$ rpki-client -vvf rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/0A0B8CF8308911F0A95E944AC4F9AE02.roa File: 0A0B8CF8308911F0A95E944AC4F9AE02.roa (raw, json) Hash identifier: zD1hAOWgfFf8imPdjoaN6Kre5zSjJhCHRQDKqb4UceI= Subject key identifier: B7:33:79:22:7D:EF:9C:ED:23:01:5F:53:8C:60:8A:15:08:AD:0B:D6 Certificate issuer: /CN=A9148C7B/serialNumber=7F79665E63BF3CD56DC24A0A70D57F9A942DD1B8 Certificate serial: 08CF Authority key identifier: 7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/0A0B8CF8308911F0A95E944AC4F9AE02.roa Signing time: Thu 16 Oct 2025 15:20:54 +0000 ROA not before: Thu 16 Oct 2025 15:20:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 138322 IP address blocks: 23.88.192.0/19 maxlen: 19 23.88.192.0/20 maxlen: 20 23.88.192.0/21 maxlen: 21 23.88.192.0/23 maxlen: 23 23.88.192.0/24 maxlen: 24 23.88.193.0/24 maxlen: 24 23.88.198.0/23 maxlen: 23 23.88.200.0/22 maxlen: 22 23.88.200.0/24 maxlen: 24 23.88.201.0/24 maxlen: 24 23.88.202.0/24 maxlen: 24 23.88.203.0/24 maxlen: 24 23.88.204.0/22 maxlen: 22 23.88.204.0/24 maxlen: 24 23.88.205.0/24 maxlen: 24 23.88.206.0/24 maxlen: 24 23.88.207.0/24 maxlen: 24 152.36.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:49:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2255 (0x8cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148C7B, serialNumber=7F79665E63BF3CD56DC24A0A70D57F9A942DD1B8 Validity Not Before: Oct 16 15:20:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f10d56-d15a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:b6:18:14:e7:14:2c:94:78:90:95:6c:8b: 0c:59:7d:82:5a:cc:eb:c4:d1:97:90:f6:7e:3b:a8: 08:4c:04:a9:8f:e5:52:ed:ae:1b:ac:35:01:f4:ba: 05:e6:1d:da:db:80:04:a0:bc:1b:0a:34:58:25:b1: fa:bb:88:2f:56:72:8b:c3:48:ba:bb:5e:94:44:da: d0:3c:7e:85:cb:8b:0d:9c:cb:13:0c:a0:b8:f9:c7: 54:f8:6a:45:1b:6e:47:cb:43:d8:a0:15:e3:b7:b8: e5:95:52:cc:71:d9:07:57:15:18:ad:43:3b:cc:61: ae:ae:52:33:24:f4:24:06:44:12:c9:d6:a8:3f:9b: 22:0e:b8:ff:c1:9d:3e:41:4e:44:f9:80:0c:b0:0d: 66:43:ae:05:b7:a2:86:cb:9f:17:c6:04:62:e2:0d: 3e:b3:81:cc:58:ba:55:53:ac:3b:ad:11:8e:fb:87: a2:63:8a:86:de:41:35:b9:1f:23:f6:e4:bf:50:22: b2:9b:57:c0:40:39:08:14:f5:95:b8:64:1b:89:cb: 14:a7:01:d8:9b:0c:3a:99:08:8c:ca:6a:9f:0b:70: 40:0d:0b:df:21:19:01:e4:86:3d:63:a2:35:51:79: 1c:89:45:c5:25:2e:8b:a4:70:d8:5b:63:08:1b:48: 9d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:33:79:22:7D:EF:9C:ED:23:01:5F:53:8C:60:8A:15:08:AD:0B:D6 X509v3 Authority Key Identifier: keyid:7F:79:66:5E:63:BF:3C:D5:6D:C2:4A:0A:70:D5:7F:9A:94:2D:D1:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/f3lmXmO_PNVtwkoKcNV_mpQt0bg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/f3lmXmO_PNVtwkoKcNV_mpQt0bg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148C7B/5BFCFF8CD63011EA940DA039C4F9AE02/0A0B8CF8308911F0A95E944AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 