$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/75522B0A002B11EA855CA925C4F9AE02.roa File: 75522B0A002B11EA855CA925C4F9AE02.roa (raw, json) Hash identifier: JtAyYvcjsSIbHjMavRbf74w0IIhNg4IBABZJn0wcwzQ= Subject key identifier: 0A:77:5D:EE:9D:3C:88:9D:7F:B8:0E:6D:C5:76:5F:10:12:52:85:5F Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Certificate serial: 1344 Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/75522B0A002B11EA855CA925C4F9AE02.roa Signing time: Wed 06 Aug 2025 17:26:37 +0000 ROA not before: Wed 06 Aug 2025 17:26:37 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4637 IP address blocks: 101.167.176.0/22 maxlen: 24 101.167.180.0/22 maxlen: 24 101.167.184.0/22 maxlen: 24 101.167.188.0/22 maxlen: 24 101.167.192.0/21 maxlen: 24 101.167.200.0/21 maxlen: 24 101.167.208.0/22 maxlen: 24 101.167.212.0/22 maxlen: 24 101.167.216.0/21 maxlen: 24 203.36.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4932 (0x1344) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983, serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Validity Not Before: Aug 6 17:26:37 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6893904d-8db7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:74:87:e6:2d:6d:41:19:8c:f1:8e:f5:0a:41: f9:cb:57:c9:97:71:15:0b:79:96:e8:74:8a:be:0c: 69:e0:64:54:47:10:b5:bb:d9:a2:46:9a:46:7c:33: 34:4c:b1:6b:d2:5b:15:83:0f:82:9a:a3:0c:04:8d: 41:7d:4c:07:54:8e:e9:41:32:5e:b7:cf:ed:12:0a: 07:dd:93:d6:56:3d:7e:28:3f:41:5b:b9:29:27:35: f1:b0:57:2b:be:3e:b4:1a:bb:96:6a:12:5b:98:3e: ab:ea:10:37:9c:5d:11:55:fb:53:fc:7d:a1:59:42: cc:93:6e:6c:d6:4b:69:91:e9:59:7e:6e:bd:68:60: f3:59:4f:b5:dd:3d:46:3d:02:cf:8e:f0:4d:b7:f9: cc:e1:8b:d8:9b:d4:f2:d1:9e:e0:ef:74:c8:0a:85: fe:03:b1:04:97:b1:b9:b1:5d:93:c6:81:2e:ac:0e: 32:ce:05:01:72:cc:ec:d6:79:5a:4f:17:2a:53:5c: 75:ec:b6:09:61:48:da:a3:91:48:93:31:7f:f7:b5: 73:c0:35:cf:d9:69:18:1d:74:d2:81:68:99:06:63: bb:1d:9a:4e:c5:c7:7e:2b:86:5e:7c:78:c6:a8:b9: 0e:42:88:2e:1b:3c:1d:2c:59:f3:d9:31:3a:bf:52: f4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:77:5D:EE:9D:3C:88:9D:7F:B8:0E:6D:C5:76:5F:10:12:52:85:5F X509v3 Authority Key Identifier: keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/75522B0A002B11EA855CA925C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.167.176.0-101.167.223.255 203.36.128.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:61:64:0f:4d:5a:ff:0a:6b:21:74:35:13:2e:37:99:a9:4a: eb:4c:43:b0:7d:96:dc:ff:34:7a:55:a8:2b:df:b4:20:cc:e6: 5c:7e:33:af:a8:28:8d:b5:51:67:d3:47:8c:bc:4e:c4:19:0a: da:a8:15:84:fd:4c:e4:24:b5:3e:5b:0f:7d:36:0b:3d:0a:33: bc:bc:c6:ba:5d:0a:43:52:c2:5e:04:ff:34:07:f8:0b:c5:d1: 9e:44:62:76:86:a2:93:41:05:a8:0f:05:dc:de:e8:84:03:72: 21:ac:1c:60:84:2c:1b:0e:fe:d1:4e:04:c6:03:2b:1e:4b:8e: ac:59:eb:17:12:9e:0a:e2:43:07:9d:3e:59:5f:1f:58:c1:40: dd:7d:18:6d:39:70:c7:6a:c5:45:40:b6:a7:e3:61:e9:fe:89: f2:fd:75:d2:d9:a8:96:b2:59:67:19:49:55:84:6c:02:9d:fe: 5c:d9:f8:a5:3c:12:c3:32:d4:50:03:03:4d:c7:90:ce:56:de: 7f:89:cb:01:de:7f:d8:86:3e:89:af:3a:c3:02:7a:34:6c:73: ec:46:c2:52:0d:1a:64:ed:dd:35:5d:61:57:e2:7b:a6:d6:34: 98:9f:72:ec:4a:ee:f3:b0:b0:6a:e0:16:91:69:b6:2c:72:99: a1:5c:03:17 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICE0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDcxNTY1RjJEN0I5MjRDRDcyQjQ1NUI2OEI2NjcxOTQw MTBCQjFBOUYwHhcNMjUwODA2MTcyNjM3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkzOTA0ZC04ZGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXSH5i1tQRmM8Y71CkH5y1fJl3EVC3mW6HSKvgxp4GRURxC1u9miRppGfDM0 TLFr0lsVgw+CmqMMBI1BfUwHVI7pQTJet8/tEgoH3ZPWVj1+KD9BW7kpJzXxsFcr vj60GruWahJbmD6r6hA3nF0RVftT/H2hWULMk25s1ktpkelZfm69aGDzWU+13T1G PQLPjvBNt/nM4YvYm9Ty0Z7g73TICoX+A7EEl7G5sV2TxoEurA4yzgUBcszs1nla TxcqU1x17LYJYUjao5FIkzF/97VzwDXP2WkYHXTSgWiZBmO7HZpOxcd+K4ZefHjG qLkOQoguGzwdLFnz2TE6v1L0PQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFAp3Xe6d PIidf7gObcV2XxASUoVfMB8GA1UdIwQYMBaAFHFWXy17kkzXK0VbaLZnGUAQuxqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8xNjczMEQyMENE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9jVlpmTFh1U1ROY3JSVnRvdG1jWlFCQzdH cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NWWmZMWHVTVE5jclJWdG90bWNaUUJDN0dwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMTY3MzBEMjBDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvNzU1MjJCMEEw MDJCMTFFQTg1NUNBOTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEBGWnsAMEBWWnwAMEAMskgDANBgkqhkiG9w0BAQsFAAOC AQEAbGFkD01a/wprIXQ1Ey43malK60xDsH2W3P80elWoK9+0IMzmXH4zr6gojbVR Z9NHjLxOxBkK2qgVhP1M5CS1PlsPfTYLPQozvLzGul0KQ1LCXgT/NAf4C8XRnkRi doaik0EFqA8F3N7ohANyIawcYIQsGw7+0U4ExgMrHkuOrFnrFxKeCuJDB50+WV8f WMFA3X0YbTlwx2rFRUC2p+Nh6f6J8v110tmolrJZZxlJVYRsAp3+XNn4pTwSwzLU UAMDTceQzlbef4nLAd5/2IY+ia86wwJ6NGxz7EbCUg0aZO3dNV1hV+J7ptY0mJ9y 7Eru87CwauAWkWm2LHKZoVwDFw== -----END CERTIFICATE-----Generated at Sun Aug 10 20:03:34 2025 by rpki-client