$ rpki-client -vvf rpki.apnic.net/member_repository/A912E87E/7C6EDA8CA1CF11EF878E6061C4F9AE02/536B22D258CF11F0A4B0BC1DC4F9AE02.roa File: 536B22D258CF11F0A4B0BC1DC4F9AE02.roa (raw, json) Hash identifier: mvmD2bVYuP9FLTuo/zDCa9iFem+gd8N8t195wsX0F4g= Subject key identifier: 23:2C:78:2F:A0:F7:7F:25:2F:36:41:EC:7C:CA:90:62:90:A0:FD:18 Certificate issuer: /CN=A912E87E/serialNumber=04C79A4DD24FFA03FA8F9296766F82A0385CE293 Certificate serial: 86 Authority key identifier: 04:C7:9A:4D:D2:4F:FA:03:FA:8F:92:96:76:6F:82:A0:38:5C:E2:93 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BMeaTdJP-gP6j5KWdm-CoDhc4pM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E87E/7C6EDA8CA1CF11EF878E6061C4F9AE02/536B22D258CF11F0A4B0BC1DC4F9AE02.roa Signing time: Fri 04 Jul 2025 12:06:33 +0000 ROA not before: Fri 04 Jul 2025 12:06:33 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139921 IP address blocks: 160.191.128.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E87E/7C6EDA8CA1CF11EF878E6061C4F9AE02/BMeaTdJP-gP6j5KWdm-CoDhc4pM.crl rsync://rpki.apnic.net/member_repository/A912E87E/7C6EDA8CA1CF11EF878E6061C4F9AE02/BMeaTdJP-gP6j5KWdm-CoDhc4pM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BMeaTdJP-gP6j5KWdm-CoDhc4pM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E87E, serialNumber=04C79A4DD24FFA03FA8F9296766F82A0385CE293 Validity Not Before: Jul 4 12:06:33 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6867c3c9-1ce7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:67:ad:d0:a6:82:17:82:f3:50:35:89:97:ed: e9:c9:ff:c7:eb:24:ce:3f:4e:fc:21:bf:b1:1a:3a: 7f:27:43:bd:f8:94:3c:fb:7b:e6:f5:56:db:96:6e: 5b:4e:86:79:16:73:34:3b:36:bf:ea:aa:77:34:ba: a1:5d:37:c0:0c:f9:ad:31:06:05:3c:ef:b2:6b:79: c9:4e:82:cd:ab:2d:05:e0:7d:b4:61:35:3e:eb:f0: 51:94:ff:c2:6e:36:70:e3:2d:14:f6:95:8a:c7:4f: a2:76:5c:15:0f:48:15:62:be:ac:93:36:ff:15:1c: 2a:d8:3f:79:9c:2f:1e:32:dd:8d:27:99:dd:8e:b7: 17:50:4a:44:f4:54:49:62:3e:e7:46:73:18:0c:93: 75:d9:e0:ee:71:62:60:3c:ba:c8:91:a9:63:1f:66: ce:51:a5:7f:b3:dc:da:ef:87:26:6c:bf:0c:a5:73: 79:f2:c8:5e:80:8d:e5:05:22:e6:17:29:cc:cd:00: cf:88:2f:7b:b4:bf:70:af:13:25:df:4b:4b:04:8b: 97:50:a8:d6:96:30:cb:d7:05:a7:9b:ca:e5:54:fd: a5:dd:99:1e:9a:c2:18:95:2e:7c:57:e7:04:72:02: fc:7c:23:fc:8b:77:0a:cf:21:f0:31:fe:d3:16:22: 29:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:2C:78:2F:A0:F7:7F:25:2F:36:41:EC:7C:CA:90:62:90:A0:FD:18 X509v3 Authority Key Identifier: keyid:04:C7:9A:4D:D2:4F:FA:03:FA:8F:92:96:76:6F:82:A0:38:5C:E2:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E87E/7C6EDA8CA1CF11EF878E6061C4F9AE02/BMeaTdJP-gP6j5KWdm-CoDhc4pM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BMeaTdJP-gP6j5KWdm-CoDhc4pM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E87E/7C6EDA8CA1CF11EF878E6061C4F9AE02/536B22D258CF11F0A4B0BC1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.128.0/23 