$ rpki-client -vvf rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/9C9FACF6502411F093EA9419C4F9AE02.roa File: 9C9FACF6502411F093EA9419C4F9AE02.roa (raw, json) Hash identifier: 3kK2PgqZkvV+Tke5YJ6lRXtuJEdURQG3ApvWLdCTm0Q= Subject key identifier: 9C:B8:A5:C3:CA:48:07:8E:05:75:5D:90:2E:34:97:5A:3F:41:04:6F Certificate issuer: /CN=A914E0FE/serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Certificate serial: 73 Authority key identifier: 96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/9C9FACF6502411F093EA9419C4F9AE02.roa Signing time: Mon 23 Jun 2025 11:24:22 +0000 ROA not before: Mon 23 Jun 2025 11:24:22 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 142634 IP address blocks: 160.250.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E0FE, serialNumber=964D08727DAEDAC74037AB9C43A508BADBCFDAFD Validity Not Before: Jun 23 11:24:22 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68593966-d479 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:95:6d:6a:d6:09:83:0a:5d:03:fb:3a:c9:e1: ca:13:df:e0:0e:0c:99:4a:0c:af:4b:a2:14:b1:15: 0e:a0:5b:07:b8:10:91:d5:3a:ca:df:32:45:1c:36: 34:09:3b:aa:6f:fb:d5:7f:f3:2a:4f:38:1b:ea:1c: 2d:bc:7b:95:0e:9c:69:24:a2:b4:38:74:99:58:7e: e2:a2:2e:30:88:2a:5e:3e:47:07:90:6a:ea:48:59: 57:cf:75:96:af:fe:13:6b:ba:a5:6b:35:11:0b:d9: ff:c5:2f:66:19:ee:21:8d:fa:22:69:ce:88:a2:6b: 41:6c:4e:0f:a6:f7:ec:af:1f:f5:fa:a3:5c:17:89: 49:ee:48:4e:c2:91:8a:08:55:1f:32:63:eb:d3:ca: fd:1f:08:c1:7d:57:e5:4c:0a:b9:26:a5:97:1d:3e: 2b:fd:f7:b9:ac:fc:bd:4c:0f:31:26:3f:7f:f6:a7: ed:8d:64:e5:0f:9d:3e:be:02:17:57:dc:d9:aa:5b: b9:c9:ee:7b:3f:42:f0:c8:30:16:8e:07:30:09:d4: e0:f5:80:20:5a:ee:51:82:ba:46:f5:42:53:ba:79: da:13:37:2c:51:3d:ce:60:50:f5:8c:6b:b8:3d:9e: de:7e:c3:00:63:2a:4f:6c:a1:66:f3:83:25:f7:34: 1a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B8:A5:C3:CA:48:07:8E:05:75:5D:90:2E:34:97:5A:3F:41:04:6F X509v3 Authority Key Identifier: keyid:96:4D:08:72:7D:AE:DA:C7:40:37:AB:9C:43:A5:08:BA:DB:CF:DA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/lk0Icn2u2sdAN6ucQ6UIutvP2v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lk0Icn2u2sdAN6ucQ6UIutvP2v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E0FE/2F2B6FE2ABCA11EFA994D129C4F9AE02/9C9FACF6502411F093EA9419C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.82.0/24 Signature Algorithm: sha256WithRSAEncryption 