$ rpki-client -vvf rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/362B52EA31C511F0B796F75DC4F9AE02.roa File: 362B52EA31C511F0B796F75DC4F9AE02.roa (raw, json) Hash identifier: 32ChZuN5aLmUO2MNOxKOn9C6wDIBYJGI4WGeVTj7tjg= Subject key identifier: 42:E1:E2:69:48:2B:69:A0:78:15:43:6E:19:86:50:35:D3:DB:1D:41 Certificate issuer: /CN=A91705D7/serialNumber=AA4405B1BFA96C9C69B029033EF481D8F58A77E5 Certificate serial: EA Authority key identifier: AA:44:05:B1:BF:A9:6C:9C:69:B0:29:03:3E:F4:81:D8:F5:8A:77:E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/362B52EA31C511F0B796F75DC4F9AE02.roa Signing time: Thu 03 Jul 2025 06:10:08 +0000 ROA not before: Thu 03 Jul 2025 06:10:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 133112 IP address blocks: 160.20.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91705D7, serialNumber=AA4405B1BFA96C9C69B029033EF481D8F58A77E5 Validity Not Before: Jul 3 06:10:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68661ec0-5aa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e1:e0:4a:a8:f3:19:2b:3d:b4:b6:7f:f2:70: 3f:7a:df:d0:06:32:57:32:a5:76:b2:79:f7:51:79: 03:bc:68:cc:4c:22:f8:6d:3e:e2:29:9b:a1:70:c8: e0:5a:78:35:de:9e:9a:6e:08:d1:4f:a5:dc:33:1f: fc:ab:78:61:df:9e:40:5d:3b:7b:eb:93:6a:7a:c7: 6b:b5:48:16:8c:00:5a:cb:6d:9e:26:a5:e2:62:b9: 30:e2:01:ac:88:74:7d:97:a5:03:59:c9:7e:e0:bc: 8a:42:32:38:5b:b4:70:05:ca:7b:a7:0c:5e:7e:bc: 65:98:24:ff:c8:41:bf:fb:cc:d5:26:e3:83:23:b8: 64:77:ca:fe:eb:fc:b6:78:79:33:6c:ce:7b:ba:07: 64:f9:05:73:c0:5b:d0:da:b9:84:89:da:59:68:8e: c0:18:8f:01:ac:ec:49:d4:58:90:c8:6d:4d:1b:8f: 79:41:38:15:37:de:a6:12:79:32:05:45:c9:65:84: 8e:8e:a2:2a:e2:f3:a8:a8:2e:f0:3b:61:47:eb:35: 7a:53:a6:8f:fb:96:46:83:d1:d2:19:6a:f9:73:92: 62:85:32:db:b2:fc:17:c5:7e:5a:5a:cf:2d:f2:ee: 00:4a:6c:2c:f1:3e:db:cb:f5:ef:94:6c:87:3b:87: 50:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:E1:E2:69:48:2B:69:A0:78:15:43:6E:19:86:50:35:D3:DB:1D:41 X509v3 Authority Key Identifier: keyid:AA:44:05:B1:BF:A9:6C:9C:69:B0:29:03:3E:F4:81:D8:F5:8A:77:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/362B52EA31C511F0B796F75DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.117.0/24 Signature Algorithm: sha256WithRSAEncryption bd:84:e6:64:f3:a2:5e:5f:93:bf:14:6c:bb:fa:88:20:fd:c6: cf:58:b1:0b:31:52:e4:9d:60:40:c8:d7:a0:ea:0e:13:55:0f: fc:68:a2:f6:80:03:41:f8:c8:64:09:96:35:63:f8:8e:60:e6: 53:93:bc:a6:0b:15:58:02:b9:3a:29:ff:d5:03:9f:bf:34:83: 15:81:3a:5c:ca:e9:98:4a:e0:09:5c:38:c7:6b:08:8f:d8:36: b8:54:72:b9:e8:7f:f7:fc:9c:c3:4e:51:7d:6e:4d:fb:bb:ee: 1c:06:30:ca:08:dd:eb:14:71:d0:fc:35:df:58:d1:39:8c:99: cb:6d:1f:e1:66:78:01:b4:dd:9b:92:b8:9b:07:c0:56:08:02: 36:49:e8:50:c0:79:0e:75:45:d1:3b:83:6c:64:56:e2:13:c0: 97:f0:dc:14:f4:6c:e9:7e:6d:7e:53:65:4b:e7:a1:fe:72:f4: da:9d:da:e1:84:67:ff:a4:d0:d1:13:75:80:cb:8c:ae:56:6f: 32:c2:c3:ed:d7:54:d9:36:0c:7f:71:a6:86:84:9a:34:e1:35: 43:03:39:dc:08:7a:b1:f1:69:80:80:a7:6e:65:fe:e0:08:de: 0a:5a:b8:85:bf:37:69:be:d7:56:6d:c0:dd:df:f8:24:a7:e2: 03:28:20:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA1RDcxMTAvBgNVBAUTKEFBNDQwNUIxQkZBOTZDOUM2OUIwMjkwMzNFRjQ4MUQ4 RjU4QTc3RTUwHhcNMjUwNzAzMDYxMDA4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MWVjMC01YWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+HgSqjzGSs9tLZ/8nA/et/QBjJXMqV2snn3UXkDvGjMTCL4bT7iKZuhcMjg Wng13p6abgjRT6XcMx/8q3hh355AXTt765NqesdrtUgWjABay22eJqXiYrkw4gGs iHR9l6UDWcl+4LyKQjI4W7RwBcp7pwxefrxlmCT/yEG/+8zVJuODI7hkd8r+6/y2 eHkzbM57ugdk+QVzwFvQ2rmEidpZaI7AGI8BrOxJ1FiQyG1NG495QTgVN96mEnky BUXJZYSOjqIq4vOoqC7wO2FH6zV6U6aP+5ZGg9HSGWr5c5JihTLbsvwXxX5aWs8t 8u4ASmws8T7by/XvlGyHO4dQAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFELh4mlI K2mgeBVDbhmGUDXT2x1BMB8GA1UdIwQYMBaAFKpEBbG/qWycabApAz70gdj1infl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDVENy85NkEzNkFBODE2 RDgxMUVGQkY5MDFFNUZDNEY5QUUwMi9xa1FGc2ItcGJKeHBzQ2tEUHZTQjJQV0tk LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FrUUZzYi1wYkp4cHNDa0RQdlNCMlBXS2QtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA1RDcvOTZBMzZBQTgxNkQ4MTFFRkJGOTAxRTVGQzRGOUFFMDIvMzYyQjUyRUEz MUM1MTFGMEI3OTZGNzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFHUwDQYJKoZIhvcNAQELBQADggEBAL2E5mTzol5fk78U bLv6iCD9xs9YsQsxUuSdYEDI16DqDhNVD/xoovaAA0H4yGQJljVj+I5g5lOTvKYL FVgCuTop/9UDn780gxWBOlzK6ZhK4AlcOMdrCI/YNrhUcrnof/f8nMNOUX1uTfu7 7hwGMMoI3esUcdD8Nd9Y0TmMmcttH+FmeAG03ZuSuJsHwFYIAjZJ6FDAeQ51RdE7 g2xkVuITwJfw3BT0bOl+bX5TZUvnof5y9Nqd2uGEZ/+k0NETdYDLjK5WbzLCw+3X VNk2DH9xpoaEmjThNUMDOdwIerHxaYCAp25l/uAI3gpauIW/N2m+11ZtwN3f+CSn 4gMoIMw= -----END CERTIFICATE-----Generated at Fri Jul 4 17:46:46 2025 by rpki-client