Signature Algorithm: sha256WithRSAEncryption 64:8d:92:83:c8:b9:a3:93:32:c8:86:d2:89:91:c2:11:8d:4f: cf:51:62:b6:d4:26:1f:70:f2:9b:dc:65:aa:9d:4b:f0:9c:fe: 7e:63:fa:dc:f9:3b:45:c8:4c:35:96:75:01:dd:94:77:09:bb: 0e:99:61:d4:af:35:ef:74:47:13:e5:ce:e5:4e:5a:97:3d:5a: 5e:92:7e:2a:bf:6b:3b:03:f7:8e:ce:12:e1:bf:cc:eb:e5:93: 54:41:6a:5e:61:ef:db:0e:9d:43:42:ff:d2:8b:25:69:cd:8d: 0c:78:d3:42:a7:73:28:e4:09:f2:5f:66:e6:9a:8c:e9:7f:3f: fd:71:46:2c:f4:63:1b:ef:d9:6e:1a:5c:a8:32:80:13:9d:42: 9c:ea:f5:66:1f:fd:c4:d1:e6:02:de:00:81:7e:ca:ef:60:70: 31:e2:7c:8e:fa:b2:02:e0:df:4e:64:2b:c9:16:85:58:73:bd: cd:4a:1d:ca:f1:03:85:bc:34:77:19:e3:1f:cd:71:d9:45:f5: bf:02:4b:3d:a6:ed:87:76:00:97:a0:9a:a3:5d:fa:69:b1:b8: 6e:b3:5a:83:1b:b6:de:45:86:30:f7:eb:11:94:a5:b4:66:0d: ed:6f:34:2c:81:18:14:00:a7:42:1e:87:97:0e:91:57:7b:13: 55:87:2b:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU4N0UxMTAvBgNVBAUTKDA0Qzc5QTRERDI0RkZBMDNGQThGOTI5Njc2NkY4MkEw Mzg1Q0UyOTMwHhcNMjUwNzA0MTIwNjMzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3YzNjOS0xY2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Get0KaCF4LzUDWJl+3pyf/H6yTOP078Ib+xGjp/J0O9+JQ8+3vm9Vbblm5b ToZ5FnM0Oza/6qp3NLqhXTfADPmtMQYFPO+ya3nJToLNqy0F4H20YTU+6/BRlP/C bjZw4y0U9pWKx0+idlwVD0gVYr6skzb/FRwq2D95nC8eMt2NJ5ndjrcXUEpE9FRJ Yj7nRnMYDJN12eDucWJgPLrIkaljH2bOUaV/s9za74cmbL8MpXN58shegI3lBSLm FynMzQDPiC97tL9wrxMl30tLBIuXUKjWljDL1wWnm8rlVP2l3ZkemsIYlS58V+cE cgL8fCP8i3cKzyHwMf7TFiIpAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCMseC+g 938lLzZB7HzKkGKQoP0YMB8GA1UdIwQYMBaAFATHmk3ST/oD+o+SlnZvgqA4XOKT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTg3RS83QzZFREE4Q0Ex Q0YxMUVGODc4RTYwNjFDNEY5QUUwMi9CTWVhVGRKUC1nUDZqNUtXZG0tQ29EaGM0 cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0JNZWFUZEpQLWdQNmo1S1dkbS1Db0RoYzRwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkU4N0UvN0M2RURBOENBMUNGMTFFRjg3OEU2MDYxQzRGOUFFMDIvNTM2QjIyRDI1 OENGMTFGMEE0QjBCQzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv4AwDQYJKoZIhvcNAQELBQADggEBAGSNkoPIuaOTMsiG 0omRwhGNT89RYrbUJh9w8pvcZaqdS/Cc/n5j+tz5O0XITDWWdQHdlHcJuw6ZYdSv Ne90RxPlzuVOWpc9Wl6Sfiq/azsD947OEuG/zOvlk1RBal5h79sOnUNC/9KLJWnN jQx400KncyjkCfJfZuaajOl/P/1xRiz0Yxvv2W4aXKgygBOdQpzq9WYf/cTR5gLe AIF+yu9gcDHifI76sgLg305kK8kWhVhzvc1KHcrxA4W8NHcZ4x/NcdlF9b8CSz2m 7Yd2AJegmqNd+mmxuG6zWoMbtt5FhjD36xGUpbRmDe1vNCyBGBQAp0Ieh5cOkVd7 E1WHK6U= -----END CERTIFICATE-----Generated at Sat Jul 5 08:17:53 2025 by rpki-client