$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/1FC3B0DE1E6F11EFB392D937C4F9AE02.roa File: 1FC3B0DE1E6F11EFB392D937C4F9AE02.roa (raw, json) Hash identifier: DqAscZot5tvFIRSwhun0FkboyMxWikjQ2XKpTFYg9ms= Subject key identifier: FF:7F:76:A3:2D:45:47:38:0A:AA:AF:00:FF:4C:B3:27:16:75:F2:C6 Certificate issuer: /CN=A91C31B7/serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Certificate serial: EE Authority key identifier: 4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/1FC3B0DE1E6F11EFB392D937C4F9AE02.roa Signing time: Thu 21 Aug 2025 05:43:54 +0000 ROA not before: Thu 21 Aug 2025 05:43:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152886 IP address blocks: 160.22.18.0/23 maxlen: 23 160.22.18.0/24 maxlen: 24 160.22.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7, serialNumber=4C339CABFC80A5F419DF33DFB06885C1C3488B2D Validity Not Before: Aug 21 05:43:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68a6b219-ee00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9c:fc:c4:68:73:e3:74:7f:ec:58:ab:8a:a7: c8:7a:c3:20:ea:f1:83:c6:6a:2a:1e:11:2a:65:4f: 5a:39:f2:99:56:a8:ec:5b:b5:d9:ad:26:5c:82:7c: 0a:9f:a4:96:72:57:29:f5:62:09:c2:a7:c9:83:50: 75:68:14:27:c1:87:b5:d6:57:a3:5b:4b:4a:bc:d1: cb:7f:be:2f:57:54:f0:57:e6:af:a8:35:6b:ff:e4: f3:52:cf:39:c2:a6:ac:4a:76:6c:59:4a:2b:64:2c: 63:3a:44:da:73:f7:83:63:c8:4a:de:21:b1:b7:f8: 20:9f:10:32:dd:23:38:9b:e0:7b:0e:7d:3c:00:57: de:88:33:e2:a8:b7:6c:0e:42:25:76:4f:6f:dc:25: b1:db:3b:9b:0c:c0:da:d2:2a:03:45:47:2f:d1:d2: f8:2c:f4:95:12:0d:83:8c:f8:38:da:f7:62:bf:58: b1:2c:de:4b:93:04:9e:ae:98:1b:8b:79:5b:7d:4d: 5e:4b:87:a2:c6:de:87:e1:60:17:38:f6:99:29:d0: 2f:18:d8:1f:1e:c8:74:53:95:e3:95:fc:f1:80:58: b0:f5:35:17:6c:0b:33:dc:bb:0f:9f:8b:a5:b2:1e: 83:96:66:99:72:45:b5:37:6c:29:a9:33:54:72:11: bf:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:7F:76:A3:2D:45:47:38:0A:AA:AF:00:FF:4C:B3:27:16:75:F2:C6 X509v3 Authority Key Identifier: keyid:4C:33:9C:AB:FC:80:A5:F4:19:DF:33:DF:B0:68:85:C1:C3:48:8B:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/TDOcq_yApfQZ3zPfsGiFwcNIiy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TDOcq_yApfQZ3zPfsGiFwcNIiy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/F2A5732E1E6B11EFAC0E914EC4F9AE02/1FC3B0DE1E6F11EFB392D937C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.18.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:60:90:20:b9:3e:1a:3c:5d:a6:f2:aa:15:5f:10:f3:cc:2e: d8:13:28:79:ee:14:3a:f5:53:da:f9:58:76:b5:ee:6f:6b:d1: 5c:cd:5f:ae:9a:11:e9:64:a3:94:c6:ad:4a:76:09:e6:88:3b: 98:4d:ae:e1:66:de:91:67:33:bf:33:b1:52:94:a9:94:90:a2: b6:9b:68:92:bc:e8:58:3b:19:5c:e6:a4:3e:11:65:57:1d:b0: 36:81:27:6d:53:55:ee:78:8f:38:3a:d3:19:0b:a3:f8:93:d5: c1:c3:0b:8a:19:d7:09:de:3a:b9:97:17:a1:42:ba:4e:3d:ad: 43:cb:5d:50:94:1b:20:e5:e6:6c:79:88:6c:88:02:93:9e:3f: 54:c4:08:ac:f1:21:2b:c4:d7:74:c4:d6:fd:19:64:c9:76:6c: 60:1c:cd:f9:a6:47:a7:d3:02:90:19:5a:4d:69:b6:59:31:f5: 7f:e8:3f:4d:53:73:db:23:db:ac:0d:be:bd:05:46:05:52:0e: 9f:ae:5b:8d:e2:b3:95:c8:2c:f6:de:85:bb:13:b4:fc:d7:5d: e9:92:b7:2b:aa:4b:6b:3a:ab:ee:a1:74:0d:53:64:84:cb:ce: 5d:f2:b2:66:86:77:1f:c6:b8:ba:00:a5:f9:04:4d:1c:71:fc: 20:6f:f0:8d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQjcxMTAvBgNVBAUTKDRDMzM5Q0FCRkM4MEE1RjQxOURGMzNERkIwNjg4NUMx QzM0ODhCMkQwHhcNMjUwODIxMDU0MzU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2YjIxOS1lZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJz8xGhz43R/7FiriqfIesMg6vGDxmoqHhEqZU9aOfKZVqjsW7XZrSZcgnwK n6SWclcp9WIJwqfJg1B1aBQnwYe11lejW0tKvNHLf74vV1TwV+avqDVr/+TzUs85 wqasSnZsWUorZCxjOkTac/eDY8hK3iGxt/ggnxAy3SM4m+B7Dn08AFfeiDPiqLds DkIldk9v3CWx2zubDMDa0ioDRUcv0dL4LPSVEg2DjPg42vdiv1ixLN5LkwSerpgb i3lbfU1eS4eixt6H4WAXOPaZKdAvGNgfHsh0U5XjlfzxgFiw9TUXbAsz3LsPn4ul sh6DlmaZckW1N2wpqTNUchG/GwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP9/dqMt RUc4CqqvAP9MsycWdfLGMB8GA1UdIwQYMBaAFEwznKv8gKX0Gd8z37BohcHDSIst MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFCNy9GMkE1NzMyRTFF NkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9URE9jcV95QXBmUVozelBmc0dpRndjTklp eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RET2NxX3lBcGZRWjN6UGZzR2lGd2NOSWl5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQjcvRjJBNTczMkUxRTZCMTFFRkFDMEU5MTRFQzRGOUFFMDIvMUZDM0IwREUx RTZGMTFFRkIzOTJEOTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGgFhIwDQYJKoZIhvcNAQELBQADggEBAApgkCC5Pho8Xaby qhVfEPPMLtgTKHnuFDr1U9r5WHa17m9r0VzNX66aEelko5TGrUp2CeaIO5hNruFm 3pFnM78zsVKUqZSQorabaJK86Fg7GVzmpD4RZVcdsDaBJ21TVe54jzg60xkLo/iT 1cHDC4oZ1wneOrmXF6FCuk49rUPLXVCUGyDl5mx5iGyIApOeP1TECKzxISvE13TE 1v0ZZMl2bGAczfmmR6fTApAZWk1ptlkx9X/oP01Tc9sj26wNvr0FRgVSDp+uW43i s5XILPbehbsTtPzXXemStyuqS2s6q+6hdA1TZITLzl3ysmaGdx/GuLoApfkETRxx /CBv8I0= -----END CERTIFICATE-----Generated at Sat Aug 23 23:59:32 2025 by rpki-client