$ rpki-client -vvf rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/D2F65B3E2D3C11F089979B7CC4F9AE02.roa File: D2F65B3E2D3C11F089979B7CC4F9AE02.roa (raw, json) Hash identifier: m8ZhY4FkFGGeGM7tNFXFvXEgkHBlhu8L/mZKfvzoZd8= Subject key identifier: 1B:BF:BF:C4:3B:41:FE:7E:81:8A:AF:12:A6:9F:A1:30:89:63:16:D1 Certificate issuer: /CN=A9117CE3/serialNumber=C26F46FD9952B3AF3A7D715DE1BF3A61E25C798A Certificate serial: A6 Authority key identifier: C2:6F:46:FD:99:52:B3:AF:3A:7D:71:5D:E1:BF:3A:61:E2:5C:79:8A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wm9G_ZlSs686fXFd4b86YeJceYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/D2F65B3E2D3C11F089979B7CC4F9AE02.roa Signing time: Sat 10 May 2025 01:19:31 +0000 ROA not before: Sat 10 May 2025 01:19:31 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 401371 IP address blocks: 160.25.20.0/24 maxlen: 24 160.25.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/wm9G_ZlSs686fXFd4b86YeJceYo.crl rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/wm9G_ZlSs686fXFd4b86YeJceYo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wm9G_ZlSs686fXFd4b86YeJceYo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117CE3, serialNumber=C26F46FD9952B3AF3A7D715DE1BF3A61E25C798A Validity Not Before: May 10 01:19:31 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=681ea9a3-c319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f7:5e:ed:1e:4a:3e:04:e2:c5:c0:2d:d9:82: 45:60:9a:70:11:2b:d2:7d:b5:a3:6e:ab:b6:6c:53: af:4b:25:af:10:65:eb:70:e4:71:a0:83:23:02:73: 2f:74:31:04:e1:0e:a4:4a:7b:4d:46:d3:03:ad:6a: 5a:68:35:7a:39:86:2e:51:1a:81:79:96:ea:ac:00: 71:39:03:ad:53:88:b7:83:32:fd:19:f1:4b:ea:96: 6b:25:f4:55:9e:4a:df:20:87:b3:6b:be:41:82:8e: 61:62:a5:85:85:28:f6:bf:7a:b5:51:e7:ff:a4:5b: fb:ba:c7:62:f3:48:f2:41:e1:6f:16:c6:ba:7a:f6: 89:96:bf:c6:24:5d:4f:53:93:39:70:4d:a5:0e:5f: 46:16:46:4c:4f:f3:e5:c4:1d:5f:1d:73:d3:dc:f2: 4a:f8:43:99:4b:24:c4:f1:23:90:a9:39:21:a6:39: 34:68:dd:3c:ec:26:43:9f:fe:f1:bd:ea:ee:6d:f6: 75:d8:00:71:aa:d4:83:96:a8:80:4e:a5:ec:32:08: aa:bb:82:87:92:7f:1a:4d:ad:dd:88:98:ce:c3:50: 8d:37:9e:65:6f:9e:c4:93:c9:94:c5:f6:4f:b3:f1: b1:dc:2f:7d:1d:5b:fd:93:73:d5:d6:ca:90:3b:80: 57:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:BF:BF:C4:3B:41:FE:7E:81:8A:AF:12:A6:9F:A1:30:89:63:16:D1 X509v3 Authority Key Identifier: keyid:C2:6F:46:FD:99:52:B3:AF:3A:7D:71:5D:E1:BF:3A:61:E2:5C:79:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/wm9G_ZlSs686fXFd4b86YeJceYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wm9G_ZlSs686fXFd4b86YeJceYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117CE3/A90CAFC4346511EFB9C0764FC4F9AE02/D2F65B3E2D3C11F089979B7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.25.20.