$ rpki-client -vvf rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/8D769B548D3C11F0A8123F21C4F9AE02.roa File: 8D769B548D3C11F0A8123F21C4F9AE02.roa (raw, json) Hash identifier: owjQd/y0K+1QjQbktYj1tVC3ALtGMr1qBu3Du7tFJyA= Subject key identifier: A3:24:4C:8F:5D:95:AE:5C:82:14:FC:77:7A:C3:5C:5C:5D:8B:33:E5 Certificate issuer: /CN=A9151258/serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Certificate serial: 34BB Authority key identifier: C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/8D769B548D3C11F0A8123F21C4F9AE02.roa Signing time: Tue 09 Sep 2025 05:19:26 +0000 ROA not before: Tue 09 Sep 2025 05:19:26 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 16509 IP address blocks: 216.99.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13499 (0x34bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151258, serialNumber=C6C3DEE8F627D7D968BEDF22FC61094625301783 Validity Not Before: Sep 9 05:19:26 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68bfb8de-0407 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:13:0c:3d:51:aa:c0:4a:ee:a3:65:c9:b9:da: a3:b6:17:03:ed:f4:b0:f5:40:51:56:b5:4e:d3:69: 3e:72:5a:36:94:dc:bd:a3:02:3b:05:6a:bc:b6:7d: b0:f9:20:2a:fe:34:81:80:de:be:02:12:ea:7a:fa: 54:1d:7a:fe:de:06:8d:23:df:4f:3e:79:9b:31:30: a5:f0:bf:42:97:ac:d2:d1:34:49:7f:aa:01:a1:68: 13:f9:98:22:dd:1e:e4:c7:73:ba:7f:65:e9:4b:9c: d7:29:66:e0:df:25:31:9c:52:ef:26:b7:47:2d:36: 96:9e:82:38:af:37:4d:40:ba:02:dd:b7:60:f0:dd: 3a:2f:52:99:db:0a:79:e8:38:b8:7f:8b:2c:0f:28: f5:a2:50:57:72:48:a9:f4:a7:c1:61:c1:31:a2:81: d1:b4:71:f6:b7:6d:94:1b:47:29:b3:f4:39:63:9c: 6c:e9:2f:21:18:88:e1:49:ab:12:80:b2:62:dd:20: e1:4d:9e:b4:ac:db:da:8e:b3:44:01:ad:e8:49:26: ac:d7:1b:0d:f8:11:f4:bd:c7:c9:25:a3:e6:55:81: 19:79:09:17:d2:a2:c6:90:1b:b8:4c:ab:54:73:df: 82:48:21:8e:20:c5:bb:c2:32:c4:af:a2:63:f6:2c: b5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:24:4C:8F:5D:95:AE:5C:82:14:FC:77:7A:C3:5C:5C:5D:8B:33:E5 X509v3 Authority Key Identifier: keyid:C6:C3:DE:E8:F6:27:D7:D9:68:BE:DF:22:FC:61:09:46:25:30:17:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/xsPe6PYn19lovt8i_GEJRiUwF4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/xsPe6PYn19lovt8i_GEJRiUwF4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151258/BB2DDCE21DA611E286D91D9E08B02CD2/8D769B548D3C11F0A8123F21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.99.198.0/24 Signature