$ rpki-client -vvf rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/8008F5CA620C11ECAFF5941AC4F9AE02.roa File: 8008F5CA620C11ECAFF5941AC4F9AE02.roa (raw, json) Hash identifier: zf45ltuWfmdAtT9A7Ih3Fv5EL5oWc6vkxJu3n9BqugE= Subject key identifier: 99:AA:BD:1A:9E:48:7B:25:6D:E6:31:3C:DB:4B:35:B0:77:18:3E:E3 Certificate issuer: /CN=A9158E3F/serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Certificate serial: 0C43 Authority key identifier: 7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/8008F5CA620C11ECAFF5941AC4F9AE02.roa Signing time: Sat 16 Aug 2025 19:30:08 +0000 ROA not before: Sat 16 Aug 2025 19:30:08 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 32787 IP address blocks: 183.177.40.0/24 maxlen: 24 183.177.41.0/24 maxlen: 24 183.177.42.0/24 maxlen: 24 183.177.43.0/24 maxlen: 24 183.177.44.0/24 maxlen: 24 183.177.45.0/24 maxlen: 24 183.177.46.0/24 maxlen: 24 183.177.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:34:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3139 (0xc43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158E3F, serialNumber=7E313AB7FF26E783E03C07851612751881AE4918 Validity Not Before: Aug 16 19:30:08 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a0dc3f-56f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:cb:5e:c5:7e:7d:cb:b4:75:8c:a0:29:c8:bf: 4c:b3:67:c2:cc:90:b5:f9:59:28:ab:ba:c4:64:51: 8c:78:31:dd:b2:13:65:36:c9:a7:8d:ba:a8:04:3c: c3:de:1e:d1:57:48:86:4c:7a:84:82:33:40:68:c2: ae:69:3b:d2:31:3a:4c:ea:55:78:5b:73:f1:e2:c5: 61:b9:82:2a:5d:f1:a2:83:09:7b:de:bd:5e:85:f0: f2:03:64:fa:af:54:cd:56:bd:e1:78:1c:ce:5e:69: 81:a4:b8:68:12:53:82:82:93:d8:f0:61:a2:4a:37: 80:16:6f:4e:19:80:05:8d:b2:20:85:b8:65:fe:8f: 5c:71:cb:19:57:ad:b6:ec:04:87:ac:30:56:0c:03: db:28:20:00:fa:74:84:7a:08:ed:88:da:9d:4b:b8: f6:ae:f0:ab:4e:26:d6:aa:8f:4c:f8:7f:34:d2:c1: 5f:15:b8:ac:b6:fc:8f:3c:ed:8b:d1:d5:c7:6d:29: 6e:b7:56:c4:6e:e8:05:fe:f8:d6:e1:38:d9:d5:b2: ac:f9:e5:80:9c:a8:7d:af:8a:66:b2:6c:1c:08:0e: da:88:77:d5:08:cc:bd:ec:61:f1:3d:a4:55:90:5c: 4a:ff:12:da:04:e3:26:81:36:69:92:e3:68:ed:4b: fe:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:AA:BD:1A:9E:48:7B:25:6D:E6:31:3C:DB:4B:35:B0:77:18:3E:E3 X509v3 Authority Key Identifier: keyid:7E:31:3A:B7:FF:26:E7:83:E0:3C:07:85:16:12:75:18:81:AE:49:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/fjE6t_8m54PgPAeFFhJ1GIGuSRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fjE6t_8m54PgPAeFFhJ1GIGuSRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158E3F/C24322BA544611EA8C05651DC4F9AE02/8008F5CA620C11ECAFF5941AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 