$ rpki-client -vvf rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/08D9C8604ABE11EF8708395BC4F9AE02.roa File: 08D9C8604ABE11EF8708395BC4F9AE02.roa (raw, json) Hash identifier: KoaV0URvtmzdHrqA1z33gHV+eShaD03rJhOUSMjsP9c= Subject key identifier: F2:6E:5C:3F:77:E7:4A:18:64:35:73:1D:1D:AC:CB:C5:1D:93:BF:69 Certificate issuer: /CN=A911BDA9/serialNumber=24920C5DF989FCCD990B08A8F0479EA4AFB36198 Certificate serial: CA Authority key identifier: 24:92:0C:5D:F9:89:FC:CD:99:0B:08:A8:F0:47:9E:A4:AF:B3:61:98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JJIMXfmJ_M2ZCwio8EeepK-zYZg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/08D9C8604ABE11EF8708395BC4F9AE02.roa Signing time: Tue 05 Aug 2025 06:44:16 +0000 ROA not before: Tue 05 Aug 2025 06:44:16 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 29802 IP address blocks: 160.25.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/JJIMXfmJ_M2ZCwio8EeepK-zYZg.crl rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/JJIMXfmJ_M2ZCwio8EeepK-zYZg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JJIMXfmJ_M2ZCwio8EeepK-zYZg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BDA9, serialNumber=24920C5DF989FCCD990B08A8F0479EA4AFB36198 Validity Not Before: Aug 5 06:44:16 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6891a840-8e36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d1:69:f4:03:7c:f6:1d:73:b6:df:8a:87:97: c1:60:f7:36:4e:c3:77:ff:b6:32:a4:f5:f1:44:a4: dc:c2:42:86:44:a1:c0:40:9b:67:09:8a:57:b0:64: 2d:ed:ec:5b:4b:8f:fd:d6:07:40:ec:d2:fc:4f:ca: f9:df:7f:c3:2b:ed:c9:02:8b:3c:82:71:54:48:53: 48:48:88:e8:69:19:64:b3:5e:06:d7:4d:f5:07:15: fd:c2:4d:27:58:65:59:7f:9b:ce:00:4d:db:95:a2: ea:a0:d5:f3:4d:47:91:a2:aa:e1:54:e3:27:22:25: 44:72:a8:2d:97:57:b3:f0:9a:b9:af:d0:2d:14:08: 29:fb:f8:49:02:61:d2:c6:17:5f:53:2f:13:e4:c1: 8f:fe:ba:11:85:0a:0d:87:63:dd:3b:b9:c0:55:3d: 09:1f:46:a7:96:e3:a6:7d:44:7b:df:be:a1:5c:cd: 90:07:79:da:33:f6:81:f8:71:65:e0:cd:d7:22:be: a6:be:a6:04:05:97:1e:61:ba:85:c2:22:a3:6b:72: f8:18:58:bb:b6:16:10:94:b2:0b:b5:d8:62:b3:09: 49:d0:53:04:75:e0:43:d0:f9:19:b8:41:71:62:71: 96:85:93:01:94:11:d1:06:21:14:f6:d6:50:44:ce: af:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:6E:5C:3F:77:E7:4A:18:64:35:73:1D:1D:AC:CB:C5:1D:93:BF:69 X509v3 Authority Key Identifier: keyid:24:92:0C:5D:F9:89:FC:CD:99:0B:08:A8:F0:47:9E:A4:AF:B3:61:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/JJIMXfmJ_M2ZCwio8EeepK-zYZg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/JJIMXfmJ_M2ZCwio8EeepK-zYZg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BDA9/2E0CB55E44BD11EFB73DB77BC4F9AE02/08D9C8604ABE11EF8708395BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.227.