$ rpki-client -vvf rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/DE4E8D2255A911F09885A565C4F9AE02.roa File: DE4E8D2255A911F09885A565C4F9AE02.roa (raw, json) Hash identifier: aj+5RbTPZ0DoJrlulx+wuSAruXZOFBJeeX7bFUN9Fc0= Subject key identifier: 85:31:E1:2A:BE:5E:05:F9:B9:1E:B4:B0:CB:56:A3:3B:BA:DD:05:CF Certificate issuer: /CN=A916069A/serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Certificate serial: 81 Authority key identifier: D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/DE4E8D2255A911F09885A565C4F9AE02.roa Signing time: Mon 30 Jun 2025 12:02:00 +0000 ROA not before: Mon 30 Jun 2025 12:02:00 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 151133 IP address blocks: 160.191.184.0/23 maxlen: 23 160.191.184.0/24 maxlen: 24 160.191.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 129 (0x81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916069A, serialNumber=D908393C5BA8035AF68B7EC009558E812ED095E0 Validity Not Before: Jun 30 12:02:00 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68627cb8-6cd8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:cb:c9:25:2b:34:20:59:a0:0e:d8:74:41:66: 01:72:18:29:6d:2f:84:de:96:8e:5d:b1:cd:27:9a: a7:10:bd:77:bd:6a:4e:34:de:f7:c2:78:b2:6d:68: 3b:6c:b3:5f:ea:1d:15:41:ee:cb:d4:12:b2:68:de: d4:c4:04:fb:c4:a3:06:67:d9:37:ea:4e:41:38:a5: bf:0e:49:ac:43:68:04:cd:57:90:30:9b:f9:da:e4: 85:63:6a:9f:37:40:55:f3:6a:93:b9:3a:39:8b:54: 04:56:da:6f:a1:4b:f9:6c:93:d3:65:98:e2:b7:76: f4:ab:e7:a6:ac:a6:68:1b:f0:c6:bb:77:d0:5c:bc: 95:f7:43:cf:78:ae:9a:31:b9:99:19:cb:48:9e:18: d6:c9:f8:90:cd:6f:67:06:a6:d8:1e:6b:43:46:94: 4e:14:43:3c:de:7c:30:82:11:5d:3e:4f:97:85:54: de:39:9e:ee:0b:b9:09:a2:c0:9b:cb:7f:b6:e3:9a: 36:fb:19:42:cb:99:f1:a3:61:e5:f4:fb:32:b5:b2: 50:bb:a8:8b:f0:05:70:92:04:ca:b1:c9:f1:cc:5c: 82:06:29:f5:53:ec:0f:ec:01:77:1d:e4:1f:27:e9: 94:4e:52:25:df:ad:1e:18:94:71:53:03:b6:60:fa: 88:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:31:E1:2A:BE:5E:05:F9:B9:1E:B4:B0:CB:56:A3:3B:BA:DD:05:CF X509v3 Authority Key Identifier: keyid:D9:08:39:3C:5B:A8:03:5A:F6:8B:7E:C0:09:55:8E:81:2E:D0:95:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/2Qg5PFuoA1r2i37ACVWOgS7QleA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2Qg5PFuoA1r2i37ACVWOgS7QleA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916069A/2EB607969BF011EF81C90267C4F9AE02/DE4E8D2255A911F09885A565C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.191.184.0/23 