$ rpki-client -vvf rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/37FE553E5CAB11F08FCD0029C4F9AE02.roa File: 37FE553E5CAB11F08FCD0029C4F9AE02.roa (raw, json) Hash identifier: FBJc9DSyKZ6Ne+I8xOG24hHo29YCYkNNRXvDi6lkdSE= Subject key identifier: ED:6A:1F:8E:EA:9C:0F:12:19:79:9D:CA:EB:E2:6C:D0:18:ED:1F:6E Certificate issuer: /CN=A9186B80/serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762 Certificate serial: 0516 Authority key identifier: BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/37FE553E5CAB11F08FCD0029C4F9AE02.roa Signing time: Wed 09 Jul 2025 09:58:10 +0000 ROA not before: Wed 09 Jul 2025 09:58:10 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14537 IP address blocks: 160.32.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.crl rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1302 (0x516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186B80, serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762 Validity Not Before: Jul 9 09:58:10 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=686e3d31-07ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e0:52:23:56:67:4e:c9:94:53:df:84:ec:59: 90:02:29:77:9c:b0:41:be:cc:16:93:9e:71:8d:02: b4:4c:91:2d:77:7c:02:d7:af:62:01:b0:b8:01:3b: fb:6e:d2:70:dd:41:7d:34:d1:12:3c:ba:ae:67:6e: 8d:6f:39:4b:92:f3:78:86:66:7f:4e:d9:d6:1e:ee: 22:93:a7:fb:9a:b6:37:9a:95:23:be:5b:89:62:60: 77:28:3a:2f:90:cb:13:c9:ff:cb:52:58:5e:a2:6d: ec:38:7d:85:f4:1f:d5:7b:39:6c:cc:fe:b5:d4:d3: b9:31:d7:5e:f4:0a:f8:97:12:32:47:b1:9e:9e:e6: ec:a2:b9:e2:aa:dd:2f:1b:74:b7:78:d7:ce:66:ba: 42:48:b5:0a:4b:16:61:b6:22:dc:92:ab:7d:a2:25: eb:61:d8:1d:d2:76:4e:6b:4d:dc:91:a2:2e:80:87: 37:4e:4f:8e:04:c4:e3:f9:54:17:9e:5c:95:9f:c4: f6:d3:34:3d:17:a7:02:82:06:db:38:66:d8:c0:c0: a1:ae:c3:6b:df:58:76:22:98:3f:19:77:d1:5f:93: 3c:eb:2a:36:f0:44:5b:c0:9b:a7:2c:84:7b:42:e3: 33:93:9a:02:8c:53:42:e1:2d:34:dc:ab:35:d5:c1: 13:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:6A:1F:8E:EA:9C:0F:12:19:79:9D:CA:EB:E2:6C:D0:18:ED:1F:6E X509v3 Authority Key Identifier: keyid:BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/37FE553E5CAB11F08FCD0029C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.32.240.0/21 Signature Algorithm: sha256WithRSAEncryption a0:8e:83:82:21:f7:0d:b8:fd:10:5c:d6:30:b4:b2:b1:ff:cb: 42:f5:8b:73:0c:ac:a3:8a:be:b0:10:3c:bc:45:ab:be:28:5c: 35:07:21:75:f3:6e:6a:7e:3a:29:21:7e:09:3d:07:d5:f5:ad: 2e:ab:16:e2:02:0e:82:a4:0c:76:08:09:c6:db:f0:ce:46:23: b1:35:ff:1c:2a:28:f5:c8:81:ba:3a:6b:83:24:79:9b:48:cc: bc:2f:6e:1f:d5:ef:ac:83:7b:4e:16:01:48:5f:38:63:28:0e: 53:5c:d1:0a:bf:d2:5c:8d:be:56:f9:f4:ad:f2:98:56:b1:c2: a9:e1:e0:65:7f:d6:72:ad:25:55:cc:ad:12:d4:b2:c5:b0:19: 22:05:77:9b:6e:5c:8e:be:f2:70:ef:68:34:2b:30:54:f3:1f: fb:0f:47:c2:26:e7:9f:e5:5c:f9:1d:8a:99:f1:b6:d3:5f:d9: 28:ab:ac:5b:e9:e7:49:b6:8d:c3:12:61:cb:4b:23:85:7b:a7: c3:65:89:b0:dd:42:ee:7c:b3:65:03:61:85:21:33:50:3d:10: d6:7e:94:72:aa:7d:4e:1c:be:7e:cf:ee:fd:41:70:9a:18:09: d9:b8:76:92:f0:74:3b:f1:d3:06:b4:7e:ad:99:41:7a:9d:1e: 5a:d2:e6:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZCODAxMTAvBgNVBAUTKEJEMUU3RTY0MUZGRDk2RDU3NDYxNTVGQzQyMUIxN0RE QzFBQTc3NjIwHhcNMjUwNzA5MDk1ODEwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZlM2QzMS0wN2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOBSI1ZnTsmUU9+E7FmQAil3nLBBvswWk55xjQK0TJEtd3wC169iAbC4ATv7 btJw3UF9NNESPLquZ26NbzlLkvN4hmZ/TtnWHu4ik6f7mrY3mpUjvluJYmB3KDov kMsTyf/LUlheom3sOH2F9B/VezlszP611NO5Mdde9Ar4lxIyR7Genubsorniqt0v G3S3eNfOZrpCSLUKSxZhtiLckqt9oiXrYdgd0nZOa03ckaIugIc3Tk+OBMTj+VQX nlyVn8T20zQ9F6cCggbbOGbYwMChrsNr31h2Ipg/GXfRX5M86yo28ERbwJunLIR7 QuMzk5oCjFNC4S003Ks11cETOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO1qH47q nA8SGXmdyuvibNAY7R9uMB8GA1UdIwQYMBaAFL0efmQf/ZbVdGFV/EIbF93Bqndi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkI4MC9BRTZBQTFCNDEy M0IxMUVDOEExMzVGNDJDNEY5QUUwMi92UjUtWkJfOWx0VjBZVlg4UWhzWDNjR3Fk MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZSNS1aQl85bHRWMFlWWDhRaHNYM2NHcWQySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZCODAvQUU2QUExQjQxMjNCMTFFQzhBMTM1RjQyQzRGOUFFMDIvMzdGRTU1M0U1 Q0FCMTFGMDhGQ0QwMDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOgIPAwDQYJKoZIhvcNAQELBQADggEBAKCOg4Ih9w24/RBc 1jC0srH/y0L1i3MMrKOKvrAQPLxFq74oXDUHIXXzbmp+Oikhfgk9B9X1rS6rFuIC DoKkDHYICcbb8M5GI7E1/xwqKPXIgbo6a4MkeZtIzLwvbh/V76yDe04WAUhfOGMo DlNc0Qq/0lyNvlb59K3ymFaxwqnh4GV/1nKtJVXMrRLUssWwGSIFd5tuXI6+8nDv aDQrMFTzH/sPR8Im55/lXPkdipnxttNf2SirrFvp50m2jcMSYctLI4V7p8NlibDd Qu58s2UDYYUhM1A9ENZ+lHKqfU4cvn7P7v1BcJoYCdm4dpLwdDvx0wa0fq2ZQXqd HlrS5jE= -----END CERTIFICATE-----Generated at Mon Jul 21 18:29:25 2025 by rpki-client