$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/85859ECE427711EF9D064713C4F9AE02.roa File: 85859ECE427711EF9D064713C4F9AE02.roa (raw, json) Hash identifier: uJK2jjXDj655LgasvyAp538yqq5YQzuTotwmf4fbU7A= Subject key identifier: 37:DF:EB:BE:D3:60:EB:79:09:C0:EA:2F:15:7D:F9:30:98:B3:0C:8B Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1E6F Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/85859ECE427711EF9D064713C4F9AE02.roa Signing time: Wed 28 May 2025 11:44:47 +0000 ROA not before: Wed 28 May 2025 11:44:47 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137083 IP address blocks: 160.25.180.0/23 maxlen: 24 165.99.132.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 12:41:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7791 (0x1e6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: May 28 11:44:47 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6836f72e-e560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:cf:93:87:cd:32:9c:eb:e6:bb:08:f5:c2:f3: 9e:92:14:71:29:b2:30:a7:f4:b4:d6:57:13:19:98: 78:f5:55:f9:08:8b:31:49:69:79:30:ce:c9:0c:cd: 7b:be:e2:b1:c8:14:34:7a:0e:9e:df:83:e7:8c:42: bf:dd:b9:d8:76:83:5c:34:4e:ac:10:3a:c3:39:2b: 7e:de:f4:ee:6a:a6:5c:29:4d:19:df:7f:92:e5:de: 65:fa:25:ce:de:c6:42:0a:4f:10:6a:20:9b:37:46: b5:77:8f:ee:f2:31:20:ec:41:20:b0:a5:9f:79:74: b7:be:11:06:0f:a8:29:66:9a:b8:e4:66:18:63:9f: 47:d6:73:67:a4:19:69:51:04:cb:8a:1d:52:3d:60: 2b:65:7a:02:6b:42:59:86:18:36:52:09:82:2c:86: db:8c:57:c7:34:68:d7:ed:7f:17:ff:0c:95:09:b1: cb:66:78:de:84:fd:f9:93:4c:7f:16:04:77:ff:f0: be:13:49:47:1c:1c:9a:b9:8e:8b:29:5d:68:22:1a: ab:11:ee:84:bd:ce:f6:d6:83:45:88:b5:e1:76:b9: 2e:ca:4c:fa:9a:fe:4b:1c:c2:3a:d4:ba:c2:6e:97: d5:ed:0b:bd:13:c3:04:22:04:2a:e1:19:72:6b:cc: 92:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:DF:EB:BE:D3:60:EB:79:09:C0:EA:2F:15:7D:F9:30:98:B3:0C:8B X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/85859ECE427711EF9D064713C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.180.0/23 165.99.132.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:02:36:72:53:ea:c6:8f:d3:f1:ca:a0:f3:8f:83:f1:c2:ab: c9:eb:d0:56:76:e3:ee:f0:0e:00:c8:ad:5d:ac:78:b7:e4:97: 8b:3a:b0:85:5d:ac:46:01:83:f4:24:5e:c9:8e:b5:39:c5:f5: 98:3a:62:aa:e5:dc:3a:a9:30:d7:ec:97:67:48:70:cb:f9:a1: 89:aa:50:a5:7e:76:be:2d:6e:86:4f:15:78:56:db:24:5a:d2: db:e4:c4:20:12:6b:a1:af:6d:c9:e3:66:2e:03:46:dd:ef:c2: c3:78:4d:6f:e8:09:83:20:17:02:c1:e0:5c:17:91:54:00:69: 93:1b:1e:6a:ad:fd:81:af:24:9d:ed:06:41:f1:1a:1e:ee:4e: ff:6f:e1:ff:0b:03:ee:14:9a:d8:49:fe:00:7a:16:09:03:f4: 27:b5:41:20:d7:51:a7:c4:2b:c7:0d:03:ca:5d:aa:6d:1a:29: 89:09:44:65:bd:fe:6c:dd:4f:fc:58:14:f9:6f:24:d1:25:1c: c9:a9:13:9a:4a:a4:65:e2:e5:a6:0d:60:37:cb:5e:7c:8a:77: 7a:cc:d2:b1:d1:1a:7d:dd:a6:21:45:b1:a9:a4:62:f2:54:93: 11:2a:e5:dc:1a:da:d7:d7:d6:e1:e2:8f:7d:c8:ad:13:55:72: c5:23:4d:dc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwNTI4MTE0NDQ3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM2ZjcyZS1lNTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoM+Th80ynOvmuwj1wvOekhRxKbIwp/S01lcTGZh49VX5CIsxSWl5MM7JDM17 vuKxyBQ0eg6e34PnjEK/3bnYdoNcNE6sEDrDOSt+3vTuaqZcKU0Z33+S5d5l+iXO 3sZCCk8QaiCbN0a1d4/u8jEg7EEgsKWfeXS3vhEGD6gpZpq45GYYY59H1nNnpBlp UQTLih1SPWArZXoCa0JZhhg2UgmCLIbbjFfHNGjX7X8X/wyVCbHLZnjehP35k0x/ FgR3//C+E0lHHByauY6LKV1oIhqrEe6Evc721oNFiLXhdrkuykz6mv5LHMI61LrC bpfV7Qu9E8MEIgQq4Rlya8ySlQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDff677T YOt5CcDqLxV9+TCYswyLMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODU4NTlFQ0U0 Mjc3MTFFRjlEMDY0NzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGgGbQDBAGlY4QwDQYJKoZIhvcNAQELBQADggEBADoCNnJT 6saP0/HKoPOPg/HCq8nr0FZ24+7wDgDIrV2seLfkl4s6sIVdrEYBg/QkXsmOtTnF 9Zg6Yqrl3DqpMNfsl2dIcMv5oYmqUKV+dr4tboZPFXhW2yRa0tvkxCASa6Gvbcnj Zi4DRt3vwsN4TW/oCYMgFwLB4FwXkVQAaZMbHmqt/YGvJJ3tBkHxGh7uTv9v4f8L A+4UmthJ/gB6FgkD9Ce1QSDXUafEK8cNA8pdqm0aKYkJRGW9/mzdT/xYFPlvJNEl HMmpE5pKpGXi5aYNYDfLXnyKd3rM0rHRGn3dpiFFsamkYvJUkxEq5dwa2tfX1uHi j33IrRNVcsUjTdw= -----END CERTIFICATE-----Generated at Wed Jun 4 11:43:26 2025 by rpki-client