$ rpki-client -vvf rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/4C575EBA7C4911EF8E4FFA2CC4F9AE02.roa File: 4C575EBA7C4911EF8E4FFA2CC4F9AE02.roa (raw, json) Hash identifier: cK3qZ0WbmEjnc5MEuUycpoBiFZhSbR9pAa+lxxTpapw= Subject key identifier: 96:30:A4:46:6D:CC:A0:BE:2F:28:C1:85:5A:AF:D9:3C:97:AA:C1:51 Certificate issuer: /CN=A9184324/serialNumber=A8568F52793CC34857850C4F2ED38AE0B18970F8 Certificate serial: D3 Authority key identifier: A8:56:8F:52:79:3C:C3:48:57:85:0C:4F:2E:D3:8A:E0:B1:89:70:F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qFaPUnk8w0hXhQxPLtOK4LGJcPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/4C575EBA7C4911EF8E4FFA2CC4F9AE02.roa Signing time: Fri 17 Oct 2025 09:12:41 +0000 ROA not before: Fri 17 Oct 2025 09:12:41 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153343 IP address blocks: 160.187.116.0/23 maxlen: 23 160.187.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/qFaPUnk8w0hXhQxPLtOK4LGJcPg.crl rsync://rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/qFaPUnk8w0hXhQxPLtOK4LGJcPg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qFaPUnk8w0hXhQxPLtOK4LGJcPg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:51:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184324, serialNumber=A8568F52793CC34857850C4F2ED38AE0B18970F8 Validity Not Before: Oct 17 09:12:41 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f20889-6910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c8:17:03:36:8c:e4:cd:9a:1f:d0:8b:1a:c0: ce:ef:e7:e0:a9:4a:19:a2:94:64:eb:db:e0:c4:a4: 4c:38:cc:c8:56:10:ac:77:de:d7:f7:15:87:0c:88: 35:67:b6:75:40:c5:63:2d:e3:41:3e:1f:cb:a4:2c: eb:10:57:c6:83:08:21:5c:29:d9:a3:3b:6e:e4:cf: 66:cc:d4:77:89:17:54:0c:4b:b7:f4:a4:d5:54:4f: e8:ba:f4:b3:1e:d6:50:16:f2:b4:09:05:34:4d:92: dd:92:34:52:19:04:00:39:13:ac:e5:67:f7:50:ed: 6c:87:bc:25:7f:bc:01:61:68:5e:87:49:38:e0:c4: 18:90:90:e1:cb:cc:9e:7a:14:00:ee:37:72:1f:2f: 39:91:cf:38:e9:c3:0e:95:29:01:03:f8:82:ee:41: 01:30:be:17:e2:60:e2:cd:17:45:0c:0a:8d:a3:62: 12:d9:3d:58:ea:93:28:6a:1f:f7:94:67:4e:c7:f5: 14:06:a5:d0:29:b8:e4:0f:0e:d2:47:8b:e9:c3:2a: 73:5d:5a:37:12:af:fa:55:a5:00:f1:c9:da:8c:7b: fe:0c:e4:1b:29:a8:e8:f4:18:84:e3:a0:7d:83:7f: b9:77:94:94:9b:52:86:d9:51:97:43:df:b3:2f:64: 57:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:30:A4:46:6D:CC:A0:BE:2F:28:C1:85:5A:AF:D9:3C:97:AA:C1:51 X509v3 Authority Key Identifier: keyid:A8:56:8F:52:79:3C:C3:48:57:85:0C:4F:2E:D3:8A:E0:B1:89:70:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/qFaPUnk8w0hXhQxPLtOK4LGJcPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qFaPUnk8w0hXhQxPLtOK4LGJcPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184324/EAA9CCD47B1C11EFAC109416C4F9AE02/4C575EBA7C4911EF8E4FFA2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.187.116.0/23 