:cd:cd:65:15: 9e:cf:10:d0:c8:7f:9d:1e:77:0b:4b:49:37:ff:4b:f2:bc:9c: 5f:5b:de:97:42:32:c4:5d:07:39:c4:79:88:a6:60:24:db:65: 46:91:c7:a7:0d:21:4c:c5:7c:7b:72:32:28:63:f6:24:c3:0b: 6d:e6:b5:44:03:43:5d:48:0a:ff:5c:06:aa:20:d1:95:76:01: 3a:3e:03:c3:ed:02:b8:19:63:48:e8:de:55:aa:23:86:5b:bd: f0:11:f0:2d:ca:4f:e0:c8:07:f6:60:da:59:46:c0:2c:a9:9d: a7:6e:ea:da:38:80:3c:20:1c:b9:17:54:c9:18:38:e8:88:5b: c3:75:ae:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc3QjkxMTAvBgNVBAUTKDhERDQxNDQ4NTkxN0NENEM4MDE2N0JEQTE5RDcyNDk2 NDZCMDY3MjUwHhcNMjUwODMxMDY1MzU5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzZjE4Ny0wMjI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ps8KHnJ7yeLnh45j5YXpwG4pcbrdTlB3R/twJQzmynTqPaJ2F1d6vLG9mZx 4/Z8ij/PrZli09wMzcmv5dQLlzs1Dsda1VpP156iYT5wQSlpNTQuDmeOhJ78xiYu SS2GyyIJ8SxjmHV9Kirqh+03VDPK+sPOlFzlf7X3V6VuqhPLceoxoWx6FXF/E3cW OqVnffCkw/xELRBoBMInJpkgWK35+9yzWu0N5AiFEOqSFoju+8E5gJY7GPMjN/nO Pgvmh/U1Iy5HbrKzWxV/ETEa2dMFfhYaTiG+drcz39rlJD7OJhDRfjXDYHdAbC8s ytIZSTvAnoeTEU1aUovew/06RQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC6AEeGH e/CB+Ul7KLF6LjOGDMcpMB8GA1UdIwQYMBaAFI3UFEhZF81MgBZ72hnXJJZGsGcl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzdCOS9EMjdDOTE1Qzc1 QjYxMUVGQjhFMjE1MTRDNEY5QUUwMi9qZFFVU0ZrWHpVeUFGbnZhR2Rja2xrYXda eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2pkUVVTRmtYelV5QUZudmFHZGNrbGthd1p5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc3QjkvRDI3QzkxNUM3NUI2MTFFRkI4RTIxNTE0QzRGOUFFMDIvRkYzRDU1MzY3 NUI3MTFFRjgzRkFBRTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGguxIwDQYJKoZIhvcNAQELBQADggEBAD90PxvcIPpKKRGR MbJfHOepbzu5NLs74wkscQSV81BWBSspJWVe4jXNqk9UugAPQCOVBK1TEfnOIDwy 2W8Ph2Z2lT17BG94aQaJpXBgHgBwKzcswEQaOYATKxa27jaQCc2ssNny7IWdIpWY Dt9/bmL8SzLOtGlA1Gwtzc1lFZ7PENDIf50edwtLSTf/S/K8nF9b3pdCMsRdBznE eYimYCTbZUaRx6cNIUzFfHtyMihj9iTDC23mtUQDQ11ICv9cBqog0ZV2ATo+A8Pt ArgZY0jo3lWqI4ZbvfAR8C3KT+DIB/Zg2llGwCypnadu6to4gDwgHLkXVMkYOOiI W8N1rhM= -----END CERTIFICATE-----Generated at Sun Sep 7 00:32:35 2025 by rpki-client