$ rpki-client -vvf rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/88A6DB9086E211EF82ACA725C4F9AE02.roa File: 88A6DB9086E211EF82ACA725C4F9AE02.roa (raw, json) Hash identifier: SgEH7SMyjJ+UziQP4wAobkWL0i1gKH2nK/k2dzRb6pc= Subject key identifier: B7:F4:57:0A:71:12:09:BF:17:AB:E5:66:BC:81:E4:38:9F:DB:B2:8A Certificate issuer: /CN=A913647F/serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Certificate serial: 7C Authority key identifier: 46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/88A6DB9086E211EF82ACA725C4F9AE02.roa Signing time: Sat 31 May 2025 06:58:23 +0000 ROA not before: Sat 31 May 2025 06:58:23 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133453 IP address blocks: 160.22.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913647F, serialNumber=4641907FE5F473F18906D46AA20307EDEDA19C9D Validity Not Before: May 31 06:58:23 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683aa88f-393a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:d2:7a:17:c6:71:eb:fe:15:21:18:e4:9f:88: a9:eb:22:4f:26:95:74:b7:0a:80:9f:be:94:2f:d4: 4a:0a:77:86:35:14:e0:91:66:87:f0:f6:3d:cc:82: 5f:a5:b1:ea:a9:59:12:49:f0:27:20:29:e5:57:9d: 9d:3d:5e:d4:17:19:33:57:b2:75:2c:a7:f6:97:84: f1:4b:bd:fe:94:90:90:3f:6e:f5:9f:96:a6:18:93: 43:2e:bf:3a:ae:cb:37:0f:ff:18:e3:80:d6:c7:bc: b9:6f:21:7f:78:b2:ab:42:a0:41:3d:97:be:16:3d: 9b:01:c0:42:33:1a:a5:80:2d:3f:89:80:af:24:dd: 81:86:0d:95:b9:27:bf:c4:bb:df:17:92:6b:15:ef: 78:2c:b9:d1:35:69:5d:0c:3b:45:7e:12:17:7e:21: 04:ed:39:46:54:b9:1f:4e:7b:34:61:a9:c6:bc:66: 1e:16:2a:63:61:21:67:ee:db:09:7e:36:21:7f:03: c0:be:84:7b:56:58:9a:ef:98:39:d0:71:5d:d9:e2: 8f:6f:d3:c0:a4:2a:7b:a6:2b:53:b3:2f:ea:8b:01: 99:31:3f:a2:57:bf:e7:e0:38:f0:41:1c:d8:8d:bc: 6e:94:a0:d9:e4:91:19:11:b6:cd:bb:d3:e2:a7:f0: 92:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:F4:57:0A:71:12:09:BF:17:AB:E5:66:BC:81:E4:38:9F:DB:B2:8A X509v3 Authority Key Identifier: keyid:46:41:90:7F:E5:F4:73:F1:89:06:D4:6A:A2:03:07:ED:ED:A1:9C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/RkGQf-X0c_GJBtRqogMH7e2hnJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RkGQf-X0c_GJBtRqogMH7e2hnJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913647F/B91AAA7486DB11EFBA4D5F26C4F9AE02/88A6DB9086E211EF82ACA725C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.210.0/23 Signature Algorithm: sha256WithRSAEncryption 