$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/2F5FEDD02E4811EFA2C93552C4F9AE02.roa File: 2F5FEDD02E4811EFA2C93552C4F9AE02.roa (raw, json) Hash identifier: nAAKqeX52YyyXJwlWmzPJZzOWJlGdlFjHrIUMleQhJo= Subject key identifier: 89:A5:CF:37:0D:0B:55:1C:E2:DD:AD:97:2A:1D:11:88:2D:FC:DC:A7 Certificate issuer: /CN=A919A909/serialNumber=D7210B6E99424A9E82A4D45002736F6483AA279A Certificate serial: DC Authority key identifier: D7:21:0B:6E:99:42:4A:9E:82:A4:D4:50:02:73:6F:64:83:AA:27:9A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1yELbplCSp6CpNRQAnNvZIOqJ5o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/2F5FEDD02E4811EFA2C93552C4F9AE02.roa Signing time: Sun 27 Jul 2025 06:12:12 +0000 ROA not before: Sun 27 Jul 2025 06:12:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 32595 IP address blocks: 160.22.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/1yELbplCSp6CpNRQAnNvZIOqJ5o.crl rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/1yELbplCSp6CpNRQAnNvZIOqJ5o.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1yELbplCSp6CpNRQAnNvZIOqJ5o.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=D7210B6E99424A9E82A4D45002736F6483AA279A Validity Not Before: Jul 27 06:12:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6885c33c-b34a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:d8:81:56:bd:a8:59:2f:73:32:0a:73:5f:c8: e4:dc:50:73:9f:0a:05:b9:ea:33:0f:48:b4:08:a0: f1:fb:7e:ee:76:5f:0c:f3:16:49:80:0b:de:ff:f1: cc:ba:35:ab:c0:d2:b5:3b:22:17:ec:10:bc:9b:00: 37:71:61:06:bf:a5:17:c4:2e:12:8d:f1:a8:1c:36: 19:c0:f0:bf:10:57:1a:3d:bc:0c:73:c3:48:c2:ad: 7a:52:d6:df:27:70:42:c9:d7:98:9d:62:71:d6:b7: 6e:ec:52:9f:a0:ce:ed:2c:56:76:71:b2:ff:b7:42: 7e:5f:05:c0:32:2b:6d:fb:b6:ad:7b:6b:7f:c0:ad: 86:4a:ef:e0:3e:5a:51:8a:82:ff:9d:f7:dd:51:f3: 13:78:07:bd:6e:a9:2b:bd:10:1e:2a:4f:b4:ea:4f: d5:c8:77:8f:f9:0a:0f:91:cd:14:a2:fb:40:d2:7f: b2:b5:82:8d:bb:1e:e9:9e:52:ce:2b:88:ee:10:33: 09:68:c2:15:05:c5:60:b6:f2:ad:f9:7d:d7:9c:ac: e5:ab:0f:97:bf:d7:19:75:66:40:7c:74:01:74:ea: 49:bf:56:50:e7:81:56:67:3a:41:de:e5:90:28:48: f7:92:25:10:ad:ee:4b:9a:b1:c5:d0:c6:c4:9c:fd: bb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:A5:CF:37:0D:0B:55:1C:E2:DD:AD:97:2A:1D:11:88:2D:FC:DC:A7 X509v3 Authority Key Identifier: keyid:D7:21:0B:6E:99:42:4A:9E:82:A4:D4:50:02:73:6F:64:83:AA:27:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/1yELbplCSp6CpNRQAnNvZIOqJ5o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1yELbplCSp6CpNRQAnNvZIOqJ5o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/166E747C2A3311EFBE9AA859C4F9AE02/2F5FEDD02E4811EFA2C93552C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.156.0/23 