$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa File: 17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa (raw, json) Hash identifier: w+HKOaC0+jfhSxKVMJ9ShZE05MyOqwYCqtIs1clN5KI= Subject key identifier: 3B:F4:E0:87:83:37:8C:85:A3:6E:DE:C5:62:8B:0D:77:44:1B:9D:B2 Certificate issuer: /CN=A9186D9F/serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Certificate serial: CB Authority key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa Signing time: Fri 11 Jul 2025 06:12:01 +0000 ROA not before: Fri 11 Jul 2025 06:12:01 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142125 IP address blocks: 160.22.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:49:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Validity Not Before: Jul 11 06:12:01 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6870ab31-003d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d4:55:17:25:de:a8:83:d2:a9:aa:ff:b9:07: 35:f0:9b:48:96:11:37:75:14:ae:be:63:65:70:2f: 24:4f:22:de:17:e3:76:8e:f8:20:99:56:82:d4:24: a3:75:f2:1d:75:cf:0b:0d:a1:da:1e:2c:55:e1:0e: 92:89:7d:db:d7:2f:84:18:39:e1:ff:c2:17:91:82: 09:53:95:5a:1d:fc:51:26:7a:8e:b7:a5:37:ed:37: de:46:73:69:40:e5:77:e2:8e:61:14:b8:64:d2:e9: 4b:dd:27:05:ae:15:4e:9f:46:0e:0f:60:f1:e7:76: 5c:4a:3a:99:1c:c5:bb:0b:9a:c7:07:de:ad:8c:cb: a6:54:de:45:48:e1:43:f8:a5:32:68:87:a3:6a:de: e9:08:81:a4:5a:62:ea:ad:a9:d5:e9:b0:fe:d8:8f: b2:0e:e9:26:19:e0:06:56:56:b0:4d:68:9f:bc:e1: 6f:66:75:1f:81:23:1d:3f:36:32:89:b9:01:02:97: a2:25:fe:40:af:7a:86:4a:4a:d3:7f:a9:a1:50:c9: 58:32:2f:e8:a8:a1:16:50:ba:b4:42:e2:27:25:06: a7:dd:5f:16:b2:d7:26:2b:39:19:b0:3c:6b:9d:c0: 20:b9:89:a2:50:55:e6:00:80:63:b2:49:cf:da:51: 51:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F4:E0:87:83:37:8C:85:A3:6E:DE:C5:62:8B:0D:77:44:1B:9D:B2 X509v3 Authority Key Identifier: keyid:43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/17EA0C7A38DF11EF8EEDB25EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.42.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:7a:a6:bd:53:ba:e3:b9:63:3f:20:d0:62:35:b6:3d:01:b7: bc:47:ff:2a:6a:10:41:f9:2d:74:1d:d9:61:41:64:63:61:b9: cd:ed:16:86:2d:c7:8b:df:c5:70:fa:a4:28:c9:4e:4d:89:d8: 93:3f:d9:cb:b4:25:65:b8:a9:d6:a7:6d:bc:09:42:2b:18:f7: 5f:1b:37:90:4d:a9:9e:af:ad:31:65:78:ee:25:49:44:4b:27: 7a:4b:c6:8a:52:60:d9:80:4c:fe:4a:53:62:01:ac:34:7d:a2: c6:03:1d:70:65:37:8f:db:51:c2:47:1e:51:73:fc:5d:6c:30: 7b:03:ee:42:b0:c2:44:45:63:58:80:15:72:bc:13:4d:ba:40: 12:4a:5a:6e:03:f9:cd:08:a8:68:ee:96:11:19:c5:ef:d6:e5: 5e:2a:0a:d2:db:e8:00:5a:2f:92:ed:d3:9e:62:18:8a:30:19: 2e:4e:b5:30:b6:f0:ca:9b:ec:c2:00:4f:66:d6:25:0e:a2:87: 23:83:b5:3d:d1:2b:19:be:38:b0:26:c5:08:b0:fd:e5:5d:29: 20:cc:69:97:da:10:a4:c1:e4:a3:61:c2:67:74:e5:f0:2f:b2: 56:93:9d:2e:e5:e1:8b:e4:02:9c:05:be:68:2d:4d:9b:c3:8a: f7:67:59:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKDQzRjc0MjNGOTNENkJBMDk2OTQwNTlGQjIzREVGODUy OEQyNjQ5OUQwHhcNMjUwNzExMDYxMjAxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwYWIzMS0wMDNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NRVFyXeqIPSqar/uQc18JtIlhE3dRSuvmNlcC8kTyLeF+N2jvggmVaC1CSj dfIddc8LDaHaHixV4Q6SiX3b1y+EGDnh/8IXkYIJU5VaHfxRJnqOt6U37TfeRnNp QOV34o5hFLhk0ulL3ScFrhVOn0YOD2Dx53ZcSjqZHMW7C5rHB96tjMumVN5FSOFD +KUyaIejat7pCIGkWmLqranV6bD+2I+yDukmGeAGVlawTWifvOFvZnUfgSMdPzYy ibkBApeiJf5Ar3qGSkrTf6mhUMlYMi/oqKEWULq0QuInJQan3V8WstcmKzkZsDxr ncAguYmiUFXmAIBjsknP2lFRVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDv04IeD N4yFo27exWKLDXdEG52yMB8GA1UdIwQYMBaAFEP3Qj+T1roJaUBZ+yPe+FKNJkmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9BOTM2RTQ0MDJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3VnbHBRRm43STk3NFVvMG1T WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FfZENQNVBXdWdscFFGbjdJOTc0VW8wbVNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZEOUYvQTkzNkU0NDAyRTA0MTFFRjg2RjI5RDc5QzRGOUFFMDIvMTdFQTBDN0Ez OERGMTFFRjhFRURCMjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFiowDQYJKoZIhvcNAQELBQADggEBACx6pr1TuuO5Yz8g 0GI1tj0Bt7xH/ypqEEH5LXQd2WFBZGNhuc3tFoYtx4vfxXD6pCjJTk2J2JM/2cu0 JWW4qdanbbwJQisY918bN5BNqZ6vrTFleO4lSURLJ3pLxopSYNmATP5KU2IBrDR9 osYDHXBlN4/bUcJHHlFz/F1sMHsD7kKwwkRFY1iAFXK8E026QBJKWm4D+c0IqGju lhEZxe/W5V4qCtLb6ABaL5Lt055iGIowGS5OtTC28Mqb7MIAT2bWJQ6ihyODtT3R Kxm+OLAmxQiw/eVdKSDMaZfaEKTB5KNhwmd05fAvslaTnS7l4YvkApwFvmgtTZvD ivdnWWU= -----END CERTIFICATE-----Generated at Mon Jul 21 12:41:54 2025 by rpki-client