$ rpki-client -vvf rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/015250F6309311F084231321C4F9AE02.roa File: 015250F6309311F084231321C4F9AE02.roa (raw, json) Hash identifier: ClfVLlrgYPJm3KLwlrnJCKZymUvwlmZA7LTXay4/Dzs= Subject key identifier: BF:F9:70:DC:4D:E9:D4:F0:9E:7B:63:A1:AC:AD:43:AE:63:B1:F1:73 Certificate issuer: /CN=A912A5D4/serialNumber=66134DA1BFEDAC0C919D26B1F7F9E168AF9D2B4E Certificate serial: 7F Authority key identifier: 66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/015250F6309311F084231321C4F9AE02.roa Signing time: Tue 23 Sep 2025 07:56:15 +0000 ROA not before: Tue 23 Sep 2025 07:56:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 8075 IP address blocks: 143.188.148.0/22 maxlen: 23 143.188.152.0/22 maxlen: 23 143.188.156.0/22 maxlen: 23 143.188.160.0/23 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:03:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A5D4, serialNumber=66134DA1BFEDAC0C919D26B1F7F9E168AF9D2B4E Validity Not Before: Sep 23 07:56:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d2529f-b6ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:30:6a:50:ec:89:6f:d9:ac:f2:b6:32:a6:01: 38:8e:27:83:0a:6e:a0:22:4a:54:81:3b:9b:79:28: f5:f8:c1:d3:5d:1f:ee:b1:39:4e:8e:23:93:0e:52: a9:12:17:ba:c4:01:f6:51:d7:a4:95:83:0b:b5:e7: ec:ae:cc:e8:04:a7:08:26:14:c7:a4:3d:c9:9e:7e: cd:70:f9:c2:91:2d:db:2c:b3:8b:94:b7:48:bb:49: 18:18:ac:63:57:9a:6b:e2:b4:10:17:81:44:19:35: f1:5b:93:f8:e8:1f:05:bf:95:e0:f4:a1:2d:a2:9c: e9:ac:e8:0d:e7:d1:0f:6d:05:f4:c3:af:af:49:7b: 81:64:35:fe:53:76:27:44:11:7e:eb:11:34:a6:25: a7:b6:f1:d7:9d:c5:7a:78:0c:7c:67:bd:7a:8c:ce: 7a:09:53:dd:b9:1f:90:1d:23:d6:91:cd:b5:cb:96: 0d:7a:b4:79:a0:45:07:84:fe:9d:6d:32:d4:2b:5c: 8c:5f:a0:81:79:2c:4f:71:53:1c:2c:05:10:8d:40: 52:13:42:f3:a1:dd:a6:3d:82:d5:18:e5:35:3f:ff: c3:3a:83:88:90:54:90:4f:55:f3:a4:88:15:0f:bb: 11:92:12:cc:cb:75:27:4b:d7:ab:ce:cf:33:1c:33: 76:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F9:70:DC:4D:E9:D4:F0:9E:7B:63:A1:AC:AD:43:AE:63:B1:F1:73 X509v3 Authority Key Identifier: keyid:66:13:4D:A1:BF:ED:AC:0C:91:9D:26:B1:F7:F9:E1:68:AF:9D:2B:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/ZhNNob_trAyRnSax9_nhaK-dK04.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ZhNNob_trAyRnSax9_nhaK-dK04.