$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A1C2C588366311EEB376DC3AC4F9AE02.roa File: A1C2C588366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: hs4pbkMdAj+D2UuqPGCvCOhNIxOm0iHH3n26RgqYzp4= Subject key identifier: 4E:A0:BA:59:92:FB:D1:E5:93:84:F2:18:55:8E:2B:89:06:CF:C2:CE Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 01AF Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A1C2C588366311EEB376DC3AC4F9AE02.roa Signing time: Mon 23 Jun 2025 03:22:17 +0000 ROA not before: Mon 23 Jun 2025 03:22:17 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 140660 IP address blocks: 161.82.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Jun 23 03:22:17 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6858c869-fc36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a4:2e:ed:0f:1d:d9:f5:03:28:d1:d8:80:01: ec:45:91:8a:25:2b:4f:a4:06:18:f7:84:e0:b3:7a: 24:18:de:ff:51:50:78:c7:9e:7e:a1:ca:6f:e4:f3: 9c:bd:06:05:3d:fb:0e:19:0f:11:47:67:da:d8:57: 50:b6:d5:f1:33:d1:36:73:78:92:01:1e:f3:78:11: 39:5c:2e:e1:76:39:8e:e7:bd:de:67:d1:39:bd:72: d9:d2:53:69:3f:b8:66:2b:ec:02:34:2c:d7:7d:48: bf:e3:e6:9b:ab:31:b3:c3:db:b8:57:4f:b5:e1:30: 52:27:60:ad:5a:c5:69:92:7c:e6:f7:f6:28:4a:08: ad:a0:d7:ec:91:33:3a:26:fe:0b:dc:79:13:e6:65: e7:ad:62:d8:c8:4d:db:53:ec:cb:a6:74:93:87:69: 98:f3:4c:38:f4:aa:36:d3:7d:4c:76:4a:2a:63:49: 81:6b:53:27:04:d6:0d:aa:a6:2e:de:d0:cd:06:ef: 3d:df:ac:77:bc:23:9a:1f:0d:7a:73:4b:88:e9:65: a0:8b:a7:3c:6a:c5:7d:99:c6:3d:86:37:63:91:75: 88:66:9e:7f:42:3b:69:8d:a7:94:63:52:ab:cd:9f: 54:3a:9f:d2:14:fa:55:49:9d:4e:eb:84:27:cb:4b: aa:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A0:BA:59:92:FB:D1:E5:93:84:F2:18:55:8E:2B:89:06:CF:C2:CE X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A1C2C588366311EEB376DC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.82.228.0/24 Signature Algorithm: sha256WithRSAEncryption b1:8b:7b:fe:ae:ae:3a:7c:b3:c6:40:48:17:7e:69:39:19:a5: cc:51:9e:7b:a9:b4:c0:ea:0e:a4:24:17:b7:8c:81:2b:21:9a: c3:62:6d:39:3d:d9:18:bd:be:2d:ca:37:6f:b5:2b:b4:a1:97: 40:c0:4a:3d:96:58:05:3b:13:42:7d:fb:fb:d7:87:98:25:7d: 9b:d6:96:41:f8:a8:b7:21:fe:3e:3c:01:30:ab:19:ba:e9:28: e2:0f:cf:14:28:28:57:11:f6:21:c4:81:71:df:05:e5:65:4d: 1d:d3:ce:da:02:e0:b0:46:b5:81:a3:4a:84:56:66:dd:c5:03: b6:57:f4:48:40:30:8a:6b:24:0e:8e:2b:bd:fe:cb:4e:bb:46: c7:65:dc:1f:3f:3a:0e:fb:ab:ed:33:9f:50:40:30:7f:3c:f6: b6:5c:55:46:08:9c:49:17:b0:8e:87:88:3c:3e:ac:c1:35:89: c8:ff:ac:16:8c:ee:28:08:fd:dc:04:ba:85:f4:0a:33:dc:ad: 1f:2b:64:f4:30:bf:7c:b4:58:a2:49:fc:48:aa:b5:9a:14:1f: 1d:0a:68:83:58:3d:28:bc:db:c4:22:5a:fd:49:b5:1b:b9:7c: e9:74:8e:3b:68:e7:47:36:95:c6:5e:5d:37:b4:83:1f:61:39: 87:58:c9:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjUwNjIzMDMyMjE3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4Yzg2OS1mYzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKQu7Q8d2fUDKNHYgAHsRZGKJStPpAYY94Tgs3okGN7/UVB4x55+ocpv5POc vQYFPfsOGQ8RR2fa2FdQttXxM9E2c3iSAR7zeBE5XC7hdjmO573eZ9E5vXLZ0lNp P7hmK+wCNCzXfUi/4+abqzGzw9u4V0+14TBSJ2CtWsVpknzm9/YoSgitoNfskTM6 Jv4L3HkT5mXnrWLYyE3bU+zLpnSTh2mY80w49Ko2031MdkoqY0mBa1MnBNYNqqYu 3tDNBu8936x3vCOaHw16c0uI6WWgi6c8asV9mcY9hjdjkXWIZp5/QjtpjaeUY1Kr zZ9UOp/SFPpVSZ1O64Qny0uq4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFE6gulmS +9Hlk4TyGFWOK4kGz8LOMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQTFDMkM1ODgz NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAChUuQwDQYJKoZIhvcNAQELBQADggEBALGLe/6urjp8s8ZA SBd+aTkZpcxRnnuptMDqDqQkF7eMgSshmsNibTk92Ri9vi3KN2+1K7Shl0DASj2W WAU7E0J9+/vXh5glfZvWlkH4qLch/j48ATCrGbrpKOIPzxQoKFcR9iHEgXHfBeVl TR3TztoC4LBGtYGjSoRWZt3FA7ZX9EhAMIprJA6OK73+y067Rsdl3B8/Og77q+0z n1BAMH889rZcVUYInEkXsI6HiDw+rME1icj/rBaM7igI/dwEuoX0CjPcrR8rZPQw v3y0WKJJ/EiqtZoUHx0KaINYPSi828QiWv1JtRu5fOl0jjto50c2lcZeXTe0gx9h OYdYye0= -----END CERTIFICATE-----Generated at Fri Jul 4 08:30:01 2025 by rpki-client