$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C0616C76888511F08780954CC4F9AE02.roa File: C0616C76888511F08780954CC4F9AE02.roa (raw, json) Hash identifier: XBb9CLONSsmMIUpF+vaP8WXCtcG3XDf50ueALZH9ZAc= Subject key identifier: 8A:24:24:24:94:DD:25:AD:C1:E3:B7:81:AE:21:50:6F:B1:08:68:38 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1F87 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C0616C76888511F08780954CC4F9AE02.roa Signing time: Wed 03 Sep 2025 05:20:49 +0000 ROA not before: Wed 03 Sep 2025 05:20:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151109 IP address blocks: 198.56.16.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8071 (0x1f87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Sep 3 05:20:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68b7d031-1c39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b7:39:50:53:3f:13:1c:1e:aa:b1:30:3f:01: 48:39:b9:2e:fd:d0:a6:e0:fa:30:95:b2:77:ba:55: 37:83:a9:aa:65:cf:cd:88:a9:fa:03:ff:d4:df:56: c3:da:ef:9e:54:33:2a:1b:81:60:64:33:20:9e:57: f2:af:1b:fb:07:23:b7:4c:db:5a:ad:4b:25:ae:20: 56:07:d8:ce:1a:c4:b7:0e:e0:06:02:bd:58:df:ea: f7:6b:bd:41:7f:fb:49:b0:b0:bf:29:3d:67:6c:32: 6e:fe:34:00:5e:67:ae:4b:d0:d3:89:0d:4d:a3:3e: 88:82:cf:61:df:1b:ad:32:ee:e5:af:40:74:d7:1c: 1d:ce:94:1a:bb:aa:ad:ae:89:48:07:f8:02:83:10: cb:d7:72:f2:43:21:88:73:37:e3:5f:1f:88:8b:83: 15:14:7f:00:85:27:78:72:ed:60:62:b8:45:e5:a0: e4:81:9d:e1:af:15:3e:07:dd:c4:1c:4a:ce:59:9a: 51:7f:c4:24:07:3f:c2:f3:17:34:7a:a7:6d:c5:2c: 5b:a6:35:96:c4:54:a6:18:33:2c:0e:15:5e:13:76: 23:fc:e8:4b:93:69:63:26:51:28:89:54:eb:11:48: 0b:88:d3:be:11:ab:77:c5:4e:49:92:fb:26:19:08: 0b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:24:24:24:94:DD:25:AD:C1:E3:B7:81:AE:21:50:6F:B1:08:68:38 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/C0616C76888511F08780954CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 198.56.16.0/23 Signature Algorithm: sha256WithRSAEncryption 25:a1:ec:09:e3:0e:eb:03:c8:1d:f3:03:9d:9f:73:ed:83:84: 7d:1c:8d:ec:f3:20:25:25:84:da:f2:7e:ef:16:30:8a:05:36: 3d:9c:3d:c6:c4:2f:fe:e8:ee:04:94:e0:bd:f9:5d:3f:9b:c3: 76:cc:8d:bc:29:2a:f3:39:10:04:ca:7d:38:1f:d2:5c:64:5c: f0:83:2b:56:d5:85:fc:33:ea:2a:03:8a:14:f2:27:39:e0:3e: cd:6a:0f:2e:2f:1e:3d:29:1a:6e:4f:c8:14:a3:5c:4f:45:96: 70:53:5f:8b:ba:bd:8a:fc:48:76:a3:52:f9:7c:9b:20:d4:c8: e8:3c:8a:77:a5:f2:55:02:8f:c3:36:83:52:95:5d:c3:f1:ce: 0c:5b:59:a0:8f:14:cb:ec:c7:8d:be:17:90:1c:8f:60:ea:7d: 30:0f:86:04:9a:e4:0c:92:82:f4:03:9c:b2:91:01:48:5a:ae: 38:a0:11:30:c1:b2:4a:4b:31:34:3e:e0:d2:3e:f0:b9:31:9e: b5:45:54:4a:41:18:ce:dd:14:0b:45:5e:fb:8d:f0:5a:0a:bf: a3:c4:d9:95:30:71:05:09:fb:0c:93:78:83:8d:c6:e3:a5:f8: 38:93:9f:48:68:aa:1e:06:76:73:35:ce:a3:a8:7b:a4:c6:1b: 0c:53:12:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwOTAzMDUyMDQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZDAzMS0xYzM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprc5UFM/ExweqrEwPwFIObku/dCm4PowlbJ3ulU3g6mqZc/NiKn6A//U31bD 2u+eVDMqG4FgZDMgnlfyrxv7ByO3TNtarUslriBWB9jOGsS3DuAGAr1Y3+r3a71B f/tJsLC/KT1nbDJu/jQAXmeuS9DTiQ1Noz6Igs9h3xutMu7lr0B01xwdzpQau6qt rolIB/gCgxDL13LyQyGIczfjXx+Ii4MVFH8AhSd4cu1gYrhF5aDkgZ3hrxU+B93E HErOWZpRf8QkBz/C8xc0eqdtxSxbpjWWxFSmGDMsDhVeE3Yj/OhLk2ljJlEoiVTr EUgLiNO+Eat3xU5JkvsmGQgLwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIokJCSU 3SWtweO3ga4hUG+xCGg4MB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQzA2MTZDNzY4 ODg1MTFGMDg3ODA5NTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHGOBAwDQYJKoZIhvcNAQELBQADggEBACWh7AnjDusDyB3z A52fc+2DhH0cjezzICUlhNryfu8WMIoFNj2cPcbEL/7o7gSU4L35XT+bw3bMjbwp KvM5EATKfTgf0lxkXPCDK1bVhfwz6ioDihTyJzngPs1qDy4vHj0pGm5PyBSjXE9F lnBTX4u6vYr8SHajUvl8myDUyOg8inel8lUCj8M2g1KVXcPxzgxbWaCPFMvsx42+ F5Acj2DqfTAPhgSa5AySgvQDnLKRAUharjigETDBskpLMTQ+4NI+8LkxnrVFVEpB GM7dFAtFXvuN8FoKv6PE2ZUwcQUJ+wyTeIONxuOl+DiTn0hoqh4GdnM1zqOoe6TG GwxTEro= -----END CERTIFICATE-----Generated at Sat Sep 6 09:31:01 2025 by rpki-client