$ rpki-client -vvf rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/504CB1588D3911F093856C71C4F9AE02.roa File: 504CB1588D3911F093856C71C4F9AE02.roa (raw, json) Hash identifier: Q9ud5C2PueaEyRNijwK1h4U4bisaCbUXdttrkniJbss= Subject key identifier: 61:43:93:5B:C2:53:F1:46:9E:02:BE:4D:42:91:E3:C8:F9:71:10:CC Certificate issuer: /CN=A9151258/serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Certificate serial: 34B8 Authority key identifier: C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/504CB1588D3911F093856C71C4F9AE02.roa Signing time: Tue 09 Sep 2025 04:56:15 +0000 ROA not before: Tue 09 Sep 2025 04:56:15 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133873 IP address blocks: 216.99.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 15:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13496 (0x34b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151258, serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Validity Not Before: Sep 9 04:56:15 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68bfb36f-cf7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:71:7b:4f:cd:1e:f3:21:ad:d1:4a:e5:fe:a1: be:89:54:84:3d:58:1b:0f:59:ef:13:42:d5:b0:5c: 29:40:87:b4:1f:86:5d:ea:75:81:02:e0:86:96:fc: 6f:e1:50:ae:6c:d9:9a:5e:0b:53:32:ee:9f:4c:05: b5:d5:f2:7d:84:28:f1:35:4a:ae:83:a2:2f:8a:9a: 95:a2:c1:ee:45:08:2d:5a:c9:36:21:45:31:f9:cd: 3f:15:c2:21:cf:be:d9:bd:85:cc:ae:21:5d:d6:e6: c4:12:04:ab:d1:07:bf:09:81:58:90:84:26:dc:bc: 8e:72:ca:1d:06:39:5f:27:f0:69:15:d4:a9:5a:2d: fc:06:0f:eb:b2:aa:61:f0:0e:dc:17:3d:a5:b3:13: d4:eb:40:47:92:d3:b3:99:ed:4a:2d:8c:01:d1:c4: 66:e1:dd:6c:97:f0:eb:b9:6c:16:cf:41:60:68:a8: 7b:ba:87:9f:f8:eb:fc:bb:d7:f3:b8:f4:00:8d:54: cf:c6:dc:46:6c:a5:5e:39:19:1b:86:a5:fa:7c:cc: 21:4c:2d:34:a8:65:c4:64:35:ee:19:f5:a1:f0:e7: 8c:c6:0d:02:ea:3b:3e:b7:a5:e3:d5:20:38:fe:8a: de:2d:7d:63:ba:08:3e:31:2b:2a:ca:66:69:4d:d4: 06:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:43:93:5B:C2:53:F1:46:9E:02:BE:4D:42:91:E3:C8:F9:71:10:CC X509v3 Authority Key Identifier: keyid:C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/504CB1588D3911F093856C71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.99.198.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:4f:82:fd:d7:ed:d1:9b:1e:de:be:6d:33:16:4e:c0:b1:76: a6:8e:2f:bc:65:8c:c0:aa:b6:52:51:47:1e:7f:66:0b:b3:15: db:fe:68:53:f5:b6:8f:d5:70:c1:02:14:0a:cb:74:b0:93:3f: 91:5b:29:25:a6:90:51:6d:c3:bc:1e:ed:50:08:1a:3f:ab:18: 2d:3e:d9:a7:d1:79:bc:1e:04:2b:76:75:0e:08:f2:7a:ce:c6: 96:4d:d2:94:a6:f3:54:ae:bc:d9:0b:80:12:e6:f9:1e:1e:2a: 2c:c3:43:c0:55:6b:be:9d:af:ae:eb:30:ff:ca:dc:26:57:80: 20:2f:da:04:54:43:89:50:1b:17:1e:33:0d:0c:bb:1a:73:46: 9a:35:ba:60:1f:18:0b:60:8d:64:36:93:f3:db:20:06:32:3c: 22:98:09:92:25:0e:b5:0c:50:93:a2:3f:62:c3:28:7d:d8:d1: 64:68:d9:9e:93:f2:df:07:0e:35:c9:d7:2d:bf:7f:0b:5c:3a: 1b:0a:dc:cc:af:b9:d8:02:f2:4d:3e:7d:89:c7:d1:bd:c7:65: 21:b9:82:08:57:3c:1c:a4:a9:e2:72:9d:e1:76:0f:08:26:66: e0:77:b2:e6:46:d1:08:63:67:b1:72:c5:5e:19:ec:0f:08:38: c4:b5:33:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNTgxMTAvBgNVBAUTKEM2QzNERUU4RjYyN0Q3RDk2OEJFREYyMkZDNjEwOTQ2 MjUzMDE3ODMwHhcNMjUwOTA5MDQ1NjE1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmYjM2Zi1jZjdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnF7T80e8yGt0Url/qG+iVSEPVgbD1nvE0LVsFwpQIe0H4Zd6nWBAuCGlvxv 4VCubNmaXgtTMu6fTAW11fJ9hCjxNUqug6IvipqVosHuRQgtWsk2IUUx+c0/FcIh z77ZvYXMriFd1ubEEgSr0Qe/CYFYkIQm3LyOcsodBjlfJ/BpFdSpWi38Bg/rsqph 8A7cFz2lsxPU60BHktOzme1KLYwB0cRm4d1sl/DruWwWz0FgaKh7uoef+Ov8u9fz uPQAjVTPxtxGbKVeORkbhqX6fMwhTC00qGXEZDXuGfWh8OeMxg0C6js+t6Xj1SA4 /oreLX1jugg+MSsqymZpTdQGawIDAQABo4IClTCCApEwHQYDVR0OBBYEFGFDk1vC U/FGngK+TUKR48j5cRDMMB8GA1UdIwQYMBaAFMbD3uj2J9fZaL7fIvxhCUYlMBeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI1OC9CQjJERENFMjFE QTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5bG92dDhpX0dFSlJpVXdG NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hzUGU2UFluMTlsb3Z0OGlfR0VKUmlVd0Y0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEyNTgvQkIyRERDRTIxREE2MTFFMjg2RDkxRDlFMDhCMDJDRDIvNTA0Q0IxNTg4 RDM5MTFGMDkzODU2QzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADYY8YwDQYJKoZIhvcNAQELBQADggEBAEtPgv3X7dGbHt6+ bTMWTsCxdqaOL7xljMCqtlJRRx5/ZguzFdv+aFP1to/VcMECFArLdLCTP5FbKSWm kFFtw7we7VAIGj+rGC0+2afRebweBCt2dQ4I8nrOxpZN0pSm81SuvNkLgBLm+R4e KizDQ8BVa76dr67rMP/K3CZXgCAv2gRUQ4lQGxceMw0MuxpzRpo1umAfGAtgjWQ2 k/PbIAYyPCKYCZIlDrUMUJOiP2LDKH3Y0WRo2Z6T8t8HDjXJ1y2/fwtcOhsK3Myv udgC8k0+fYnH0b3HZSG5gghXPBykqeJyneF2DwgmZuB3suZG0QhjZ7FyxV4Z7A8I OMS1M/Q= -----END CERTIFICATE-----Generated at Mon Oct 20 17:58:45 2025 by rpki-client