$ rpki-client -vvf rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/85C3AC9A39E511EF99FD7A11C4F9AE02.roa File: 85C3AC9A39E511EF99FD7A11C4F9AE02.roa (raw, json) Hash identifier: V+nudqfqbNoV97hl4ZZQ3M1A1LzH6OKD9ocfKTUUibo= Subject key identifier: D5:81:CC:C6:21:A1:02:78:B5:2E:2E:84:54:C0:5F:57:9E:EF:D7:97 Certificate issuer: /CN=A9167003/serialNumber=A8FC0636E68186475548794DDFA4690BFFD4CCB6 Certificate serial: D7 Authority key identifier: A8:FC:06:36:E6:81:86:47:55:48:79:4D:DF:A4:69:0B:FF:D4:CC:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qPwGNuaBhkdVSHlN36RpC__UzLY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/85C3AC9A39E511EF99FD7A11C4F9AE02.roa Signing time: Thu 07 Aug 2025 06:11:51 +0000 ROA not before: Thu 07 Aug 2025 06:11:51 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 10022 IP address blocks: 192.188.185.0/24 maxlen: 24 192.203.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/qPwGNuaBhkdVSHlN36RpC__UzLY.crl rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/qPwGNuaBhkdVSHlN36RpC__UzLY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qPwGNuaBhkdVSHlN36RpC__UzLY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:40:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 215 (0xd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167003, serialNumber=A8FC0636E68186475548794DDFA4690BFFD4CCB6 Validity Not Before: Aug 7 06:11:51 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689443a7-5650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a9:43:01:d5:83:a6:61:41:97:96:2c:1b:70: 4c:ee:c9:9b:83:b1:d6:f0:9a:3d:66:b1:fc:87:02: 6a:42:74:33:bc:3d:a9:cf:a4:a2:34:1f:2c:1a:2b: b4:71:7d:18:e2:7e:fd:48:ad:fb:7a:d6:dd:19:54: 72:c1:3d:4d:53:3d:6d:a0:e6:3b:08:5e:1f:e9:4e: 58:e3:b5:f4:39:2f:ef:34:aa:9a:31:69:5d:92:8e: 33:a5:07:72:3a:12:e9:0a:e2:b4:a0:4d:f6:06:bd: 32:37:16:f2:78:f3:b1:8c:59:80:3c:70:5d:23:48: 35:1a:d1:fb:e3:c0:e6:aa:b6:13:12:a9:12:8a:58: d9:37:87:08:c9:18:27:22:47:87:c6:9d:b7:eb:54: 79:d4:dc:e1:ce:49:94:ce:5a:0e:c2:02:8d:bb:c3: 02:34:bd:80:eb:9e:db:62:c6:11:85:76:e5:01:44: 3f:fb:d6:b7:91:66:a3:58:87:2a:fa:7e:4f:69:b6: 59:c2:b0:35:56:d1:21:01:78:c0:36:bb:09:43:c9: 94:1d:e7:d1:98:7d:49:bf:b8:cb:42:d3:64:c6:41: 8c:d3:71:50:b4:31:77:a5:ea:d5:c6:ea:6c:ce:32: 4f:f9:38:07:27:f3:c6:0d:c0:4d:d9:92:d1:42:c5: 74:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:81:CC:C6:21:A1:02:78:B5:2E:2E:84:54:C0:5F:57:9E:EF:D7:97 X509v3 Authority Key Identifier: keyid:A8:FC:06:36:E6:81:86:47:55:48:79:4D:DF:A4:69:0B:FF:D4:CC:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/qPwGNuaBhkdVSHlN36RpC__UzLY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qPwGNuaBhkdVSHlN36RpC__UzLY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167003/26A6B05832BB11EFA83D612FC4F9AE02/85C3AC9A39E511EF99FD7A11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.188.185.0/24 192.203.216.