$ rpki-client -vvf rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/A63A2DFA2F5411EF9A12027FC4F9AE02.roa File: A63A2DFA2F5411EF9A12027FC4F9AE02.roa (raw, json) Hash identifier: wkNRLxYMTSQ9zGepk4yzqzlqbEMp0dmX1JQWykvEvPA= Subject key identifier: AB:C0:A3:7A:7E:39:70:57:89:D7:FD:F3:FD:9C:1A:7C:1F:6F:ED:3C Certificate issuer: /CN=A9186D9F/serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Certificate serial: CC Authority key identifier: 43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/A63A2DFA2F5411EF9A12027FC4F9AE02.roa Signing time: Fri 11 Jul 2025 06:12:03 +0000 ROA not before: Fri 11 Jul 2025 06:12:03 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152893 IP address blocks: 160.22.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186D9F, serialNumber=43F7423F93D6BA09694059FB23DEF8528D26499D Validity Not Before: Jul 11 06:12:03 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6870ab32-db14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2d:9a:16:24:7a:b9:5d:d5:8b:a1:bb:a1:55: b6:74:93:47:41:7d:d1:49:b1:e2:d4:59:45:54:4c: d0:37:7e:ee:a5:da:85:8f:b1:81:12:79:06:e5:8c: 37:0f:fa:ac:11:67:02:1a:f3:47:b6:c3:5e:76:7e: 44:fc:07:7e:87:0a:2f:88:8c:e0:ed:a8:ef:fb:ea: 9b:f1:80:9d:14:93:96:53:f2:dd:1e:83:dd:ed:ce: 7b:50:d6:f7:1d:78:04:82:18:6b:af:0a:ca:51:89: 12:12:0a:c2:8f:ba:9f:34:76:0d:c6:a8:10:8a:84: 04:31:3f:e3:ca:c5:58:57:2a:2a:a2:23:cb:dc:43: 16:48:bf:ee:e5:5e:75:50:e2:99:96:f7:07:15:b1: 23:9b:60:f7:f7:f7:65:d2:2b:09:4b:41:cf:8d:6a: d3:85:98:f5:d7:e0:d6:c7:a8:77:2f:53:4e:b9:83: e1:5b:df:88:40:31:4e:1c:3f:8c:2f:23:fe:97:20: da:8e:46:16:a1:d4:0d:4a:5b:10:36:7d:d8:0a:12: 6f:86:3d:ba:ce:e8:81:a9:eb:21:9f:c8:73:34:3c: cc:1b:e2:aa:0e:49:72:41:8d:5f:3c:e6:0f:16:21: 40:e8:e0:eb:5b:55:25:7d:23:c2:65:b2:46:d9:39: f4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:C0:A3:7A:7E:39:70:57:89:D7:FD:F3:FD:9C:1A:7C:1F:6F:ED:3C X509v3 Authority Key Identifier: keyid:43:F7:42:3F:93:D6:BA:09:69:40:59:FB:23:DE:F8:52:8D:26:49:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/Q_dCP5PWuglpQFn7I974Uo0mSZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Q_dCP5PWuglpQFn7I974Uo0mSZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186D9F/A936E4402E0411EF86F29D79C4F9AE02/A63A2DFA2F5411EF9A12027FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.42.0/24 Signature Algorithm: sha256WithRSAEncryption 