$ rpki-client -vvf rpki.apnic.net/member_repository/A9184684/B6BA012C398611F0ACC55914C4F9AE02/CE88C72C569911F08E21CF87C4F9AE02.roa File: CE88C72C569911F08E21CF87C4F9AE02.roa (raw, json) Hash identifier: P3ICOOzdYod03YP+DW4znK40K0YlnGffnVKfr18TLD8= Subject key identifier: 47:00:D1:C1:D8:5E:32:6C:26:42:5C:86:17:D1:A3:BE:E8:4B:1C:BC Certificate issuer: /CN=A9184684/serialNumber=F1E50163AC506A62CCFB5A8AF56511C38F150414 Certificate serial: 15 Authority key identifier: F1:E5:01:63:AC:50:6A:62:CC:FB:5A:8A:F5:65:11:C3:8F:15:04:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8eUBY6xQamLM-1qK9WURw48VBBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184684/B6BA012C398611F0ACC55914C4F9AE02/CE88C72C569911F08E21CF87C4F9AE02.roa Signing time: Tue 01 Jul 2025 16:38:25 +0000 ROA not before: Tue 01 Jul 2025 16:38:25 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 57025 IP address blocks: 160.250.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184684/B6BA012C398611F0ACC55914C4F9AE02/8eUBY6xQamLM-1qK9WURw48VBBQ.crl rsync://rpki.apnic.net/member_repository/A9184684/B6BA012C398611F0ACC55914C4F9AE02/8eUBY6xQamLM-1qK9WURw48VBBQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8eUBY6xQamLM-1qK9WURw48VBBQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184684, serialNumber=F1E50163AC506A62CCFB5A8AF56511C38F150414 Validity Not Before: Jul 1 16:38:25 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68640f00-cc4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:00:c6:c5:54:c3:c0:2b:b8:ce:26:79:bb:1e: ad:99:98:66:0c:7f:51:0a:a8:43:02:2d:54:ae:60: 27:3a:60:07:db:3d:3e:b1:76:4c:7d:33:27:ec:2b: c4:c7:e3:be:c8:b5:30:04:1c:af:72:82:d7:49:97: 9b:f4:4b:7f:66:a1:a3:09:36:f7:4f:f1:3a:fe:c7: 56:53:92:99:d0:f3:56:7a:24:ec:ac:e3:d8:ae:db: 4d:c3:43:cc:e5:50:f9:cd:bf:0a:de:3f:b4:b5:a3: 04:51:d8:02:7d:06:d0:2e:85:92:b0:66:a1:b1:7e: 33:92:6e:cc:9e:3c:fa:0b:29:62:c3:6f:aa:77:64: c8:20:f8:1f:81:4b:81:77:d5:6d:2e:f2:df:8f:6a: 1f:53:5e:55:f0:0b:6e:e9:27:9e:99:31:8b:8f:8b: 8e:44:4f:c5:f5:20:cb:4e:00:d9:62:58:33:d6:58: d2:41:cb:ab:af:0c:08:54:e7:aa:e5:99:a0:1c:63: b9:35:11:a9:be:2d:61:10:6c:b2:10:05:de:89:eb: 42:72:11:32:8c:3e:85:16:52:c7:0b:2e:05:88:de: 50:ed:1b:c6:97:f9:c2:cf:45:69:ea:62:83:2e:93: 88:72:68:ef:ee:27:37:5c:87:6a:0b:b4:2b:5c:b0: d7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:00:D1:C1:D8:5E:32:6C:26:42:5C:86:17:D1:A3:BE:E8:4B:1C:BC X509v3 Authority Key Identifier: keyid:F1:E5:01:63:AC:50:6A:62:CC:FB:5A:8A:F5:65:11:C3:8F:15:04:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184684/B6BA012C398611F0ACC55914C4F9AE02/8eUBY6xQamLM-1qK9WURw48VBBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/8eUBY6xQamLM-1qK9WURw48VBBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184684/B6BA012C398611F0ACC55914C4F9AE02/CE88C72C569911F08E21CF87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.13.0/24 