$ rpki-client -vvf rpki.apnic.net/member_repository/A9127B24/15475D868F7611EF84EC7715C4F9AE02/31A0A22E803B11F0BAF8A92DC4F9AE02.roa File: 31A0A22E803B11F0BAF8A92DC4F9AE02.roa (raw, json) Hash identifier: youxfif6Ya/4HvPumCeWDIEQfQ6qCWl7Bb5HqQI6mMM= Subject key identifier: 8F:40:71:61:DA:64:31:91:44:89:FD:FB:94:B9:AF:E2:1D:94:D1:8A Certificate issuer: /CN=A9127B24/serialNumber=4F18273D88556E3A1D6ED8178B809528D990A691 Certificate serial: 9E Authority key identifier: 4F:18:27:3D:88:55:6E:3A:1D:6E:D8:17:8B:80:95:28:D9:90:A6:91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxgnPYhVbjodbtgXi4CVKNmQppE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127B24/15475D868F7611EF84EC7715C4F9AE02/31A0A22E803B11F0BAF8A92DC4F9AE02.roa Signing time: Sat 23 Aug 2025 16:06:57 +0000 ROA not before: Sat 23 Aug 2025 16:06:57 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153336 IP address blocks: 160.187.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127B24/15475D868F7611EF84EC7715C4F9AE02/TxgnPYhVbjodbtgXi4CVKNmQppE.crl rsync://rpki.apnic.net/member_repository/A9127B24/15475D868F7611EF84EC7715C4F9AE02/TxgnPYhVbjodbtgXi4CVKNmQppE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxgnPYhVbjodbtgXi4CVKNmQppE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 16:07:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127B24, serialNumber=4F18273D88556E3A1D6ED8178B809528D990A691 Validity Not Before: Aug 23 16:06:57 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68a9e721-70e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:6c:f0:cb:94:2b:64:55:bc:d6:e8:f6:f3:04: 86:60:3a:be:d4:ed:66:07:50:d8:30:c2:9e:b7:ad: 23:0a:d7:6d:9f:15:8c:d6:7d:77:9d:56:63:a7:3f: e0:27:7d:1f:98:8d:ad:3c:09:f7:ff:7a:03:bd:fc: 94:ab:8b:b7:c8:5a:33:8b:5f:fc:d7:82:7d:9b:dd: ee:1a:98:1d:ce:8c:7f:56:09:bc:a2:72:55:ca:f6: e8:19:51:6f:8d:d4:be:49:6a:6b:66:e0:2d:40:fb: ff:a7:d0:5d:2d:89:6f:ee:f4:59:69:0a:93:86:14: c1:71:29:ca:51:ae:06:ca:36:93:1d:60:63:af:4e: b0:27:15:13:17:e1:a8:f4:0e:93:a8:13:8e:24:26: aa:a9:3f:85:89:6a:c2:a5:d6:b4:89:1a:cd:c3:76: 67:62:f3:29:c8:41:ac:7c:bf:0c:bb:25:29:c2:d9: f4:99:8b:ba:2b:b1:15:2d:59:a2:c1:d8:f0:72:f4: 3c:3d:aa:83:02:9a:0b:7b:5f:90:09:f2:0c:79:27: 0f:d5:a9:41:f5:5e:a0:39:37:95:36:fd:15:f8:18: d2:4e:52:0b:0e:6e:95:b6:1b:13:ad:c8:91:e6:1d: a1:35:f4:a5:59:bd:20:a4:ff:fd:c3:65:7c:50:c9: 80:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:40:71:61:DA:64:31:91:44:89:FD:FB:94:B9:AF:E2:1D:94:D1:8A X509v3 Authority Key Identifier: