$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/206BA2C4AA2A11F0B670463FC4F9AE02.roa File: 206BA2C4AA2A11F0B670463FC4F9AE02.roa (raw, json) Hash identifier: b16d+2kTdbON2ixe1jCa6GapHvNF5ngdixgV1f1xSyE= Subject key identifier: 1F:DF:AD:1C:47:E2:88:BD:3A:BA:EF:0E:FF:9D:13:34:3A:1A:FE:C1 Certificate issuer: /CN=A9167A72/serialNumber=2EF4695443A4C0C7B34EA91B62A3D8F8E414517E Certificate serial: 5F Authority key identifier: 2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/206BA2C4AA2A11F0B670463FC4F9AE02.roa Signing time: Thu 16 Oct 2025 00:51:44 +0000 ROA not before: Thu 16 Oct 2025 00:51:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 142292 IP address blocks: 168.140.196.0/22 maxlen: 22 168.140.196.0/24 maxlen: 24 168.140.197.0/24 maxlen: 24 168.140.198.0/24 maxlen: 24 168.140.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.crl rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72, serialNumber=2EF4695443A4C0C7B34EA91B62A3D8F8E414517E Validity Not Before: Oct 16 00:51:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68f041a0-15c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7b:57:f5:14:91:96:7d:88:7d:fd:82:fd:bd: c9:01:d2:dd:f1:2e:a3:2d:4f:6e:bd:ed:c8:1b:cf: 79:4f:36:64:5b:f9:d2:8d:6c:76:53:a5:79:c4:db: 6d:76:54:d9:82:44:5b:ce:5e:48:2e:0a:aa:8f:f5: 17:dd:70:2c:a0:f6:2f:e6:ba:65:b0:92:6e:83:97: e7:a7:5a:9c:84:7d:63:e8:3f:73:cd:2e:3e:7b:30: 42:42:05:75:cc:57:8c:bb:41:ac:bc:32:89:ac:f7: da:56:74:31:96:8f:f7:ae:49:31:31:f3:8c:44:ec: eb:51:28:4b:f4:5b:07:44:6b:64:ee:2a:c0:79:99: 3c:eb:f2:dd:6d:79:25:83:03:3b:2e:5f:4b:ef:5e: 2d:dd:bc:03:69:e2:d3:cd:81:07:55:a6:84:06:3b: 63:ad:17:55:60:7b:cb:93:21:ce:89:6c:13:c2:60: 69:79:5b:bb:5f:f1:38:e2:7b:cc:11:59:61:b7:81: c7:49:4f:a0:64:e6:91:b8:76:77:c9:69:b7:2b:be: 39:af:4f:05:c5:ff:ac:4e:12:a5:ae:cb:2e:63:f0: 72:00:7f:8b:1e:f4:39:f7:60:36:76:ca:03:92:5e: a1:23:ec:9f:74:15:c4:3f:2b:78:db:d1:ec:42:24: 09:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:DF:AD:1C:47:E2:88:BD:3A:BA:EF:0E:FF:9D:13:34:3A:1A:FE:C1 X509v3 Authority Key Identifier: keyid:2E:F4:69:54:43:A4:C0:C7:B3:4E:A9:1B:62:A3:D8:F8:E4:14:51:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/LvRpVEOkwMezTqkbYqPY-OQUUX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LvRpVEOkwMezTqkbYqPY-OQUUX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/44DE69CE2B1411F08523F26BC4F9AE02/206BA2C4AA2A11F0B670463FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.140.196.