$ rpki-client -vvf rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/A54CA35E853B11EFB513D149C4F9AE02.roa File: A54CA35E853B11EFB513D149C4F9AE02.roa (raw, json) Hash identifier: TFRc9S9SOrNVMntsMk3kyNzc0WoLEqK3wZVoB040ZkI= Subject key identifier: 04:95:6E:2E:0A:43:37:D5:96:32:72:7D:D4:17:82:1B:B6:12:85:C4 Certificate issuer: /CN=A9170EED/serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Certificate serial: B8 Authority key identifier: 69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/A54CA35E853B11EFB513D149C4F9AE02.roa Signing time: Wed 17 Sep 2025 03:57:29 +0000 ROA not before: Wed 17 Sep 2025 03:57:29 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 150154 IP address blocks: 160.187.184.0/23 maxlen: 23 160.187.184.0/24 maxlen: 24 160.187.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:57:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170EED, serialNumber=6918AA71F36B046353A65CC08978B18EFFB9F5C6 Validity Not Before: Sep 17 03:57:29 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68ca31a8-5a31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7a:e7:4e:ba:43:99:14:ec:db:57:14:e6:bb: c1:9e:ac:fe:2e:cd:e6:99:0b:bb:ad:39:82:9a:80: f4:84:25:8c:24:96:d1:04:09:2a:60:b7:2d:b6:3e: 00:c5:6d:8a:d2:03:97:b1:7b:3d:4e:a0:f8:cd:37: 21:fe:a8:f1:bb:45:ce:76:d6:bf:a1:6e:cb:c3:d5: 5c:d4:c2:46:b4:17:ae:3f:08:2f:b3:6e:e7:fb:1e: 86:a8:f4:fd:9e:f0:28:49:b0:15:ae:7f:cc:e6:e4: f9:2c:bf:ec:26:15:0b:d8:98:7d:65:75:66:e8:85: 17:77:ae:18:ea:32:bd:f4:f4:bc:1a:82:0a:75:0b: 8f:5a:17:06:49:2c:de:da:4a:f8:e7:aa:89:b0:30: 4c:8a:58:05:6d:f0:8a:6f:80:2c:a7:ff:48:03:af: 8e:c5:7b:a3:e3:47:ff:7e:f5:d6:34:44:7e:09:3a: cc:9b:ae:91:67:ce:8e:2b:9c:7e:21:ab:dc:3c:63: bb:2a:e3:a7:60:a5:38:c8:8d:86:1f:cc:0f:d7:87: e0:69:16:b9:7e:2b:29:b9:46:04:8d:1a:46:36:9c: 05:4c:bd:5e:be:fd:a7:48:6a:7b:8f:b0:76:a7:28: 42:49:b1:83:a6:49:b7:e6:df:5d:c9:73:4a:d0:bf: 86:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:95:6E:2E:0A:43:37:D5:96:32:72:7D:D4:17:82:1B:B6:12:85:C4 X509v3 Authority Key Identifier: keyid:69:18:AA:71:F3:6B:04:63:53:A6:5C:C0:89:78:B1:8E:FF:B9:F5:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/aRiqcfNrBGNTplzAiXixjv-59cY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aRiqcfNrBGNTplzAiXixjv-59cY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170EED/37402ADE853B11EFA3072349C4F9AE02/A54CA35E853B11EFB513D149C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.184.0/23 