$ rpki-client -vvf rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/37FE553E5CAB11F08FCD0029C4F9AE02.roa File: 37FE553E5CAB11F08FCD0029C4F9AE02.roa (raw, json) Hash identifier: GLm2AKslZ/503xaJdyFMTW6e2t7uEKz1XmKi3aW5E9E= Subject key identifier: C6:B3:44:CF:A7:B7:69:45:17:A7:10:06:2F:39:15:6A:00:6C:2B:5D Certificate issuer: /CN=A9186B80/serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762 Certificate serial: 0549 Authority key identifier: BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/37FE553E5CAB11F08FCD0029C4F9AE02.roa Signing time: Sat 11 Oct 2025 01:55:21 +0000 ROA not before: Sat 11 Oct 2025 01:55:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 14537 IP address blocks: 160.32.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.crl rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:12:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1353 (0x549) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186B80, serialNumber=BD1E7E641FFD96D5746155FC421B17DDC1AA7762 Validity Not Before: Oct 11 01:55:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e9b909-2d11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:41:77:43:aa:13:fd:9b:f2:4d:dd:06:fa:a5: cf:58:24:28:4e:19:01:44:ae:27:51:a5:3b:cf:5e: f8:d6:57:b5:91:92:7e:98:1c:55:d1:c7:66:64:2d: e5:b5:9d:0c:24:59:46:94:78:c1:ce:33:68:c6:97: 39:b2:ca:bb:2a:62:e0:c7:e9:6f:f2:0c:83:86:14: 09:9f:f9:b9:eb:6c:94:25:23:a1:34:b5:5a:f2:f5: 32:f4:69:5e:0c:a5:b8:aa:5d:0e:82:85:31:93:2a: 5a:11:42:35:bf:c9:c4:65:79:d1:07:ce:f7:63:58: 08:dd:10:e5:42:58:1c:db:bd:a6:69:a2:d7:d1:81: 5c:b0:97:ce:1f:c4:08:c0:18:b5:bb:6b:67:52:7e: de:63:c7:eb:58:25:c6:02:12:6a:46:f7:0b:b5:b1: d7:d4:75:a1:48:de:58:3d:22:cc:22:9c:ea:b3:28: d8:93:7f:78:ba:4a:dd:e0:76:ec:78:31:f1:ae:25: 3a:67:d3:ef:2e:9e:a2:14:5c:b7:cd:03:ca:6e:00: 7e:87:c4:8a:5c:b7:a9:b8:e0:c3:29:f2:c6:91:78: 1a:a7:55:60:1c:80:9c:a0:dc:1d:86:cc:12:4d:9d: 3c:22:f7:35:d1:95:b1:7f:f4:d0:a7:f5:ca:77:6d: 3f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:B3:44:CF:A7:B7:69:45:17:A7:10:06:2F:39:15:6A:00:6C:2B:5D X509v3 Authority Key Identifier: keyid:BD:1E:7E:64:1F:FD:96:D5:74:61:55:FC:42:1B:17:DD:C1:AA:77:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vR5-ZB_9ltV0YVX8QhsX3cGqd2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186B80/AE6AA1B4123B11EC8A135F42C4F9AE02/37FE553E5CAB11F08FCD0029C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.32.240.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:ab:36:d1:30:39:49:21:ff:a5:bc:67:cc:02:09:10:4a:e1: aa:a7:83:93:c4:d2:f0:7c:3a:60:37:13:d8:23:a5:21:bb:da: 44:39:51:7a:40:8e:c3:2a:69:e7:b1:14:8b:38:1e:aa:66:2f: 56:62:db:51:1c:e9:db:d4:36:94:c5:08:6e:5b:f4:cc:d2:0b: df:20:97:0a:b6:f0:3e:d3:1b:95:5e:e3:3c:5a:c9:af:5c:35: 3d:fb:f2:bc:58:c6:ca:55:9d:1b:5a:0b:96:2b:e5:5d:79:1b: 1d:3b:84:05:fc:09:0b:4b:0e:9e:27:e3:c8:7b:a6:ad:e9:51: 1e:ab:3f:d8:d5:25:0c:23:1a:c6:f6:83:7b:99:0a:0d:58:d7: 57:b2:83:59:70:60:d8:6b:83:eb:59:e7:2a:8c:bb:97:4b:73: 79:b7:28:d6:ea:06:40:62:61:79:6a:38:26:eb:95:36:77:b9: 76:e6:6e:e9:1d:44:51:5d:d2:c0:9e:17:a4:89:38:dd:c7:fc: 9a:fb:fa:25:e7:57:c2:16:22:b5:28:3e:b3:70:9b:42:40:74: 03:50:71:ca:5c:08:57:0b:86:a9:9c:8d:16:5b:92:79:16:66: 98:7e:79:2a:a6:18:8c:01:8a:1b:b5:e2:14:8b:93:51:05:3c: 12:24:86:81 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZCODAxMTAvBgNVBAUTKEJEMUU3RTY0MUZGRDk2RDU3NDYxNTVGQzQyMUIxN0RE QzFBQTc3NjIwHhcNMjUxMDExMDE1NTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU5YjkwOS0yZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0F3Q6oT/ZvyTd0G+qXPWCQoThkBRK4nUaU7z1741le1kZJ+mBxV0cdmZC3l tZ0MJFlGlHjBzjNoxpc5ssq7KmLgx+lv8gyDhhQJn/m562yUJSOhNLVa8vUy9Gle DKW4ql0OgoUxkypaEUI1v8nEZXnRB873Y1gI3RDlQlgc272maaLX0YFcsJfOH8QI wBi1u2tnUn7eY8frWCXGAhJqRvcLtbHX1HWhSN5YPSLMIpzqsyjYk394ukrd4Hbs eDHxriU6Z9PvLp6iFFy3zQPKbgB+h8SKXLepuODDKfLGkXgap1VgHICcoNwdhswS TZ08Ivc10ZWxf/TQp/XKd20/UwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMazRM+n t2lFF6cQBi85FWoAbCtdMB8GA1UdIwQYMBaAFL0efmQf/ZbVdGFV/EIbF93Bqndi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkI4MC9BRTZBQTFCNDEy M0IxMUVDOEExMzVGNDJDNEY5QUUwMi92UjUtWkJfOWx0VjBZVlg4UWhzWDNjR3Fk MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ZSNS1aQl85bHRWMFlWWDhRaHNYM2NHcWQySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZCODAvQUU2QUExQjQxMjNCMTFFQzhBMTM1RjQyQzRGOUFFMDIvMzdGRTU1M0U1 Q0FCMTFGMDhGQ0QwMDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOgIPAwDQYJKoZIhvcNAQELBQADggEBAIqrNtEwOUkh/6W8 Z8wCCRBK4aqng5PE0vB8OmA3E9gjpSG72kQ5UXpAjsMqaeexFIs4HqpmL1Zi21Ec 6dvUNpTFCG5b9MzSC98glwq28D7TG5Ve4zxaya9cNT378rxYxspVnRtaC5Yr5V15 Gx07hAX8CQtLDp4n48h7pq3pUR6rP9jVJQwjGsb2g3uZCg1Y11eyg1lwYNhrg+tZ 5yqMu5dLc3m3KNbqBkBiYXlqOCbrlTZ3uXbmbukdRFFd0sCeF6SJON3H/Jr7+iXn V8IWIrUoPrNwm0JAdANQccpcCFcLhqmcjRZbknkWZph+eSqmGIwBihu14hSLk1EF PBIkhoE= -----END CERTIFICATE-----Generated at Mon Oct 20 13:51:42 2025 by rpki-client