53:f4:64:35:8d:29:4d:58:a3:96:58:79:a4:2c:bd:39:b1:e7: bf:d9:49:bf:70:78:28:3e:a4:1b:eb:7a:cd:71:e4:75:15:67: 4d:40:0f:f2:4f:f3:71:63:09:af:58:d3:6c:90:61:26:82:6a: 8a:a9:0a:e2:20:c5:de:ad:c0:d2:d7:c6:89:0d:b0:94:44:1a: d4:49:9a:b5:ce:bc:81:91:d2:a0:6d:b9:e5:cc:17:22:3e:d4: 9b:67:8b:04:83:bd:7e:a5:cf:e7:bc:b0:71:9f:e8:2b:1e:d2: 56:72:90:3d:6f:9b:ce:03:54:f3:cf:36:61:98:ff:95:f1:73: 14:e2:0e:b9:ed:0a:7d:45:04:62:8c:6b:a9:4e:f9:d5:bf:cc: a7:29:44:75:e5:e6:0b:23:95:a3:99:37:bc:46:7c:65:18:9e: cc:e9:da:09:97:00:aa:20:51:4c:e0:d4:47:52:ef:d5:06:0d: 0c:da:b6:18:b2:86:79:66:ce:46:52:8d:37:2a:e6:f4:12:18: 11:1e:49:8f:f8:0f:fb:4e:12:7a:d7:7e:68:06:89:5a:a4:54: ff:dc:d8:3b:91:b1:b8:8f:c5:82:00:b5:74:c0:60:91:c0:44: 72:78:b5:e6:e6:e7:15:84:e4:39:5f:5c:f6:7b:ae:c9:01:bc: 0a:15:0c:03 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTBGRTExMC8GA1UEBRMoOTY0RDA4NzI3REFFREFDNzQwMzdBQjlDNDNBNTA4QkFE QkNGREFGRDAeFw0yNTA2MjMxMTI0MjJaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NTkzOTY2LWQ0NzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmlW1q1gmDCl0D+zrJ4coT3+AODJlKDK9LohSxFQ6gWwe4EJHVOsrfMkUcNjQJ O6pv+9V/8ypPOBvqHC28e5UOnGkkorQ4dJlYfuKiLjCIKl4+RweQaupIWVfPdZav /hNruqVrNREL2f/FL2YZ7iGN+iJpzoiia0FsTg+m9+yvH/X6o1wXiUnuSE7CkYoI VR8yY+vTyv0fCMF9V+VMCrkmpZcdPiv997ms/L1MDzEmP3/2p+2NZOUPnT6+AhdX 3NmqW7nJ7ns/QvDIMBaOBzAJ1OD1gCBa7lGCukb1QlO6edoTNyxRPc5gUPWMa7g9 nt5+wwBjKk9soWbzgyX3NBoNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUnLilw8pI B44FdV2QLjSXWj9BBG8wHwYDVR0jBBgwFoAUlk0Icn2u2sdAN6ucQ6UIutvP2v0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFMEZFLzJGMkI2RkUyQUJD QTExRUZBOTk0RDEyOUM0RjlBRTAyL2xrMEljbjJ1MnNkQU42dWNRNlVJdXR2UDJ2 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbGswSWNuMnUyc2RBTjZ1Y1E2VUl1dHZQMnYwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTBGRS8yRjJCNkZFMkFCQ0ExMUVGQTk5NEQxMjlDNEY5QUUwMi85QzlGQUNGNjUw MjQxMUYwOTNFQTk0MTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6UjANBgkqhkiG9w0BAQsFAAOCAQEAU/RkNY0pTVijllh5 pCy9ObHnv9lJv3B4KD6kG+t6zXHkdRVnTUAP8k/zcWMJr1jTbJBhJoJqiqkK4iDF 3q3A0tfGiQ2wlEQa1Ematc68gZHSoG255cwXIj7Um2eLBIO9fqXP57ywcZ/oKx7S VnKQPW+bzgNU8882YZj/lfFzFOIOue0KfUUEYoxrqU751b/MpylEdeXmCyOVo5k3 vEZ8ZRiezOnaCZcAqiBRTODUR1Lv1QYNDNq2GLKGeWbORlKNNyrm9BIYER5Jj/gP +04Setd+aAaJWqRU/9zYO5GxuI/FggC1dMBgkcBEcni15ubnFYTkOV9c9nuuyQG8 ChUMAw== -----END CERTIFICATE-----Generated at Thu Jul 3 23:51:23 2025 by rpki-client