$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/75BE1B766DDF11F0BDC0DA4AC4F9AE02.roa File: 75BE1B766DDF11F0BDC0DA4AC4F9AE02.roa (raw, json) Hash identifier: xGZZlrDNDkFaLniK4xDu2fVUb+QoGgFz7ExHydYZgMQ= Subject key identifier: 1C:4B:8F:73:30:24:82:98:8C:E5:B2:DB:E5:07:D8:A7:4A:90:6C:06 Certificate issuer: /CN=A9167A72/serialNumber=2EF4695443A4C0C7B34EA91B62A3D8F8E414517E Certificate serial: 2E Authority key identifier: 2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/75BE1B766DDF11F0BDC0DA4AC4F9AE02.roa Signing time: Thu 31 Jul 2025 07:24:57 +0000 ROA not before: Thu 31 Jul 2025 07:24:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 63981 IP address blocks: 168.140.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.crl rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46 (0x2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72, serialNumber=2EF4695443A4C0C7B34EA91B62A3D8F8E414517E Validity Not Before: Jul 31 07:24:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688b1a49-acc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f0:18:c5:9b:87:6b:46:12:1d:01:4e:12:26: 02:b6:83:14:12:bf:15:ea:90:9d:9e:e7:27:49:42: 77:61:98:3f:eb:3a:df:36:6a:08:9a:e2:0d:a9:9f: b8:3f:3c:6f:eb:eb:b3:ce:52:e4:9e:ff:36:79:34: 6c:e7:ba:cc:a5:e8:4a:fe:1c:44:60:19:be:95:9e: 5d:a5:7b:8c:dc:63:3b:c0:df:29:7b:6f:01:94:9a: 8d:23:e7:3a:c4:9b:6d:07:59:e3:d6:ec:c6:98:f7: 55:7a:71:bd:1b:30:af:62:62:81:ce:7f:7d:b0:a6: 3e:3f:3d:51:c7:dd:ad:bc:36:81:f9:89:18:0b:17: a7:f7:89:e0:86:92:58:86:68:8c:1e:86:75:b5:c3: b3:5d:2e:42:e7:96:76:8f:24:cc:be:6f:da:93:b9: 67:e0:02:39:ab:b7:14:03:88:46:05:af:18:e3:b2: 91:77:12:1f:66:e4:9b:ed:85:c5:b1:88:b9:d6:bc: 8e:4a:94:20:92:94:db:68:ff:1e:9f:c0:7e:e6:60: fc:86:e9:69:c4:0f:dd:b1:08:57:46:33:0c:77:65: 61:2b:dc:dd:0d:23:70:86:26:bd:6c:60:76:b5:82: dd:93:06:4c:a0:5c:60:6a:d3:3c:6d:55:ce:d7:3a: 09:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:4B:8F:73:30:24:82:98:8C:E5:B2:DB:E5:07:D8:A7:4A:90:6C:06 X509v3 Authority Key Identifier: keyid:2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/75BE1B766DDF11F0BDC0DA4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.140.196.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:e2:9f:5f:6d:71:a5:2f:b9:1d:15:8c:5b:46:d8:49:4a:c6: 11:a2:0e:36:b6:c1:ff:55:e9:88:b0:02:36:98:8e:51:b0:3b: c2:8b:67:07:88:51:08:4d:4f:a5:32:91:cd:09:b9:4d:75:0d: 4e:8e:f4:6e:ac:43:42:46:03:79:5f:75:b7:6b:9c:fd:31:8a: 39:7d:3e:a2:97:29:c0:52:e5:bf:cf:f0:a4:8b:5d:f3:42:28: 9b:0f:10:0c:9a:6b:bb:41:e8:5d:6e:d4:22:d6:dc:59:ec:42: a3:90:f4:ec:1a:28:95:89:e5:5f:82:1c:69:91:e3:82:01:0e: d0:d2:1f:70:f2:d4:2a:5d:be:44:45:27:c7:b7:6a:48:dc:71: 4a:77:21:78:af:41:96:d0:af:1e:0e:58:89:7a:3a:6a:0f:f3: 4b:b6:73:ba:f9:fd:b7:c0:c8:31:e7:8e:94:de:83:54:40:4d: 2e:74:d1:84:95:1d:40:d7:2d:3e:40:23:04:3f:97:9f:f3:87: fe:0a:a1:b1:55:02:9e:49:82:77:a6:61:25:c8:c3:79:79:36: 00:96:24:0f:b4:82:a8:d5:df:ac:28:5f:0e:d8:46:d3:b7:d1: 26:56:f8:15:57:4e:0a:48:dd:98:d4:6f:f8:bb:8c:f7:0a:21: 36:de:37:10 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBLjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0E3MjExMC8GA1UEBRMoMkVGNDY5NTQ0M0E0QzBDN0IzNEVBOTFCNjJBM0Q4RjhF NDE0NTE3RTAeFw0yNTA3MzEwNzI0NTdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OGIxYTQ5LWFjYzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC38BjFm4drRhIdAU4SJgK2gxQSvxXqkJ2e5ydJQndhmD/rOt82agia4g2pn7g/ PG/r67POUuSe/zZ5NGznusyl6Er+HERgGb6Vnl2le4zcYzvA3yl7bwGUmo0j5zrE m20HWePW7MaY91V6cb0bMK9iYoHOf32wpj4/PVHH3a28NoH5iRgLF6f3ieCGkliG aIwehnW1w7NdLkLnlnaPJMy+b9qTuWfgAjmrtxQDiEYFrxjjspF3Eh9m5JvthcWx iLnWvI5KlCCSlNto/x6fwH7mYPyG6WnED92xCFdGMwx3ZWEr3N0NI3CGJr1sYHa1 gt2TBkygXGBq0zxtVc7XOgntAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHEuPczAk gpiM5bLb5QfYp0qQbAYwHwYDVR0jBBgwFoAULvRpVEOkwMezTqkbYqPY+OQUUX4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3QTcyLzQ0REU2OUNFMkIx NDExRjA4NTIzRjI2QkM0RjlBRTAyL0x2UnBWRU9rd01lelRxa2JZcVBZLU9RVVVY NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTHZScFZFT2t3TWV6VHFrYllxUFktT1FVVVg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0E3Mi80NERFNjlDRTJCMTQxMUYwODUyM0YyNkJDNEY5QUUwMi83NUJFMUI3NjZE REYxMUYwQkRDMERBNEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAqiMxDANBgkqhkiG9w0BAQsFAAOCAQEAi+KfX21xpS+5HRWM W0bYSUrGEaIONrbB/1XpiLACNpiOUbA7wotnB4hRCE1PpTKRzQm5TXUNTo70bqxD QkYDeV91t2uc/TGKOX0+opcpwFLlv8/wpItd80Iomw8QDJpru0HoXW7UItbcWexC o5D07BoolYnlX4IcaZHjggEO0NIfcPLUKl2+REUnx7dqSNxxSncheK9BltCvHg5Y iXo6ag/zS7Zzuvn9t8DIMeeOlN6DVEBNLnTRhJUdQNctPkAjBD+Xn/OH/gqhsVUC nkmCd6ZhJcjDeXk2AJYkD7SCqNXfrChfDthG07fRJlb4FVdOCkjdmNRv+LuM9woh Nt43EA== -----END CERTIFICATE-----Generated at Mon Aug 11 13:50:27 2025 by rpki-client