Algorithm: sha256WithRSAEncryption 37:2a:1f:85:09:51:95:c2:74:ca:c6:95:07:45:fd:63:c0:43: 54:ff:fd:da:e1:02:c3:1a:1b:b8:e7:dd:04:b1:f4:a3:44:31: 7e:01:7d:b3:3e:ff:40:26:ee:b8:d6:6d:e4:dc:69:c3:91:cd: 31:8c:8b:6f:d3:aa:7e:f4:99:49:ea:64:ae:49:32:70:9f:f0: c2:d2:b8:d7:1e:5f:9f:24:5b:ec:c9:17:65:dd:6e:fd:21:bb: 61:f1:5a:5c:3d:75:2f:50:f3:5c:8f:14:ae:d8:cc:90:b1:f5: 92:3c:cc:25:4f:91:b7:c9:5c:2f:82:a5:e3:a1:a2:b3:68:29: 29:ea:c5:a4:0e:72:e4:97:2b:3a:ce:6c:4f:71:da:34:9e:b0: f5:33:29:f4:da:39:c4:78:f4:e1:b9:03:54:44:5e:41:3a:f5: 5f:d5:f9:36:37:17:f6:83:7b:a3:d1:30:5f:9d:f7:cc:12:8f: 69:d4:a3:d1:c8:71:97:2a:a8:cb:68:98:4a:88:54:e6:67:25: 0c:bc:0f:ea:1b:22:1c:46:a1:7d:26:b9:ab:eb:78:09:92:dd: d5:f6:ed:03:f8:85:1c:eb:ea:dd:35:38:09:96:80:86:bf:7c: ea:47:c9:e4:f3:7a:2b:99:a2:2a:4b:ea:7b:be:d2:fb:5e:ec: 9e:fa:69:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNTgxMTAvBgNVBAUTKEM2QzNERUU4RjYyN0Q3RDk2OEJFREYyMkZDNjEwOTQ2 MjUzMDE3ODMwHhcNMjUwOTA5MDUxOTI2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmYjhkZS0wNDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5RMMPVGqwEruo2XJudqjthcD7fSw9UBRVrVO02k+clo2lNy9owI7BWq8tn2w +SAq/jSBgN6+AhLqevpUHXr+3gaNI99PPnmbMTCl8L9Cl6zS0TRJf6oBoWgT+Zgi 3R7kx3O6f2XpS5zXKWbg3yUxnFLvJrdHLTaWnoI4rzdNQLoC3bdg8N06L1KZ2wp5 6Di4f4ssDyj1olBXckip9KfBYcExooHRtHH2t22UG0cps/Q5Y5xs6S8hGIjhSasS gLJi3SDhTZ60rNvajrNEAa3oSSas1xsN+BH0vcfJJaPmVYEZeQkX0qLGkBu4TKtU c9+CSCGOIMW7wjLEr6Jj9iy1twIDAQABo4IClTCCApEwHQYDVR0OBBYEFKMkTI9d la5cghT8d3rDXFxdizPlMB8GA1UdIwQYMBaAFMbD3uj2J9fZaL7fIvxhCUYlMBeD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI1OC9CQjJERENFMjFE QTYxMUUyODZEOTFEOUUwOEIwMkNEMi94c1BlNlBZbjE5bG92dDhpX0dFSlJpVXdG NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3hzUGU2UFluMTlsb3Z0OGlfR0VKUmlVd0Y0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEyNTgvQkIyRERDRTIxREE2MTFFMjg2RDkxRDlFMDhCMDJDRDIvOEQ3NjlCNTQ4 RDNDMTFGMEE4MTIzRjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADYY8YwDQYJKoZIhvcNAQELBQADggEBADcqH4UJUZXCdMrG lQdF/WPAQ1T//drhAsMaG7jn3QSx9KNEMX4BfbM+/0Am7rjWbeTcacORzTGMi2/T qn70mUnqZK5JMnCf8MLSuNceX58kW+zJF2Xdbv0hu2HxWlw9dS9Q81yPFK7YzJCx 9ZI8zCVPkbfJXC+CpeOhorNoKSnqxaQOcuSXKzrObE9x2jSesPUzKfTaOcR49OG5 A1REXkE69V/V+TY3F/aDe6PRMF+d98wSj2nUo9HIcZcqqMtomEqIVOZnJQy8D+ob IhxGoX0muavreAmS3dX27QP4hRzr6t01OAmWgIa/fOpHyeTzeiuZoipL6nu+0vte 7J76aRA= -----END CERTIFICATE-----Generated at Mon Oct 20 13:01:36 2025 by rpki-client