$ rpki-client -vvf rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/BE466468B8D611ED876CBD7CC4F9AE02.roa File: BE466468B8D611ED876CBD7CC4F9AE02.roa (raw, json) Hash identifier: eEZPHr2hyWyjDlWLggbbTEM+Nbw1nk3y4RJyg3r84y0= Subject key identifier: D9:02:85:CB:24:1E:C6:12:70:6A:4C:4D:EF:3B:4C:30:93:9E:50:BE Certificate issuer: /CN=A914589A/serialNumber=262790CD914CEA8EC11E25869B898DE0001FBD09 Certificate serial: 19BF Authority key identifier: 26:27:90:CD:91:4C:EA:8E:C1:1E:25:86:9B:89:8D:E0:00:1F:BD:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JieQzZFM6o7BHiWGm4mN4AAfvQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/BE466468B8D611ED876CBD7CC4F9AE02.roa Signing time: Tue 14 Oct 2025 17:14:58 +0000 ROA not before: Tue 14 Oct 2025 17:14:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 23893 IP address blocks: 180.210.128.0/19 maxlen: 19 180.210.128.0/23 maxlen: 24 180.210.130.0/23 maxlen: 24 180.210.133.0/24 maxlen: 24 180.210.134.0/23 maxlen: 24 180.210.136.0/23 maxlen: 24 180.210.138.0/23 maxlen: 24 180.210.140.0/23 maxlen: 24 180.210.142.0/23 maxlen: 24 180.210.144.0/23 maxlen: 24 180.210.146.0/23 maxlen: 24 180.210.148.0/23 maxlen: 24 180.210.150.0/23 maxlen: 24 180.210.152.0/23 maxlen: 24 180.210.154.0/23 maxlen: 24 180.210.156.0/23 maxlen: 24 180.210.158.0/23 maxlen: 24 2404:b00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/JieQzZFM6o7BHiWGm4mN4AAfvQk.crl rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/JieQzZFM6o7BHiWGm4mN4AAfvQk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JieQzZFM6o7BHiWGm4mN4AAfvQk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6591 (0x19bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914589A, serialNumber=262790CD914CEA8EC11E25869B898DE0001FBD09 Validity Not Before: Oct 14 17:14:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ee8511-33e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:85:65:23:c4:3e:f8:c0:31:93:0c:61:5c:9d: c5:4c:d2:1b:2c:30:50:d4:18:e2:9f:e1:68:9a:ba: cc:ac:32:ba:e0:be:0d:3e:d6:e6:45:dc:73:ba:7d: 9c:58:cd:b6:fd:8f:bb:79:63:c7:1b:77:92:b1:c0: b2:32:c3:e5:81:0b:74:cf:63:a5:f0:24:2e:ee:26: 73:d3:92:c9:94:0a:71:1a:56:19:ce:ee:e2:6d:21: 60:74:a1:02:83:13:07:8c:f7:d9:e7:81:b9:da:93: 73:b9:c9:2a:88:9e:d9:ac:cc:53:82:95:a9:83:8a: fc:4c:a3:4c:5a:59:11:f8:f8:4a:25:e2:38:c6:a1: 63:c0:91:60:4c:bd:b2:e4:d7:99:88:50:fd:03:65: b1:88:6c:af:32:fb:cc:75:d5:b9:28:37:03:8b:53: 2a:83:18:96:68:ce:12:02:0b:0f:b4:8e:ba:bd:fa: 04:b3:d1:c9:5b:81:77:8e:ee:1a:8d:84:81:41:d5: 81:9d:ee:99:ce:17:6b:de:85:e5:0f:78:7e:cb:07: cc:8d:da:60:12:a2:ae:9f:17:a4:db:03:4b:66:3f: e4:74:e9:17:15:5e:83:3a:0d:a1:5e:98:1d:87:03: 81:81:d0:dd:c3:1c:3f:cb:65:09:9c:27:f2:43:79: 72:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:02:85:CB:24:1E:C6:12:70:6A:4C:4D:EF:3B:4C:30:93:9E:50:BE X509v3 Authority Key Identifier: