$ rpki-client -vvf rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/21642FDA720811EF8F352D23C4F9AE02.roa File: 21642FDA720811EF8F352D23C4F9AE02.roa (raw, json) Hash identifier: pqYtg4cncigu7vCLAu3kw34XMxqu+DFcXncQWlJ6fSU= Subject key identifier: 7E:21:0C:96:2E:7A:42:A1:4C:12:0B:FD:E7:81:4E:63:FB:13:BF:95 Certificate issuer: /CN=A9151932/serialNumber=F54F808016AB4BB06F796A894667C70BDD48FBF6 Certificate serial: D6 Authority key identifier: F5:4F:80:80:16:AB:4B:B0:6F:79:6A:89:46:67:C7:0B:DD:48:FB:F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9U-AgBarS7BveWqJRmfHC91I-_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/21642FDA720811EF8F352D23C4F9AE02.roa Signing time: Wed 15 Oct 2025 09:32:31 +0000 ROA not before: Wed 15 Oct 2025 09:32:31 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153325 IP address blocks: 107.6.124.0/24 maxlen: 24 160.187.32.0/24 maxlen: 24 160.187.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/9U-AgBarS7BveWqJRmfHC91I-_Y.crl rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/9U-AgBarS7BveWqJRmfHC91I-_Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9U-AgBarS7BveWqJRmfHC91I-_Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151932, serialNumber=F54F808016AB4BB06F796A894667C70BDD48FBF6 Validity Not Before: Oct 15 09:32:31 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ef6a2f-a8f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:19:b3:fa:4f:5e:3b:f2:22:ea:4d:88:75:49: 3e:77:89:eb:49:31:5d:bf:1d:a3:43:a8:e1:05:9b: 95:5a:05:36:30:2b:78:c9:87:bf:00:96:19:59:4f: 06:a7:24:3b:b5:df:da:62:96:c8:86:b4:2a:41:c9: 95:5b:be:ea:fc:e7:b2:3b:23:22:fe:84:81:6a:e9: 02:a9:a7:fc:98:dc:68:80:e8:b1:c2:c0:8f:b6:14: a3:ff:80:1b:dc:39:86:ca:9c:89:64:17:44:c5:e7: 1c:b9:02:9a:1c:55:a0:6a:f8:26:70:a5:ee:73:70: 25:25:89:98:e4:1e:42:25:25:27:42:0d:b5:c7:b3: fc:4a:56:28:43:66:1f:40:5b:65:3c:98:cf:25:96: ac:f9:b4:6a:d6:7b:17:ec:16:6d:03:8e:74:18:bd: 31:db:ac:b7:22:59:5d:cf:46:3c:5a:29:1a:50:28: e0:fc:7e:88:b1:d5:0c:7a:c6:b8:1b:fc:b9:f9:17: a1:a9:0d:9c:ce:b9:7c:17:39:1a:eb:b9:b7:29:d5: 86:0c:cf:07:ca:c8:c8:41:db:79:23:56:2b:de:22: be:e7:3e:30:7b:27:d7:84:6d:26:78:f9:bb:05:6a: 24:7e:0f:01:89:fc:89:cd:64:37:8e:32:b0:42:ef: 8d:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:21:0C:96:2E:7A:42:A1:4C:12:0B:FD:E7:81:4E:63:FB:13:BF:95 X509v3 Authority Key Identifier: keyid:F5:4F:80:80:16:AB:4B:B0:6F:79:6A:89:46:67:C7:0B:DD:48:FB:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/9U-AgBarS7BveWqJRmfHC91I-_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/9U-AgBarS7BveWqJRmfHC91I-_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151932/47CA35E4720711EF9DC8BA21C4F9AE02/21642FDA720811EF8F352D23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 