64:7f:b4:b3:2f:26:a9:91:78:1c:5a:f4:6a:95:ad:e6:37:fa: 93:d5:ff:04:0f:ae:3e:ed:d2:26:d4:72:dd:69:a6:8a:22:83: 02:85:9a:fb:b1:25:dd:5d:44:80:b8:a9:c2:44:4f:fa:bf:88: 4a:63:d0:d7:92:5e:ab:aa:7e:04:da:71:62:e3:9d:8d:80:9a: 3b:dc:29:75:d2:a0:02:39:4e:db:9e:60:f4:58:ca:ef:1c:47: 72:18:56:92:b5:1d:ee:ac:31:dc:1b:2a:94:8c:d4:4a:cc:41: e1:b9:e2:d3:c9:8c:c6:61:28:75:87:98:fb:9a:3c:e4:ab:99: 90:f3:80:96:93:00:58:a8:b9:16:8b:43:4f:0e:53:5e:56:db: 9d:f4:1e:ef:01:4b:27:19:44:80:17:45:05:be:1d:f8:f6:8c: 3e:10:a8:31:b3:4b:6f:2f:1b:fb:6a:b5:0b:1e:e8:09:7c:2f: 2e:80:62:3f:1f:d5:ea:6d:88:70:50:f2:ea:19:d0:b3:59:ed: 5b:7a:5a:68:83:1c:c3:61:db:3b:aa:9d:4a:47:d6:88:f2:fe: c9:f4:98:a9:92:e4:12:9e:b4:48:18:0a:01:31:3e:61:b6:2e: 9e:c2:55:55:2d:78:ac:ce:2e:59:c0:47:03:c5:77:6e:10:ee: 31:ff:b3:1e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NjQ3RjExMC8GA1UEBRMoNDY0MTkwN0ZFNUY0NzNGMTg5MDZENDZBQTIwMzA3RURF REExOUM5RDAeFw0yNTA1MzEwNjU4MjNaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4M2FhODhmLTM5M2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDY0noXxnHr/hUhGOSfiKnrIk8mlXS3CoCfvpQv1EoKd4Y1FOCRZofw9j3Mgl+l seqpWRJJ8CcgKeVXnZ09XtQXGTNXsnUsp/aXhPFLvf6UkJA/bvWflqYYk0Muvzqu yzcP/xjjgNbHvLlvIX94sqtCoEE9l74WPZsBwEIzGqWALT+JgK8k3YGGDZW5J7/E u98XkmsV73gsudE1aV0MO0V+Ehd+IQTtOUZUuR9OezRhqca8Zh4WKmNhIWfu2wl+ NiF/A8C+hHtWWJrvmDnQcV3Z4o9v08CkKnumK1OzL+qLAZkxP6JXv+fgOPBBHNiN vG6UoNnkkRkRts270+Kn8JJjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUt/RXCnES Cb8Xq+VmvIHkOJ/bsoowHwYDVR0jBBgwFoAURkGQf+X0c/GJBtRqogMH7e2hnJ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM2NDdGL0I5MUFBQTc0ODZE QjExRUZCQTRENUYyNkM0RjlBRTAyL1JrR1FmLVgwY19HSkJ0UnFvZ01IN2UyaG5K MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUmtHUWYtWDBjX0dKQnRScW9nTUg3ZTJobkowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NjQ3Ri9COTFBQUE3NDg2REIxMUVGQkE0RDVGMjZDNEY5QUUwMi84OEE2REI5MDg2 RTIxMUVGODJBQ0E3MjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAW0jANBgkqhkiG9w0BAQsFAAOCAQEAZH+0sy8mqZF4HFr0 apWt5jf6k9X/BA+uPu3SJtRy3WmmiiKDAoWa+7El3V1EgLipwkRP+r+ISmPQ15Je q6p+BNpxYuOdjYCaO9wpddKgAjlO255g9FjK7xxHchhWkrUd7qwx3BsqlIzUSsxB 4bni08mMxmEodYeY+5o85KuZkPOAlpMAWKi5FotDTw5TXlbbnfQe7wFLJxlEgBdF Bb4d+PaMPhCoMbNLby8b+2q1Cx7oCXwvLoBiPx/V6m2IcFDy6hnQs1ntW3paaIMc w2HbO6qdSkfWiPL+yfSYqZLkEp60SBgKATE+YbYunsJVVS14rM4uWcBHA8V3bhDu Mf+zHg== -----END CERTIFICATE-----Generated at Thu Jun 19 20:12:06 2025 by rpki-client