$ rpki-client -vvf rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/EA7000B2ABAA11EAAA93741EC4F9AE02.roa File: EA7000B2ABAA11EAAA93741EC4F9AE02.roa (raw, json) Hash identifier: WjFZEedMDw0JbPWqqHGuTrg3MKW0ZTVgSyL2yBJOKwQ= Subject key identifier: 4F:A0:7A:8B:26:E1:50:04:17:88:76:43:3C:34:E7:70:F4:E1:45:39 Certificate issuer: /CN=A9114F46/serialNumber=678EBBA2F848E3C8E5F072749005C8415252DB85 Certificate serial: 0937 Authority key identifier: 67:8E:BB:A2:F8:48:E3:C8:E5:F0:72:74:90:05:C8:41:52:52:DB:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z467ovhI48jl8HJ0kAXIQVJS24U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/EA7000B2ABAA11EAAA93741EC4F9AE02.roa Signing time: Sat 20 Sep 2025 20:41:08 +0000 ROA not before: Sat 20 Sep 2025 20:41:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 10127 IP address blocks: 202.124.28.0/24 maxlen: 24 202.124.29.0/24 maxlen: 24 202.124.30.0/24 maxlen: 24 202.124.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/Z467ovhI48jl8HJ0kAXIQVJS24U.crl rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/Z467ovhI48jl8HJ0kAXIQVJS24U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z467ovhI48jl8HJ0kAXIQVJS24U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 21:04:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2359 (0x937) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114F46, serialNumber=678EBBA2F848E3C8E5F072749005C8415252DB85 Validity Not Before: Sep 20 20:41:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68cf1164-e67a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:01:92:71:ae:29:c3:e3:ed:d2:13:79:ab:88: 08:b2:8c:e8:f8:60:10:35:a9:6f:6a:b9:36:0e:65: 46:4f:97:0e:3a:c4:c3:db:2b:79:73:2f:78:e4:48: 69:56:e1:b1:20:2f:ca:12:fc:20:4f:45:3f:ce:cc: 65:d6:52:31:dc:cc:d9:2d:5a:d0:58:e9:79:83:3c: c5:c4:e8:f9:5a:25:77:eb:11:c1:e2:4a:07:1e:df: 1f:97:fe:9b:60:b3:c0:dc:b4:4b:f6:68:fa:0b:64: ea:08:9a:16:b4:69:32:08:38:06:81:c7:a5:43:66: 51:03:d8:16:35:86:31:22:7c:c9:87:0d:89:a8:68: df:67:52:2f:8f:5c:cf:6a:14:38:59:55:3c:3d:79: 42:e5:48:78:c5:0b:05:4c:e3:b3:f3:3b:ad:ee:df: 8b:bd:08:f2:3a:a4:f2:72:d5:50:b9:d4:75:d9:47: 81:50:6d:cb:4f:59:5b:c8:d5:de:7f:a9:3d:32:95: 8f:8a:e4:55:ea:c5:cb:72:a1:e2:b8:62:1e:3e:91: 5c:f0:55:84:f4:90:c3:53:6a:22:c3:75:47:28:0e: 63:c2:a6:88:7a:2f:8d:d0:c0:5a:b8:7d:7a:14:fd: 49:bf:84:79:4b:85:ee:76:b2:e0:e7:27:8f:d4:85: f5:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:A0:7A:8B:26:E1:50:04:17:88:76:43:3C:34:E7:70:F4:E1:45:39 X509v3 Authority Key Identifier: keyid:67:8E:BB:A2:F8:48:E3:C8:E5:F0:72:74:90:05:C8:41:52:52:DB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/Z467ovhI48jl8HJ0kAXIQVJS24U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z467ovhI48jl8HJ0kAXIQVJS24U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/EA7000B2ABAA11EAAA93741EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.124.28.