$ rpki-client -vvf rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/0DF331C28F9411EAA5E7B573C4F9AE02.roa File: 0DF331C28F9411EAA5E7B573C4F9AE02.roa (raw, json) Hash identifier: 9uu0uxHIlYAtI54QHWC2LYrc4wDsOXjbCKyh/vuM2qk= Subject key identifier: 85:AF:CA:D7:C3:06:F2:CA:CE:08:F4:00:53:0B:66:4E:21:57:84:8F Certificate issuer: /CN=A914C33A/serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Certificate serial: 0D25 Authority key identifier: 0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/0DF331C28F9411EAA5E7B573C4F9AE02.roa Signing time: Tue 30 Sep 2025 15:42:32 +0000 ROA not before: Tue 30 Sep 2025 15:42:32 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7642 IP address blocks: 83.137.200.0/21 maxlen: 21 83.137.200.0/23 maxlen: 24 83.137.202.0/23 maxlen: 24 83.137.204.0/23 maxlen: 24 83.137.206.0/23 maxlen: 24 185.215.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3365 (0xd25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C33A, serialNumber=0FDE82D2794854C9AFCDD85EFB7EFE49C47D2EEE Validity Not Before: Sep 30 15:42:32 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dbfa68-5e2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5b:88:e8:a1:39:b9:f5:8a:47:79:28:e0:35: 41:57:cf:08:19:0a:cd:89:2d:53:17:82:b8:95:8f: 2e:a6:7a:cf:c1:5b:08:9c:3f:ca:56:28:09:da:25: 54:02:c7:b1:97:80:69:f1:61:ca:cb:02:d8:d2:84: 3d:18:8d:db:5d:ed:5e:90:f4:e4:b4:86:30:06:d7: 3d:c7:36:f3:fd:91:48:25:09:b0:73:04:9f:a2:5b: ac:60:24:5a:83:15:5b:08:0b:9c:4d:33:52:78:47: 66:80:16:bb:92:52:fd:9d:b7:53:80:17:3c:b8:d7: bc:54:47:1f:5c:c0:15:d0:de:84:ec:ce:55:e4:1a: 22:f6:55:29:6f:9a:f0:77:4c:87:35:d7:16:b3:c6: 39:9a:3b:56:03:6f:8a:d0:f0:2d:24:53:e6:ef:ae: 2e:f4:5f:31:73:4a:f9:a1:32:76:68:45:dd:17:45: 10:c5:27:5e:8e:d5:57:8d:a7:16:41:b8:09:4b:6f: f6:11:8c:8d:04:6b:28:d2:59:cc:0a:01:73:99:62: 55:44:6e:32:52:f5:5a:58:dc:5c:dc:47:5d:35:99: 2e:fd:c7:d0:1e:92:c0:ff:db:94:85:7f:df:30:a7: 0d:38:3c:ef:1f:85:8c:ef:b5:f0:55:18:f5:26:c2: 63:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:AF:CA:D7:C3:06:F2:CA:CE:08:F4:00:53:0B:66:4E:21:57:84:8F X509v3 Authority Key Identifier: keyid:0F:DE:82:D2:79:48:54:C9:AF:CD:D8:5E:FB:7E:FE:49:C4:7D:2E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/D96C0nlIVMmvzdhe-37-ScR9Lu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D96C0nlIVMmvzdhe-37-ScR9Lu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C33A/8F47A9FAE97D11E9A9DB5E52C4F9AE02/0DF331C28F9411EAA5E7B573C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 83.137.200.0/21 185.215.32.