$ rpki-client -vvf rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/FB29FEA06C1F11EFA8C5694EC4F9AE02.roa File: FB29FEA06C1F11EFA8C5694EC4F9AE02.roa (raw, json) Hash identifier: lcZB3z1c/RDD2H75d40NX0zmlgKhDSF1Om3/hMjJ4tA= Subject key identifier: 7F:23:B5:07:F7:53:0F:5B:0A:24:55:01:E3:92:B6:6C:29:19:C9:42 Certificate issuer: /CN=A919AD11/serialNumber=A554DF3D47027FFAF7CB8A166F3E0A10E3177867 Certificate serial: C7 Authority key identifier: A5:54:DF:3D:47:02:7F:FA:F7:CB:8A:16:6F:3E:0A:10:E3:17:78:67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/FB29FEA06C1F11EFA8C5694EC4F9AE02.roa Signing time: Sat 19 Jul 2025 06:11:57 +0000 ROA not before: Sat 19 Jul 2025 06:11:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153050 IP address blocks: 160.25.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.crl rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:56:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AD11, serialNumber=A554DF3D47027FFAF7CB8A166F3E0A10E3177867 Validity Not Before: Jul 19 06:11:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687b372d-e32f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:9b:3a:5f:fb:54:b2:76:fc:ee:2f:04:35:16: 00:0b:f0:fc:ea:5f:46:bf:e4:63:b6:12:05:81:53: 87:8b:89:04:34:13:79:fd:14:07:31:12:21:c0:39: 3b:05:c6:74:47:81:6c:6c:31:56:a2:4c:cd:25:ac: 6c:46:58:9c:35:0f:34:9e:bf:81:61:f5:a8:bf:de: 3c:cb:6e:19:0a:25:32:6d:49:a2:9b:4f:40:26:5c: f7:7a:bc:e3:ae:27:93:b6:3a:b5:59:bb:ec:6a:e2: 29:9b:fb:29:81:9f:ab:8f:f6:0d:6a:89:9f:52:5d: 18:cf:a6:35:62:6c:28:67:22:2d:26:2b:eb:34:01: 62:e6:f4:7c:9f:08:ff:44:c0:6b:8d:cb:32:9d:01: cf:46:d1:ab:0f:80:73:73:c0:f6:0e:a7:47:a6:3b: 5f:d2:c7:b3:60:8c:c8:f3:ea:ef:1b:e2:8d:0e:fd: 9a:bb:1a:d2:ed:53:ef:9c:6f:66:e7:90:66:ac:57: b8:e6:4c:7e:29:94:f6:dd:0c:c1:13:04:fb:27:66: b1:84:ca:8c:dc:29:4e:15:31:33:5c:89:fe:61:5d: 29:5a:eb:8c:f5:df:07:fe:60:69:f0:cc:03:51:4a: 1a:4b:37:12:05:43:9a:cf:7a:7c:3f:23:4b:0a:d0: bf:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:23:B5:07:F7:53:0F:5B:0A:24:55:01:E3:92:B6:6C:29:19:C9:42 X509v3 Authority Key Identifier: keyid:A5:54:DF:3D:47:02:7F:FA:F7:CB:8A:16:6F:3E:0A:10:E3:17:78:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/pVTfPUcCf_r3y4oWbz4KEOMXeGc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pVTfPUcCf_r3y4oWbz4KEOMXeGc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AD11/FC5038483A8911EF9817B26AC4F9AE02/FB29FEA06C1F11EFA8C5694EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.33.0/24 