$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/1D5C0B90475D11EFBD75C15EC4F9AE02.roa File: 1D5C0B90475D11EFBD75C15EC4F9AE02.roa (raw, json) Hash identifier: vjvAzTCHT28iPRQdCoJZnbSPvYtHv4wDBYZ54035Ceo= Subject key identifier: 5D:07:50:43:A5:36:AF:0C:6F:39:96:8B:AB:44:72:BB:52:55:4F:8E Certificate issuer: /CN=A919A909/serialNumber=D7210B6E99424A9E82A4D45002736F6483AA279A Certificate serial: DB Authority key identifier: D7:21:0B:6E:99:42:4A:9E:82:A4:D4:50:02:73:6F:64:83:AA:27:9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1yELbplCSp6CpNRQAnNvZIOqJ5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/1D5C0B90475D11EFBD75C15EC4F9AE02.roa Signing time: Sun 27 Jul 2025 06:12:11 +0000 ROA not before: Sun 27 Jul 2025 06:12:11 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 201217 IP address blocks: 160.22.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/1yELbplCSp6CpNRQAnNvZIOqJ5o.crl rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/1yELbplCSp6CpNRQAnNvZIOqJ5o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1yELbplCSp6CpNRQAnNvZIOqJ5o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:10:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=D7210B6E99424A9E82A4D45002736F6483AA279A Validity Not Before: Jul 27 06:12:11 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6885c33b-0b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:6c:cc:96:e9:d7:19:5b:1c:32:3b:74:7c:0c: 02:5e:d2:93:09:0a:b0:51:c0:af:78:64:85:bc:15: 76:9e:f0:b0:0d:ff:88:09:5c:ef:5a:41:63:b2:5a: d7:e1:bc:aa:ba:e8:a3:e0:17:1c:1e:9a:0d:00:a3: 33:b6:10:ff:b7:71:68:15:44:bb:76:ad:2b:15:89: eb:19:d7:f8:ae:78:c0:19:9b:36:e4:e3:02:e6:2e: 5f:a7:10:9a:43:ec:c6:9e:7e:58:95:a5:0c:40:e2: d0:4d:8b:16:9c:21:8d:96:78:cd:60:11:b4:e0:bc: 0f:4b:97:57:26:57:95:2c:3c:a0:ab:dc:52:60:b8: 3f:c2:26:7e:24:aa:4a:c6:f5:f8:26:eb:4c:c7:e3: a5:83:d2:cf:1b:bc:1e:c9:94:6d:f8:d9:de:45:52: be:19:45:69:c6:0b:ac:a6:b6:12:be:6a:32:ee:3f: 37:2d:cb:2f:e1:b1:4f:00:5c:6b:08:5c:4f:0e:3f: d2:dc:b7:5f:9d:3b:fe:56:78:a9:42:cb:bc:ae:af: a9:26:e0:d3:af:d4:a2:2b:4b:a4:c8:c0:d7:24:d4: a1:9d:ba:fe:47:d3:22:45:d2:9f:29:76:95:bf:aa: fc:ca:21:69:ad:1c:a5:d0:85:38:a1:64:86:93:3f: 34:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:07:50:43:A5:36:AF:0C:6F:39:96:8B:AB:44:72:BB:52:55:4F:8E X509v3 Authority Key Identifier: keyid:D7:21:0B:6E:99:42:4A:9E:82:A4:D4:50:02:73:6F:64:83:AA:27:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/1yELbplCSp6CpNRQAnNvZIOqJ5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1yELbplCSp6CpNRQAnNvZIOqJ5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/1D5C0B90475D11EFBD75C15EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.157.