$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A6D81A9A7E6511F0AF9C5063C4F9AE02.roa File: A6D81A9A7E6511F0AF9C5063C4F9AE02.roa (raw, json) Hash identifier: bcuTY5iWNOjLrZCa7KDgrqPQ4pixe5/ciUSxFnxuGJ8= Subject key identifier: 87:EF:87:DC:D9:AE:ED:03:30:8F:1C:43:07:52:DA:EB:21:D4:9B:98 Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1F62 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A6D81A9A7E6511F0AF9C5063C4F9AE02.roa Signing time: Thu 21 Aug 2025 08:05:50 +0000 ROA not before: Thu 21 Aug 2025 08:05:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153292 IP address blocks: 161.248.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 15:25:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8034 (0x1f62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Aug 21 08:05:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a6d35e-6c21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:74:73:a6:ed:a8:e6:0e:ff:ce:6f:1e:01:16: 78:5f:bd:a5:8a:72:d6:9b:ae:9b:40:e0:64:22:26: c4:4e:2f:ec:d3:31:ef:73:4e:fa:df:54:a5:34:e3: e7:8c:c3:66:c8:1b:b2:04:6a:4b:5f:25:a7:2e:a6: 8a:d3:eb:6c:32:84:bb:42:0d:34:9f:2b:12:e7:10: 94:65:c1:f7:bc:42:aa:77:36:1a:6a:d2:c5:02:1b: e0:63:d3:b3:4b:08:ab:ce:0b:23:b4:89:ef:cc:1e: 1a:98:c1:82:14:fb:43:ef:01:8b:0c:a0:29:17:00: 26:f6:12:fc:19:3b:cd:4f:c3:05:22:a1:e9:15:1f: 15:3a:d2:1f:51:65:fc:c1:d5:08:a2:45:5d:92:cf: 31:de:b0:51:32:2c:11:03:20:cd:7a:3f:d0:ff:80: d6:87:d6:23:be:96:fc:bd:2d:bf:83:13:7d:78:21: 8e:91:f8:b8:9d:7b:59:99:6d:1b:e4:9a:84:b0:71: c3:ec:13:70:35:64:94:fc:45:20:df:99:7b:f1:33: af:1c:a6:1d:d3:08:21:b6:e1:31:77:d6:46:b5:25: 8c:e4:3a:2e:fe:77:38:89:c9:07:01:b3:3d:2a:76: bf:fd:f4:a6:44:c1:59:8c:2c:31:b1:d2:58:22:2d: a9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EF:87:DC:D9:AE:ED:03:30:8F:1C:43:07:52:DA:EB:21:D4:9B:98 X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/A6D81A9A7E6511F0AF9C5063C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.124.0/23 Signature Algorithm: sha256WithRSAEncryption 29:0d:fc:0b:11:44:72:62:fe:19:47:24:d5:a3:23:d2:f9:a8: d3:3a:b3:44:1b:68:e5:24:96:7d:26:04:fd:73:0e:7c:a3:50: fd:a1:9c:a0:49:d2:97:b4:cc:fa:6a:d5:32:56:3d:10:a3:0e: cf:ae:22:c2:e7:94:14:35:3b:d4:a6:02:09:33:f5:89:a1:8e: fd:60:c3:20:80:05:70:11:bf:c1:e7:39:3b:2d:51:70:de:e2: 62:2a:d1:28:74:37:be:18:21:a4:e7:d1:9f:df:65:0b:cd:a9: 9e:ef:8e:c7:8b:03:0d:55:02:25:ba:1b:2e:55:4f:c7:4a:5c: 56:1c:c0:bc:8e:4a:0a:20:be:bc:37:dc:a0:77:ad:14:e4:b9: a8:42:b1:f5:8e:27:30:dc:1e:3d:35:e6:d9:d4:1f:82:a1:d0: 86:0b:f2:5c:ca:90:e1:fe:08:48:0b:5c:fb:a5:c3:d5:2c:b6: 95:42:d2:0e:88:87:be:f2:b3:33:85:6f:ec:6b:d4:86:5c:95: 2f:86:bf:6a:38:fd:bb:da:56:b3:cd:a2:86:1c:36:48:94:33: 86:1f:75:d7:d7:e5:40:85:53:99:44:50:e7:46:3e:1f:3c:d7: f7:dc:df:3e:f8:19:30:b6:6f:c8:74:19:9f:36:68:3a:11:17: e0:74:63:09 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUwODIxMDgwNTUwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2ZDM1ZS02YzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXRzpu2o5g7/zm8eARZ4X72linLWm66bQOBkIibETi/s0zHvc07631SlNOPn jMNmyBuyBGpLXyWnLqaK0+tsMoS7Qg00nysS5xCUZcH3vEKqdzYaatLFAhvgY9Oz SwirzgsjtInvzB4amMGCFPtD7wGLDKApFwAm9hL8GTvNT8MFIqHpFR8VOtIfUWX8 wdUIokVdks8x3rBRMiwRAyDNej/Q/4DWh9Yjvpb8vS2/gxN9eCGOkfi4nXtZmW0b 5JqEsHHD7BNwNWSU/EUg35l78TOvHKYd0wghtuExd9ZGtSWM5Dou/nc4ickHAbM9 Kna//fSmRMFZjCwxsdJYIi2pjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIfvh9zZ ru0DMI8cQwdS2ush1JuYMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvQTZEODFBOUE3 RTY1MTFGMEFGOUM1MDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+HwwDQYJKoZIhvcNAQELBQADggEBACkN/AsRRHJi/hlH JNWjI9L5qNM6s0QbaOUkln0mBP1zDnyjUP2hnKBJ0pe0zPpq1TJWPRCjDs+uIsLn lBQ1O9SmAgkz9Ymhjv1gwyCABXARv8HnOTstUXDe4mIq0Sh0N74YIaTn0Z/fZQvN qZ7vjseLAw1VAiW6Gy5VT8dKXFYcwLyOSgogvrw33KB3rRTkuahCsfWOJzDcHj01 5tnUH4Kh0IYL8lzKkOH+CEgLXPulw9UstpVC0g6Ih77yszOFb+xr1IZclS+Gv2o4 /bvaVrPNooYcNkiUM4YfddfX5UCFU5lEUOdGPh881/fc3z74GTC2b8h0GZ82aDoR F+B0Ywk= -----END CERTIFICATE-----Generated at Sat Aug 23 17:01:34 2025 by rpki-client