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:c6:df:64:c7:ad:b3:d3:ce:a0:eb:8d:6a:9b:b5:2b:54:67: 1d:f8:ea:64:a3:f5:fc:70:9d:47:cc:67:4d:e6:f3:73:ea:06: db:81:74:17:62:40:e9:d6:95:53:b8:6e:3f:7b:8d:5b:81:41: 52:1f:68:9e:ea:b7:6e:16:74:1c:16:b0:a4:dd:96:df:46:a2: 96:9f:86:06:02:ec:fa:94:ef:7d:bb:2f:55:68:1c:a7:65:05: 2e:07:27:cb:91:17:a9:8e:65:53:cc:90:3e:db:4f:0b:61:94: dd:ff:7e:97:8e:dd:a1:e4:89:2a:1b:66:6e:f6:e5:d6:14:86: c9:5b:49:c2:71:60:3e:7f:98:c3:65:4d:50:d2:fd:f1:03:1b: 70:95:86:01:e7:9a:96:5c:69:63:09:f8:9c:71:59:54:7f:a7: 94:8c:c5:1f:b8:77:f7:ac:4b:f8:2c:84:6a:13:2d:89:8f:75: c1:39:be:fb:ea:83:db:d1:be:c7:73:6c:26:ec:d8:af:92:41: 6f:1b:61:14:cf:81:4e:c9:eb:7d:9f:53:22:1f:44:25:1f:e2: 66:4f:06:5d:43:54:ab:af:55:49:d5:5d:ac:2d:be:a9:ec:97: 8d:5a:2c:2f:72:64:de:88:84:3c:08:60:22:de:d0:5f:8b:ab: 0f:8b:21:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRGNDYxMTAvBgNVBAUTKDY3OEVCQkEyRjg0OEUzQzhFNUYwNzI3NDkwMDVDODQx NTI1MkRCODUwHhcNMjUwOTIwMjA0MTA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNmMTE2NC1lNjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtAGSca4pw+Pt0hN5q4gIsozo+GAQNalvark2DmVGT5cOOsTD2yt5cy945Ehp VuGxIC/KEvwgT0U/zsxl1lIx3MzZLVrQWOl5gzzFxOj5WiV36xHB4koHHt8fl/6b YLPA3LRL9mj6C2TqCJoWtGkyCDgGgcelQ2ZRA9gWNYYxInzJhw2JqGjfZ1Ivj1zP ahQ4WVU8PXlC5Uh4xQsFTOOz8zut7t+LvQjyOqTyctVQudR12UeBUG3LT1lbyNXe f6k9MpWPiuRV6sXLcqHiuGIePpFc8FWE9JDDU2oiw3VHKA5jwqaIei+N0MBauH16 FP1Jv4R5S4XudrLg5yeP1IX1bwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE+geosm 4VAEF4h2Qzw053D04UU5MB8GA1UdIwQYMBaAFGeOu6L4SOPI5fBydJAFyEFSUtuF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEY0Ni9FRkE2OTUxMEFC QTkxMUVBOTFFNUJGMURDNEY5QUUwMi9aNDY3b3ZoSTQ4amw4SEowa0FYSVFWSlMy NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o0NjdvdmhJNDhqbDhISjBrQVhJUVZKUzI0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTRGNDYvRUZBNjk1MTBBQkE5MTFFQTkxRTVCRjFEQzRGOUFFMDIvRUE3MDAwQjJB QkFBMTFFQUFBOTM3NDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKfBwwDQYJKoZIhvcNAQELBQADggEBABvG32THrbPTzqDr jWqbtStUZx346mSj9fxwnUfMZ03m83PqBtuBdBdiQOnWlVO4bj97jVuBQVIfaJ7q t24WdBwWsKTdlt9GopafhgYC7PqU7327L1VoHKdlBS4HJ8uRF6mOZVPMkD7bTwth lN3/fpeO3aHkiSobZm725dYUhslbScJxYD5/mMNlTVDS/fEDG3CVhgHnmpZcaWMJ +JxxWVR/p5SMxR+4d/esS/gshGoTLYmPdcE5vvvqg9vRvsdzbCbs2K+SQW8bYRTP gU7J632fUyIfRCUf4mZPBl1DVKuvVUnVXawtvqnsl41aLC9yZN6IhDwIYCLe0F+L qw+LIS4= -----END CERTIFICATE-----Generated at Tue Oct 21 11:00:35 2025 by rpki-client