Signature Algorithm: sha256WithRSAEncryption bd:01:38:82:11:d5:e2:87:bd:0f:7c:7a:f3:a0:8c:93:46:b7: ac:37:37:88:62:7e:02:c7:27:ef:00:e6:ae:09:b1:b8:2d:09: b5:99:3e:ea:02:89:72:0c:05:9c:2f:e8:52:56:9c:e2:c9:4b: e4:7b:68:d4:b4:3f:82:53:e8:01:09:83:77:e8:a9:d7:d0:66: 15:83:04:6a:f4:e4:cc:9c:f5:6c:c5:6c:cc:c0:9d:39:41:f6: 06:dd:e7:97:cb:fe:67:2c:c0:06:bb:2d:29:26:06:07:25:72: c5:89:35:2e:1e:4a:d2:d5:21:90:3c:c6:4f:62:e7:f4:43:aa: 9d:2c:2f:a1:dc:13:d0:ba:6d:0b:d1:9b:50:6b:6a:2b:29:87: ba:f3:9f:f8:07:49:64:a7:3f:b7:3f:05:9a:fc:11:fe:96:ed: 16:b7:0b:14:b2:66:80:30:c8:c6:d2:33:1d:50:6b:63:2a:6a: 6a:75:1a:b7:b1:eb:79:c6:cb:7b:92:92:16:79:2f:3c:28:a1: 86:c4:8b:85:2f:39:c5:4d:b7:64:16:35:c7:6a:86:e4:b5:0a: 78:5f:13:ce:96:82:ff:d2:dc:53:49:7a:2e:ef:98:cb:4b:af: 2c:05:6a:51:3f:cf:03:32:25:a5:ff:2b:28:8d:8a:11:c5:64: 99:eb:ca:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFEMTExMTAvBgNVBAUTKEE1NTRERjNENDcwMjdGRkFGN0NCOEExNjZGM0UwQTEw RTMxNzc4NjcwHhcNMjUwNzE5MDYxMTU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdiMzcyZC1lMzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Zs6X/tUsnb87i8ENRYAC/D86l9Gv+RjthIFgVOHi4kENBN5/RQHMRIhwDk7 BcZ0R4FsbDFWokzNJaxsRlicNQ80nr+BYfWov948y24ZCiUybUmim09AJlz3erzj rieTtjq1WbvsauIpm/spgZ+rj/YNaomfUl0Yz6Y1YmwoZyItJivrNAFi5vR8nwj/ RMBrjcsynQHPRtGrD4Bzc8D2DqdHpjtf0sezYIzI8+rvG+KNDv2auxrS7VPvnG9m 55BmrFe45kx+KZT23QzBEwT7J2axhMqM3ClOFTEzXIn+YV0pWuuM9d8H/mBp8MwD UUoaSzcSBUOaz3p8PyNLCtC/wQIDAQABo4IClTCCApEwHQYDVR0OBBYEFH8jtQf3 Uw9bCiRVAeOStmwpGclCMB8GA1UdIwQYMBaAFKVU3z1HAn/698uKFm8+ChDjF3hn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUQxMS9GQzUwMzg0ODNB ODkxMUVGOTgxN0IyNkFDNEY5QUUwMi9wVlRmUFVjQ2ZfcjN5NG9XYno0S0VPTVhl R2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BWVGZQVWNDZl9yM3k0b1diejRLRU9NWGVHYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFEMTEvRkM1MDM4NDgzQTg5MTFFRjk4MTdCMjZBQzRGOUFFMDIvRkIyOUZFQTA2 QzFGMTFFRkE4QzU2OTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgGSEwDQYJKoZIhvcNAQELBQADggEBAL0BOIIR1eKHvQ98 evOgjJNGt6w3N4hifgLHJ+8A5q4JsbgtCbWZPuoCiXIMBZwv6FJWnOLJS+R7aNS0 P4JT6AEJg3foqdfQZhWDBGr05Myc9WzFbMzAnTlB9gbd55fL/mcswAa7LSkmBgcl csWJNS4eStLVIZA8xk9i5/RDqp0sL6HcE9C6bQvRm1Braisph7rzn/gHSWSnP7c/ BZr8Ef6W7Ra3CxSyZoAwyMbSMx1Qa2Mqamp1Grex63nGy3uSkhZ5LzwooYbEi4Uv OcVNt2QWNcdqhuS1CnhfE86Wgv/S3FNJei7vmMtLrywFalE/zwMyJaX/KyiNihHF ZJnryrQ= -----END CERTIFICATE-----Generated at Mon Jul 21 12:43:41 2025 by rpki-client