$ rpki-client -vvf rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/10435EE8740511EF93658977C4F9AE02.roa File: 10435EE8740511EF93658977C4F9AE02.roa (raw, json) Hash identifier: UNDsVo30szdipukbzlDQPptsnvJEU3B7e/F2B79HvTo= Subject key identifier: CD:6D:F1:34:DC:56:26:FB:38:A1:98:09:8F:2B:C9:79:26:93:B9:68 Certificate issuer: /CN=A9155806/serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Certificate serial: E1 Authority key identifier: 88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/10435EE8740511EF93658977C4F9AE02.roa Signing time: Thu 23 Oct 2025 07:49:33 +0000 ROA not before: Thu 23 Oct 2025 07:49:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153323 IP address blocks: 160.187.20.0/24 maxlen: 24 160.187.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:45:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155806, serialNumber=887E1107A83F1174FF7E3E780888DB5723B7925B Validity Not Before: Oct 23 07:49:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f9de0d-44d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ba:ef:03:9d:6f:5f:44:9f:5c:92:57:e2:84: 3d:b6:07:76:20:e4:1f:33:4c:57:ef:6a:2f:1a:7c: a0:d5:72:b7:2f:9e:d0:e0:54:73:13:54:75:8b:52: 2e:3c:d1:3e:4f:55:10:a9:c1:57:8c:d3:aa:3e:f3: dc:c7:02:df:f1:5b:bb:f1:e4:cb:76:43:1b:cc:04: 08:1f:6d:7f:d9:d5:99:bd:db:7d:72:12:67:03:3a: ee:f3:37:10:a5:af:e7:e3:59:43:f5:be:e2:f6:47: d2:b9:60:e6:d9:27:0a:13:66:97:ec:1f:4e:51:8e: 3c:29:87:d1:e7:22:90:d0:76:1a:ee:9d:dc:28:5f: 29:13:c1:b9:d2:d4:2d:b4:35:4e:67:2b:7a:15:38: 75:8a:96:0e:59:50:5c:16:cb:b5:38:55:35:49:9c: f0:43:a9:53:e4:db:92:3f:9a:a8:e3:b4:67:56:4b: 6f:63:5c:84:ec:ac:4e:cb:3b:fd:fb:56:7b:52:04: 5e:62:1d:c5:c5:a0:1b:48:35:33:a6:16:69:18:8d: 0f:b8:47:3f:13:6e:a5:62:a0:0b:9c:38:47:b6:0d: be:f8:f1:93:76:c2:96:1e:69:65:85:d9:b0:61:c6: 3a:79:a9:9a:12:cd:46:a3:ee:72:d3:01:ff:19:ea: 9c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:6D:F1:34:DC:56:26:FB:38:A1:98:09:8F:2B:C9:79:26:93:B9:68 X509v3 Authority Key Identifier: keyid:88:7E:11:07:A8:3F:11:74:FF:7E:3E:78:08:88:DB:57:23:B7:92:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/iH4RB6g_EXT_fj54CIjbVyO3kls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iH4RB6g_EXT_fj54CIjbVyO3kls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155806/C739BAEE6E9111EFA62B4C3FC4F9AE02/10435EE8740511EF93658977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.20.0/23 Signature Algorithm: sha256WithRSAEncryption af:a9:30:71:13:24:60:af:56:6d:a0:05:9e:c3:11:e9:b5:d0: 7f:a8:1e:e0:f5:9b:42:5a:9e:3d:32:fd:f7:57:2d:31:36:72: 9f:a6:74:a8:ed:af:df:b6:26:e6:7d:75:f3:61:02:e1:8d:69: e8:12:98:33:b3:54:c1:87:06:e2:98:72:b9:4d:7d:88:20:0c: d7:78:21:5e:9f:fc:69:f3:29:ed:82:5b:0e:3c:f6:e8:a8:93: 03:53:70:91:19:bb:77:5a:ca:db:14:0c:6a:8b:09:ac:3f:19: 87:22:f2:68:43:55:dc:cf:22:a6:78:a6:61:a4:e4:a7:8c:63: b1:aa:68:55:2c:46:77:3e:3c:fd:32:c9:9f:c4:5a:37:c9:8e: 33:71:18:27:21:ca:3e:42:24:ca:a2:c2:f2:25:2d:4e:63:b4: 6d:94:18:74:0b:df:a9:4c:55:18:4b:f7:7b:0e:3d:4a:d3:52: 1e:3d:3d:29:b7:ba:b1:8f:56:ec:a3:a0:71:8b:9a:81:aa:2b: 3f:d2:c4:0b:c3:95:09:c4:3d:d6:c1:ac:15:a6:1d:16:12:9d: f4:66:13:86:d8:03:0f:14:e8:cb:36:ad:84:38:ac:b0:11:98: f3:e0:82:5c:c2:bd:65:59:78:bb:36:79:b6:d6:77:dc:a2:98: b5:bb:c7:22 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU4MDYxMTAvBgNVBAUTKDg4N0UxMTA3QTgzRjExNzRGRjdFM0U3ODA4ODhEQjU3 MjNCNzkyNUIwHhcNMjUxMDIzMDc0OTMzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5ZGUwZC00NGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq7rvA51vX0SfXJJX4oQ9tgd2IOQfM0xX72ovGnyg1XK3L57Q4FRzE1R1i1Iu PNE+T1UQqcFXjNOqPvPcxwLf8Vu78eTLdkMbzAQIH21/2dWZvdt9chJnAzru8zcQ pa/n41lD9b7i9kfSuWDm2ScKE2aX7B9OUY48KYfR5yKQ0HYa7p3cKF8pE8G50tQt tDVOZyt6FTh1ipYOWVBcFsu1OFU1SZzwQ6lT5NuSP5qo47RnVktvY1yE7KxOyzv9 +1Z7UgReYh3FxaAbSDUzphZpGI0PuEc/E26lYqALnDhHtg2++PGTdsKWHmllhdmw YcY6eamaEs1Go+5y0wH/GeqcJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM1t8TTc Vib7OKGYCY8ryXkmk7loMB8GA1UdIwQYMBaAFIh+EQeoPxF0/34+eAiI21cjt5Jb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTgwNi9DNzM5QkFFRTZF OTExMUVGQTYyQjRDM0ZDNEY5QUUwMi9pSDRSQjZnX0VYVF9majU0Q0lqYlZ5TzNr bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lINFJCNmdfRVhUX2ZqNTRDSWpiVnlPM2tscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU4MDYvQzczOUJBRUU2RTkxMTFFRkE2MkI0QzNGQzRGOUFFMDIvMTA0MzVFRTg3 NDA1MTFFRjkzNjU4OTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGguxQwDQYJKoZIhvcNAQELBQADggEBAK+pMHETJGCvVm2g BZ7DEem10H+oHuD1m0Janj0y/fdXLTE2cp+mdKjtr9+2JuZ9dfNhAuGNaegSmDOz VMGHBuKYcrlNfYggDNd4IV6f/GnzKe2CWw489uiokwNTcJEZu3daytsUDGqLCaw/ GYci8mhDVdzPIqZ4pmGk5KeMY7GqaFUsRnc+PP0yyZ/EWjfJjjNxGCchyj5CJMqi wvIlLU5jtG2UGHQL36lMVRhL93sOPUrTUh49PSm3urGPVuyjoHGLmoGqKz/SxAvD lQnEPdbBrBWmHRYSnfRmE4bYAw8U6Ms2rYQ4rLARmPPgglzCvWVZeLs2ebbWd9yi mLW7xyI= -----END CERTIFICATE-----Generated at Wed Nov 5 11:46:18 2025 by rpki-client