$ rpki-client -vvf rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/4FEDDA6831C511F0996C265EC4F9AE02.roa File: 4FEDDA6831C511F0996C265EC4F9AE02.roa (raw, json) Hash identifier: G8CAzDlv561lCTXBbNuUwLBStLkoC94IOzFjIj5uYjk= Subject key identifier: 9D:B9:2D:D7:26:40:B7:E0:93:04:3A:66:DD:AB:BF:A2:F4:28:C3:CD Certificate issuer: /CN=A91705D7/serialNumber=AA4405B1BFA96C9C69B029033EF481D8F58A77E5 Certificate serial: EB Authority key identifier: AA:44:05:B1:BF:A9:6C:9C:69:B0:29:03:3E:F4:81:D8:F5:8A:77:E5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/4FEDDA6831C511F0996C265EC4F9AE02.roa Signing time: Thu 03 Jul 2025 06:10:09 +0000 ROA not before: Thu 03 Jul 2025 06:10:09 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9825 IP address blocks: 160.20.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 235 (0xeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91705D7, serialNumber=AA4405B1BFA96C9C69B029033EF481D8F58A77E5 Validity Not Before: Jul 3 06:10:09 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68661ec1-8d63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b3:b5:85:cb:57:6c:63:45:a8:53:40:10:3c: 60:d1:6e:61:47:93:b6:a7:29:94:4d:8a:6a:96:58: 4e:4f:85:61:39:89:0c:55:39:7f:01:14:49:53:77: 53:1f:14:70:a3:0e:2a:92:af:26:6c:97:92:80:00: d4:1d:d2:4e:c6:93:64:e4:a0:9d:8b:c4:ec:42:bb: 2d:e9:81:9f:71:59:82:ed:fc:93:61:61:6c:6f:e1: ae:36:d5:f4:a0:85:d9:53:ce:bc:bd:99:8d:87:38: 8d:cf:08:77:76:36:56:aa:49:8e:d6:5c:79:8d:35: 32:41:01:16:72:43:95:fa:91:62:b6:c9:fc:41:a2: 30:4c:4a:98:30:b3:9c:70:1a:7f:33:e3:62:62:03: 71:bd:ac:12:96:93:7c:59:38:22:ef:b4:a8:38:ee: 48:35:06:d1:3a:cd:69:e3:93:2d:4e:0a:04:e3:4c: 1d:83:4f:c1:91:71:64:d1:4b:68:8a:38:56:76:90: 87:aa:5f:ed:74:64:94:73:3b:c1:6d:1d:77:76:0e: cc:7c:f5:d9:65:22:26:69:71:3d:9e:89:4c:d8:f7: ba:46:f6:8b:45:51:d0:0b:46:58:6b:ee:fc:f2:55: 31:bf:f9:0e:1d:a5:d8:60:93:40:f2:2f:7a:6d:61: 10:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B9:2D:D7:26:40:B7:E0:93:04:3A:66:DD:AB:BF:A2:F4:28:C3:CD X509v3 Authority Key Identifier: keyid:AA:44:05:B1:BF:A9:6C:9C:69:B0:29:03:3E:F4:81:D8:F5:8A:77:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/qkQFsb-pbJxpsCkDPvSB2PWKd-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qkQFsb-pbJxpsCkDPvSB2PWKd-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91705D7/96A36AA816D811EFBF901E5FC4F9AE02/4FEDDA6831C511F0996C265EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.116.0/24 