107.6.124.0/24 160.187.32.0/23 Signature Algorithm: sha256WithRSAEncryption 89:e8:46:ae:5a:72:c3:00:1f:e0:48:c7:3e:1c:62:a9:21:d0: 07:54:6f:1f:1e:43:02:1e:8c:bb:4f:62:c6:ee:5b:b4:5f:0c: 92:3c:4b:1c:8c:0a:b3:f1:fd:3e:5a:ce:8b:01:50:cc:4d:6e: 6a:29:73:7a:5d:c8:92:d9:17:63:2a:b4:73:8d:b6:81:70:26: ef:44:04:01:3f:b1:6a:5a:bc:22:a5:03:ef:47:15:ec:1c:da: bc:e7:24:42:0b:73:78:97:b9:f4:17:78:d2:f9:c4:8b:e8:8a: 08:aa:9d:a2:b3:6d:ad:fc:e7:55:bf:55:61:f7:33:af:a1:ea: 10:8a:28:ca:6b:f5:ce:26:ec:04:04:42:e4:b7:9f:09:e4:40: 92:13:f5:f6:23:48:59:3e:88:02:c2:d2:bd:50:a5:65:79:26: 8b:02:50:ca:89:ee:27:20:1d:08:5a:6f:75:76:c7:8e:dc:7d: 18:0c:81:a0:d1:28:46:07:4f:4d:e2:73:ff:13:be:77:b2:08: 1e:26:da:4f:13:2b:e7:ef:48:ac:15:21:6b:45:6a:07:5a:71: 26:c1:1c:c2:8f:99:a4:a3:84:f9:fd:26:0e:7e:dd:c7:8c:c2: ba:06:29:d6:8a:a0:59:54:bf:16:ef:6e:6a:4a:39:fd:e5:32: b3:12:1f:3b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE5MzIxMTAvBgNVBAUTKEY1NEY4MDgwMTZBQjRCQjA2Rjc5NkE4OTQ2NjdDNzBC REQ0OEZCRjYwHhcNMjUxMDE1MDkzMjMxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVmNmEyZi1hOGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxmz+k9eO/Ii6k2IdUk+d4nrSTFdvx2jQ6jhBZuVWgU2MCt4yYe/AJYZWU8G pyQ7td/aYpbIhrQqQcmVW77q/OeyOyMi/oSBaukCqaf8mNxogOixwsCPthSj/4Ab 3DmGypyJZBdExeccuQKaHFWgavgmcKXuc3AlJYmY5B5CJSUnQg21x7P8SlYoQ2Yf QFtlPJjPJZas+bRq1nsX7BZtA450GL0x26y3Illdz0Y8WikaUCjg/H6IsdUMesa4 G/y5+RehqQ2czrl8Fzka67m3KdWGDM8HysjIQdt5I1Yr3iK+5z4weyfXhG0mePm7 BWokfg8BifyJzWQ3jjKwQu+NiQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFH4hDJYu ekKhTBIL/eeBTmP7E7+VMB8GA1UdIwQYMBaAFPVPgIAWq0uwb3lqiUZnxwvdSPv2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTkzMi80N0NBMzVFNDcy MDcxMUVGOURDOEJBMjFDNEY5QUUwMi85VS1BZ0JhclM3QnZlV3FKUm1mSEM5MUkt X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzlVLUFnQmFyUzdCdmVXcUpSbWZIQzkxSS1fWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE5MzIvNDdDQTM1RTQ3MjA3MTFFRjlEQzhCQTIxQzRGOUFFMDIvMjE2NDJGREE3 MjA4MTFFRjhGMzUyRDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABrBnwDBAGguyAwDQYJKoZIhvcNAQELBQADggEBAInoRq5a csMAH+BIxz4cYqkh0AdUbx8eQwIejLtPYsbuW7RfDJI8SxyMCrPx/T5azosBUMxN bmopc3pdyJLZF2MqtHONtoFwJu9EBAE/sWpavCKlA+9HFewc2rznJEILc3iXufQX eNL5xIvoigiqnaKzba3851W/VWH3M6+h6hCKKMpr9c4m7AQEQuS3nwnkQJIT9fYj SFk+iALC0r1QpWV5JosCUMqJ7icgHQhab3V2x47cfRgMgaDRKEYHT03ic/8Tvney CB4m2k8TK+fvSKwVIWtFagdacSbBHMKPmaSjhPn9Jg5+3ceMwroGKdaKoFlUvxbv bmpKOf3lMrMSHzs= -----END CERTIFICATE-----Generated at Tue Oct 21 11:00:33 2025 by rpki-client