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:86:42:d4:68:f5:83:a6:84:52:aa:75:a5:8f:db:2f:00:c9: 3b:76:59:bb:e6:af:de:c2:d2:71:7c:0f:f3:9f:08:85:94:81: 18:97:1b:00:bd:1b:91:ac:3a:b9:20:31:76:a0:85:6d:c4:fe: 38:03:6b:c0:60:34:af:dc:2a:5f:95:43:2c:19:4e:bd:05:22: b5:63:e5:ac:cd:e5:14:85:24:98:89:56:f4:6e:20:16:46:c2: 44:dd:f0:25:0b:53:87:d4:bd:db:37:3a:d7:0e:82:fe:3e:5b: 85:4a:96:88:a9:88:cd:49:f5:35:0f:69:14:1b:0f:e0:d1:b4: 24:94:b8:4d:b6:fe:a3:2e:b9:48:ed:21:46:c4:5b:89:07:6d: 39:62:7d:40:65:8f:50:eb:05:70:89:c5:f0:2b:dc:ac:2b:3b: 85:d3:fe:5e:66:f3:8f:4e:c3:70:a4:cc:5b:9a:e9:ae:59:92: a4:f2:53:74:ef:05:97:6d:b3:4d:01:99:eb:8d:10:a5:79:eb: 45:54:a7:6e:e7:c9:c5:f9:db:e2:98:26:0b:7e:20:ec:f9:12: a2:12:6b:b2:85:46:22:ba:31:aa:86:ff:9f:cc:b8:cf:d1:ef: a3:f0:78:2a:5d:a1:3b:f1:93:0d:f0:79:11:40:43:99:7a:50: ca:75:8e:b2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDSUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMzM0ExMTAvBgNVBAUTKDBGREU4MkQyNzk0ODU0QzlBRkNERDg1RUZCN0VGRTQ5 QzQ3RDJFRUUwHhcNMjUwOTMwMTU0MjMyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiZmE2OC01ZTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1luI6KE5ufWKR3ko4DVBV88IGQrNiS1TF4K4lY8upnrPwVsInD/KVigJ2iVU Asexl4Bp8WHKywLY0oQ9GI3bXe1ekPTktIYwBtc9xzbz/ZFIJQmwcwSfolusYCRa gxVbCAucTTNSeEdmgBa7klL9nbdTgBc8uNe8VEcfXMAV0N6E7M5V5Boi9lUpb5rw d0yHNdcWs8Y5mjtWA2+K0PAtJFPm764u9F8xc0r5oTJ2aEXdF0UQxSdejtVXjacW QbgJS2/2EYyNBGso0lnMCgFzmWJVRG4yUvVaWNxc3EddNZku/cfQHpLA/9uUhX/f MKcNODzvH4WM77XwVRj1JsJjgQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIWvytfD BvLKzgj0AFMLZk4hV4SPMB8GA1UdIwQYMBaAFA/egtJ5SFTJr83YXvt+/knEfS7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzMzQS84RjQ3QTlGQUU5 N0QxMUU5QTlEQjVFNTJDNEY5QUUwMi9EOTZDMG5sSVZNbXZ6ZGhlLTM3LVNjUjlM dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q5NkMwbmxJVk1tdnpkaGUtMzctU2NSOUx1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMzM0EvOEY0N0E5RkFFOTdEMTFFOUE5REI1RTUyQzRGOUFFMDIvMERGMzMxQzI4 Rjk0MTFFQUE1RTdCNTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANTicgDBAK51yAwDQYJKoZIhvcNAQELBQADggEBAAuGQtRo 9YOmhFKqdaWP2y8AyTt2Wbvmr97C0nF8D/OfCIWUgRiXGwC9G5GsOrkgMXaghW3E /jgDa8BgNK/cKl+VQywZTr0FIrVj5azN5RSFJJiJVvRuIBZGwkTd8CULU4fUvds3 OtcOgv4+W4VKloipiM1J9TUPaRQbD+DRtCSUuE22/qMuuUjtIUbEW4kHbTlifUBl j1DrBXCJxfAr3KwrO4XT/l5m849Ow3CkzFua6a5ZkqTyU3TvBZdts00BmeuNEKV5 60VUp27nycX52+KYJgt+IOz5EqISa7KFRiK6MaqG/5/MuM/R76PweCpdoTvxkw3w eRFAQ5l6UMp1jrI= -----END CERTIFICATE-----Generated at Mon Oct 20 20:32:22 2025 by rpki-client