$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/038610FC2D1E11EFA25C6D16C4F9AE02.roa File: 038610FC2D1E11EFA25C6D16C4F9AE02.roa (raw, json) Hash identifier: fWZETNQO/nq4+BYBCH9MSAL8N1aF88n2/dhae6ZuhiQ= Subject key identifier: 42:3D:68:BD:EB:BC:3B:BA:0F:65:65:EA:F1:BA:A4:AD:46:B8:3F:76 Certificate issuer: /CN=A91CE6EC/serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Certificate serial: DD Authority key identifier: 30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/038610FC2D1E11EFA25C6D16C4F9AE02.roa Signing time: Sat 02 Aug 2025 15:54:24 +0000 ROA not before: Sat 02 Aug 2025 15:54:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38887 IP address blocks: 160.22.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE6EC, serialNumber=30670F61B7E50E0B0B88E7251DE8784C03C9E462 Validity Not Before: Aug 2 15:54:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688e34b0-5928 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:81:1a:62:b6:36:d0:fa:36:fe:45:63:98:6d: 5e:53:c9:88:ef:8c:6a:c4:b5:4d:67:f1:2c:eb:28: 0e:2a:8e:7f:8f:3b:98:80:39:05:6c:76:a0:9d:1b: 7c:c1:c1:54:7b:d0:47:a9:7d:d7:07:b8:b8:d0:22: ea:b5:45:38:e7:1d:41:bf:a9:16:a9:71:22:93:85: 25:89:f0:21:df:d7:14:31:be:07:0e:48:6c:c9:db: f2:fc:aa:69:09:f4:30:42:9a:a0:1c:c2:01:d7:bb: 2d:47:a0:85:98:e1:57:f5:6a:6f:17:80:97:a0:a6: 7f:36:5f:c6:bf:a1:ca:80:6e:c8:94:88:1a:cb:40: c7:1d:34:31:75:33:54:23:98:40:6f:c4:14:f4:ec: 5c:aa:df:5b:6e:6a:a7:28:cb:62:63:d7:dd:3d:dd: bb:d9:64:cf:49:cf:61:c4:df:35:46:96:64:ed:0a: 1d:12:1b:b5:29:02:b7:b2:e6:d3:b4:d7:7a:07:1a: a0:00:8f:e0:0c:b5:6c:60:e4:af:9a:e7:fb:d0:16: a8:8e:5f:50:11:29:5b:b8:02:52:f5:28:bb:30:d4: 88:ef:b8:a5:58:e7:17:4c:a0:59:21:c8:fe:dc:19: 3e:9d:3e:87:e8:bd:cd:29:54:4e:dd:6d:98:e3:8b: 16:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:3D:68:BD:EB:BC:3B:BA:0F:65:65:EA:F1:BA:A4:AD:46:B8:3F:76 X509v3 Authority Key Identifier: keyid:30:67:0F:61:B7:E5:0E:0B:0B:88:E7:25:1D:E8:78:4C:03:C9:E4:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/MGcPYbflDgsLiOclHeh4TAPJ5GI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MGcPYbflDgsLiOclHeh4TAPJ5GI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE6EC/082A89F02A2911EF8895F11CC4F9AE02/038610FC2D1E11EFA25C6D16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.154.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:98:c8:8d:60:20:d2:8e:03:34:f1:49:ad:4a:0c:b2:3d:16: 36:2c:04:30:17:4c:ca:8b:61:d0:5f:b8:8e:50:73:f5:56:d2: f7:34:4f:58:44:a7:25:2c:20:95:26:51:ca:be:18:07:af:f3: 51:31:dd:7f:81:18:c8:3f:94:96:94:22:38:b2:ba:1e:43:da: b4:7c:63:40:75:c8:7d:83:fd:0c:50:0c:ee:d5:cd:01:8e:04: f2:ea:5b:5e:1c:de:fd:41:5f:86:b1:32:9b:e6:33:3f:25:73: 15:33:74:b1:a6:79:d5:48:4a:5d:41:50:35:bd:e0:f6:71:3a: 8a:47:f0:55:4e:f3:a4:81:da:7b:be:93:b7:7c:b8:bd:cd:a1: 96:4f:66:7c:b2:f4:a6:af:cd:76:17:b6:5f:a0:30:2a:3f:be: 1b:59:eb:bd:c7:2a:92:d7:bb:4b:17:9e:41:73:43:42:06:ff: 0a:7b:79:f3:18:3a:20:b8:d8:fc:78:83:02:73:54:6f:a0:76: ae:56:e2:46:99:ab:5f:95:ce:3e:04:81:bc:d3:2a:2f:06:79: 65:b4:01:8c:9b:f7:af:45:73:7b:20:df:55:05:73:52:fd:23: 24:e0:ba:6f:4b:23:3c:29:90:5f:31:c3:50:b7:05:33:8e:6e: e1:7f:c7:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2RUMxMTAvBgNVBAUTKDMwNjcwRjYxQjdFNTBFMEIwQjg4RTcyNTFERTg3ODRD MDNDOUU0NjIwHhcNMjUwODAyMTU1NDI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlMzRiMC01OTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtIEaYrY20Po2/kVjmG1eU8mI74xqxLVNZ/Es6ygOKo5/jzuYgDkFbHagnRt8 wcFUe9BHqX3XB7i40CLqtUU45x1Bv6kWqXEik4UlifAh39cUMb4HDkhsydvy/Kpp CfQwQpqgHMIB17stR6CFmOFX9WpvF4CXoKZ/Nl/Gv6HKgG7IlIgay0DHHTQxdTNU I5hAb8QU9Oxcqt9bbmqnKMtiY9fdPd272WTPSc9hxN81RpZk7QodEhu1KQK3subT tNd6BxqgAI/gDLVsYOSvmuf70Baojl9QESlbuAJS9Si7MNSI77ilWOcXTKBZIcj+ 3Bk+nT6H6L3NKVRO3W2Y44sWlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEI9aL3r vDu6D2Vl6vG6pK1GuD92MB8GA1UdIwQYMBaAFDBnD2G35Q4LC4jnJR3oeEwDyeRi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTZFQy8wODJBODlGMDJB MjkxMUVGODg5NUYxMUNDNEY5QUUwMi9NR2NQWWJmbERnc0xpT2NsSGVoNFRBUEo1 R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01HY1BZYmZsRGdzTGlPY2xIZWg0VEFQSjVHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U2RUMvMDgyQTg5RjAyQTI5MTFFRjg4OTVGMTFDQzRGOUFFMDIvMDM4NjEwRkMy RDFFMTFFRkEyNUM2RDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFpowDQYJKoZIhvcNAQELBQADggEBAF6YyI1gINKOAzTx Sa1KDLI9FjYsBDAXTMqLYdBfuI5Qc/VW0vc0T1hEpyUsIJUmUcq+GAev81Ex3X+B GMg/lJaUIjiyuh5D2rR8Y0B1yH2D/QxQDO7VzQGOBPLqW14c3v1BX4axMpvmMz8l cxUzdLGmedVISl1BUDW94PZxOopH8FVO86SB2nu+k7d8uL3NoZZPZnyy9KavzXYX tl+gMCo/vhtZ673HKpLXu0sXnkFzQ0IG/wp7efMYOiC42Px4gwJzVG+gdq5W4kaZ q1+Vzj4EgbzTKi8GeWW0AYyb969Fc3sg31UFc1L9IyTgum9LIzwpkF8xw1C3BTOO buF/xwI= -----END CERTIFICATE-----Generated at Sun Aug 10 16:00:38 2025 by rpki-client