$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/18D6D6AAB84F11EFA5BB3E78C4F9AE02.roa File: 18D6D6AAB84F11EFA5BB3E78C4F9AE02.roa (raw, json) Hash identifier: 6XffBxe23SAqk8mZhlvHVbw6Cbg+lycUE8a5p6bfPGE= Subject key identifier: 0A:43:1E:0C:8E:C4:45:D0:28:39:08:EC:6E:23:E5:2A:CB:B3:93:BC Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 0740 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/18D6D6AAB84F11EFA5BB3E78C4F9AE02.roa Signing time: Thu 24 Jul 2025 22:34:39 +0000 ROA not before: Thu 24 Jul 2025 22:34:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 32787 IP address blocks: 162.128.3.0/24 maxlen: 24 162.128.42.0/24 maxlen: 24 162.128.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 02:35:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1856 (0x740) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Jul 24 22:34:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6882b4ff-cdf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e9:14:d3:00:f8:2f:03:7f:0a:96:0d:c0:db: d3:37:66:23:48:65:82:29:d8:eb:52:98:25:f2:a2: d8:5e:81:8f:bf:c0:c9:36:ca:d2:d7:0d:9e:80:1f: f3:f2:01:90:f4:df:7a:75:31:85:5f:58:3f:ad:2a: 95:10:76:b8:c3:68:75:5e:28:58:14:fe:36:0b:bd: fe:e9:e3:cd:75:26:f4:ab:83:1e:05:6b:54:12:a0: a0:1b:53:14:bf:8c:ff:fd:b1:e8:39:48:7c:d9:df: 39:27:3c:30:43:47:0f:4e:57:25:f0:61:e8:4b:4d: b1:fb:03:6e:4d:e5:38:7e:0a:86:46:c1:30:0a:34: 48:46:6b:91:c9:9f:03:56:3b:00:b6:45:ab:ee:7d: 0f:d1:ef:b9:2b:36:fc:75:bf:ad:25:3a:1d:7c:01: e7:04:c0:da:fd:23:eb:6e:f9:a5:7f:ee:a1:25:db: 32:3e:f8:f8:af:26:d1:41:3e:02:c3:31:c0:d3:18: b1:24:f3:56:4d:c5:92:c4:f3:09:ca:6a:2b:30:75: 92:bb:f3:27:bf:4b:a5:1d:0d:ac:e3:ca:58:f4:6e: f5:03:71:22:e3:c6:22:df:47:3c:50:18:e7:51:cb: 7a:a5:ea:63:a2:2b:54:c2:78:2d:25:fd:f4:b0:8a: 9e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:43:1E:0C:8E:C4:45:D0:28:39:08:EC:6E:23:E5:2A:CB:B3:93:BC X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/18D6D6AAB84F11EFA5BB3E78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 162.128.3.0/24 162.128.42.0/24 162.128.156.0/24 Signature Algorithm: sha256WithRSAEncryption 10:8f:85:fe:ac:a4:4b:8b:73:e1:ef:f2:9a:9e:dd:24:b3:c7: 46:68:23:66:11:0e:05:6b:9a:a9:2d:97:6f:d3:74:3b:50:a0: cd:ac:98:8c:f8:9d:6f:7e:84:82:86:d2:b4:ce:c6:12:53:53: 47:a4:41:0c:07:dd:0f:7a:aa:83:42:1c:0b:e4:0e:0d:ff:f5: 3a:4d:7d:f3:86:06:2a:50:80:ad:ca:af:e8:fb:39:c7:6a:da: e2:36:99:d8:3c:17:fc:23:23:d2:ef:ea:d9:cc:86:9f:47:a2: d4:01:a6:b2:d6:e9:c3:db:d3:44:5e:29:75:76:50:4f:aa:40: a7:86:a9:34:f5:af:bc:1c:4a:04:6f:ad:c1:56:06:e8:26:36: 71:30:96:89:ff:79:10:32:ee:ad:3e:0b:d6:67:b5:e2:7c:a6: e9:60:8b:bd:db:80:23:8f:09:d4:95:3b:b6:25:d6:93:d7:ae: 1e:19:19:93:47:b3:b4:61:13:ce:16:f1:33:be:e3:4c:ee:b0: ef:ff:9e:33:5a:d1:06:51:ae:63:e6:52:21:94:fa:b4:54:37: bd:7c:4f:02:40:73:17:9d:49:9b:72:a6:42:df:df:6e:78:78: 9a:9e:cc:70:bb:e5:1c:74:1a:11:d1:7f:63:89:bc:d2:6b:ed: 52:ec:57:9a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUwNzI0MjIzNDM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyYjRmZi1jZGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvOkU0wD4LwN/CpYNwNvTN2YjSGWCKdjrUpgl8qLYXoGPv8DJNsrS1w2egB/z 8gGQ9N96dTGFX1g/rSqVEHa4w2h1XihYFP42C73+6ePNdSb0q4MeBWtUEqCgG1MU v4z//bHoOUh82d85JzwwQ0cPTlcl8GHoS02x+wNuTeU4fgqGRsEwCjRIRmuRyZ8D VjsAtkWr7n0P0e+5Kzb8db+tJTodfAHnBMDa/SPrbvmlf+6hJdsyPvj4rybRQT4C wzHA0xixJPNWTcWSxPMJymorMHWSu/Mnv0ulHQ2s48pY9G71A3Ei48Yi30c8UBjn Uct6pepjoitUwngtJf30sIqe0wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFApDHgyO xEXQKDkI7G4j5SrLs5O8MB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvMThENkQ2QUFC ODRGMTFFRkE1QkIzRTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBACigAMDBACigCoDBACigJwwDQYJKoZIhvcNAQELBQADggEB ABCPhf6spEuLc+Hv8pqe3SSzx0ZoI2YRDgVrmqktl2/TdDtQoM2smIz4nW9+hIKG 0rTOxhJTU0ekQQwH3Q96qoNCHAvkDg3/9TpNffOGBipQgK3Kr+j7Ocdq2uI2mdg8 F/wjI9Lv6tnMhp9HotQBprLW6cPb00ReKXV2UE+qQKeGqTT1r7wcSgRvrcFWBugm NnEwlon/eRAy7q0+C9ZnteJ8pulgi73bgCOPCdSVO7Yl1pPXrh4ZGZNHs7RhE84W 8TO+40zusO//njNa0QZRrmPmUiGU+rRUN718TwJAcxedSZtypkLf3254eJqezHC7 5Rx0GhHRf2OJvNJr7VLsV5o= -----END CERTIFICATE-----Generated at Tue Aug 12 14:44:40 2025 by rpki-client