$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/36CFD1EE4AD011EF9B941D17C4F9AE02.roa File: 36CFD1EE4AD011EF9B941D17C4F9AE02.roa (raw, json) Hash identifier: R4BuH0z4o97i8tZeyVvIgqOfDLo2IBdC5O5u6V1sdyg= Subject key identifier: 4B:0C:E4:A2:AA:05:0A:21:5C:22:01:46:55:5F:F3:04:15:CD:3F:7B Certificate issuer: /CN=A91DD1F9/serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Certificate serial: D2 Authority key identifier: C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/36CFD1EE4AD011EF9B941D17C4F9AE02.roa Signing time: Wed 03 Sep 2025 06:27:32 +0000 ROA not before: Wed 03 Sep 2025 06:27:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153173 IP address blocks: 160.25.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD1F9, serialNumber=C27AE1D164729F43D9E0FA64BE51D0B6AE09EB99 Validity Not Before: Sep 3 06:27:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b7dfd3-775b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:de:55:d3:c7:83:2d:3b:4a:35:fa:3d:b5:85: 51:a2:98:a5:3a:d1:b2:36:ee:6e:ac:1e:1e:9e:fa: 63:f7:bd:47:fb:a8:d4:48:26:73:af:ae:0f:a7:a9: b2:43:1e:19:a7:45:f1:de:11:38:03:b0:73:39:23: c2:88:76:19:46:d9:87:0e:33:2a:bd:dc:a8:23:93: a3:eb:ea:ef:87:9d:4e:dd:b9:ff:cb:58:9e:5a:b6: 4d:95:df:db:32:09:08:0f:13:b8:00:83:bb:4d:bf: de:32:b4:76:3c:55:b6:e0:28:fe:36:ca:d5:aa:78: 74:03:ea:80:68:d5:75:c8:4c:25:5e:3a:32:b8:8a: 4a:05:7d:19:73:c0:1f:1b:a5:f6:95:75:ef:2c:ac: e4:b2:06:97:f0:7b:50:5b:dc:90:dd:02:bd:75:f1: e6:dc:e9:e0:73:df:95:3a:9b:5c:6f:e9:07:20:4b: fb:34:06:a3:1e:3d:09:4e:11:bb:5c:fd:25:24:54: 48:58:88:97:72:8f:6d:67:52:74:ac:49:e0:31:e0: ad:26:74:64:ec:6f:da:f0:ac:0a:8d:0a:62:88:e8: 0f:21:f7:18:4a:cf:21:1d:67:ef:b9:d7:b5:cb:61: f6:ac:8d:48:74:91:7f:ca:e4:26:ed:9f:ee:ad:90: 28:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:0C:E4:A2:AA:05:0A:21:5C:22:01:46:55:5F:F3:04:15:CD:3F:7B X509v3 Authority Key Identifier: keyid:C2:7A:E1:D1:64:72:9F:43:D9:E0:FA:64:BE:51:D0:B6:AE:09:EB:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/wnrh0WRyn0PZ4PpkvlHQtq4J65k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wnrh0WRyn0PZ4PpkvlHQtq4J65k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD1F9/402ED2724ACF11EFB8218E15C4F9AE02/36CFD1EE4AD011EF9B941D17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.213.0/24 Signature Algorithm: sha256WithRSAEncryption 21:78:44:65:76:87:7c:cd:3c:ea:77:ca:fb:bc:84:1b:66:5b: 