Signature Algorithm: sha256WithRSAEncryption 48:a7:2f:67:c2:04:fd:b2:82:7e:12:4e:08:99:41:b5:55:1a: 5a:59:0a:b5:22:29:d8:ab:3b:b3:5d:8b:c0:be:b4:65:08:8f: 97:b4:23:71:27:4a:69:3e:c8:71:10:66:32:e0:17:0d:ba:a7: f2:0c:87:32:25:6d:99:a3:56:16:78:49:b5:83:18:6d:62:ff: 06:1d:18:fc:67:54:a6:9c:81:e3:8f:51:8c:fe:b1:29:6e:31: 39:83:d1:06:3e:5c:28:41:a4:84:6d:7c:d3:7c:8a:b3:2b:af: ed:8c:7c:0f:5f:88:06:81:fc:69:ef:fd:8c:f3:e3:02:2e:e2: fa:1d:b4:f3:29:e1:24:79:6a:07:d0:00:2a:71:63:1a:50:6f: 53:6d:30:88:a6:03:de:20:7f:b4:4c:ad:bf:66:c8:00:59:8b: fb:40:c2:03:01:59:41:b8:9c:df:22:52:0e:f4:9a:b0:cc:c3: 33:5c:c5:a7:2d:c7:e4:34:7a:5f:ce:e1:00:93:25:4c:63:79: fb:52:14:a0:9b:3a:e4:a7:2b:0d:76:5e:c8:12:d3:ab:04:57: 75:36:bb:b9:09:0b:d8:a0:b7:e7:36:f2:36:ca:9d:ca:7e:07: f4:be:ba:a2:4e:58:6f:df:1d:9d:17:7a:fd:c2:68:36:c1:46: 19:90:57:cb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDY4NDExMC8GA1UEBRMoRjFFNTAxNjNBQzUwNkE2MkNDRkI1QThBRjU2NTExQzM4 RjE1MDQxNDAeFw0yNTA3MDExNjM4MjVaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjQwZjAwLWNjNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDCAMbFVMPAK7jOJnm7Hq2ZmGYMf1EKqEMCLVSuYCc6YAfbPT6xdkx9MyfsK8TH 477ItTAEHK9ygtdJl5v0S39moaMJNvdP8Tr+x1ZTkpnQ81Z6JOys49iu203DQ8zl UPnNvwreP7S1owRR2AJ9BtAuhZKwZqGxfjOSbsyePPoLKWLDb6p3ZMgg+B+BS4F3 1W0u8t+Pah9TXlXwC27pJ56ZMYuPi45ET8X1IMtOANliWDPWWNJBy6uvDAhU56rl maAcY7k1Eam+LWEQbLIQBd6J60JyETKMPoUWUscLLgWI3lDtG8aX+cLPRWnqYoMu k4hyaO/uJzdch2oLtCtcsNfHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQURwDRwdhe MmwmQlyGF9GjvuhLHLwwHwYDVR0jBBgwFoAU8eUBY6xQamLM+1qK9WURw48VBBQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0Njg0L0I2QkEwMTJDMzk4 NjExRjBBQ0M1NTkxNEM0RjlBRTAyLzhlVUJZNnhRYW1MTS0xcUs5V1VSdzQ4VkJC US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvOGVVQlk2eFFhbUxNLTFxSzlXVVJ3NDhWQkJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDY4NC9CNkJBMDEyQzM5ODYxMUYwQUNDNTU5MTRDNEY5QUUwMi9DRTg4QzcyQzU2 OTkxMUYwOEUyMUNGODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKD6DTANBgkqhkiG9w0BAQsFAAOCAQEASKcvZ8IE/bKCfhJO CJlBtVUaWlkKtSIp2Ks7s12LwL60ZQiPl7QjcSdKaT7IcRBmMuAXDbqn8gyHMiVt maNWFnhJtYMYbWL/Bh0Y/GdUppyB449RjP6xKW4xOYPRBj5cKEGkhG1803yKsyuv 7Yx8D1+IBoH8ae/9jPPjAi7i+h208ynhJHlqB9AAKnFjGlBvU20wiKYD3iB/tEyt v2bIAFmL+0DCAwFZQbic3yJSDvSasMzDM1zFpy3H5DR6X87hAJMlTGN5+1IUoJs6 5KcrDXZeyBLTqwRXdTa7uQkL2KC35zbyNsqdyn4H9L66ok5Yb98dnRd6/cJoNsFG GZBXyw== -----END CERTIFICATE-----Generated at Fri Jul 4 21:45:49 2025 by rpki-client