Signature Algorithm: sha256WithRSAEncryption b0:d3:c3:a3:70:97:0c:d8:e5:92:d0:e0:3c:02:36:97:39:70: 41:96:bd:11:d7:2d:d3:2d:60:1d:b2:93:0f:ee:f7:ab:7a:49: 45:13:b9:45:4f:1d:de:44:ee:02:f8:50:27:39:e8:94:78:68: e4:62:d0:26:8b:de:24:5a:dc:1b:b9:4d:67:76:04:78:cf:c5: e7:62:c1:65:cc:ee:71:3f:6b:60:b4:8c:42:c6:58:39:69:01: 88:c9:f4:cb:2e:6b:bd:8c:22:0f:10:14:9d:53:27:53:dd:16: 5c:5a:ec:7d:1b:62:4b:54:74:8b:bb:0e:bf:25:c9:22:a8:7e: 70:13:21:2d:ee:a3:35:fe:24:5d:77:21:49:ac:ca:fb:33:d8: 47:1d:4d:64:2f:c3:7c:12:6c:42:00:e4:c0:41:a8:9a:fc:ee: 75:49:bc:82:be:c1:bf:b4:58:69:b4:58:09:a9:0c:c9:43:5e: 2d:61:b0:26:67:1f:d7:b4:85:98:10:19:d8:f8:1d:ce:5e:a8: 8f:96:76:31:f1:21:54:2d:65:24:48:f5:42:e9:fb:2d:84:0d: da:ab:c1:dc:6e:bd:3b:09:cc:43:3c:13:09:a2:14:e0:95:a1: 22:53:39:0b:85:ea:22:6f:1e:bd:67:19:5c:2c:09:77:03:b9: de:b4:f7:76 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA2OUExMTAvBgNVBAUTKEQ5MDgzOTNDNUJBODAzNUFGNjhCN0VDMDA5NTU4RTgx MkVEMDk1RTAwHhcNMjUwNjMwMTIwMjAwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyN2NiOC02Y2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3svJJSs0IFmgDth0QWYBchgpbS+E3paOXbHNJ5qnEL13vWpONN73wniybWg7 bLNf6h0VQe7L1BKyaN7UxAT7xKMGZ9k36k5BOKW/DkmsQ2gEzVeQMJv52uSFY2qf N0BV82qTuTo5i1QEVtpvoUv5bJPTZZjit3b0q+emrKZoG/DGu3fQXLyV90PPeK6a MbmZGctInhjWyfiQzW9nBqbYHmtDRpROFEM83nwwghFdPk+XhVTeOZ7uC7kJosCb y3+245o2+xlCy5nxo2Hl9PsytbJQu6iL8AVwkgTKscnxzFyCBin1U+wP7AF3HeQf J+mUTlIl360eGJRxUwO2YPqIRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIUx4Sq+ XgX5uR60sMtWozu63QXPMB8GA1UdIwQYMBaAFNkIOTxbqANa9ot+wAlVjoEu0JXg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDY5QS8yRUI2MDc5NjlC RjAxMUVGODFDOTAyNjdDNEY5QUUwMi8yUWc1UEZ1b0ExcjJpMzdBQ1ZXT2dTN1Fs ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJRZzVQRnVvQTFyMmkzN0FDVldPZ1M3UWxlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA2OUEvMkVCNjA3OTY5QkYwMTFFRjgxQzkwMjY3QzRGOUFFMDIvREU0RThEMjI1 NUE5MTFGMDk4ODVBNTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgv7gwDQYJKoZIhvcNAQELBQADggEBALDTw6NwlwzY5ZLQ 4DwCNpc5cEGWvRHXLdMtYB2ykw/u96t6SUUTuUVPHd5E7gL4UCc56JR4aORi0CaL 3iRa3Bu5TWd2BHjPxediwWXM7nE/a2C0jELGWDlpAYjJ9Msua72MIg8QFJ1TJ1Pd Flxa7H0bYktUdIu7Dr8lySKofnATIS3uozX+JF13IUmsyvsz2EcdTWQvw3wSbEIA 5MBBqJr87nVJvIK+wb+0WGm0WAmpDMlDXi1hsCZnH9e0hZgQGdj4Hc5eqI+WdjHx IVQtZSRI9ULp+y2EDdqrwdxuvTsJzEM8EwmiFOCVoSJTOQuF6iJvHr1nGVwsCXcD ud6093Y= -----END CERTIFICATE-----Generated at Thu Jul 3 08:55:00 2025 by rpki-client