$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/099E0A10616811F0808B2E5DC4F9AE02.roa File: 099E0A10616811F0808B2E5DC4F9AE02.roa (raw, json) Hash identifier: sn22SKYoETla41hStObsFbIhYKnXz2Fub5jpKk/evVw= Subject key identifier: 3F:54:8D:0C:84:55:3C:FC:8F:56:5A:A1:0D:3E:26:E9:6C:4F:87:1A Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1F75 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/099E0A10616811F0808B2E5DC4F9AE02.roa Signing time: Wed 27 Aug 2025 12:08:16 +0000 ROA not before: Wed 27 Aug 2025 12:08:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132296 IP address blocks: 160.250.100.0/23 maxlen: 23 160.250.100.0/24 maxlen: 24 160.250.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8053 (0x1f75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 27 12:08:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68aef52f-41d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7f:f9:de:3e:54:b4:fe:32:38:77:76:e8:89: e3:cb:9b:88:9b:03:3c:be:83:3b:70:1f:5f:e4:7a: 43:3e:c5:57:50:a1:24:59:75:6d:7d:04:c2:47:36: 6d:71:f1:16:a9:f6:84:29:91:71:3b:4f:65:75:5d: 5d:b1:71:c2:9d:43:a1:41:30:0f:c7:35:68:0c:9e: 79:d0:28:f3:f9:97:f9:0f:1a:5e:c5:3e:34:66:dd: 18:2b:f5:56:87:dc:00:7d:a8:5d:5d:de:60:f8:98: 2f:0c:42:6c:29:ac:66:34:37:38:31:b2:5c:c5:5b: bf:76:65:06:03:4f:93:8b:60:e1:81:32:82:01:ee: 40:34:89:86:4f:14:3f:f1:f9:c8:89:fd:8d:3a:23: 89:71:89:5a:e7:64:1f:36:9c:24:c1:5f:6e:ac:96: 7c:a1:42:de:9f:02:ee:cd:56:03:27:46:ec:ce:03: fc:4b:bf:ef:71:8b:7e:2f:a1:af:42:aa:d3:53:a1: b7:a0:f7:3f:35:cf:d5:16:c8:62:dc:c3:35:9a:dd: a8:92:95:86:45:f3:94:9e:f4:ad:88:58:ba:9e:c5: aa:54:b2:72:6f:ea:83:a4:7c:41:20:14:4e:5b:41: 07:dc:81:3b:ed:a1:ad:b1:3b:e3:aa:cb:48:3e:35: 35:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:54:8D:0C:84:55:3C:FC:8F:56:5A:A1:0D:3E:26:E9:6C:4F:87:1A X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/099E0A10616811F0808B2E5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.100.0/23 Signature Algorithm: sha256WithRSAEncryption 83:eb:89:84:ec:bf:ba:cc:97:99:62:c0:51:d8:2b:75:ab:d1: a1:bb:be:d1:25:c7:3f:ce:f3:82:3f:b6:7f:c5:60:cc:aa:9e: 81:61:44:87:72:53:3b:c4:19:0d:bc:a5:51:de:fe:1f:0e:59: 7e:6d:40:6e:08:6c:c3:ab:f7:02:82:fd:f3:09:25:00:c2:da: 25:8a:df:09:4c:14:be:cc:53:73:8c:be:44:95:b8:cb:74:9b: 2e:d6:2f:92:26:a5:30:d1:b7:fc:87:87:1d:21:fb:f8:ed:e8: c5:48:c9:88:29:a7:ca:bd:70:86:bd:20:78:b3:0e:67:10:55: 17:7c:20:c4:f2:98:7c:aa:47:16:c2:62:94:97:fa:2d:f7:02: 33:3c:96:41:cf:87:2a:a6:2e:7d:02:46:a2:d2:9a:9b:2a:37: 00:92:f0:17:c2:3c:34:50:03:b8:f2:73:7f:f4:bf:27:29:db: 6c:31:ab:6f:2e:c7:98:0f:ba:b6:cb:20:8a:39:ff:0f:90:7a: 68:a2:84:c6:64:0a:50:bf:88:77:23:21:39:a5:17:68:8e:02: 82:7b:ab:cd:ac:37:99:83:8a:bb:b3:70:2a:27:61:c0:37:da: b9:2e:83:c8:31:4e:1f:2a:60:8f:a6:42:35:eb:2d:80:29:07: 42:f1:3d:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwODI3MTIwODE2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlZjUyZi00MWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApn/53j5UtP4yOHd26Injy5uImwM8voM7cB9f5HpDPsVXUKEkWXVtfQTCRzZt cfEWqfaEKZFxO09ldV1dsXHCnUOhQTAPxzVoDJ550Cjz+Zf5DxpexT40Zt0YK/VW h9wAfahdXd5g+JgvDEJsKaxmNDc4MbJcxVu/dmUGA0+Ti2DhgTKCAe5ANImGTxQ/ 8fnIif2NOiOJcYla52QfNpwkwV9urJZ8oULenwLuzVYDJ0bszgP8S7/vcYt+L6Gv QqrTU6G3oPc/Nc/VFshi3MM1mt2okpWGRfOUnvStiFi6nsWqVLJyb+qDpHxBIBRO W0EH3IE77aGtsTvjqstIPjU1zQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD9UjQyE VTz8j1ZaoQ0+JulsT4caMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvMDk5RTBBMTA2 MTY4MTFGMDgwOEIyRTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGg+mQwDQYJKoZIhvcNAQELBQADggEBAIPriYTsv7rMl5li wFHYK3Wr0aG7vtElxz/O84I/tn/FYMyqnoFhRIdyUzvEGQ28pVHe/h8OWX5tQG4I bMOr9wKC/fMJJQDC2iWK3wlMFL7MU3OMvkSVuMt0my7WL5ImpTDRt/yHhx0h+/jt 6MVIyYgpp8q9cIa9IHizDmcQVRd8IMTymHyqRxbCYpSX+i33AjM8lkHPhyqmLn0C RqLSmpsqNwCS8BfCPDRQA7jyc3/0vycp22wxq28ux5gPurbLIIo5/w+QemiihMZk ClC/iHcjITmlF2iOAoJ7q82sN5mDiruzcConYcA32rkug8gxTh8qYI+mQjXrLYAp B0LxPZ8= -----END CERTIFICATE-----Generated at Sat Sep 6 09:32:05 2025 by rpki-client