$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/A83ECFAE791B11F0B7D48969C4F9AE02.roa File: A83ECFAE791B11F0B7D48969C4F9AE02.roa (raw, json) Hash identifier: FOnoWXzG/xzvG2wY9SEKlskrDJv5q/5MAP/jyysv8e0= Subject key identifier: F8:8D:A4:C3:F8:EE:AE:8A:A7:6A:C7:35:A7:87:38:67:E0:E6:53:E5 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 1459 Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/A83ECFAE791B11F0B7D48969C4F9AE02.roa Signing time: Thu 14 Aug 2025 14:33:34 +0000 ROA not before: Thu 14 Aug 2025 14:33:34 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 35876 IP address blocks: 116.204.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5209 (0x1459) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A, serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Aug 14 14:33:34 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689df3be-ea69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:16:44:d2:4a:92:5a:0f:9d:05:69:77:7b:ee: a8:fb:61:84:23:90:97:9f:10:a1:95:8b:1f:ef:9a: e4:d9:f5:fb:a6:d0:d2:94:c4:71:1d:b3:8e:33:bd: 2b:bc:a3:5c:09:94:48:2c:af:cd:c8:f9:0b:46:ee: 0a:66:d9:02:40:3b:e1:ea:52:d3:e4:55:e5:4d:e1: 3d:f6:16:ca:04:a2:6f:62:c1:62:b3:54:fe:07:ed: e0:fb:d8:fc:6a:ed:85:10:21:34:f4:0b:7b:aa:36: 08:6b:0c:d6:f3:c8:37:a1:54:0e:b9:a7:14:98:47: 92:88:8e:f4:13:7a:37:7d:13:c3:5a:dc:cb:88:f0: c2:ba:d4:2a:60:4f:a2:3d:6b:0d:63:9b:8a:07:76: d0:12:91:ef:29:41:79:10:68:94:2a:be:85:75:a6: 72:89:a9:6a:d0:16:4f:72:25:6f:69:07:cd:d1:d1: 7e:83:1d:51:ca:82:ae:a7:b1:12:15:32:33:0e:98: af:4c:04:b8:c7:9a:dc:2a:3e:82:55:6a:11:10:e3: 15:f8:cc:d4:71:54:a4:01:0a:53:70:d7:f1:98:a8: 37:e4:0d:87:95:44:3f:9d:ed:62:c7:b4:f8:11:35: 87:77:1c:4e:82:ca:e4:cd:bc:92:67:31:44:d2:b0: ca:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:8D:A4:C3:F8:EE:AE:8A:A7:6A:C7:35:A7:87:38:67:E0:E6:53:E5 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/A83ECFAE791B11F0B7D48969C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.132.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:a9:e0:6d:0c:67:82:28:93:8a:e7:33:a1:5d:6f:68:cd:92: 23:90:6b:97:f1:4c:01:4c:d8:6b:fc:a2:2e:43:c3:04:64:e8: 08:33:80:3b:c7:4e:78:e7:ef:36:1d:7a:48:e9:ce:46:d0:88: 5c:fe:b9:2b:59:4f:71:09:1a:71:0a:9c:ad:d2:ba:93:a4:52: 11:14:23:fd:c2:bf:f9:33:71:69:51:d6:20:4b:27:e3:58:e0: 21:8e:d3:a3:52:8c:8c:c4:bd:60:07:58:4a:e0:df:46:ce:a2: 04:56:12:11:4f:72:94:71:3d:87:75:16:44:0a:56:bf:e4:cb: 8c:9d:61:93:05:d9:bb:00:86:4b:f2:66:6f:66:ff:6e:21:d4: cc:ee:0a:57:13:8e:7a:b8:18:9d:6c:11:4c:c1:e1:2c:f8:9f: af:be:d1:13:2c:f0:90:c6:31:c2:dc:d3:46:ce:de:26:79:67: 29:90:6c:d2:69:9b:7f:4c:bf:d6:72:2a:7e:d7:cf:4a:20:33: 26:7e:f5:65:88:2a:4e:a7:93:3e:3e:94:db:d5:2a:d1:e8:d6: 87:b8:c3:d3:d9:09:23:a8:59:ed:f1:9c:74:4a:64:1a:da:9b: 5a:68:9d:3f:d5:31:d8:91:47:fa:c9:f8:5b:bc:fd:f5:f3:f9: 6d:88:ca:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjUwODE0MTQzMzM0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODlkZjNiZS1lYTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBZE0kqSWg+dBWl3e+6o+2GEI5CXnxChlYsf75rk2fX7ptDSlMRxHbOOM70r vKNcCZRILK/NyPkLRu4KZtkCQDvh6lLT5FXlTeE99hbKBKJvYsFis1T+B+3g+9j8 au2FECE09At7qjYIawzW88g3oVQOuacUmEeSiI70E3o3fRPDWtzLiPDCutQqYE+i PWsNY5uKB3bQEpHvKUF5EGiUKr6FdaZyialq0BZPciVvaQfN0dF+gx1RyoKup7ES FTIzDpivTAS4x5rcKj6CVWoREOMV+MzUcVSkAQpTcNfxmKg35A2HlUQ/ne1ix7T4 ETWHdxxOgsrkzbySZzFE0rDKbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPiNpMP4 7q6Kp2rHNaeHOGfg5lPlMB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCNEEvMEFEQjE3QzA4MDBBMTFFODlCNDgzRTdDQzRGOUFFMDIvQTgzRUNGQUU3 OTFCMTFGMEI3RDQ4OTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ0zIQwDQYJKoZIhvcNAQELBQADggEBAD2p4G0MZ4Iok4rn M6Fdb2jNkiOQa5fxTAFM2Gv8oi5DwwRk6AgzgDvHTnjn7zYdekjpzkbQiFz+uStZ T3EJGnEKnK3SupOkUhEUI/3Cv/kzcWlR1iBLJ+NY4CGO06NSjIzEvWAHWErg30bO ogRWEhFPcpRxPYd1FkQKVr/ky4ydYZMF2bsAhkvyZm9m/24h1MzuClcTjnq4GJ1s EUzB4Sz4n6++0RMs8JDGMcLc00bO3iZ5ZymQbNJpm39Mv9ZyKn7Xz0ogMyZ+9WWI Kk6nkz4+lNvVKtHo1oe4w9PZCSOoWe3xnHRKZBram1ponT/VMdiRR/rJ+Fu8/fXz +W2IyoI= -----END CERTIFICATE-----Generated at Sun Aug 24 04:59:04 2025 by rpki-client