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:df:9d:cd:e8:bd:0d:81:21:89:08:7e:8e:73:e2:d7:a1:8e: 6e:b5:cd:73:8c:38:af:17:48:49:d8:ba:b2:87:cc:a5:37:d5: 9a:2f:44:66:40:12:5a:61:6d:3e:10:6d:5f:a8:22:1d:77:e1: b2:04:92:32:28:79:a3:66:3f:7a:5c:d1:c4:bd:22:5d:61:53: 90:2d:01:ac:e3:21:03:8c:53:9a:27:5a:78:6f:04:f4:a7:84: 67:84:fb:a1:ab:43:98:09:66:94:a2:1e:6e:1d:c1:bd:21:26: ce:35:4b:06:c8:45:93:49:db:5e:52:1b:7a:5f:bb:45:7c:6e: f9:ef:92:ed:cd:df:56:d8:82:32:59:5e:31:95:cd:6b:7d:3a: 56:71:b7:0b:15:cc:d6:c7:28:43:4d:5f:d9:7f:cc:1c:51:98: e8:32:e2:80:51:ca:1e:73:cc:f1:7c:02:e5:df:7e:8d:17:96: f5:ce:d6:5d:ba:2c:81:01:2c:b1:08:a7:ee:e3:0d:75:04:71: 45:84:60:22:b2:85:be:98:59:a9:c4:34:45:f9:65:ec:1e:e5: a6:32:41:57:7b:b2:18:23:5d:bc:cd:51:17:58:74:cc:f9:f4: 10:65:68:b6:35:bf:33:8d:f8:6c:3e:fc:40:a2:ec:d7:17:af: cd:d8:c5:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJEQTkxMTAvBgNVBAUTKDI0OTIwQzVERjk4OUZDQ0Q5OTBCMDhBOEYwNDc5RUE0 QUZCMzYxOTgwHhcNMjUwODA1MDY0NDE2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxYTg0MC04ZTM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNFp9AN89h1ztt+Kh5fBYPc2TsN3/7YypPXxRKTcwkKGRKHAQJtnCYpXsGQt 7exbS4/91gdA7NL8T8r533/DK+3JAos8gnFUSFNISIjoaRlks14G1031BxX9wk0n WGVZf5vOAE3blaLqoNXzTUeRoqrhVOMnIiVEcqgtl1ez8Jq5r9AtFAgp+/hJAmHS xhdfUy8T5MGP/roRhQoNh2PdO7nAVT0JH0anluOmfUR7376hXM2QB3naM/aB+HFl 4M3XIr6mvqYEBZceYbqFwiKja3L4GFi7thYQlLILtdhiswlJ0FMEdeBD0PkZuEFx YnGWhZMBlBHRBiEU9tZQRM6vnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPJuXD93 50oYZDVzHR2sy8Udk79pMB8GA1UdIwQYMBaAFCSSDF35ifzNmQsIqPBHnqSvs2GY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkRBOS8yRTBDQjU1RTQ0 QkQxMUVGQjczREI3N0JDNEY5QUUwMi9KSklNWGZtSl9NMlpDd2lvOEVlZXBLLXpZ WmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0pKSU1YZm1KX00yWkN3aW84RWVlcEstellaZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJEQTkvMkUwQ0I1NUU0NEJEMTFFRkI3M0RCNzdCQzRGOUFFMDIvMDhEOUM4NjA0 QUJFMTFFRjg3MDgzOTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgGeMwDQYJKoZIhvcNAQELBQADggEBAAvfnc3ovQ2BIYkI fo5z4tehjm61zXOMOK8XSEnYurKHzKU31ZovRGZAElphbT4QbV+oIh134bIEkjIo eaNmP3pc0cS9Il1hU5AtAazjIQOMU5onWnhvBPSnhGeE+6GrQ5gJZpSiHm4dwb0h Js41SwbIRZNJ215SG3pfu0V8bvnvku3N31bYgjJZXjGVzWt9OlZxtwsVzNbHKENN X9l/zBxRmOgy4oBRyh5zzPF8AuXffo0XlvXO1l26LIEBLLEIp+7jDXUEcUWEYCKy hb6YWanENEX5Zewe5aYyQVd7shgjXbzNURdYdMz59BBlaLY1vzON+Gw+/ECi7NcX r83YxXk= -----END CERTIFICATE-----Generated at Sun Aug 10 13:50:03 2025 by rpki-client