84:e3:bd:82:cd:cb:2a:b0:6a:3c:26:3d:7a:cf:0b:25:e9:e3: 54:47:74:3b:e2:a8:a1:9b:09:91:22:80:79:10:89:b5:2e:b4: 61:0c:9e:5a:6f:df:36:69:4d:b8:d1:bc:bd:d3:ac:b0:15:61: be:81:a1:4f:9c:d1:49:56:60:6f:14:04:4a:93:4e:0f:ad:47: 26:cb:0a:13:05:ec:c4:34:35:8b:ff:fe:e1:82:bb:4a:93:c0: 7a:34:1f:48:6c:f3:03:b9:21:5b:b0:ef:49:e1:2c:65:11:f6: 38:22:00:3d:f9:0c:4f:48:46:8c:b0:16:d3:62:4b:6c:c1:24: 88:63:c1:dc:82:b4:30:ab:20:dd:73:27:b5:75:89:49:f2:2d: 3f:a0:87:24:13:a8:3a:c6:cc:98:c6:5b:91:42:73:69:71:51: f7:df:7f:f0:84:06:1d:3f:18:2b:67:f5:fd:ab:ea:99:81:d5: 3c:16:e3:f8:48:3a:cb:51:be:a7:77:cb:13:69:22:9c:90:1a: 9d:5c:53:dd:73:33:2f:e6:22:6e:3b:b6:c7:8b:3a:fe:fa:50: 8a:a2:ab:7d:31:39:08:c6:ce:9e:f2:66:b4:a3:fb:e1:61:dd: 45:b9:12:95:ab:bd:49:44:c9:c1:d4:14:8c:71:d2:b8:6d:55: 53:23:af:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZEOUYxMTAvBgNVBAUTKDQzRjc0MjNGOTNENkJBMDk2OTQwNTlGQjIzREVGODUy OEQyNjQ5OUQwHhcNMjUwNzExMDYxMjAzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwYWIzMi1kYjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAty2aFiR6uV3Vi6G7oVW2dJNHQX3RSbHi1FlFVEzQN37updqFj7GBEnkG5Yw3 D/qsEWcCGvNHtsNedn5E/Ad+hwoviIzg7ajv++qb8YCdFJOWU/LdHoPd7c57UNb3 HXgEghhrrwrKUYkSEgrCj7qfNHYNxqgQioQEMT/jysVYVyoqoiPL3EMWSL/u5V51 UOKZlvcHFbEjm2D39/dl0isJS0HPjWrThZj11+DWx6h3L1NOuYPhW9+IQDFOHD+M LyP+lyDajkYWodQNSlsQNn3YChJvhj26zuiBqeshn8hzNDzMG+KqDklyQY1fPOYP FiFA6ODrW1UlfSPCZbJG2Tn02QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKvAo3p+ OXBXidf98/2cGnwfb+08MB8GA1UdIwQYMBaAFEP3Qj+T1roJaUBZ+yPe+FKNJkmd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkQ5Ri9BOTM2RTQ0MDJF MDQxMUVGODZGMjlENzlDNEY5QUUwMi9RX2RDUDVQV3VnbHBRRm43STk3NFVvMG1T WjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FfZENQNVBXdWdscFFGbjdJOTc0VW8wbVNaMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZEOUYvQTkzNkU0NDAyRTA0MTFFRjg2RjI5RDc5QzRGOUFFMDIvQTYzQTJERkEy RjU0MTFFRjlBMTIwMjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFiowDQYJKoZIhvcNAQELBQADggEBAITjvYLNyyqwajwm PXrPCyXp41RHdDviqKGbCZEigHkQibUutGEMnlpv3zZpTbjRvL3TrLAVYb6BoU+c 0UlWYG8UBEqTTg+tRybLChMF7MQ0NYv//uGCu0qTwHo0H0hs8wO5IVuw70nhLGUR 9jgiAD35DE9IRoywFtNiS2zBJIhjwdyCtDCrIN1zJ7V1iUnyLT+ghyQTqDrGzJjG W5FCc2lxUffff/CEBh0/GCtn9f2r6pmB1TwW4/hIOstRvqd3yxNpIpyQGp1cU91z My/mIm47tseLOv76UIqiq30xOQjGzp7yZrSj++Fh3UW5EpWrvUlEycHUFIxx0rht VVMjr7U= -----END CERTIFICATE-----Generated at Mon Aug 11 09:54:14 2025 by rpki-client