$ rpki-client -vvf rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/908C2AD483FA11F08315393DC4F9AE02.roa File: 908C2AD483FA11F08315393DC4F9AE02.roa (raw, json) Hash identifier: nD0CbnM6gmhrX8CeBkS3G83sPBuc5Nqr2kXmgqvJFXc= Subject key identifier: DC:BC:77:23:BA:54:46:86:7C:EE:F8:86:2E:BB:76:1B:62:10:EF:ED Certificate issuer: /CN=A919A713/serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Certificate serial: 034A Authority key identifier: 24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/908C2AD483FA11F08315393DC4F9AE02.roa Signing time: Thu 28 Aug 2025 10:34:24 +0000 ROA not before: Thu 28 Aug 2025 10:34:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 34051 IP address blocks: 168.153.144.0/24 maxlen: 24 168.153.146.0/24 maxlen: 24 168.153.160.0/24 maxlen: 24 168.153.161.0/24 maxlen: 24 168.153.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 842 (0x34a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A713, serialNumber=24C8BBF930CD2D12399ABDF9C9CAB14B1CD79F6B Validity Not Before: Aug 28 10:34:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68b030b0-eefa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:08:03:22:e1:a0:f7:48:7a:08:ba:f4:ef:a6: c1:f6:37:0f:e3:a0:84:12:6a:9d:5a:de:11:c3:bc: 7a:48:58:ca:0c:7d:d7:40:40:57:f0:8c:8d:2d:df: cf:74:b7:de:65:7f:c1:29:9c:16:e0:3e:0c:a8:ea: 00:f1:d6:8c:7d:69:52:89:fb:81:9f:87:10:be:73: 20:a0:32:3f:a7:64:ff:3e:1e:eb:90:d0:c0:7e:74: 4d:29:c8:09:73:44:0d:f2:44:3c:29:87:f3:b4:c3: 72:33:60:d5:34:90:8a:20:93:f3:e2:0b:9a:26:c1: ba:6e:b5:37:66:dd:a9:e7:c5:22:05:bf:96:78:6e: 7f:b9:3e:05:f8:8b:5a:91:d9:00:fa:cd:0b:98:4d: fa:27:97:d6:44:1b:7c:dc:97:eb:81:02:d8:0d:37: 84:1e:d5:8f:e9:89:e5:15:52:a3:d2:72:23:e6:e3: 52:4e:bc:a3:74:e6:a5:d1:66:d6:58:ff:c1:0d:bc: 78:99:a7:5e:7d:d4:23:57:8a:dd:ba:c3:b9:1f:d0: dc:68:7a:90:56:06:3e:4c:14:46:e3:58:52:d7:6f: 85:53:7a:93:00:12:6d:59:95:0d:e9:fe:27:9a:09: 5a:5f:f8:ff:71:53:f4:6a:42:da:01:7b:10:03:f3: e5:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BC:77:23:BA:54:46:86:7C:EE:F8:86:2E:BB:76:1B:62:10:EF:ED X509v3 Authority Key Identifier: keyid:24:C8:BB:F9:30:CD:2D:12:39:9A:BD:F9:C9:CA:B1:4B:1C:D7:9F:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/JMi7-TDNLRI5mr35ycqxSxzXn2s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JMi7-TDNLRI5mr35ycqxSxzXn2s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A713/34994CB4E0DA11EC94C7E062C4F9AE02/908C2AD483FA11F08315393DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.153.144.0/24 168.153.146.0/24 168.153.160.0-168.153.162.255 