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A5D4/650B4DE8F3CE11EF914EF644C4F9AE02/015250F6309311F084231321C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.188.148.0-143.188.161.255 Signature Algorithm: sha256WithRSAEncryption 09:b8:d8:78:3e:9c:ae:c6:65:45:fd:2c:98:95:0f:40:28:ce: d2:56:a1:49:f0:ba:55:d8:75:aa:a8:d5:29:62:86:b0:e3:87: be:a5:16:41:1b:96:c7:8a:49:42:0b:38:30:54:8f:fe:b9:ad: 4e:d0:27:ae:8d:32:a7:65:dc:ea:96:6d:24:0d:62:95:fc:dc: 10:ed:2e:a1:43:18:92:0e:c1:5b:1b:41:f0:41:a8:6c:8f:d7: 4f:f4:7d:82:7c:30:56:5e:47:c6:e6:43:8a:fe:58:51:27:85: 63:fe:8a:7a:1a:6a:16:24:45:d3:36:fa:1c:b7:4c:56:c5:a5: 7b:b9:ad:38:b3:b5:46:60:e1:d1:41:7c:03:d3:fe:07:e8:8a: 0c:8f:63:0c:ed:75:0e:20:0f:85:7e:fa:78:be:2b:70:f4:bf: 39:eb:46:ad:58:9b:22:48:74:57:bb:bf:19:56:fe:0c:73:11: 34:00:ad:eb:d4:af:8d:b7:dd:15:56:54:25:a0:8a:09:61:a9: f0:d8:ef:6e:b0:b2:9f:dc:e8:01:3c:f0:6d:56:ee:fe:2e:17: 67:97:63:2f:e2:c1:c9:be:6f:72:fd:c8:c1:86:e4:78:f3:fd: 9f:5f:d4:20:d3:8a:de:8c:bd:48:60:f4:d8:fb:1d:f3:cc:f6: 50:52:cd:e8 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QTVENDExMC8GA1UEBRMoNjYxMzREQTFCRkVEQUMwQzkxOUQyNkIxRjdGOUUxNjhB RjlEMkI0RTAeFw0yNTA5MjMwNzU2MTVaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDI1MjlmLWI2ZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgMGpQ7Ilv2azytjKmATiOJ4MKbqAiSlSBO5t5KPX4wdNdH+6xOU6OI5MOUqkS F7rEAfZR16SVgwu15+yuzOgEpwgmFMekPcmefs1w+cKRLdsss4uUt0i7SRgYrGNX mmvitBAXgUQZNfFbk/joHwW/leD0oS2inOms6A3n0Q9tBfTDr69Je4FkNf5TdidE EX7rETSmJae28dedxXp4DHxnvXqMznoJU925H5AdI9aRzbXLlg16tHmgRQeE/p1t MtQrXIxfoIF5LE9xUxwsBRCNQFITQvOh3aY9gtUY5TU//8M6g4iQVJBPVfOkiBUP uxGSEszLdSdL16vOzzMcM3YBAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUv/lw3E3p 1PCee2OhrK1DrmOx8XMwHwYDVR0jBBgwFoAUZhNNob/trAyRnSax9/nhaK+dK04w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJBNUQ0LzY1MEI0REU4RjND RTExRUY5MTRFRjY0NEM0RjlBRTAyL1poTk5vYl90ckF5Um5TYXg5X25oYUstZEsw NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWmhOTm9iX3RyQXlSblNheDlfbmhhSy1kSzA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QTVENC82NTBCNERFOEYzQ0UxMUVGOTE0RUY2NDRDNEY5QUUwMi8wMTUyNTBGNjMw OTMxMUYwODQyMzEzMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQCj7yUAwQBj7ygMA0GCSqGSIb3DQEBCwUAA4IBAQAJuNh4 PpyuxmVF/SyYlQ9AKM7SVqFJ8LpV2HWqqNUpYoaw44e+pRZBG5bHiklCCzgwVI/+ ua1O0CeujTKnZdzqlm0kDWKV/NwQ7S6hQxiSDsFbG0HwQahsj9dP9H2CfDBWXkfG 5kOK/lhRJ4Vj/op6GmoWJEXTNvoct0xWxaV7ua04s7VGYOHRQXwD0/4H6IoMj2MM 7XUOIA+Ffvp4vitw9L8560atWJsiSHRXu78ZVv4McxE0AK3r1K+Nt90VVlQloIoJ Yanw2O9usLKf3OgBPPBtVu7+Lhdnl2Mv4sHJvm9y/cjBhuR48/2fX9Qg04rejL1I YPTY+x3zzPZQUs3o -----END CERTIFICATE-----Generated at Sun Oct 19 21:03:18 2025 by rpki-client