$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/B287525CE81011EA926BE66FC4F9AE02.roa File: B287525CE81011EA926BE66FC4F9AE02.roa (raw, json) Hash identifier: sFHCJw5BrykaJrt5HBvIuIZlR2YHVfxWnMrA0b3Zjo0= Subject key identifier: 1A:AF:CD:FE:23:C3:34:52:5D:F1:20:29:8B:94:72:9B:3A:2A:BF:AF Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 0846 Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/B287525CE81011EA926BE66FC4F9AE02.roa Signing time: Tue 30 Sep 2025 21:22:40 +0000 ROA not before: Tue 30 Sep 2025 21:22:40 +0000 ROA not after: Fri 30 Jan 2026 00:00:00 +0000 asID: 56132 IP address blocks: 130.194.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:57:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6, serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Sep 30 21:22:40 2025 GMT Not After : Jan 30 00:00:00 2026 GMT Subject: CN=68dc4a20-760d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:98:b5:b7:df:86:0b:53:a7:da:d5:88:31:f5: 20:09:a8:6a:74:79:97:eb:64:0d:2c:92:3e:bc:98: 07:97:be:2b:8f:c9:ed:e7:27:89:18:06:03:b2:97: 34:8d:4c:97:e9:17:d0:e2:f2:ab:94:43:4e:36:01: 04:66:d3:8a:0b:8f:d1:46:7b:48:e2:74:bf:b1:3e: da:05:e3:dc:22:73:14:ff:66:92:fd:18:72:3b:67: 7d:04:06:3d:ff:f0:4d:c7:18:34:cc:71:96:89:38: f8:07:2b:e8:58:43:ff:1f:03:5f:cc:03:82:3d:bf: b9:7d:0e:19:51:44:bb:17:de:b8:6b:fa:bc:3a:2e: 3a:c8:05:aa:0b:94:4d:eb:46:20:52:de:ee:2b:c0: 48:4d:fc:29:96:a6:69:64:c5:99:09:5c:7a:11:9f: 59:7d:a9:87:39:02:78:66:82:b8:47:82:23:f7:be: ae:19:8f:16:bd:4d:67:bb:f9:35:43:25:5a:7d:31: 96:c9:f0:bc:4c:0b:d4:9e:85:b2:c7:57:3b:5d:37: 07:96:3f:47:44:58:2b:34:74:b3:d8:c1:59:57:a1: 26:2e:06:87:4e:9a:55:55:52:47:21:39:95:62:a4: 3c:44:71:a3:4c:9b:73:7f:3a:24:ba:ee:fa:d0:5f: 3b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:AF:CD:FE:23:C3:34:52:5D:F1:20:29:8B:94:72:9B:3A:2A:BF:AF X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/B287525CE81011EA926BE66FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption de:77:6f:7b:bc:cf:3e:f6:a4:be:e8:39:3f:cb:ad:c2:3e:d6: 9b:d7:17:42:80:34:b9:ba:e7:e4:d6:94:52:12:35:db:3b:19: f3:4b:bf:29:7c:67:6a:b9:1f:53:84:d7:28:80:29:a6:61:65: ef:d3:c0:b1:15:57:25:c4:92:d0:e3:f4:98:29:39:36:6c:e3: a1:43:60:68:21:c5:0b:a3:e3:36:e5:77:bd:71:66:ad:0b:52: 54:24:60:55:0c:3d:29:19:15:30:e5:6e:3b:0f:c4:c7:37:ce: c5:32:f2:fa:49:03:d7:b2:3f:67:28:1f:a2:2f:0f:67:c1:b1: f5:ba:eb:d1:f5:f8:4d:64:4f:b1:9e:6b:d6:ba:b7:1a:19:b6: c7:2c:11:d0:88:f6:db:a5:9e:02:ce:00:19:07:3e:71:19:b9: 23:43:82:60:34:fc:4f:ec:d3:5e:58:65:1b:c1:8b:af:2c:b4: bd:45:13:88:31:48:69:47:c9:82:c9:10:a2:f2:aa:77:22:b3: 8b:b8:e9:7f:53:f8:b0:15:83:df:f7:8b:98:a9:fe:3e:1b:be: 64:06:12:67:ad:8b:4e:50:57:3f:33:9d:a3:09:9c:d1:1a:fb: 28:62:de:5c:0b:76:03:36:ca:a4:fe:40:48:78:52:83:b1:e2: a1:58:98:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjUwOTMwMjEyMjQwWhcNMjYwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjNGEyMC03NjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAopi1t9+GC1On2tWIMfUgCahqdHmX62QNLJI+vJgHl74rj8nt5yeJGAYDspc0 jUyX6RfQ4vKrlENONgEEZtOKC4/RRntI4nS/sT7aBePcInMU/2aS/RhyO2d9BAY9 //BNxxg0zHGWiTj4ByvoWEP/HwNfzAOCPb+5fQ4ZUUS7F964a/q8Oi46yAWqC5RN 60YgUt7uK8BITfwplqZpZMWZCVx6EZ9ZfamHOQJ4ZoK4R4Ij976uGY8WvU1nu/k1 QyVafTGWyfC8TAvUnoWyx1c7XTcHlj9HRFgrNHSz2MFZV6EmLgaHTppVVVJHITmV YqQ8RHGjTJtzfzokuu760F876QIDAQABo4IClDCCApAwHQYDVR0OBBYEFBqvzf4j wzRSXfEgKYuUcps6Kr+vMB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U1RDYvNUE1MkY5MTJFNzVBMTFFQUI5NkY5RDYwQzRGOUFFMDIvQjI4NzUyNUNF ODEwMTFFQTkyNkJFNjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCCwjANBgkqhkiG9w0BAQsFAAOCAQEA3ndve7zPPvakvug5 P8utwj7Wm9cXQoA0ubrn5NaUUhI12zsZ80u/KXxnarkfU4TXKIAppmFl79PAsRVX JcSS0OP0mCk5NmzjoUNgaCHFC6PjNuV3vXFmrQtSVCRgVQw9KRkVMOVuOw/ExzfO xTLy+kkD17I/Zygfoi8PZ8Gx9brr0fX4TWRPsZ5r1rq3Ghm2xywR0Ij226WeAs4A GQc+cRm5I0OCYDT8T+zTXlhlG8GLryy0vUUTiDFIaUfJgskQovKqdyKzi7jpf1P4 sBWD3/eLmKn+Phu+ZAYSZ62LTlBXPzOdowmc0Rr7KGLeXAt2AzbKpP5ASHhSg7Hi oViYgA== -----END CERTIFICATE-----Generated at Mon Oct 20 21:35:32 2025 by rpki-client