$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa File: 4F7540B64BE311F096B8CE67C4F9AE02.roa (raw, json) Hash identifier: 914DyUC8cgZSpvUxNHt6hFxZ0TIilqGuQ9IXlahT3lI= Subject key identifier: F8:71:DC:74:C3:88:B9:67:EF:37:92:49:AD:6A:F0:6D:86:93:27:F9 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0B3F Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa Signing time: Mon 20 Oct 2025 03:49:36 +0000 ROA not before: Mon 20 Oct 2025 03:49:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149175 IP address blocks: 61.15.80.0/22 maxlen: 22 61.15.88.0/22 maxlen: 24 61.15.97.0/24 maxlen: 24 203.168.221.0/24 maxlen: 24 203.168.238.0/24 maxlen: 24 203.168.244.0/24 maxlen: 24 203.168.245.0/24 maxlen: 24 203.168.246.0/24 maxlen: 24 203.168.247.0/24 maxlen: 24 203.168.248.0/24 maxlen: 24 203.168.249.0/24 maxlen: 24 203.168.250.0/24 maxlen: 24 203.168.251.0/24 maxlen: 24 203.168.253.0/24 maxlen: 24 222.167.36.0/22 maxlen: 22 222.167.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 04:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2879 (0xb3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Oct 20 03:49:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68f5b150-da42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bf:d2:5b:88:9d:d2:fa:dc:b0:2c:ac:0c:8d: 17:b3:21:72:1f:72:ef:96:93:46:a6:ba:df:7d:3e: 1f:34:a4:25:74:87:4f:7d:f1:fa:c2:09:ab:9e:55: 7a:85:10:28:a5:cb:c5:54:91:d7:e3:2f:fb:ae:83: 53:d3:1b:80:13:87:2e:bf:82:c2:12:f5:39:5d:1f: 14:eb:17:a4:37:d6:b5:19:a2:29:e9:7e:45:e9:6c: af:96:ac:92:6e:2a:78:54:52:1a:44:b7:d4:6a:6a: 91:6c:d8:0d:9b:ec:70:7a:71:e1:9b:b3:11:0f:3b: 6f:f3:80:06:23:d6:19:7d:ca:30:fb:ae:f5:40:2f: 5d:f3:38:57:ab:3c:f7:44:68:bd:cb:75:a1:a2:f3: 56:e2:d0:89:ff:7c:ff:c0:0a:41:76:26:a9:08:eb: 9a:2c:80:40:77:0f:3a:d0:06:48:98:44:1f:77:d6: c8:ad:6d:b5:91:fc:7a:80:c0:e0:db:d6:5e:d1:74: 21:79:36:97:46:cb:9e:dc:b0:d6:80:2e:44:0d:b2: 58:28:ef:7f:0c:32:3e:98:b1:c2:dd:16:d0:31:4a: 9d:a9:8d:ab:d7:6f:51:5e:78:74:85:16:8b:b2:db: be:35:e2:3e:a3:b5:5f:d8:82:78:82:eb:1b:f6:93: 8c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:71:DC:74:C3:88:B9:67:EF:37:92:49:AD:6A:F0:6D:86:93:27:F9 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.15.80.0/22 61.15.88.0/22 61.15.97.0/24 203.168.221.0/24 203.168.238.0/24 203.168.244.0-203.168.251.255 203.168.253.0/24 222.167.36.0-222.167.40.255 Signature Algorithm: sha256WithRSAEncryption 33:f9:00:99:be:93:17:82:b7:7b:16:25:8c:51:f3:65:19:67: ed:3f:f5:a0:22:be:3e:ba:74:f5:a7:08:c3:e7:4c:0e:39:d4: c1:58:fd:a4:c6:a1:61:cc:73:33:99:65:5c:e3:eb:f3:6d:01: 7e:93:26:62:96:d5:18:1e:09:d9:a0:90:29:06:2f:3f:1c:75: 2f:af:b7:32:9b:68:ac:51:a3:40:1e:bd:18:a7:dc:cc:c6:42: 40:a5:96:b2:a8:00:65:b3:ed:77:f3:7b:24:77:1a:b5:3d:9a: 36:40:04:b6:c0:48:78:8b:82:c4:a2:49:d1:2c:ff:fd:49:d2: 44:22:4f:32:52:6a:5e:e7:46:69:33:e7:18:21:1f:6f:67:b6: a1:79:09:8f:37:d0:fd:13:76:39:28:03:3a:d4:2b:4a:6e:42: 4c:f9:47:24:e7:ac:d9:ed:9a:d1:58:48:8a:3f:fe:ad:08:58: 28:da:7b:f3:65:46:84:e9:b5:b3:68:dc:0e:f3:d2:01:25:7b: f8:14:27:d1:04:04:a1:b6:c1:13:aa:41:24:51:39:45:da:03: 77:a5:a4:cf:41:db:5d:89:6b:51:47:f5:e0:d4:11:a2:b7:12: c4:e8:ca:d7:71:df:81:27:e4:f7:df:42:19:69:1b:30:32:bf: cd:75:c1:94 -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgICCz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUxMDIwMDM0OTM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGY1YjE1MC1kYTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr/SW4id0vrcsCysDI0XsyFyH3LvlpNGprrffT4fNKQldIdPffH6wgmrnlV6 hRAopcvFVJHX4y/7roNT0xuAE4cuv4LCEvU5XR8U6xekN9a1GaIp6X5F6WyvlqyS bip4VFIaRLfUamqRbNgNm+xwenHhm7MRDztv84AGI9YZfcow+671QC9d8zhXqzz3 RGi9y3WhovNW4tCJ/3z/wApBdiapCOuaLIBAdw860AZImEQfd9bIrW21kfx6gMDg 29Ze0XQheTaXRsue3LDWgC5EDbJYKO9/DDI+mLHC3RbQMUqdqY2r129RXnh0hRaL stu+NeI+o7Vf2IJ4gusb9pOMVwIDAQABo4ICzzCCAsswHQYDVR0OBBYEFPhx3HTD iLln7zeSSa1q8G2Gkyf5MB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvNEY3NTQwQjY0 QkUzMTFGMDk2QjhDRTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWQYIKwYBBQUHAQcBAf8E SjBIMEYEAgABMEADBAI9D1ADBAI9D1gDBAA9D2EDBADLqN0DBADLqO4wDAMEAsuo 9AMEAsuo+AMEAMuo/TAMAwQC3qckAwQA3qcoMA0GCSqGSIb3DQEBCwUAA4IBAQAz +QCZvpMXgrd7FiWMUfNlGWftP/WgIr4+unT1pwjD50wOOdTBWP2kxqFhzHMzmWVc 4+vzbQF+kyZiltUYHgnZoJApBi8/HHUvr7cym2isUaNAHr0Yp9zMxkJApZayqABl s+1383skdxq1PZo2QAS2wEh4i4LEoknRLP/9SdJEIk8yUmpe50ZpM+cYIR9vZ7ah eQmPN9D9E3Y5KAM61CtKbkJM+Uck56zZ7ZrRWEiKP/6tCFgo2nvzZUaE6bWzaNwO 89IBJXv4FCfRBAShtsETqkEkUTlF2gN3paTPQdtdiWtRR/Xg1BGitxLE6MrXcd+B J+T330IZaRswMr/NdcGU -----END CERTIFICATE-----Generated at Mon Oct 20 11:40:42 2025 by rpki-client