Signature Algorithm: sha256WithRSAEncryption 08:e6:6a:9e:13:c9:c4:63:a4:14:93:3d:7e:45:83:df:10:22: 60:c2:d7:58:f8:02:cf:b6:be:c2:73:a2:9e:58:65:f7:03:87: 63:5d:86:f0:68:69:52:f2:d5:cb:fb:fc:36:cb:fb:89:c6:e6: 69:48:dd:f4:aa:a9:a3:5c:3d:f1:61:45:da:6c:cc:37:fc:da: cd:eb:f5:80:fe:6b:1c:b0:08:a9:96:6c:47:79:da:55:50:65: 4c:9d:b9:36:5b:2a:08:13:0c:74:4e:78:fa:b2:cc:c5:6f:da: b3:80:d7:8e:9a:aa:c2:30:a1:58:f3:e1:49:6a:54:38:e8:26: e0:08:cd:2a:08:f2:4d:ac:6e:25:39:5c:32:86:83:c0:a9:fb: f9:9c:0b:37:a8:8a:48:2a:5c:0f:7e:15:5a:21:94:4b:db:e4: 28:46:8d:b6:3f:fd:0a:0f:6f:5d:2c:b2:ae:fe:e8:62:1e:9e: 95:d3:a6:13:71:2f:a6:91:88:e8:04:29:21:d4:5c:94:cd:a0: 80:c6:42:9f:e7:9a:5a:21:bc:70:77:dd:85:fb:af:d2:f4:25: 68:78:d0:35:fb:6e:e1:d8:87:98:d5:80:6c:05:14:0a:68:a8: ec:3a:ab:d1:21:83:93:02:91:99:41:b1:c0:cf:c2:b7:bd:59: ee:b5:26:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQzMjQxMTAvBgNVBAUTKEE4NTY4RjUyNzkzQ0MzNDg1Nzg1MEM0RjJFRDM4QUUw QjE4OTcwRjgwHhcNMjUxMDE3MDkxMjQxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYyMDg4OS02OTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMgXAzaM5M2aH9CLGsDO7+fgqUoZopRk69vgxKRMOMzIVhCsd97X9xWHDIg1 Z7Z1QMVjLeNBPh/LpCzrEFfGgwghXCnZoztu5M9mzNR3iRdUDEu39KTVVE/ouvSz HtZQFvK0CQU0TZLdkjRSGQQAOROs5Wf3UO1sh7wlf7wBYWheh0k44MQYkJDhy8ye ehQA7jdyHy85kc846cMOlSkBA/iC7kEBML4X4mDizRdFDAqNo2IS2T1Y6pMoah/3 lGdOx/UUBqXQKbjkDw7SR4vpwypzXVo3Eq/6VaUA8cnajHv+DOQbKajo9BiE46B9 g3+5d5SUm1KG2VGXQ9+zL2RXywIDAQABo4IClTCCApEwHQYDVR0OBBYEFJYwpEZt zKC+LyjBhVqv2TyXqsFRMB8GA1UdIwQYMBaAFKhWj1J5PMNIV4UMTy7TiuCxiXD4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDMyNC9FQUE5Q0NENDdC MUMxMUVGQUMxMDk0MTZDNEY5QUUwMi9xRmFQVW5rOHcwaFhoUXhQTHRPSzRMR0pj UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FGYVBVbms4dzBoWGhReFBMdE9LNExHSmNQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQzMjQvRUFBOUNDRDQ3QjFDMTFFRkFDMTA5NDE2QzRGOUFFMDIvNEM1NzVFQkE3 QzQ5MTFFRjhFNEZGQTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgu3QwDQYJKoZIhvcNAQELBQADggEBAAjmap4TycRjpBST PX5Fg98QImDC11j4As+2vsJzop5YZfcDh2NdhvBoaVLy1cv7/DbL+4nG5mlI3fSq qaNcPfFhRdpszDf82s3r9YD+axywCKmWbEd52lVQZUyduTZbKggTDHROePqyzMVv 2rOA146aqsIwoVjz4UlqVDjoJuAIzSoI8k2sbiU5XDKGg8Cp+/mcCzeoikgqXA9+ FVohlEvb5ChGjbY//QoPb10ssq7+6GIenpXTphNxL6aRiOgEKSHUXJTNoIDGQp/n mlohvHB33YX7r9L0JWh40DX7buHYh5jVgGwFFApoqOw6q9Ehg5MCkZlBscDPwre9 We61Jgc= -----END CERTIFICATE-----Generated at Tue Oct 21 02:37:29 2025 by rpki-client