$ rpki-client -vvf rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/D86268E877F111EFADAB6362C4F9AE02.roa File: D86268E877F111EFADAB6362C4F9AE02.roa (raw, json) Hash identifier: e8wZoAxd5aA3CtPGlNCm2H8RgaO0sg67bbRxbVIcezE= Subject key identifier: 1D:18:60:BE:33:3C:72:7C:DB:49:D2:17:73:D5:CC:2C:9F:0A:A3:C4 Certificate issuer: /CN=A914E600/serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Certificate serial: B1 Authority key identifier: E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/D86268E877F111EFADAB6362C4F9AE02.roa Signing time: Sat 23 Aug 2025 06:41:49 +0000 ROA not before: Sat 23 Aug 2025 06:41:49 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 137552 IP address blocks: 160.30.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:41:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E600, serialNumber=E0B9458F69825FF829387B139E88FD3BD6740087 Validity Not Before: Aug 23 06:41:49 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a962ad-8f3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f2:78:f6:5b:7c:c5:77:db:70:ea:e4:59:ef: 65:66:f7:8e:86:07:92:c6:7d:d9:e7:8e:cf:7f:66: 3c:be:fd:c5:de:20:4a:ab:06:de:89:cc:c7:d2:4c: d9:31:ad:e6:40:2d:71:da:0e:1e:5e:db:9b:06:55: 0b:4a:b0:2d:73:7d:62:f6:1e:eb:7d:d4:ae:be:4c: 7f:fe:55:ba:63:94:ce:5c:68:ef:80:60:8a:3e:b5: 41:35:8c:11:a9:6d:20:9e:6e:4b:85:f8:7a:c9:9d: 75:70:05:b0:eb:aa:fe:6d:a4:60:08:02:72:ee:d5: c5:13:bc:fd:96:db:62:cb:8c:27:43:c9:6d:28:0e: 53:09:46:13:02:dd:bb:ba:09:42:6e:9e:6e:3f:46: 48:b1:dc:82:a5:89:1e:53:40:67:88:e9:6a:2f:bf: 7c:b9:33:11:54:91:cb:16:5f:85:c8:ba:17:c7:cd: 28:35:18:4d:7b:d5:1b:de:f5:76:ef:6f:14:6e:cf: 6e:55:88:36:c1:85:e2:74:4d:0a:94:f8:03:8d:7c: f4:9f:1c:92:db:d0:7d:f4:9f:78:c6:12:df:64:3f: fc:e1:90:fd:3d:36:3e:27:ea:01:81:c7:6e:5c:8b: 03:44:97:04:30:ec:63:9d:aa:d6:91:19:2a:17:e4: 30:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:18:60:BE:33:3C:72:7C:DB:49:D2:17:73:D5:CC:2C:9F:0A:A3:C4 X509v3 Authority Key Identifier: keyid:E0:B9:45:8F:69:82:5F:F8:29:38:7B:13:9E:88:FD:3B:D6:74:00:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4LlFj2mCX_gpOHsTnoj9O9Z0AIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E600/221BAEBE77F111EFAC112942C4F9AE02/D86268E877F111EFADAB6362C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.30.4.0/23 Signature Algorithm: sha256WithRSAEncryption d7:81:25:f4:14:52:1b:69:c7:e7:0e:a8:77:aa:92:b5:fa:9e: 69:2b:96:99:f9:3c:ad:db:f4:5f:2c:09:71:06:77:07:f6:85: ab:0f:a8:ea:50:de:ba:76:e7:17:3b:b4:7a:73:27:7d:74:e2: e9:5a:4f:0e:8c:60:ed:23:bd:9e:9c:47:f8:ac:af:6c:e8:98: 3d:8e:11:0b:ac:ee:70:1e:d5:5b:94:8f:98:ba:db:f9:ca:25: aa:6f:a0:26:06:04:70:e1:a0:24:8b:20:d7:da:f7:a9:a0:b5: 3e:e0:16:2a:bc:9d:d8:c9:76:1c:e1:23:59:ab:e5:57:a2:6b: ce:ed:fc:47:f7:fc:0d:8d:b7:5a:1f:14:a8:8e:20:ab:45:9f: 8d:7a:82:6c:58:8b:c6:70:fa:d3:ed:37:8c:9f:ad:39:10:23: 08:53:e6:23:1c:cf:dc:81:92:fd:c5:77:55:c9:a0:1b:38:6a: c0:e7:f2:18:4e:7f:6c:5e:ab:c8:99:43:3a:6b:ab:3f:13:e1: 63:54:d9:0a:8b:3b:e3:07:38:e1:4f:aa:29:2e:19:02:c5:0e: f8:a4:40:eb:51:7b:cc:0d:4d:3a:2a:b0:43:9c:b9:fb:0e:0a: ea:44:72:fa:56:e1:82:b1:1d:ac:f6:56:df:a0:60:f3:cb:84: 6d:8c:b4:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU2MDAxMTAvBgNVBAUTKEUwQjk0NThGNjk4MjVGRjgyOTM4N0IxMzlFODhGRDNC RDY3NDAwODcwHhcNMjUwODIzMDY0MTQ5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE5NjJhZC04ZjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApPJ49lt8xXfbcOrkWe9lZveOhgeSxn3Z547Pf2Y8vv3F3iBKqwbeiczH0kzZ Ma3mQC1x2g4eXtubBlULSrAtc31i9h7rfdSuvkx//lW6Y5TOXGjvgGCKPrVBNYwR qW0gnm5Lhfh6yZ11cAWw66r+baRgCAJy7tXFE7z9lttiy4wnQ8ltKA5TCUYTAt27 uglCbp5uP0ZIsdyCpYkeU0BniOlqL798uTMRVJHLFl+FyLoXx80oNRhNe9Ub3vV2 728Ubs9uVYg2wYXidE0KlPgDjXz0nxyS29B99J94xhLfZD/84ZD9PTY+J+oBgcdu XIsDRJcEMOxjnarWkRkqF+QwrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB0YYL4z PHJ820nSF3PVzCyfCqPEMB8GA1UdIwQYMBaAFOC5RY9pgl/4KTh7E56I/TvWdACH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTYwMC8yMjFCQUVCRTc3 RjExMUVGQUMxMTI5NDJDNEY5QUUwMi80TGxGajJtQ1hfZ3BPSHNUbm9qOU85WjBB SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzRMbEZqMm1DWF9ncE9Ic1Rub2o5TzlaMEFJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU2MDAvMjIxQkFFQkU3N0YxMTFFRkFDMTEyOTQyQzRGOUFFMDIvRDg2MjY4RTg3 N0YxMTFFRkFEQUI2MzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgHgQwDQYJKoZIhvcNAQELBQADggEBANeBJfQUUhtpx+cO qHeqkrX6nmkrlpn5PK3b9F8sCXEGdwf2hasPqOpQ3rp25xc7tHpzJ3104ulaTw6M YO0jvZ6cR/isr2zomD2OEQus7nAe1VuUj5i62/nKJapvoCYGBHDhoCSLINfa96mg tT7gFiq8ndjJdhzhI1mr5Veia87t/Ef3/A2Nt1ofFKiOIKtFn416gmxYi8Zw+tPt N4yfrTkQIwhT5iMcz9yBkv3Fd1XJoBs4asDn8hhOf2xeq8iZQzprqz8T4WNU2QqL O+MHOOFPqikuGQLFDvikQOtRe8wNTToqsEOcufsOCupEcvpW4YKxHaz2Vt+gYPPL hG2MtPk= -----END CERTIFICATE-----Generated at Sun Aug 24 00:17:15 2025 by rpki-client