$ rpki-client -vvf rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/7D164B822A2811F0819D8C13C4F9AE02.roa File: 7D164B822A2811F0819D8C13C4F9AE02.roa (raw, json) Hash identifier: ev+YjLUEFuV9synNnilJkgFER39S40N1zyX1CzULmag= Subject key identifier: 77:AB:D5:70:E8:D3:77:E8:0F:0A:B5:FE:6B:0B:C7:3E:9B:B0:82:6C Certificate issuer: /CN=A9165DB1/serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Certificate serial: 029B Authority key identifier: 86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/7D164B822A2811F0819D8C13C4F9AE02.roa Signing time: Tue 05 Aug 2025 02:40:33 +0000 ROA not before: Tue 05 Aug 2025 02:40:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.4.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 667 (0x29b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165DB1, serialNumber=8686C92B87DD5DD2EE2ABB40EC73F178F6045A34 Validity Not Before: Aug 5 02:40:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68916f20-3d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d6:78:5c:16:a8:46:6f:f5:37:3c:ce:22:14: 07:56:99:d6:47:69:10:8d:6a:02:07:78:fb:bd:90: 71:7f:0f:af:9a:32:b4:e4:b9:e9:de:d7:b6:16:ba: ec:8c:6f:2f:e7:d3:e2:7f:9d:2b:c7:87:bb:68:8a: 8e:7e:af:62:83:39:cc:41:d2:f5:d5:a3:3e:68:e5: 64:48:90:8e:fc:98:21:61:70:96:82:a4:f2:1b:df: e1:26:b6:2a:59:3e:4c:18:f7:97:7d:2d:99:22:a5: f6:ff:40:e7:c3:e4:62:59:5a:9e:fc:8a:ac:37:47: b5:77:33:15:79:d0:28:2f:0f:a6:df:df:68:46:7e: a3:36:d0:30:a3:93:04:53:95:4a:10:9b:86:3f:a3: 01:b8:d7:8b:d8:d2:c6:21:bf:4a:92:8e:67:b6:72: ac:54:f5:b6:d3:32:15:ce:78:0f:7f:62:26:ad:62: c9:b4:05:46:2e:0e:dc:87:3d:46:ef:12:56:30:b5: 39:33:d5:5f:6b:bd:08:cf:1e:6a:cd:85:7b:d5:94: 75:0f:68:62:4f:fe:b6:de:a3:00:98:d0:a8:bb:c2: 7b:45:74:7f:2b:71:5c:25:83:86:58:f3:11:40:51: 6d:a5:55:8a:f3:97:31:e3:1e:f0:d9:d8:f2:f1:d7: be:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:AB:D5:70:E8:D3:77:E8:0F:0A:B5:FE:6B:0B:C7:3E:9B:B0:82:6C X509v3 Authority Key Identifier: keyid:86:86:C9:2B:87:DD:5D:D2:EE:2A:BB:40:EC:73:F1:78:F6:04:5A:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/hobJK4fdXdLuKrtA7HPxePYEWjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hobJK4fdXdLuKrtA7HPxePYEWjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165DB1/5A496F880E1711ED8E3BD915C4F9AE02/7D164B822A2811F0819D8C13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.146.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:8e:73:f2:a1:45:d9:a8:de:38:fc:4f:7b:3d:9f:35:a0:19: ad:8d:15:6a:b5:f4:e8:23:c2:e7:a9:a4:ae:64:dc:a6:72:e7: 09:5b:47:4f:b8:df:b7:26:07:db:46:82:4a:b3:b2:96:f2:8c: e8:93:34:56:6c:f4:43:0d:23:9c:29:8d:4e:d8:fd:40:f6:af: ce:ec:26:c1:88:f0:07:68:d9:64:75:a9:01:6d:9a:f4:23:be: 2c:64:b7:f4:3f:80:f4:96:b1:bc:ec:c6:01:db:24:10:54:2d: e6:b8:9b:3e:6f:a4:33:97:c7:77:ac:69:c5:30:6e:f4:a3:35: b9:bb:8b:19:03:6f:8a:5e:28:b9:28:cd:81:51:4a:81:04:0c: 33:04:a6:d8:45:38:e2:38:8f:47:ef:a9:11:bb:b8:41:37:c3: c7:b8:1d:25:3d:6f:ed:6e:63:ba:6d:b0:00:5f:0e:cd:d2:e6: cf:a4:47:ab:f8:22:a8:bc:74:7d:50:92:be:7f:6f:bf:3a:a7: d4:86:fe:48:b2:8d:1e:f2:15:c9:95:6c:7d:92:c1:ff:a2:57: a1:cf:59:d9:b8:62:02:14:09:6f:55:f1:ba:e6:8d:95:7c:81: 9f:79:75:42:f8:19:9f:9e:db:fa:8e:8b:c2:9c:2b:14:68:11: ee:d4:29:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVEQjExMTAvBgNVBAUTKDg2ODZDOTJCODdERDVERDJFRTJBQkI0MEVDNzNGMTc4 RjYwNDVBMzQwHhcNMjUwODA1MDI0MDMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxNmYyMC0zZDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtdZ4XBaoRm/1NzzOIhQHVpnWR2kQjWoCB3j7vZBxfw+vmjK05Lnp3te2Frrs jG8v59Pif50rx4e7aIqOfq9igznMQdL11aM+aOVkSJCO/JghYXCWgqTyG9/hJrYq WT5MGPeXfS2ZIqX2/0Dnw+RiWVqe/IqsN0e1dzMVedAoLw+m399oRn6jNtAwo5ME U5VKEJuGP6MBuNeL2NLGIb9Kko5ntnKsVPW20zIVzngPf2ImrWLJtAVGLg7chz1G 7xJWMLU5M9Vfa70Izx5qzYV71ZR1D2hiT/623qMAmNCou8J7RXR/K3FcJYOGWPMR QFFtpVWK85cx4x7w2djy8de+CwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHer1XDo 03foDwq1/msLxz6bsIJsMB8GA1UdIwQYMBaAFIaGySuH3V3S7iq7QOxz8Xj2BFo0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NURCMS81QTQ5NkY4ODBF MTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9ob2JKSzRmZFhkTHVLcnRBN0hQeGVQWUVX alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvYkpLNGZkWGRMdUtydEE3SFB4ZVBZRVdqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVEQjEvNUE0OTZGODgwRTE3MTFFRDhFM0JEOTE1QzRGOUFFMDIvN0QxNjRCODIy QTI4MTFGMDgxOUQ4QzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLBJIwDQYJKoZIhvcNAQELBQADggEBAH6Oc/KhRdmo3jj8 T3s9nzWgGa2NFWq19OgjwueppK5k3KZy5wlbR0+437cmB9tGgkqzspbyjOiTNFZs 9EMNI5wpjU7Y/UD2r87sJsGI8Ado2WR1qQFtmvQjvixkt/Q/gPSWsbzsxgHbJBBU Lea4mz5vpDOXx3esacUwbvSjNbm7ixkDb4peKLkozYFRSoEEDDMEpthFOOI4j0fv qRG7uEE3w8e4HSU9b+1uY7ptsABfDs3S5s+kR6v4Iqi8dH1Qkr5/b786p9SG/kiy jR7yFcmVbH2Swf+iV6HPWdm4YgIUCW9V8brmjZV8gZ95dUL4GZ+e2/qOi8KcKxRo Ee7UKe8= -----END CERTIFICATE-----Generated at Mon Aug 11 01:50:32 2025 by rpki-client