$ rpki-client -vvf rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/A63B6120238711F08D2B4460C4F9AE02.roa File: A63B6120238711F08D2B4460C4F9AE02.roa (raw, json) Hash identifier: OMBfI+nHRaL8yyAWZKMqye5oo33aQnkkup2yUiK7Glg= Subject key identifier: D9:92:0E:ED:B2:27:10:E3:4C:35:04:9B:43:F7:68:8A:E4:23:3C:23 Certificate issuer: /CN=A9134B4A/serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Certificate serial: D4 Authority key identifier: 3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/A63B6120238711F08D2B4460C4F9AE02.roa Signing time: Tue 01 Jul 2025 06:44:30 +0000 ROA not before: Tue 01 Jul 2025 06:44:30 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 63150 IP address blocks: 160.22.142.0/24 maxlen: 24 160.22.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134B4A, serialNumber=3C3587DC3AF2E937ECDB65A83892759A41C8850B Validity Not Before: Jul 1 06:44:30 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686383cd-9ec8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:67:fe:33:ec:10:de:b7:6a:01:17:10:17:17: f6:96:49:95:81:24:c5:70:59:09:df:10:fe:99:f0: 4f:29:0e:41:07:dc:f0:66:e6:78:42:a5:a3:4f:4a: a0:1c:7c:b1:9b:00:49:32:54:c9:a4:27:4e:0f:4f: 9d:76:d2:c2:f9:01:68:53:e3:dc:34:da:e6:8f:a8: 4d:c0:3e:f6:9b:55:2f:46:7d:9b:0a:34:13:4f:a0: 91:25:26:a3:86:f8:a9:96:8a:ac:59:62:70:72:3d: aa:22:25:a2:17:39:8b:99:09:7f:d1:49:0b:38:dc: 38:79:54:49:c0:d6:ae:38:d4:18:25:ad:21:9d:24: 96:da:3a:58:cb:9b:90:17:05:4d:19:1e:3c:e2:10: e3:fa:4f:2e:dc:15:17:8b:35:69:c1:a3:5c:24:de: b6:48:a8:f2:84:b6:80:d1:a3:e4:a2:a6:cb:b8:d8: 8e:54:da:cc:b8:98:7e:c3:02:53:57:3f:f7:8a:fe: 03:3e:41:3e:ca:65:77:df:59:97:2b:19:69:9b:8d: e7:47:8c:e7:4a:d1:9f:6c:d8:f0:b5:d4:b2:dc:f1: ef:e7:40:69:fd:20:07:ae:f6:f3:8e:73:83:4a:72: e6:50:3b:d9:5c:ea:14:2c:8a:97:dc:c5:7c:a2:b3: 17:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:92:0E:ED:B2:27:10:E3:4C:35:04:9B:43:F7:68:8A:E4:23:3C:23 X509v3 Authority Key Identifier: keyid:3C:35:87:DC:3A:F2:E9:37:EC:DB:65:A8:38:92:75:9A:41:C8:85:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PDWH3Dry6Tfs22WoOJJ1mkHIhQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134B4A/E26499A22F8911EFA3D04A6BC4F9AE02/A63B6120238711F08D2B4460C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.142.0/23 Signature Algorithm: sha256WithRSAEncryption 40:3c:89:69:37:b5:c4:f3:5e:4e:09:71:6f:da:ec:c8:21:4b: 24:b5:e3:89:d3:2e:60:66:90:da:72:20:29:03:06:47:0e:0e: ac:83:20:b0:a4:8d:69:f3:e7:82:93:cb:f4:1f:84:00:c0:c3: 61:69:b9:cd:c6:16:75:45:a4:04:f5:37:f5:c9:52:f3:ea:13: 92:6e:d4:38:62:e1:9e:7e:08:d9:86:42:1c:99:97:d8:ed:75: f9:cb:8c:20:23:cb:dd:0c:4d:a8:58:b6:a3:0c:3c:d8:ff:d7: c7:20:be:5a:39:c5:57:58:c6:2a:d6:3c:ca:2f:8a:16:ab:d7: 97:f4:7d:59:dc:b0:94:b0:7a:03:9e:e8:2d:30:1a:49:96:a5: 72:56:0c:ad:6c:1a:97:9e:a1:c9:09:8c:e5:73:31:ff:34:62: 8b:88:e1:a7:dc:f4:ee:39:56:5e:99:87:3b:3c:0e:3b:d2:c3: 4c:65:68:55:ba:69:d0:52:3f:60:e1:49:81:e3:05:a7:8b:e4: e6:f3:39:67:25:a3:3e:bf:c6:b7:5e:5f:44:ad:e7:fe:8b:41: 2c:36:22:b1:f5:52:03:ab:20:84:42:0b:44:47:44:75:38:b3: 92:e4:14:75:bf:7c:66:74:cc:6c:1e:aa:50:e9:6a:ef:35:2c: c3:f5:ac:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzRCNEExMTAvBgNVBAUTKDNDMzU4N0RDM0FGMkU5MzdFQ0RCNjVBODM4OTI3NTlB NDFDODg1MEIwHhcNMjUwNzAxMDY0NDMwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzODNjZC05ZWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumf+M+wQ3rdqARcQFxf2lkmVgSTFcFkJ3xD+mfBPKQ5BB9zwZuZ4QqWjT0qg HHyxmwBJMlTJpCdOD0+ddtLC+QFoU+PcNNrmj6hNwD72m1UvRn2bCjQTT6CRJSaj hviploqsWWJwcj2qIiWiFzmLmQl/0UkLONw4eVRJwNauONQYJa0hnSSW2jpYy5uQ FwVNGR484hDj+k8u3BUXizVpwaNcJN62SKjyhLaA0aPkoqbLuNiOVNrMuJh+wwJT Vz/3iv4DPkE+ymV331mXKxlpm43nR4znStGfbNjwtdSy3PHv50Bp/SAHrvbzjnOD SnLmUDvZXOoULIqX3MV8orMXRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNmSDu2y JxDjTDUEm0P3aIrkIzwjMB8GA1UdIwQYMBaAFDw1h9w68uk37NtlqDiSdZpByIUL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNEI0QS9FMjY0OTlBMjJG ODkxMUVGQTNEMDRBNkJDNEY5QUUwMi9QRFdIM0RyeTZUZnMyMldvT0pKMW1rSElo UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BEV0gzRHJ5NlRmczIyV29PSkoxbWtISWhRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzRCNEEvRTI2NDk5QTIyRjg5MTFFRkEzRDA0QTZCQzRGOUFFMDIvQTYzQjYxMjAy Mzg3MTFGMDhEMkI0NDYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgFo4wDQYJKoZIhvcNAQELBQADggEBAEA8iWk3tcTzXk4J cW/a7MghSyS144nTLmBmkNpyICkDBkcODqyDILCkjWnz54KTy/QfhADAw2Fpuc3G FnVFpAT1N/XJUvPqE5Ju1Dhi4Z5+CNmGQhyZl9jtdfnLjCAjy90MTahYtqMMPNj/ 18cgvlo5xVdYxirWPMovihar15f0fVncsJSwegOe6C0wGkmWpXJWDK1sGpeeockJ jOVzMf80YouI4afc9O45Vl6Zhzs8DjvSw0xlaFW6adBSP2DhSYHjBaeL5ObzOWcl oz6/xrdeX0St5/6LQSw2IrH1UgOrIIRCC0RHRHU4s5LkFHW/fGZ0zGweqlDpau81 LMP1rCY= -----END CERTIFICATE-----Generated at Thu Jul 3 07:58:46 2025 by rpki-client