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:f1:0e:54:c3:14:8a:de:ea:ea:3f:bc:10:7b:ae:88:89:2d: 0f:0a:50:b3:1b:c6:9f:ce:28:d7:fd:aa:1a:63:92:a8:57:5f: e5:3e:f2:79:05:47:55:ec:99:30:8e:c3:53:8e:e5:ec:1a:39: f0:b5:f9:51:f4:d2:e1:bb:aa:17:00:83:78:85:d3:8d:d9:23: d3:b2:a9:01:db:19:00:dd:f9:af:fd:20:26:f2:1c:49:ae:63: 6d:65:01:a5:d1:2b:b1:bb:1c:72:50:4f:a1:04:90:4f:52:f7: 94:a4:aa:92:4b:37:0a:78:46:f3:68:4b:95:45:ad:a1:8c:4f: 5f:c0:ba:09:4c:33:30:bc:44:c8:f5:8c:6e:77:29:44:c9:3d: 5a:0d:10:d9:af:22:66:93:9b:25:40:9f:0e:a8:cc:45:fc:c5: b9:b7:a0:31:dc:9b:f5:5f:d6:72:6b:da:0e:00:05:70:0e:12: b4:ad:25:a7:93:bf:0c:02:01:b1:f3:37:a4:77:b2:6f:6f:72: 0e:e2:6d:a4:58:a7:25:3f:e2:cd:d6:89:ff:f3:83:b1:ea:98: 18:d0:8d:42:74:a0:da:bf:06:52:0c:0e:93:b8:e5:36:c4:b9: 81:13:eb:d1:37:80:8d:09:c5:72:aa:15:20:6a:7f:1e:c7:1d: e1:be:b4:44 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0E3MjExMC8GA1UEBRMoMkVGNDY5NTQ0M0E0QzBDN0IzNEVBOTFCNjJBM0Q4RjhF NDE0NTE3RTAeFw0yNTEwMTYwMDUxNDRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjA0MWEwLTE1YzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCre1f1FJGWfYh9/YL9vckB0t3xLqMtT2697cgbz3lPNmRb+dKNbHZTpXnE2212 VNmCRFvOXkguCqqP9RfdcCyg9i/mumWwkm6Dl+enWpyEfWPoP3PNLj57MEJCBXXM V4y7Qay8Moms99pWdDGWj/euSTEx84xE7OtRKEv0WwdEa2TuKsB5mTzr8t1teSWD AzsuX0vvXi3dvANp4tPNgQdVpoQGO2OtF1Vge8uTIc6JbBPCYGl5W7tf8Tjie8wR WWG3gcdJT6Bk5pG4dnfJabcrvjmvTwXF/6xOEqWuyy5j8HIAf4se9Dn3YDZ2ygOS XqEj7J90FcQ/K3jb0exCJAlZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUH9+tHEfi iL06uu8O/50TNDoa/sEwHwYDVR0jBBgwFoAULvRpVEOkwMezTqkbYqPY+OQUUX4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3QTcyLzQ0REU2OUNFMkIx NDExRjA4NTIzRjI2QkM0RjlBRTAyL0x2UnBWRU9rd01lelRxa2JZcVBZLU9RVVVY NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTHZScFZFT2t3TWV6VHFrYllxUFktT1FVVVg0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0E3Mi80NERFNjlDRTJCMTQxMUYwODUyM0YyNkJDNEY5QUUwMi8yMDZCQTJDNEFB MkExMUYwQjY3MDQ2M0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAqiMxDANBgkqhkiG9w0BAQsFAAOCAQEAn/EOVMMUit7q6j+8 EHuuiIktDwpQsxvGn84o1/2qGmOSqFdf5T7yeQVHVeyZMI7DU47l7Bo58LX5UfTS 4buqFwCDeIXTjdkj07KpAdsZAN35r/0gJvIcSa5jbWUBpdErsbscclBPoQSQT1L3 lKSqkks3CnhG82hLlUWtoYxPX8C6CUwzMLxEyPWMbncpRMk9Wg0Q2a8iZpObJUCf DqjMRfzFubegMdyb9V/WcmvaDgAFcA4StK0lp5O/DAIBsfM3pHeyb29yDuJtpFin JT/izdaJ//ODseqYGNCNQnSg2r8GUgwOk7jlNsS5gRPr0TeAjQnFcqoVIGp/Hscd 4b60RA== -----END CERTIFICATE-----Generated at Tue Oct 21 11:28:40 2025 by rpki-client