23.88.192.0/19 152.36.192.0/19 Signature Algorithm: sha256WithRSAEncryption 65:bd:0e:08:02:5f:cb:9c:ac:15:45:92:fe:a3:99:74:97:28: 2d:6d:ca:eb:26:48:79:72:e9:5e:1a:8a:aa:ec:aa:46:93:a8: 43:88:59:b0:01:4f:6e:84:3a:0f:ab:a4:da:e6:a3:8d:6f:f2: c9:45:a9:81:e2:ff:51:a1:35:b1:a6:90:04:b0:06:73:6f:a6: 3c:2b:eb:3b:cd:4b:37:58:83:00:08:6b:fa:2a:8a:89:8c:ba: 7f:50:b8:2e:81:e5:99:7b:b9:da:9c:9b:49:5e:fa:8d:92:38: a1:ac:2d:0e:db:14:55:3a:b8:14:cf:37:f0:35:4b:d3:14:fb: b3:62:1e:db:40:ce:df:51:38:44:32:f6:e7:fa:e6:e6:14:fb: 97:e4:5b:e3:ed:a3:ba:ea:88:f4:29:8a:85:a4:ee:af:7f:f9: 95:9e:f4:29:e8:6d:8c:db:b2:e8:d4:b2:82:ea:6d:dd:3c:d1: d4:56:7e:0c:69:4f:d4:28:21:c0:50:62:4a:0d:05:03:34:ca: 55:f1:d8:d2:db:cb:d4:15:18:ca:22:33:2b:0b:23:ac:48:64: 22:61:50:4b:04:e2:0c:85:45:f8:4a:dd:70:56:b8:c9:ab:41: fb:9e:95:37:32:12:f9:f8:e5:d4:6a:f0:39:33:df:b6:7d:12: af:f4:c7:a1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhDN0IxMTAvBgNVBAUTKDdGNzk2NjVFNjNCRjNDRDU2REMyNEEwQTcwRDU3RjlB OTQyREQxQjgwHhcNMjUxMDE2MTUyMDU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxMGQ1Ni1kMTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRC2GBTnFCyUeJCVbIsMWX2CWszrxNGXkPZ+O6gITASpj+VS7a4brDUB9LoF 5h3a24AEoLwbCjRYJbH6u4gvVnKLw0i6u16URNrQPH6Fy4sNnMsTDKC4+cdU+GpF G25Hy0PYoBXjt7jllVLMcdkHVxUYrUM7zGGurlIzJPQkBkQSydaoP5siDrj/wZ0+ QU5E+YAMsA1mQ64Ft6KGy58XxgRi4g0+s4HMWLpVU6w7rRGO+4eiY4qG3kE1uR8j 9uS/UCKym1fAQDkIFPWVuGQbicsUpwHYmww6mQiMymqfC3BADQvfIRkB5IY9Y6I1 UXkciUXFJS6LpHDYW2MIG0idbwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLczeSJ9 75ztIwFfU4xgihUIrQvWMB8GA1UdIwQYMBaAFH95Zl5jvzzVbcJKCnDVf5qULdG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEM3Qi81QkZDRkY4Q0Q2 MzAxMUVBOTQwREEwMzlDNEY5QUUwMi9mM2xtWG1PX1BOVnR3a29LY05WX21wUXQw YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2YzbG1YbU9fUE5WdHdrb0tjTlZfbXBRdDBiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhDN0IvNUJGQ0ZGOENENjMwMTFFQTk0MERBMDM5QzRGOUFFMDIvMEEwQjhDRjgz MDg5MTFGMEE5NUU5NDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAUXWMADBAWYJMAwDQYJKoZIhvcNAQELBQADggEBAGW9DggC X8ucrBVFkv6jmXSXKC1tyusmSHly6V4aiqrsqkaTqEOIWbABT26EOg+rpNrmo41v 8slFqYHi/1GhNbGmkASwBnNvpjwr6zvNSzdYgwAIa/oqiomMun9QuC6B5Zl7udqc m0le+o2SOKGsLQ7bFFU6uBTPN/A1S9MU+7NiHttAzt9ROEQy9uf65uYU+5fkW+Pt o7rqiPQpioWk7q9/+ZWe9CnobYzbsujUsoLqbd080dRWfgxpT9QoIcBQYkoNBQM0 ylXx2NLby9QVGMoiMysLI6xIZCJhUEsE4gyFRfhK3XBWuMmrQfuelTcyEvn45dRq 8Dkz37Z9Eq/0x6E= -----END CERTIFICATE-----Generated at Tue Oct 21 03:22:31 2025 by rpki-client