Signature Algorithm: sha256WithRSAEncryption 78:91:76:56:63:76:87:a9:c6:0e:b5:6d:a6:88:5b:23:ba:20: ec:ca:2e:74:0a:0f:c3:95:e4:3e:bb:20:56:19:a7:b6:e2:a1: 51:48:07:2a:d8:6d:25:e1:d0:87:f4:2c:eb:fe:f5:59:c7:ac: 21:a4:11:de:56:be:6c:c1:7d:bc:04:16:b1:d1:65:90:b6:97: 24:ec:d0:64:e0:06:f6:cf:3e:c9:04:d3:0a:06:37:f2:bf:3d: c7:d6:a6:0c:2d:12:85:36:0d:ff:22:23:76:14:42:57:da:ec: 5e:7a:d9:d8:5e:c6:f9:a2:c4:9d:80:61:42:14:6f:81:34:a6: 48:a3:5a:4b:43:b4:29:e5:3d:a4:49:c4:49:22:e8:ad:ee:12: 62:e0:c2:55:4e:23:98:a8:0b:52:1a:37:bd:6f:c3:23:5e:6e: 6a:c6:1f:98:7f:e8:cc:0a:bc:32:53:7c:fe:7f:0f:6f:7a:d9: c9:73:27:66:91:4f:a0:14:e8:75:bf:d9:b1:70:68:49:23:76: 9c:a4:55:0b:60:bd:69:31:b5:a2:1d:97:e8:ab:19:a4:7e:79: db:84:16:5c:08:41:aa:83:c3:2c:a9:ee:34:b2:e4:9b:c5:f0: 01:21:15:8b:78:dc:42:96:b5:bc:60:47:64:5d:8a:23:2b:51: 80:31:df:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA1RDcxMTAvBgNVBAUTKEFBNDQwNUIxQkZBOTZDOUM2OUIwMjkwMzNFRjQ4MUQ4 RjU4QTc3RTUwHhcNMjUwNzAzMDYxMDA5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MWVjMS04ZDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrO1hctXbGNFqFNAEDxg0W5hR5O2pymUTYpqllhOT4VhOYkMVTl/ARRJU3dT HxRwow4qkq8mbJeSgADUHdJOxpNk5KCdi8TsQrst6YGfcVmC7fyTYWFsb+GuNtX0 oIXZU868vZmNhziNzwh3djZWqkmO1lx5jTUyQQEWckOV+pFitsn8QaIwTEqYMLOc cBp/M+NiYgNxvawSlpN8WTgi77SoOO5INQbROs1p45MtTgoE40wdg0/BkXFk0Uto ijhWdpCHql/tdGSUczvBbR13dg7MfPXZZSImaXE9nolM2Pe6RvaLRVHQC0ZYa+78 8lUxv/kOHaXYYJNA8i96bWEQ8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ25Ldcm QLfgkwQ6Zt2rv6L0KMPNMB8GA1UdIwQYMBaAFKpEBbG/qWycabApAz70gdj1infl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDVENy85NkEzNkFBODE2 RDgxMUVGQkY5MDFFNUZDNEY5QUUwMi9xa1FGc2ItcGJKeHBzQ2tEUHZTQjJQV0tk LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FrUUZzYi1wYkp4cHNDa0RQdlNCMlBXS2QtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA1RDcvOTZBMzZBQTgxNkQ4MTFFRkJGOTAxRTVGQzRGOUFFMDIvNEZFRERBNjgz MUM1MTFGMDk5NkMyNjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACgFHQwDQYJKoZIhvcNAQELBQADggEBAHiRdlZjdoepxg61 baaIWyO6IOzKLnQKD8OV5D67IFYZp7bioVFIByrYbSXh0If0LOv+9VnHrCGkEd5W vmzBfbwEFrHRZZC2lyTs0GTgBvbPPskE0woGN/K/PcfWpgwtEoU2Df8iI3YUQlfa 7F562dhexvmixJ2AYUIUb4E0pkijWktDtCnlPaRJxEki6K3uEmLgwlVOI5ioC1Ia N71vwyNebmrGH5h/6MwKvDJTfP5/D2962clzJ2aRT6AU6HW/2bFwaEkjdpykVQtg vWkxtaIdl+irGaR+eduEFlwIQaqDwyyp7jSy5JvF8AEhFYt43EKWtbxgR2RdiiMr UYAx33M= -----END CERTIFICATE-----Generated at Fri Jul 4 21:53:22 2025 by rpki-client