keyid:4F:18:27:3D:88:55:6E:3A:1D:6E:D8:17:8B:80:95:28:D9:90:A6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127B24/15475D868F7611EF84EC7715C4F9AE02/TxgnPYhVbjodbtgXi4CVKNmQppE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxgnPYhVbjodbtgXi4CVKNmQppE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127B24/15475D868F7611EF84EC7715C4F9AE02/31A0A22E803B11F0BAF8A92DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.98.0/24 Signature Algorithm: sha256WithRSAEncryption 48:bc:02:c5:8c:1b:ee:3a:5e:8c:42:33:26:68:2e:1b:76:ae: b0:bc:68:b7:3b:4d:77:2a:82:f8:36:1a:d4:6b:b0:5a:98:cf: 11:2e:7a:63:e1:18:e4:c4:12:1c:c0:36:5d:28:e0:62:83:a3: f2:9c:0d:3f:18:14:0a:5a:09:99:75:25:2c:7f:6d:29:1e:69: 48:3c:24:44:ed:31:5c:7b:73:c1:52:4e:2c:96:1f:bc:24:85: f3:55:81:8d:f9:e4:9a:d0:e6:b3:d8:60:1c:52:2e:cc:a2:25: 4b:c6:66:4e:e8:75:04:15:aa:7a:9a:a1:c4:7e:cc:d5:65:9d: 21:a4:77:7b:35:f3:80:4d:49:f0:98:29:e0:fb:9d:ad:30:6a: 4f:10:16:45:6d:bd:49:fe:41:be:ad:6e:10:a9:78:1a:b0:dc: 92:3e:12:47:30:0b:97:10:ec:56:d4:35:29:ef:16:95:66:e3: de:5c:13:97:11:9e:4f:e1:d7:dd:91:c6:2f:03:a5:c9:63:0d: 9f:6e:44:00:06:a2:a7:51:a1:8c:f8:a6:c5:3d:a2:09:63:63: ca:1e:2a:2b:1a:bb:62:96:d2:fd:8b:a7:11:3b:95:62:19:2a: 20:84:b9:f3:53:a9:94:88:ee:d6:d2:c2:cb:b3:35:55:62:07: f2:e9:5c:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdCMjQxMTAvBgNVBAUTKDRGMTgyNzNEODg1NTZFM0ExRDZFRDgxNzhCODA5NTI4 RDk5MEE2OTEwHhcNMjUwODIzMTYwNjU3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE5ZTcyMS03MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAymzwy5QrZFW81uj28wSGYDq+1O1mB1DYMMKet60jCtdtnxWM1n13nVZjpz/g J30fmI2tPAn3/3oDvfyUq4u3yFozi1/814J9m93uGpgdzox/Vgm8onJVyvboGVFv jdS+SWprZuAtQPv/p9BdLYlv7vRZaQqThhTBcSnKUa4GyjaTHWBjr06wJxUTF+Go 9A6TqBOOJCaqqT+FiWrCpda0iRrNw3ZnYvMpyEGsfL8MuyUpwtn0mYu6K7EVLVmi wdjwcvQ8PaqDApoLe1+QCfIMeScP1alB9V6gOTeVNv0V+BjSTlILDm6VthsTrciR 5h2hNfSlWb0gpP/9w2V8UMmAxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI9AcWHa ZDGRRIn9+5S5r+IdlNGKMB8GA1UdIwQYMBaAFE8YJz2IVW46HW7YF4uAlSjZkKaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0IyNC8xNTQ3NUQ4NjhG NzYxMUVGODRFQzc3MTVDNEY5QUUwMi9UeGduUFloVmJqb2RidGdYaTRDVktObVFw cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1R4Z25QWWhWYmpvZGJ0Z1hpNENWS05tUXBwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdCMjQvMTU0NzVEODY4Rjc2MTFFRjg0RUM3NzE1QzRGOUFFMDIvMzFBMEEyMkU4 MDNCMTFGMEJBRjhBOTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgu2IwDQYJKoZIhvcNAQELBQADggEBAEi8AsWMG+46XoxC MyZoLht2rrC8aLc7TXcqgvg2GtRrsFqYzxEuemPhGOTEEhzANl0o4GKDo/KcDT8Y FApaCZl1JSx/bSkeaUg8JETtMVx7c8FSTiyWH7wkhfNVgY355JrQ5rPYYBxSLsyi JUvGZk7odQQVqnqaocR+zNVlnSGkd3s184BNSfCYKeD7na0wak8QFkVtvUn+Qb6t bhCpeBqw3JI+EkcwC5cQ7FbUNSnvFpVm495cE5cRnk/h192Rxi8DpcljDZ9uRAAG oqdRoYz4psU9ogljY8oeKisau2KW0v2LpxE7lWIZKiCEufNTqZSI7tbSwsuzNVVi B/LpXPk= -----END CERTIFICATE-----Generated at Sun Aug 24 07:14:41 2025 by rpki-client