$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/20A6C35C37AF11EF844EC638C4F9AE02.roa File: 20A6C35C37AF11EF844EC638C4F9AE02.roa (raw, json) Hash identifier: P4Mm2VNQngkGMc8lCO6eHVGOp7Fy5SVP9GQX/B339mE= Subject key identifier: D5:7D:D8:A2:C6:B8:A5:53:C4:D1:61:77:10:6C:AC:84:EF:17:23:35 Certificate issuer: /CN=A916B95A/serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Certificate serial: CD Authority key identifier: F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/20A6C35C37AF11EF844EC638C4F9AE02.roa Signing time: Thu 31 Jul 2025 06:12:09 +0000 ROA not before: Thu 31 Jul 2025 06:12:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 137570 IP address blocks: 160.25.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95A, serialNumber=F24C443210F741CBE59D014EBA6EE972B5CDDAE7 Validity Not Before: Jul 31 06:12:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688b0939-9dc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e1:19:cc:f7:23:7b:1b:95:c4:40:a0:da:51: b9:6d:59:18:99:24:67:51:a6:a0:a5:4a:2c:23:37: a6:fb:2f:9b:a3:07:ee:f9:59:c4:04:28:4e:d5:e3: c5:05:75:92:bd:75:8a:cb:f4:35:43:a4:0c:5e:45: 05:8f:f6:c3:83:5b:d5:31:63:30:0f:36:77:68:bd: 57:d0:14:0d:2d:fd:50:f4:76:62:09:de:79:08:99: f6:47:69:55:f2:53:59:c7:c6:d2:e7:a8:cc:6d:34: f9:9a:31:94:38:91:5f:5d:19:76:42:74:a7:b0:53: 1b:c0:8c:75:e4:49:35:3b:ef:e8:fc:f7:13:4c:71: 5b:3f:89:82:2e:39:90:d2:18:a9:b2:e3:21:33:ed: 4f:39:06:3e:e9:4d:f0:7b:e3:2a:53:84:a6:12:4d: 3b:9e:c7:6a:00:78:75:ba:d5:24:33:35:88:fa:71: 4b:bd:f4:0e:e7:41:1f:f8:6f:ab:75:22:ac:b8:d0: 56:1c:b8:c5:d2:13:62:13:f9:bb:88:ac:e6:a2:7e: 48:2e:20:63:3b:cc:fe:91:90:fc:f4:6c:fc:a3:1e: 58:7a:b3:e0:d8:60:81:57:5c:fa:d7:82:55:3c:5a: 1e:9a:b1:97:a9:9d:5a:bf:1d:30:cd:aa:fd:df:93: 85:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:7D:D8:A2:C6:B8:A5:53:C4:D1:61:77:10:6C:AC:84:EF:17:23:35 X509v3 Authority Key Identifier: keyid:F2:4C:44:32:10:F7:41:CB:E5:9D:01:4E:BA:6E:E9:72:B5:CD:DA:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/8kxEMhD3QcvlnQFOum7pcrXN2uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8kxEMhD3QcvlnQFOum7pcrXN2uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95A/512C705E37AE11EF8A458E37C4F9AE02/20A6C35C37AF11EF844EC638C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.42.0/24 Signature Algorithm: sha256WithRSAEncryption 89:c2:b3:ab:8c:fe:fb:1f:0f:5c:d0:cc:1e:59:21:92:42:0d: 84:a5:a3:c5:66:aa:a2:27:ad:d3:70:18:a6:1f:77:d1:78:df: 76:c4:79:37:a0:98:5a:cc:a7:e3:eb:cd:89:49:f4:19:a5:9e: 7e:f8:08:5a:dd:da:d0:e6:6e:df:1c:54:e0:52:dd:f5:79:83: 88:92:64:22:3b:8d:80:6e:fe:19:be:24:f1:f4:7c:9a:a2:13: b1:4c:79:b7:34:0d:36:8d:18:cf:bf:27:c8:f2:bc:ff:e4:d9: a6:93:ec:c1:96:cb:b7:cf:ef:61:05:a6:cf:fb:c2:a9:18:da: ef:7d:71:df:a7:87:b4:a4:8e:24:60:93:7d:ac:73:d2:3c:a9: fa:df:f9:ee:03:56:b3:94:b7:40:86:f2:00:09:fb:34:e0:8b: d9:e6:4d:47:a6:75:dc:fe:bd:50:20:46:72:f4:fd:ee:75:98: ec:8f:3a:bf:ae:4a:48:20:aa:11:bf:93:22:61:08:df:7f:44: 7f:c8:53:eb:2b:5c:5f:b5:31:66:3d:40:3b:5b:ac:74:0b:89: 58:29:e1:31:2b:a7:16:1a:0d:22:4f:0a:66:c2:c8:ae:bb:62: 10:da:be:b8:be:bd:07:1e:5c:31:13:6a:1d:d1:18:51:eb:ab: a8:e1:34:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUExMTAvBgNVBAUTKEYyNEM0NDMyMTBGNzQxQ0JFNTlEMDE0RUJBNkVFOTcy QjVDRERBRTcwHhcNMjUwNzMxMDYxMjA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiMDkzOS05ZGM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0OEZzPcjexuVxECg2lG5bVkYmSRnUaagpUosIzem+y+bowfu+VnEBChO1ePF BXWSvXWKy/Q1Q6QMXkUFj/bDg1vVMWMwDzZ3aL1X0BQNLf1Q9HZiCd55CJn2R2lV 8lNZx8bS56jMbTT5mjGUOJFfXRl2QnSnsFMbwIx15Ek1O+/o/PcTTHFbP4mCLjmQ 0hipsuMhM+1POQY+6U3we+MqU4SmEk07nsdqAHh1utUkMzWI+nFLvfQO50Ef+G+r dSKsuNBWHLjF0hNiE/m7iKzmon5ILiBjO8z+kZD89Gz8ox5YerPg2GCBV1z614JV PFoemrGXqZ1avx0wzar935OFoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNV92KLG uKVTxNFhdxBsrITvFyM1MB8GA1UdIwQYMBaAFPJMRDIQ90HL5Z0BTrpu6XK1zdrn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1QS81MTJDNzA1RTM3 QUUxMUVGOEE0NThFMzdDNEY5QUUwMi84a3hFTWhEM1FjdmxuUUZPdW03cGNyWE4y dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzhreEVNaEQzUWN2bG5RRk91bTdwY3JYTjJ1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI5NUEvNTEyQzcwNUUzN0FFMTFFRjhBNDU4RTM3QzRGOUFFMDIvMjBBNkMzNUMz N0FGMTFFRjg0NEVDNjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgGSowDQYJKoZIhvcNAQELBQADggEBAInCs6uM/vsfD1zQ zB5ZIZJCDYSlo8VmqqInrdNwGKYfd9F433bEeTegmFrMp+PrzYlJ9Bmlnn74CFrd 2tDmbt8cVOBS3fV5g4iSZCI7jYBu/hm+JPH0fJqiE7FMebc0DTaNGM+/J8jyvP/k 2aaT7MGWy7fP72EFps/7wqkY2u99cd+nh7SkjiRgk32sc9I8qfrf+e4DVrOUt0CG 8gAJ+zTgi9nmTUemddz+vVAgRnL0/e51mOyPOr+uSkggqhG/kyJhCN9/RH/IU+sr XF+1MWY9QDtbrHQLiVgp4TErpxYaDSJPCmbCyK67YhDavri+vQceXDETah3RGFHr q6jhNDo= -----END CERTIFICATE-----Generated at Wed Aug 13 08:23:31 2025 by rpki-client