183.177.40.0/21 Signature Algorithm: sha256WithRSAEncryption 33:af:f6:ca:b3:f5:32:bb:9a:9b:97:77:e1:6e:d2:b9:a8:ca: ec:33:fd:37:bb:0a:a0:15:c3:85:06:80:25:4a:46:42:51:57: 56:04:02:41:22:35:bb:6e:66:88:85:a5:85:dc:59:d7:0f:d0: 03:e6:7c:36:de:37:4b:96:c4:4d:aa:4f:27:1c:72:4c:11:aa: a0:33:6c:28:d5:52:93:d7:8b:22:62:c2:5c:64:c0:c0:ec:db: f4:db:83:fd:36:b0:d1:69:0b:f8:dc:aa:c3:d5:7b:f3:cd:b1: 97:ef:cb:79:7a:4b:2c:9f:ad:bd:96:a3:71:2f:62:e4:83:f2: c5:b4:e9:51:21:7e:b8:36:99:52:98:f9:a8:0b:5c:4d:4f:54: 05:69:cf:b2:f1:fb:e5:55:c0:38:83:c1:b5:ef:85:4c:ac:9b: 32:1d:db:9c:2e:08:62:73:49:06:8e:8d:82:0e:f1:11:b6:b5: 41:d1:8e:6a:e7:50:87:c3:82:c5:a4:a8:b1:ff:cb:ab:1f:7a: a7:2f:54:03:3d:17:47:44:05:80:10:79:31:af:12:77:02:9e: 65:e1:d2:af:6f:b3:97:b3:f3:ad:a4:e4:47:c5:d0:5a:11:18: 83:9f:34:5a:08:c2:d5:ac:3e:d6:44:19:75:ab:5e:f3:24:3c: b1:2a:35:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThFM0YxMTAvBgNVBAUTKDdFMzEzQUI3RkYyNkU3ODNFMDNDMDc4NTE2MTI3NTE4 ODFBRTQ5MTgwHhcNMjUwODE2MTkzMDA4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEwZGMzZi01NmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9MtexX59y7R1jKApyL9Ms2fCzJC1+Vkoq7rEZFGMeDHdshNlNsmnjbqoBDzD 3h7RV0iGTHqEgjNAaMKuaTvSMTpM6lV4W3Px4sVhuYIqXfGigwl73r1ehfDyA2T6 r1TNVr3heBzOXmmBpLhoElOCgpPY8GGiSjeAFm9OGYAFjbIghbhl/o9cccsZV622 7ASHrDBWDAPbKCAA+nSEegjtiNqdS7j2rvCrTibWqo9M+H800sFfFbistvyPPO2L 0dXHbSlut1bEbugF/vjW4TjZ1bKs+eWAnKh9r4pmsmwcCA7aiHfVCMy97GHxPaRV kFxK/xLaBOMmgTZpkuNo7Uv+7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJmqvRqe SHslbeYxPNtLNbB3GD7jMB8GA1UdIwQYMBaAFH4xOrf/JueD4DwHhRYSdRiBrkkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEUzRi9DMjQzMjJCQTU0 NDYxMUVBOEMwNTY1MURDNEY5QUUwMi9makU2dF84bTU0UGdQQWVGRmhKMUdJR3VT UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZqRTZ0XzhtNTRQZ1BBZUZGaEoxR0lHdVNSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThFM0YvQzI0MzIyQkE1NDQ2MTFFQThDMDU2NTFEQzRGOUFFMDIvODAwOEY1Q0E2 MjBDMTFFQ0FGRjU5NDFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAO3sSgwDQYJKoZIhvcNAQELBQADggEBADOv9sqz9TK7mpuX d+Fu0rmoyuwz/Te7CqAVw4UGgCVKRkJRV1YEAkEiNbtuZoiFpYXcWdcP0APmfDbe N0uWxE2qTyccckwRqqAzbCjVUpPXiyJiwlxkwMDs2/Tbg/02sNFpC/jcqsPVe/PN sZfvy3l6Syyfrb2Wo3EvYuSD8sW06VEhfrg2mVKY+agLXE1PVAVpz7Lx++VVwDiD wbXvhUysmzId25wuCGJzSQaOjYIO8RG2tUHRjmrnUIfDgsWkqLH/y6sfeqcvVAM9 F0dEBYAQeTGvEncCnmXh0q9vs5ez862k5EfF0FoRGIOfNFoIwtWsPtZEGXWrXvMk PLEqNQg= -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:00 2025 by rpki-client