8c:c5:b1:46:5f:fa:dd:5a:5a:2b:7b:b4:08:48:da:88:9f:3b: 14:c9:64:37:9d:6d:cb:e6:9a:e3:88:c5:c9:bb:05:86:7b:d9: 35:a4:ef:10:3c:a2:2e:45:c9:82:9e:78:46:ac:78:d6:b0:58: 39:1f:9f:15:86:22:dd:1c:b2:c5:d1:51:7b:44:60:fc:96:f2: 86:1a:13:f3:5a:74:26:8c:64:57:a8:2d:ec:7c:07:73:80:86: d8:46:88:e1:92:5c:66:13:c1:8e:7a:72:12:0e:5b:85:c0:ef: 52:75:32:5e:a2:64:3d:e1:74:f6:aa:77:5a:8b:53:c1:ab:0e: 1a:87:2b:27:1f:f0:1d:25:40:d5:a3:11:e6:ea:61:4d:40:39: ac:95:eb:b9:f0:6c:97:e2:5f:26:51:1f:ed:ba:94:3d:e8:05: c4:f2:0a:3c:94:67:56:1a:b5:57:12:51:f1:8a:ad:34:6e:e8: e3:c6:90:52:81:f2:2d:ed:44:90:4c:d7:5f:a5:75:cc:8d:02: 06:f9:cb:91:41:25:04:30:07:18:8d:5f:5f:09:7e:fb:ae:e7: 73:4f:3f:f2:9d:10:06:ab:3a:18:a3:ce:87:24:33:f4:c3:9f: ca:2d:39:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQxRjkxMTAvBgNVBAUTKEMyN0FFMUQxNjQ3MjlGNDNEOUUwRkE2NEJFNTFEMEI2 QUUwOUVCOTkwHhcNMjUwOTAzMDYyNzMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZGZkMy03NzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmt5V08eDLTtKNfo9tYVRopilOtGyNu5urB4envpj971H+6jUSCZzr64Pp6my Qx4Zp0Xx3hE4A7BzOSPCiHYZRtmHDjMqvdyoI5Oj6+rvh51O3bn/y1ieWrZNld/b MgkIDxO4AIO7Tb/eMrR2PFW24Cj+NsrVqnh0A+qAaNV1yEwlXjoyuIpKBX0Zc8Af G6X2lXXvLKzksgaX8HtQW9yQ3QK9dfHm3Ongc9+VOptcb+kHIEv7NAajHj0JThG7 XP0lJFRIWIiXco9tZ1J0rEngMeCtJnRk7G/a8KwKjQpiiOgPIfcYSs8hHWfvude1 y2H2rI1IdJF/yuQm7Z/urZAo7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEsM5KKq BQohXCIBRlVf8wQVzT97MB8GA1UdIwQYMBaAFMJ64dFkcp9D2eD6ZL5R0LauCeuZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDFGOS80MDJFRDI3MjRB Q0YxMUVGQjgyMThFMTVDNEY5QUUwMi93bnJoMFdSeW4wUFo0UHBrdmxIUXRxNEo2 NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ducmgwV1J5bjBQWjRQcGt2bEhRdHE0SjY1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQxRjkvNDAyRUQyNzI0QUNGMTFFRkI4MjE4RTE1QzRGOUFFMDIvMzZDRkQxRUU0 QUQwMTFFRjlCOTQxRDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgGdUwDQYJKoZIhvcNAQELBQADggEBACF4RGV2h3zNPOp3 yvu8hBtmW4zFsUZf+t1aWit7tAhI2oifOxTJZDedbcvmmuOIxcm7BYZ72TWk7xA8 oi5FyYKeeEaseNawWDkfnxWGIt0cssXRUXtEYPyW8oYaE/NadCaMZFeoLex8B3OA hthGiOGSXGYTwY56chIOW4XA71J1Ml6iZD3hdPaqd1qLU8GrDhqHKycf8B0lQNWj EebqYU1AOayV67nwbJfiXyZRH+26lD3oBcTyCjyUZ1YatVcSUfGKrTRu6OPGkFKB 8i3tRJBM11+ldcyNAgb5y5FBJQQwBxiNX18Jfvuu53NPP/KdEAarOhijzockM/TD n8otOXk= -----END CERTIFICATE-----Generated at Sun Sep 7 00:32:34 2025 by rpki-client