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:97:38:3c:bf:a1:3f:49:e3:3f:f1:93:f5:f4:43:80:b8:60: 30:00:6c:29:49:50:95:c6:67:18:61:5e:2e:1c:46:b1:ea:a6: 26:7b:62:70:6a:f7:c6:a4:6e:97:fa:9e:16:7b:ff:70:1b:fd: f0:b1:81:a3:97:94:20:0f:4c:ca:1d:a2:8d:34:2a:ae:d4:53: 43:80:72:a4:5a:90:53:59:c2:13:44:02:24:35:2c:81:1c:c6: 1a:9d:16:2f:e3:36:eb:11:62:8d:68:05:06:62:6e:30:2a:da: 4a:b6:2e:be:2d:84:b8:2f:1a:ec:38:41:db:4b:6a:fc:67:03: 64:44:58:2c:34:1b:d3:ed:fb:80:3a:98:f2:d6:55:99:de:2f: aa:70:fa:b3:8a:1a:e8:9a:0c:a9:ba:62:60:f9:3e:75:ad:78: 29:75:17:cd:fe:1d:a8:8b:03:d4:49:d3:b5:7a:ac:2a:f8:65: 7a:a4:3b:9b:f2:a8:d7:69:8c:0b:56:76:f0:e0:77:d1:f4:ec: 66:e6:3e:c0:5a:5b:9e:57:8d:b2:28:ef:85:3a:65:b9:65:08: 84:be:48:53:3f:28:48:13:2a:9f:24:95:a7:9c:77:60:d0:77: c6:2a:5f:5e:31:d7:1b:eb:45:03:76:6f:62:27:76:4d:89:87: 79:a2:6a:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKEQ3MjEwQjZFOTk0MjRBOUU4MkE0RDQ1MDAyNzM2RjY0 ODNBQTI3OUEwHhcNMjUwNzI3MDYxMjExWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1YzMzYi0wYjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmzMlunXGVscMjt0fAwCXtKTCQqwUcCveGSFvBV2nvCwDf+ICVzvWkFjslrX 4byquuij4BccHpoNAKMzthD/t3FoFUS7dq0rFYnrGdf4rnjAGZs25OMC5i5fpxCa Q+zGnn5YlaUMQOLQTYsWnCGNlnjNYBG04LwPS5dXJleVLDygq9xSYLg/wiZ+JKpK xvX4JutMx+Olg9LPG7weyZRt+NneRVK+GUVpxgusprYSvmoy7j83Lcsv4bFPAFxr CFxPDj/S3LdfnTv+VnipQsu8rq+pJuDTr9SiK0ukyMDXJNShnbr+R9MiRdKfKXaV v6r8yiFprRyl0IU4oWSGkz80OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF0HUEOl Nq8MbzmWi6tEcrtSVU+OMB8GA1UdIwQYMBaAFNchC26ZQkqegqTUUAJzb2SDqiea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8xNjZFNzQ3QzJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi8xeUVMYnBsQ1NwNkNwTlJRQW5OdlpJT3FK NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzF5RUxicGxDU3A2Q3BOUlFBbk52WklPcUo1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE5MDkvMTY2RTc0N0MyQTMzMTFFRkJFOUFBODU5QzRGOUFFMDIvMUQ1QzBCOTA0 NzVEMTFFRkJENzVDMTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFp0wDQYJKoZIhvcNAQELBQADggEBAC+XODy/oT9J4z/x k/X0Q4C4YDAAbClJUJXGZxhhXi4cRrHqpiZ7YnBq98akbpf6nhZ7/3Ab/fCxgaOX lCAPTModoo00Kq7UU0OAcqRakFNZwhNEAiQ1LIEcxhqdFi/jNusRYo1oBQZibjAq 2kq2Lr4thLgvGuw4QdtLavxnA2REWCw0G9Pt+4A6mPLWVZneL6pw+rOKGuiaDKm6 YmD5PnWteCl1F83+HaiLA9RJ07V6rCr4ZXqkO5vyqNdpjAtWdvDgd9H07GbmPsBa W55XjbIo74U6ZbllCIS+SFM/KEgTKp8klaecd2DQd8YqX14x1xvrRQN2b2Indk2J h3miaq8= -----END CERTIFICATE-----Generated at Wed Nov 5 15:39:41 2025 by rpki-client