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:92:f0:98:51:45:49:b0:e0:4c:07:f5:45:ec:48:83:19:c5: ad:cb:d6:12:3a:fe:14:2d:7e:34:c7:e5:77:9a:8c:b4:b8:66: 0f:45:74:4b:d1:00:b1:5e:31:cc:a5:fc:47:f3:c0:3b:71:32: ad:c8:7a:1e:85:3e:94:a9:84:97:0a:f7:d1:b3:6b:41:52:dd: df:e0:86:39:dc:36:f2:fd:8a:3a:26:74:d6:10:a9:ac:33:00: c6:2f:9f:5d:29:26:af:a9:59:ba:2d:46:dc:ec:7f:64:09:a6: 9a:5f:12:19:6c:ef:31:6b:72:d2:c1:92:58:fe:f9:cb:79:73: 68:3e:1f:aa:ef:fe:4e:9f:35:8f:94:77:0f:3b:91:ce:2f:45: 38:6b:36:d6:83:a8:40:b1:f7:e8:74:c4:42:f7:21:05:a9:7b: 0f:0e:3d:fb:d9:94:ab:62:97:ab:cc:db:37:a7:e4:40:69:44: 3c:b7:10:f6:e6:81:14:1c:f9:dc:0c:96:fc:62:cf:89:28:dd: 79:18:a6:9b:31:2c:7f:bf:19:51:15:1f:1e:71:46:d9:7d:f3: 43:aa:b6:c0:95:53:85:1a:41:ad:cc:20:70:18:7f:f3:5f:0f: 78:7a:1f:58:79:e3:68:f0:75:b9:c5:fe:51:94:c9:4a:59:7f: 20:ca:a4:01 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwMDMxMTAvBgNVBAUTKEE4RkMwNjM2RTY4MTg2NDc1NTQ4Nzk0RERGQTQ2OTBC RkZENENDQjYwHhcNMjUwODA3MDYxMTUxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0NDNhNy01NjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8alDAdWDpmFBl5YsG3BM7smbg7HW8Jo9ZrH8hwJqQnQzvD2pz6SiNB8sGiu0 cX0Y4n79SK37etbdGVRywT1NUz1toOY7CF4f6U5Y47X0OS/vNKqaMWldko4zpQdy OhLpCuK0oE32Br0yNxbyePOxjFmAPHBdI0g1GtH748DmqrYTEqkSiljZN4cIyRgn IkeHxp2361R51NzhzkmUzloOwgKNu8MCNL2A657bYsYRhXblAUQ/+9a3kWajWIcq +n5PabZZwrA1VtEhAXjANrsJQ8mUHefRmH1Jv7jLQtNkxkGM03FQtDF3perVxups zjJP+TgHJ/PGDcBN2ZLRQsV0NQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNWBzMYh oQJ4tS4uhFTAX1ee79eXMB8GA1UdIwQYMBaAFKj8BjbmgYZHVUh5Td+kaQv/1My2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzAwMy8yNkE2QjA1ODMy QkIxMUVGQTgzRDYxMkZDNEY5QUUwMi9xUHdHTnVhQmhrZFZTSGxOMzZScENfX1V6 TFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FQd0dOdWFCaGtkVlNIbE4zNlJwQ19fVXpMWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwMDMvMjZBNkIwNTgzMkJCMTFFRkE4M0Q2MTJGQzRGOUFFMDIvODVDM0FDOUEz OUU1MTFFRjk5RkQ3QTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADAvLkDBADAy9gwDQYJKoZIhvcNAQELBQADggEBAJuS8JhR RUmw4EwH9UXsSIMZxa3L1hI6/hQtfjTH5XeajLS4Zg9FdEvRALFeMcyl/EfzwDtx Mq3Ieh6FPpSphJcK99Gza0FS3d/ghjncNvL9ijomdNYQqawzAMYvn10pJq+pWbot Rtzsf2QJpppfEhls7zFrctLBklj++ct5c2g+H6rv/k6fNY+Udw87kc4vRThrNtaD qECx9+h0xEL3IQWpew8OPfvZlKtil6vM2zen5EBpRDy3EPbmgRQc+dwMlvxiz4ko 3XkYppsxLH+/GVEVHx5xRtl980OqtsCVU4UaQa3MIHAYf/NfD3h6H1h542jwdbnF /lGUyUpZfyDKpAE= -----END CERTIFICATE-----Generated at Sat Aug 23 20:59:01 2025 by rpki-client