Signature Algorithm: sha256WithRSAEncryption 7a:61:0b:30:7d:5b:1f:2f:07:82:c4:f0:d5:7e:e9:6c:2f:a4: c8:47:75:f5:76:bd:98:c3:db:b7:7f:3b:8d:3c:0a:56:51:d9: 9a:12:9f:4e:df:d6:d6:4f:2f:e3:01:d2:0b:ab:35:38:59:70: 20:91:8b:41:ce:45:c5:26:4c:5d:94:42:f5:7e:16:f5:e9:4a: 1e:b8:d1:ce:8d:c7:86:44:df:17:23:0d:50:c1:e1:24:a8:e5: 05:71:24:42:ce:bd:a2:44:83:ff:5c:92:59:1d:16:88:ee:f4: 0d:e9:98:9e:ed:99:e0:c1:7e:49:c5:ce:76:11:a9:cd:fc:87: ca:4b:8c:4b:8e:fe:38:f1:6f:b5:8d:11:6f:53:19:d5:b7:8c: 16:85:5a:fc:66:b8:ea:06:0b:d2:74:ca:d5:41:3d:5e:5a:a7: d9:02:ff:bc:05:dc:53:f1:36:f3:e4:c0:82:ff:84:4f:d6:18: e5:62:af:a6:bc:d6:1a:51:0d:94:e4:60:87:75:32:35:13:7e: 9f:aa:62:b3:fe:33:a9:63:84:58:84:ad:df:90:c8:71:91:6a: 7b:d3:3b:2d:2b:0e:3c:d9:32:1c:50:28:83:a3:5e:12:c2:7c: 3b:b2:af:2c:e2:10:8c:2c:b2:fa:75:5c:dc:dc:25:4c:3f:87: 7b:15:f8:10 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICA0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE3MTMxMTAvBgNVBAUTKDI0QzhCQkY5MzBDRDJEMTIzOTlBQkRGOUM5Q0FCMTRC MUNENzlGNkIwHhcNMjUwODI4MTAzNDI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwMzBiMC1lZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwAgDIuGg90h6CLr076bB9jcP46CEEmqdWt4Rw7x6SFjKDH3XQEBX8IyNLd/P dLfeZX/BKZwW4D4MqOoA8daMfWlSifuBn4cQvnMgoDI/p2T/Ph7rkNDAfnRNKcgJ c0QN8kQ8KYfztMNyM2DVNJCKIJPz4guaJsG6brU3Zt2p58UiBb+WeG5/uT4F+Ita kdkA+s0LmE36J5fWRBt83JfrgQLYDTeEHtWP6YnlFVKj0nIj5uNSTryjdOal0WbW WP/BDbx4madefdQjV4rdusO5H9DcaHqQVgY+TBRG41hS12+FU3qTABJtWZUN6f4n mglaX/j/cVP0akLaAXsQA/PlbQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFNy8dyO6 VEaGfO74hi67dhtiEO/tMB8GA1UdIwQYMBaAFCTIu/kwzS0SOZq9+cnKsUsc159r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTcxMy8zNDk5NENCNEUw REExMUVDOTRDN0UwNjJDNEY5QUUwMi9KTWk3LVRETkxSSTVtcjM1eWNxeFN4elhu MnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pNaTctVEROTFJJNW1yMzV5Y3F4U3h6WG4ycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE3MTMvMzQ5OTRDQjRFMERBMTFFQzk0QzdFMDYyQzRGOUFFMDIvOTA4QzJBRDQ4 M0ZBMTFGMDgzMTUzOTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAComZADBAComZIwDAMEBaiZoAMEAKiZojANBgkqhkiG9w0B AQsFAAOCAQEAemELMH1bHy8HgsTw1X7pbC+kyEd19Xa9mMPbt387jTwKVlHZmhKf Tt/W1k8v4wHSC6s1OFlwIJGLQc5FxSZMXZRC9X4W9elKHrjRzo3HhkTfFyMNUMHh JKjlBXEkQs69okSD/1ySWR0WiO70DemYnu2Z4MF+ScXOdhGpzfyHykuMS47+OPFv tY0Rb1MZ1beMFoVa/Ga46gYL0nTK1UE9Xlqn2QL/vAXcU/E28+TAgv+ET9YY5WKv przWGlENlORgh3UyNRN+n6pis/4zqWOEWISt35DIcZFqe9M7LSsOPNkyHFAog6Ne EsJ8O7KvLOIQjCyy+nVc3NwlTD+HexX4EA== -----END CERTIFICATE-----Generated at Sun Sep 7 19:09:29 2025 by rpki-client