$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/A1BECC526DDF11F0868E7C4BC4F9AE02.roa File: A1BECC526DDF11F0868E7C4BC4F9AE02.roa (raw, json) Hash identifier: YXuf5BTEPj7fnB9oxoKkcmwqAfw/328NMNkT0ipByB0= Subject key identifier: 54:3A:A5:62:D9:F2:58:C8:50:42:A6:F2:99:A3:C2:06:15:AD:10:F8 Certificate issuer: /CN=A9167A72/serialNumber=2EF4695443A4C0C7B34EA91B62A3D8F8E414517E Certificate serial: 30 Authority key identifier: 2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/A1BECC526DDF11F0868E7C4BC4F9AE02.roa Signing time: Thu 31 Jul 2025 07:26:11 +0000 ROA not before: Thu 31 Jul 2025 07:26:11 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142292 IP address blocks: 168.140.196.0/24 maxlen: 24 168.140.197.0/24 maxlen: 24 168.140.198.0/24 maxlen: 24 168.140.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.crl rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:09:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48 (0x30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72, serialNumber=2EF4695443A4C0C7B34EA91B62A3D8F8E414517E Validity Not Before: Jul 31 07:26:11 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688b1a92-5749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d7:c8:29:c0:11:0f:77:cc:a5:d1:fe:da:5a: 13:66:15:5e:61:c0:fc:5b:89:4a:4f:a5:1d:cd:7b: 6c:e4:e5:f3:43:4f:3a:8e:9a:9d:50:64:05:48:85: 1c:a8:d4:95:c6:4e:b5:86:54:14:da:cf:0c:cf:4a: d9:5b:3f:82:53:e5:61:54:bf:91:2a:1c:4f:2e:21: be:df:e8:b6:22:ab:7b:0d:bc:db:e0:36:02:30:1c: af:0d:94:c2:1a:bd:1a:cd:20:c0:a8:f4:6a:56:47: 14:30:0c:6b:a3:fb:7d:2f:a7:52:38:b2:62:2f:6a: 75:02:55:ee:5d:87:bc:aa:4e:ec:ef:e7:cb:20:54: 90:81:ad:f9:11:08:7d:0b:bc:3e:39:e7:f1:5f:f9: 53:65:d3:cd:4f:b9:c0:ec:21:ca:07:c9:4f:6a:3b: c7:be:92:c1:02:d3:8b:35:cc:6a:e7:66:9f:1d:ad: 42:74:db:5d:b4:c8:c3:60:3a:23:29:c3:f7:39:c6: ee:50:cf:64:c1:0d:2f:08:f7:a5:4f:5f:05:ae:ed: 87:61:6e:9e:ad:ba:88:c9:ed:11:d0:c2:03:77:bc: ef:da:13:6a:e4:82:64:9e:0f:27:cf:76:34:f8:c4: 44:1e:a9:43:19:66:9e:97:da:d2:16:f2:e7:4a:50: eb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3A:A5:62:D9:F2:58:C8:50:42:A6:F2:99:A3:C2:06:15:AD:10:F8 X509v3 Authority Key Identifier: keyid:2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/A1BECC526DDF11F0868E7C4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.140.196.0/22 Signature Algorithm: sha256WithRSAEncryption 84:30:5f:cc:9c:09:b6:e7:f9:32:f8:05:1f:35:23:46:63:fb: 5d:71:7a:14:16:6e:6f:ad:4d:88:86:bf:66:f0:7b:f2:de:60: 96:1d:43:ac:42:b2:ba:df:26:8b:87:fd:0a:db:b3:44:79:55: d4:40:d4:99:61:2e:bb:17:9c:fe:54:59:a2:0a:9c:67:81:13: c0:d2:99:e3:4f:ea:c3:79:e0:b3:fb:33:b8:de:8a:f6:ee:55: 89:fe:e5:36:05:0f:31:ed:b3:0e:26:75:03:71:0d:90:92:df: 01:09:8f:bb:e9:f8:d4:ad:f8:5b:90:7d:1a:46:cb:4d:b8:29: 79:ab:e5:e7:14:0b:73:05:6e:de:d8:f8:3c:29:d1:f6:3d:63: 52:36:59:82:97:14:4f:6d:9b:82:90:fe:4f:6a:dc:69:a0:b9: c7:69:0e:2c:52:d3:18:80:61:24:c2:85:58:49:05:bf:e2:13: 6b:cf:42:2d:1c:93:05:b9:33:eb:ee:69:24:1d:91:4c:a2:9b: 34:db:45:4d:e1:c4:16:1d:d9:14:ac:ce:65:14:2d:88:29:92: 33:33:de:98:74:53:1d:93:4d:c8:d8:53:b3:cf:91:d8:9f:6d: 02:04:3b:f9:be:df:fa:1d:99:7f:ee:2b:80:23:ba:f5:7e:a3: 53:24:9e:97 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0E3MjExMC8GA1UEBRMoMkVGNDY5NTQ0M0E0QzBDN0IzNEVBOTFCNjJBM0Q4RjhF NDE0NTE3RTAeFw0yNTA3MzEwNzI2MTFaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OGIxYTkyLTU3NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh18gpwBEPd8yl0f7aWhNmFV5hwPxbiUpPpR3Ne2zk5fNDTzqOmp1QZAVIhRyo 1JXGTrWGVBTazwzPStlbP4JT5WFUv5EqHE8uIb7f6LYiq3sNvNvgNgIwHK8NlMIa vRrNIMCo9GpWRxQwDGuj+30vp1I4smIvanUCVe5dh7yqTuzv58sgVJCBrfkRCH0L vD455/Ff+VNl081PucDsIcoHyU9qO8e+ksEC04s1zGrnZp8drUJ02120yMNgOiMp w/c5xu5Qz2TBDS8I96VPXwWu7Ydhbp6tuojJ7RHQwgN3vO/aE2rkgmSeDyfPdjT4 xEQeqUMZZp6X2tIW8udKUOtTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVDqlYtny WMhQQqbymaPCBhWtEPgwHwYDVR0jBBgwFoAULvRpVEOkwMezTqkbYqPY+OQUUX4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3QTcyLzQ0REU2OUNFMkIx NDExRjA4NTIzRjI2QkM0RjlBRTAyL0x2UnBWRU9rd01lelRxa2JZcVBZLU9RVVVY NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTHZScFZFT2t3TWV6VHFrYllxUFktT1FVVVg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0E3Mi80NERFNjlDRTJCMTQxMUYwODUyM0YyNkJDNEY5QUUwMi9BMUJFQ0M1MjZE REYxMUYwODY4RTdDNEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAqiMxDANBgkqhkiG9w0BAQsFAAOCAQEAhDBfzJwJtuf5MvgF HzUjRmP7XXF6FBZub61NiIa/ZvB78t5glh1DrEKyut8mi4f9CtuzRHlV1EDUmWEu uxec/lRZogqcZ4ETwNKZ40/qw3ngs/szuN6K9u5Vif7lNgUPMe2zDiZ1A3ENkJLf AQmPu+n41K34W5B9GkbLTbgpeavl5xQLcwVu3tj4PCnR9j1jUjZZgpcUT22bgpD+ T2rcaaC5x2kOLFLTGIBhJMKFWEkFv+ITa89CLRyTBbkz6+5pJB2RTKKbNNtFTeHE Fh3ZFKzOZRQtiCmSMzPemHRTHZNNyNhTs8+R2J9tAgQ7+b7f+h2Zf+4rgCO69X6j UySelw== -----END CERTIFICATE-----Generated at Wed Aug 13 04:26:08 2025 by rpki-client