keyid:26:27:90:CD:91:4C:EA:8E:C1:1E:25:86:9B:89:8D:E0:00:1F:BD:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/JieQzZFM6o7BHiWGm4mN4AAfvQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JieQzZFM6o7BHiWGm4mN4AAfvQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914589A/ACD6FB8A7D9411E7938BCF4EC4F9AE02/BE466468B8D611ED876CBD7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.210.128.0/19 IPv6: 2404:b00::/32 Signature Algorithm: sha256WithRSAEncryption 68:31:4f:a6:a5:17:01:1e:26:10:e2:46:7b:13:bf:22:7a:74: b2:26:2d:36:a2:5f:04:14:2d:4c:cc:d5:7d:a8:1c:a0:5d:11: 13:28:3b:1b:79:59:ac:81:25:26:5b:cb:07:32:95:b5:1f:db: 4b:c7:fd:2a:6b:87:b7:12:ef:3c:9e:79:48:af:05:02:e5:bf: a7:4f:4b:eb:9b:e8:c9:08:5e:b1:5b:90:7f:e3:b1:54:b0:20: ca:a4:c3:42:83:38:34:54:73:4e:3f:d0:d3:06:13:c8:82:ec: 25:39:59:20:8b:35:34:d5:cf:f8:4c:86:ad:63:f7:aa:90:34: 94:1a:ee:e4:8b:3d:c8:4c:21:4a:5f:f3:8e:e7:62:34:27:b1: 70:74:22:c4:80:b5:69:f1:c9:ab:48:19:d7:96:24:99:97:44: 6e:ce:2c:c2:ff:40:c1:af:24:7a:e4:df:8d:b8:7c:f3:b6:aa: be:c8:ee:38:6e:ca:e9:87:b5:82:10:aa:69:cc:77:12:f6:d6: 02:27:d1:9d:75:f9:11:e1:ab:e3:d1:76:b9:e2:07:d8:2c:0d: fe:e3:ef:56:61:86:62:77:61:5f:bc:66:fe:7a:13:19:fd:6f: 16:4c:ee:3d:e5:cc:e6:96:73:b1:a2:3b:5d:21:39:a6:fc:46: 6b:9b:02:b6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICGb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU4OUExMTAvBgNVBAUTKDI2Mjc5MENEOTE0Q0VBOEVDMTFFMjU4NjlCODk4REUw MDAxRkJEMDkwHhcNMjUxMDE0MTcxNDU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlODUxMS0zM2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9IVlI8Q++MAxkwxhXJ3FTNIbLDBQ1Bjin+FomrrMrDK64L4NPtbmRdxzun2c WM22/Y+7eWPHG3eSscCyMsPlgQt0z2Ol8CQu7iZz05LJlApxGlYZzu7ibSFgdKEC gxMHjPfZ54G52pNzuckqiJ7ZrMxTgpWpg4r8TKNMWlkR+PhKJeI4xqFjwJFgTL2y 5NeZiFD9A2WxiGyvMvvMddW5KDcDi1MqgxiWaM4SAgsPtI66vfoEs9HJW4F3ju4a jYSBQdWBne6Zzhdr3oXlD3h+ywfMjdpgEqKunxek2wNLZj/kdOkXFV6DOg2hXpgd hwOBgdDdwxw/y2UJnCfyQ3lySwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNkChcsk HsYScGpMTe87TDCTnlC+MB8GA1UdIwQYMBaAFCYnkM2RTOqOwR4lhpuJjeAAH70J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTg5QS9BQ0Q2RkI4QTdE OTQxMUU3OTM4QkNGNEVDNEY5QUUwMi9KaWVRelpGTTZvN0JIaVdHbTRtTjRBQWZ2 UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ppZVF6WkZNNm83QkhpV0dtNG1ONEFBZnZRay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU4OUEvQUNENkZCOEE3RDk0MTFFNzkzOEJDRjRFQzRGOUFFMDIvQkU0NjY0NjhC OEQ2MTFFRDg3NkNCRDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAW00oAwDQQCAAIwBwMFACQECwAwDQYJKoZIhvcNAQELBQAD ggEBAGgxT6alFwEeJhDiRnsTvyJ6dLImLTaiXwQULUzM1X2oHKBdERMoOxt5WayB JSZbywcylbUf20vH/Sprh7cS7zyeeUivBQLlv6dPS+ub6MkIXrFbkH/jsVSwIMqk w0KDODRUc04/0NMGE8iC7CU5WSCLNTTVz/hMhq1j96qQNJQa7uSLPchMIUpf847n YjQnsXB0IsSAtWnxyatIGdeWJJmXRG7OLML/QMGvJHrk3424fPO2qr7I7jhuyumH tYIQqmnMdxL21gIn0Z11+RHhq+PRdrniB9gsDf7j71ZhhmJ3YV+8Zv56Exn9bxZM 7j3lzOaWc7GiO10hOab8RmubArY= -----END CERTIFICATE-----Generated at Mon Oct 20 19:10:44 2025 by rpki-client