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:76:42:f7:ee:d2:d7:b7:38:61:82:49:03:69:85:f2:6f:ad: e5:d0:3a:a9:14:e1:4f:eb:bc:64:f9:f5:8b:0d:f4:30:52:fa: e1:3d:16:28:06:ae:f9:eb:25:3f:b9:af:09:5e:92:eb:f3:89: e8:ad:b0:28:df:d2:e3:92:6c:53:9e:d8:7f:68:83:7e:a8:70: 3c:da:4f:4f:c4:90:25:c4:b9:cf:55:48:2e:4f:18:05:a7:e1: e9:94:54:98:af:48:a9:ff:bf:38:7b:49:15:23:95:03:2b:db: 99:21:20:a5:fe:ef:f8:fb:da:9c:64:2a:7c:25:0a:cd:56:a7: be:6b:3e:31:10:33:5b:3b:4d:ae:0a:dc:34:07:1c:f0:a8:89: 31:6f:d9:cf:44:4f:82:a3:f0:5b:8d:61:72:93:4b:4a:ce:3f: f4:04:27:b8:9c:23:65:4d:f8:b2:26:ec:8f:83:d1:27:01:c7: fc:96:e4:31:cc:87:a0:e7:b5:a8:a1:76:75:74:54:fb:6f:1b: c8:3b:c0:54:84:28:e4:5b:7a:79:fb:67:54:cc:d3:25:d3:aa: 33:a8:9c:c4:be:6e:89:06:fd:1b:cb:bf:5a:f0:05:a0:a4:dc: fa:c4:e7:be:97:73:30:e9:e4:79:af:7d:df:e9:0e:2f:21:7d: f6:48:9c:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTdDRTMxMTAvBgNVBAUTKEMyNkY0NkZEOTk1MkIzQUYzQTdENzE1REUxQkYzQTYx RTI1Qzc5OEEwHhcNMjUwNTEwMDExOTMxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFlYTlhMy1jMzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Pde7R5KPgTixcAt2YJFYJpwESvSfbWjbqu2bFOvSyWvEGXrcORxoIMjAnMv dDEE4Q6kSntNRtMDrWpaaDV6OYYuURqBeZbqrABxOQOtU4i3gzL9GfFL6pZrJfRV nkrfIIeza75Bgo5hYqWFhSj2v3q1Uef/pFv7usdi80jyQeFvFsa6evaJlr/GJF1P U5M5cE2lDl9GFkZMT/PlxB1fHXPT3PJK+EOZSyTE8SOQqTkhpjk0aN087CZDn/7x verubfZ12ABxqtSDlqiATqXsMgiqu4KHkn8aTa3diJjOw1CNN55lb57Ek8mUxfZP s/Gx3C99HVv9k3PV1sqQO4BXPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBu/v8Q7 Qf5+gYqvEqafoTCJYxbRMB8GA1UdIwQYMBaAFMJvRv2ZUrOvOn1xXeG/OmHiXHmK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExN0NFMy9BOTBDQUZDNDM0 NjUxMUVGQjlDMDc2NEZDNEY5QUUwMi93bTlHX1psU3M2ODZmWEZkNGI4NlllSmNl WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3dtOUdfWmxTczY4NmZYRmQ0Yjg2WWVKY2VZby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTdDRTMvQTkwQ0FGQzQzNDY1MTFFRkI5QzA3NjRGQzRGOUFFMDIvRDJGNjVCM0Uy RDNDMTFGMDg5OTc5QjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgGRQwDQYJKoZIhvcNAQELBQADggEBAG12Qvfu0te3OGGC SQNphfJvreXQOqkU4U/rvGT59YsN9DBS+uE9FigGrvnrJT+5rwlekuvzieitsCjf 0uOSbFOe2H9og36ocDzaT0/EkCXEuc9VSC5PGAWn4emUVJivSKn/vzh7SRUjlQMr 25khIKX+7/j72pxkKnwlCs1Wp75rPjEQM1s7Ta4K3DQHHPCoiTFv2c9ET4Kj8FuN YXKTS0rOP/QEJ7icI2VN+LIm7I+D0ScBx/yW5DHMh6DntaihdnV0VPtvG8g7wFSE KORbenn7Z1TM0yXTqjOonMS+bokG/RvLv1rwBaCk3PrE576XczDp5Hmvfd/pDi8h ffZInKE= -----END CERTIFICATE-----Generated at Mon May 12 02:22:04 2025 by rpki-client