Signature Algorithm: sha256WithRSAEncryption aa:2c:37:5c:3d:97:44:f3:8a:4b:e6:65:fe:3c:27:d8:85:41: 65:5d:35:53:3c:c8:ba:32:1f:cf:60:ae:41:9c:08:3e:7c:1b: 87:1d:62:17:d3:fb:22:60:83:b7:8a:98:f5:42:66:b8:fb:7e: f9:bb:89:a9:ea:e5:aa:3c:03:57:5d:cf:ed:a0:f5:8d:e4:49: 21:cf:61:bb:2a:22:37:79:93:fd:b0:ed:7e:53:33:8a:04:c5: 0f:9b:99:60:30:ca:f6:a0:6e:8f:85:96:a6:11:f3:b1:c2:4f: be:f2:bc:c9:c1:28:ec:78:46:83:00:40:20:8d:a1:ba:ae:8e: fc:67:96:82:1e:3d:9e:07:57:15:52:7a:04:d8:6f:b1:73:ee: 57:41:c0:26:ad:fb:54:59:bc:4c:b3:cb:a8:a7:9d:f1:b7:6b: 54:6e:13:24:0c:dd:e0:2d:aa:be:16:7e:85:db:e3:40:a5:36: 24:80:bc:c3:77:a7:81:e0:5c:5f:30:fe:6f:bf:a6:a0:64:62: 41:c1:d6:84:c4:02:a6:01:14:6b:2c:86:3c:0b:70:eb:75:e5: a0:54:f0:a0:70:31:51:4a:9c:5f:58:f2:0c:57:0f:eb:a0:0c: 1a:cc:84:62:46:9f:1f:f6:ae:44:2d:4f:f6:69:f8:11:5e:cb: 2b:6c:2f:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBFRUQxMTAvBgNVBAUTKDY5MThBQTcxRjM2QjA0NjM1M0E2NUNDMDg5NzhCMThF RkZCOUY1QzYwHhcNMjUwOTE3MDM1NzI5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNhMzFhOC01YTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3rnTrpDmRTs21cU5rvBnqz+Ls3mmQu7rTmCmoD0hCWMJJbRBAkqYLcttj4A xW2K0gOXsXs9TqD4zTch/qjxu0XOdta/oW7Lw9Vc1MJGtBeuPwgvs27n+x6GqPT9 nvAoSbAVrn/M5uT5LL/sJhUL2Jh9ZXVm6IUXd64Y6jK99PS8GoIKdQuPWhcGSSze 2kr456qJsDBMilgFbfCKb4Asp/9IA6+OxXuj40f/fvXWNER+CTrMm66RZ86OK5x+ IavcPGO7KuOnYKU4yI2GH8wP14fgaRa5fispuUYEjRpGNpwFTL1evv2nSGp7j7B2 pyhCSbGDpkm35t9dyXNK0L+GTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFASVbi4K QzfVljJyfdQXghu2EoXEMB8GA1UdIwQYMBaAFGkYqnHzawRjU6ZcwIl4sY7/ufXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEVFRC8zNzQwMkFERTg1 M0IxMUVGQTMwNzIzNDlDNEY5QUUwMi9hUmlxY2ZOckJHTlRwbHpBaVhpeGp2LTU5 Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2FSaXFjZk5yQkdOVHBsekFpWGl4anYtNTljWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBFRUQvMzc0MDJBREU4NTNCMTFFRkEzMDcyMzQ5QzRGOUFFMDIvQTU0Q0EzNUU4 NTNCMTFFRkI1MTNEMTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu7gwDQYJKoZIhvcNAQELBQADggEBAKosN1w9l0Tzikvm Zf48J9iFQWVdNVM8yLoyH89grkGcCD58G4cdYhfT+yJgg7eKmPVCZrj7fvm7ianq 5ao8A1ddz+2g9Y3kSSHPYbsqIjd5k/2w7X5TM4oExQ+bmWAwyvagbo+FlqYR87HC T77yvMnBKOx4RoMAQCCNobqujvxnloIePZ4HVxVSegTYb7Fz7ldBwCat+1RZvEyz y6innfG3a1RuEyQM3eAtqr4WfoXb40ClNiSAvMN3p4HgXF8w/m+/pqBkYkHB1oTE AqYBFGsshjwLcOt15aBU8KBwMVFKnF9Y8gxXD+ugDBrMhGJGnx/2rkQtT/Zp+BFe yytsL7M= -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:37 2025 by rpki-client