Signature Algorithm: sha256WithRSAEncryption 12:5e:33:63:47:39:c6:f3:24:34:0f:75:00:ce:c3:a2:4f:ec: 6f:c0:66:1b:e1:3a:5b:ad:2b:a9:fc:2c:3e:7b:eb:35:50:6b: f7:dd:c8:eb:29:15:ec:d9:b6:59:b9:47:f5:2e:c7:b9:ff:bf: 51:fb:4d:33:66:da:10:a8:ff:a9:8f:7f:eb:fa:aa:fc:d8:56: d6:6b:eb:46:20:9f:9c:4b:b5:02:46:71:a1:d4:91:c2:ad:33: 4f:83:bf:99:3b:c7:27:98:a6:df:84:bc:52:fc:ff:1b:d5:a7: 91:96:8d:4a:a6:67:92:5f:ef:e7:a9:51:4c:0e:9d:d2:1b:2c: db:25:fc:97:35:b6:5c:48:54:b5:ca:cf:ae:24:52:09:20:47: 53:e5:5b:5f:5a:2a:8f:ee:fe:94:7e:11:43:d4:8e:8d:14:c5: b4:bb:2e:4a:15:99:0a:5d:f7:47:dc:55:6e:e5:38:18:bd:32: c0:43:11:c4:d0:9f:4a:9b:5d:19:b1:15:a3:cf:88:f9:f6:5a: 3c:b9:51:5f:ca:84:13:a6:d1:58:3f:a7:49:0f:b4:7f:26:cd: 5c:e3:55:69:c9:75:09:30:4e:08:33:03:b5:e2:cf:74:c4:ef: ce:d6:8d:f1:7e:67:3b:21:5c:37:a2:2e:e0:22:e1:78:57:ce: 5a:48:4d:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKEQ3MjEwQjZFOTk0MjRBOUU4MkE0RDQ1MDAyNzM2RjY0 ODNBQTI3OUEwHhcNMjUwNzI3MDYxMjEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1YzMzYy1iMzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnNiBVr2oWS9zMgpzX8jk3FBznwoFueozD0i0CKDx+37udl8M8xZJgAve//HM ujWrwNK1OyIX7BC8mwA3cWEGv6UXxC4SjfGoHDYZwPC/EFcaPbwMc8NIwq16Utbf J3BCydeYnWJx1rdu7FKfoM7tLFZ2cbL/t0J+XwXAMitt+7ate2t/wK2GSu/gPlpR ioL/nffdUfMTeAe9bqkrvRAeKk+06k/VyHeP+QoPkc0UovtA0n+ytYKNux7pnlLO K4juEDMJaMIVBcVgtvKt+X3XnKzlqw+Xv9cZdWZAfHQBdOpJv1ZQ54FWZzpB3uWQ KEj3kiUQre5LmrHF0MbEnP27IQIDAQABo4IClTCCApEwHQYDVR0OBBYEFImlzzcN C1Uc4t2tlyodEYgt/NynMB8GA1UdIwQYMBaAFNchC26ZQkqegqTUUAJzb2SDqiea MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8xNjZFNzQ3QzJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi8xeUVMYnBsQ1NwNkNwTlJRQW5OdlpJT3FK NW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzF5RUxicGxDU3A2Q3BOUlFBbk52WklPcUo1by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE5MDkvMTY2RTc0N0MyQTMzMTFFRkJFOUFBODU5QzRGOUFFMDIvMkY1RkVERDAy RTQ4MTFFRkEyQzkzNTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgFpwwDQYJKoZIhvcNAQELBQADggEBABJeM2NHOcbzJDQP dQDOw6JP7G/AZhvhOlutK6n8LD576zVQa/fdyOspFezZtlm5R/Uux7n/v1H7TTNm 2hCo/6mPf+v6qvzYVtZr60Ygn5xLtQJGcaHUkcKtM0+Dv5k7xyeYpt+EvFL8/xvV p5GWjUqmZ5Jf7+epUUwOndIbLNsl/Jc1tlxIVLXKz64kUgkgR1PlW19aKo/u/pR+ EUPUjo0UxbS7LkoVmQpd90fcVW7lOBi9MsBDEcTQn0qbXRmxFaPPiPn2Wjy5UV/K hBOm0Vg/p0kPtH8mzVzjVWnJdQkwTggzA7Xiz3TE787WjfF+ZzshXDeiLuAi4XhX zlpITcA= -----END CERTIFICATE-----Generated at Sun Aug 10 20:03:08 2025 by rpki-client