$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa File: DC11ACCE182F11EE82A0FC48C4F9AE02.roa (raw, json) Hash identifier: 3AQgtCiu1AvELGcQ0dN/q4SITzh5GfFFMFmGHpirqhw= Subject key identifier: D3:35:01:DC:94:0D:28:9C:3D:E4:14:84:23:0D:9C:3F:14:90:21:56 Certificate issuer: /CN=A915D0AC/serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Certificate serial: 0185 Authority key identifier: 86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa Signing time: Tue 17 Jun 2025 02:07:08 +0000 ROA not before: Tue 17 Jun 2025 02:07:08 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 132481 IP address blocks: 168.168.128.0/20 maxlen: 20 168.168.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 03:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC, serialNumber=86CAEF96739EF49A514FE9F90B6FE9509D3CC953 Validity Not Before: Jun 17 02:07:08 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6850cdcc-0c94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:31:ba:22:23:6f:a5:bc:08:ef:67:61:e6:76: 2f:9a:77:80:b4:9b:8c:87:5e:44:41:b3:9a:3a:30: 1e:44:eb:aa:27:42:0c:14:be:c0:67:ac:f4:ce:c2: 3a:67:e8:a9:aa:82:8d:94:a7:94:df:bb:20:77:f8: 16:53:e1:7c:21:ec:8f:a8:be:ca:b4:f9:ec:07:d2: 47:d5:92:ea:c3:25:d9:6b:7a:61:01:46:93:78:07: 3e:95:d3:d9:17:54:bb:bb:4b:c9:53:6c:e6:b8:a3: b7:b8:dc:48:67:a1:9f:a4:46:cf:ae:7e:ce:70:69: 29:c7:ac:f3:42:50:26:f4:41:8e:77:dc:a5:c1:81: 10:7e:c2:7f:67:5c:43:d4:f3:cf:1b:01:d6:16:45: fc:4c:fe:64:f1:9e:ab:81:19:b2:51:20:18:5f:fe: 95:c2:34:36:26:04:31:62:ab:81:4e:c5:f0:b9:6a: c2:e8:b6:84:2b:39:d3:2f:33:c1:5e:5f:9a:7d:cd: a0:d3:2d:12:d9:ff:d6:e1:a9:7b:b7:08:a7:f2:1e: ed:89:ff:33:f1:62:53:c2:be:34:55:a7:e0:79:a6: b6:57:7b:ce:54:7d:ad:34:13:66:f4:7e:d3:ed:4f: 69:3b:f7:19:7b:1c:70:75:48:82:41:04:22:31:3a: 5d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:35:01:DC:94:0D:28:9C:3D:E4:14:84:23:0D:9C:3F:14:90:21:56 X509v3 Authority Key Identifier: keyid:86:CA:EF:96:73:9E:F4:9A:51:4F:E9:F9:0B:6F:E9:50:9D:3C:C9:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/hsrvlnOe9JpRT-n5C2_pUJ08yVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hsrvlnOe9JpRT-n5C2_pUJ08yVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/9A5F0E1A152411EE9D70C968C4F9AE02/DC11ACCE182F11EE82A0FC48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.168.128.0/20 168.168.248.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:f8:ec:14:45:11:cf:55:2a:c2:11:24:80:ec:11:ed:fc:12: fb:90:ff:e4:d6:43:31:b7:b2:66:30:2c:97:e7:bb:ba:64:a1: 4f:76:25:f4:e6:2c:63:e0:6d:ba:fc:20:d4:01:96:00:8c:ff: 90:79:2e:8e:f4:69:8b:2c:96:13:c5:b7:40:c7:31:11:5e:d8: 2e:2d:98:06:8f:c8:a7:cf:57:44:ec:39:62:a8:bd:d3:48:b3: cb:55:4c:5b:64:7f:60:e5:66:30:46:4b:e0:0d:2a:36:29:96: 64:f7:a6:68:35:56:08:94:94:a5:cc:cb:72:ff:c3:aa:cd:6f: d0:a1:26:57:6c:84:a4:6e:39:97:1c:05:66:6d:92:9d:bf:bd: 20:b4:9f:e0:5e:8c:42:15:52:f5:be:92:49:4f:10:ba:bd:35: 71:f8:65:3c:ae:72:da:40:a7:1b:c0:1f:ad:42:60:fb:76:bd: 5a:24:28:fd:cf:3e:0a:a6:95:e9:9d:07:f9:5a:64:2b:65:af: 96:67:97:d4:7e:72:6c:72:5f:7b:22:ff:f1:a8:21:17:b7:04: d9:ae:3d:a0:8b:03:92:5f:25:73:8c:33:9e:e9:81:a1:35:44: 56:f9:d1:da:ff:e1:eb:28:5f:e2:90:c9:a9:03:f5:fe:9d:3b: 63:1c:c0:84 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKDg2Q0FFRjk2NzM5RUY0OUE1MTRGRTlGOTBCNkZFOTUw OUQzQ0M5NTMwHhcNMjUwNjE3MDIwNzA4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwY2RjYy0wYzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzG6IiNvpbwI72dh5nYvmneAtJuMh15EQbOaOjAeROuqJ0IMFL7AZ6z0zsI6 Z+ipqoKNlKeU37sgd/gWU+F8IeyPqL7KtPnsB9JH1ZLqwyXZa3phAUaTeAc+ldPZ F1S7u0vJU2zmuKO3uNxIZ6GfpEbPrn7OcGkpx6zzQlAm9EGOd9ylwYEQfsJ/Z1xD 1PPPGwHWFkX8TP5k8Z6rgRmyUSAYX/6VwjQ2JgQxYquBTsXwuWrC6LaEKznTLzPB Xl+afc2g0y0S2f/W4al7twin8h7tif8z8WJTwr40Vafgeaa2V3vOVH2tNBNm9H7T 7U9pO/cZexxwdUiCQQQiMTpdGQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNM1AdyU DSicPeQUhCMNnD8UkCFWMB8GA1UdIwQYMBaAFIbK75ZznvSaUU/p+Qtv6VCdPMlT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy85QTVGMEUxQTE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi9oc3J2bG5PZTlKcFJULW41QzJfcFVKMDh5 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hzcnZsbk9lOUpwUlQtbjVDMl9wVUowOHlWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvOUE1RjBFMUExNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvREMxMUFDQ0Ux ODJGMTFFRTgyQTBGQzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBASoqIADBAGoqPgwDQYJKoZIhvcNAQELBQADggEBAJv47BRF Ec9VKsIRJIDsEe38EvuQ/+TWQzG3smYwLJfnu7pkoU92JfTmLGPgbbr8INQBlgCM /5B5Lo70aYsslhPFt0DHMRFe2C4tmAaPyKfPV0TsOWKovdNIs8tVTFtkf2DlZjBG S+ANKjYplmT3pmg1VgiUlKXMy3L/w6rNb9ChJldshKRuOZccBWZtkp2/vSC0n+Be jEIVUvW+kklPELq9NXH4ZTyuctpApxvAH61CYPt2vVokKP3PPgqmlemdB/laZCtl r5Znl9R+cmxyX3si//GoIRe3BNmuPaCLA5JfJXOMM57pgaE1RFb50dr/4esoX+KQ yakD9f6dO2McwIQ= -----END CERTIFICATE-----Generated at Fri Jun 20 08:55:09 2025 by rpki-client