$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A22F20AC366311EEB376DC3AC4F9AE02.roa File: A22F20AC366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: 9VTaK6okqIJvF9II2cb927AcLgrTqA9SlI29NpkDXFQ= Subject key identifier: CC:07:58:F1:5E:E0:33:B5:1D:5C:17:50:96:60:73:17:55:1A:0B:0A Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 01B0 Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A22F20AC366311EEB376DC3AC4F9AE02.roa Signing time: Mon 23 Jun 2025 03:22:18 +0000 ROA not before: Mon 23 Jun 2025 03:22:18 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 141454 IP address blocks: 161.82.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Jun 23 03:22:18 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6858c86a-23bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:31:43:5b:c9:4c:24:44:22:1f:96:7f:76:ca: c5:68:e7:fd:29:d9:b5:58:f1:db:83:0f:fc:fe:2b: 49:68:fb:8d:16:cb:a8:9c:2a:75:8f:cf:d4:ec:ca: c7:19:1a:24:76:55:96:cd:36:f4:d1:24:67:ee:72: 34:01:1a:67:5b:a6:f2:e1:8d:ef:0b:83:f8:ec:dc: 8c:d4:6b:7a:e0:e5:fe:f6:5a:74:ad:ba:b8:61:c1: 9e:f3:19:97:a1:96:20:0d:d0:e6:a6:c7:6b:e9:59: 6a:d9:f5:86:c7:99:e4:20:6f:d7:e8:24:b6:be:b6: 35:70:48:8d:3e:e1:bb:74:20:5f:2e:cb:b1:3e:e7: 85:61:eb:fc:25:b3:56:2f:f1:2b:45:35:73:8d:35: c7:4d:2b:89:28:75:22:ff:ae:02:e9:2c:cc:41:4c: 30:d0:05:b0:28:14:e7:09:d9:67:33:61:a5:04:d8: 23:70:5c:c1:c1:71:2a:a0:34:8b:88:18:7d:f6:22: 0d:00:cc:b7:09:5b:b2:ca:08:cb:c7:1a:2a:7c:ee: 30:a9:eb:af:a9:36:91:b8:ce:e8:6f:03:77:6c:59: b0:1e:5f:88:7d:40:5d:78:2a:63:2d:c4:c1:8d:12: 2d:d7:bc:00:5a:70:4c:6a:a1:e4:48:0e:07:ef:05: 7f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:07:58:F1:5E:E0:33:B5:1D:5C:17:50:96:60:73:17:55:1A:0B:0A X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/A22F20AC366311EEB376DC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.82.209.0/24 Signature Algorithm: sha256WithRSAEncryption a2:81:d0:be:03:f4:57:a8:c6:48:e6:ef:2b:97:c2:ed:bd:dd: 78:ca:51:e8:5b:63:c2:78:18:21:a7:be:22:94:81:34:e1:ba: 37:37:8f:54:44:c1:94:b7:ed:e0:59:6e:cc:73:db:44:6c:88: dd:de:a8:a5:bd:b9:37:f1:b5:c3:1d:15:4e:d8:d7:ba:fc:79: 76:24:4a:ba:92:1d:fa:44:e8:2b:03:26:c4:63:f4:03:5d:30: d2:e6:b5:91:42:15:f9:18:32:ce:d3:68:30:bc:fc:9b:d6:07: 55:e9:38:0e:ad:96:f2:18:0f:7d:bd:de:4e:24:24:55:a0:72: 54:77:75:b7:43:39:0f:b6:9c:99:fd:f6:0f:36:6b:51:ac:e3: 03:ab:f5:2c:cd:b4:85:2f:60:be:8a:d4:89:3b:2c:14:fe:00: 54:46:5a:1b:71:2d:c7:36:5c:f7:a5:15:dc:05:50:26:71:74: a8:fb:e9:ec:07:de:23:89:71:52:5d:e5:a1:eb:7b:8f:cb:9d: 63:08:18:69:4d:da:29:83:b8:63:1f:ec:e5:55:d8:d5:02:7e: 1e:16:18:32:5a:0e:b7:69:3e:91:ba:55:08:03:97:cd:13:3c: 8a:35:dc:39:7e:24:59:ab:e5:3b:c3:78:8b:c5:30:8c:75:b4: 8c:56:f9:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjUwNjIzMDMyMjE4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4Yzg2YS0yM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zFDW8lMJEQiH5Z/dsrFaOf9Kdm1WPHbgw/8/itJaPuNFsuonCp1j8/U7MrH GRokdlWWzTb00SRn7nI0ARpnW6by4Y3vC4P47NyM1Gt64OX+9lp0rbq4YcGe8xmX oZYgDdDmpsdr6Vlq2fWGx5nkIG/X6CS2vrY1cEiNPuG7dCBfLsuxPueFYev8JbNW L/ErRTVzjTXHTSuJKHUi/64C6SzMQUww0AWwKBTnCdlnM2GlBNgjcFzBwXEqoDSL iBh99iINAMy3CVuyygjLxxoqfO4wqeuvqTaRuM7obwN3bFmwHl+IfUBdeCpjLcTB jRIt17wAWnBMaqHkSA4H7wV/2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMwHWPFe 4DO1HVwXUJZgcxdVGgsKMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQTIyRjIwQUMz NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAChUtEwDQYJKoZIhvcNAQELBQADggEBAKKB0L4D9Feoxkjm 7yuXwu293XjKUehbY8J4GCGnviKUgTThujc3j1REwZS37eBZbsxz20RsiN3eqKW9 uTfxtcMdFU7Y17r8eXYkSrqSHfpE6CsDJsRj9ANdMNLmtZFCFfkYMs7TaDC8/JvW B1XpOA6tlvIYD3293k4kJFWgclR3dbdDOQ+2nJn99g82a1Gs4wOr9SzNtIUvYL6K 1Ik7LBT+AFRGWhtxLcc2XPelFdwFUCZxdKj76ewH3iOJcVJd5aHre4/LnWMIGGlN 2imDuGMf7OVV2NUCfh4WGDJaDrdpPpG6VQgDl80TPIo13Dl+JFmr5TvDeIvFMIx1 tIxW+d4= -----END CERTIFICATE-----Generated at Fri Jul 4 08:27:22 2025 by rpki-client