$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa File: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (raw, json) Hash identifier: ACjymaT82Ts20I3seIpJ3qFJasSA4FVf/+MM9Q+0Im8= Subject key identifier: C9:00:F3:A4:C9:AC:50:8F:86:EB:7C:6A:51:4D:6B:26:29:B8:CB:3D Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 85 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa Signing time: Thu 16 Oct 2025 09:10:40 +0000 ROA not before: Thu 16 Oct 2025 09:10:40 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153680 IP address blocks: 163.223.56.0/24 maxlen: 24 2001:df5:3340::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Oct 16 09:10:40 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68f0b690-21d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:86:3b:8d:d8:d0:42:70:a1:f8:c8:5d:4a:9a: 5f:45:9b:37:f2:bc:8c:a8:45:2c:43:30:19:f1:f9: 6a:72:7d:59:a0:5e:bf:e6:ef:46:e6:4f:f0:60:45: 49:39:4e:d9:45:05:bd:fd:6a:87:98:12:78:34:18: 33:de:24:70:98:2c:b6:ad:9a:eb:23:44:bf:84:c3: 2f:99:c5:e6:91:84:c7:20:ee:27:50:ad:83:11:e0: 5e:ec:b5:ca:e1:86:05:7d:6f:9e:67:13:b2:de:ed: 65:da:64:b4:6f:13:c1:c6:2c:2d:64:db:a5:8a:41: c2:d9:08:4e:70:63:34:f0:84:5a:35:67:b8:e4:9a: 44:81:fe:8d:a8:33:df:89:b7:e2:fb:39:23:02:6a: 82:28:5e:15:7e:b0:3d:eb:f6:3a:f5:73:c8:45:5e: 40:1c:43:d7:9c:fb:84:b5:86:38:46:e7:2a:9c:b0: f4:5d:62:e7:4d:ae:18:15:fe:09:95:3a:bd:df:e1: 27:2a:00:1c:f3:80:af:1d:ea:eb:71:a7:8d:94:e4: dc:e5:3d:dc:de:45:96:2d:28:99:0c:a3:94:18:a5: f4:43:84:4a:69:cd:10:fe:54:73:d5:ec:df:ce:11: 06:bb:bc:55:11:08:bc:8e:ce:72:5a:a3:2a:31:ed: ce:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:00:F3:A4:C9:AC:50:8F:86:EB:7C:6A:51:4D:6B:26:29:B8:CB:3D X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.56.0/24 IPv6: 2001:df5:3340::/48 Signature Algorithm: sha256WithRSAEncryption 0b:5b:88:37:7d:28:b3:26:a9:af:8a:59:7c:bd:a2:b8:40:e6: f3:30:e0:73:4c:63:17:c6:a9:cf:ba:3d:38:61:38:18:4c:34: 7c:02:73:07:95:7b:77:eb:90:0e:f7:e4:65:c6:bc:64:9e:bc: 55:ea:fb:62:26:25:df:17:65:04:72:83:ce:b6:b7:9a:2d:13: 91:09:68:82:65:e2:19:c9:ce:71:7e:fe:0c:c0:f0:9f:2a:f3: be:33:4c:a2:18:15:79:89:08:ad:15:73:ac:2a:5a:b6:94:49: c5:6e:c7:f8:62:a0:f3:b3:7d:cd:bb:68:0a:32:7a:fc:dc:6a: 59:14:23:10:e3:45:22:b1:6f:76:f8:0e:4e:c3:c9:0d:b8:44: fb:80:cc:ff:10:99:30:f4:7d:e7:55:bb:02:15:6b:7b:61:89: a1:e5:b3:e9:b8:f2:10:cb:36:cb:f7:ab:e1:f5:e7:f5:e9:2d: 79:0e:45:1b:c7:43:0c:35:dc:b8:31:88:20:f5:69:c4:4c:d0: c0:9d:fa:f9:ff:35:f6:85:4c:4e:f4:3c:1c:e1:13:7f:46:61: de:7a:90:5f:f4:d9:9c:b9:2a:ba:66:69:35:b7:21:c1:8b:55: 21:2b:85:42:6c:bf:9e:21:1c:7f:51:60:83:ae:4e:83:fe:81: b7:e1:ed:28 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjUxMDE2MDkxMDQwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGYwYjY5MC0yMWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4Y7jdjQQnCh+MhdSppfRZs38ryMqEUsQzAZ8flqcn1ZoF6/5u9G5k/wYEVJ OU7ZRQW9/WqHmBJ4NBgz3iRwmCy2rZrrI0S/hMMvmcXmkYTHIO4nUK2DEeBe7LXK 4YYFfW+eZxOy3u1l2mS0bxPBxiwtZNulikHC2QhOcGM08IRaNWe45JpEgf6NqDPf ibfi+zkjAmqCKF4VfrA96/Y69XPIRV5AHEPXnPuEtYY4RucqnLD0XWLnTa4YFf4J lTq93+EnKgAc84CvHerrcaeNlOTc5T3c3kWWLSiZDKOUGKX0Q4RKac0Q/lRz1ezf zhEGu7xVEQi8js5yWqMqMe3OjQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMkA86TJ rFCPhut8alFNayYpuMs9MB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM4NTAvN0IzQjM3RDQwMTg2MTFGMEIwNUI0QzU5QzRGOUFFMDIvRkM3RjEyMUFB QTZGMTFGMEJDRkVCRDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBACj3zgwDwQCAAIwCQMHACABDfUzQDANBgkqhkiG9w0BAQsF AAOCAQEAC1uIN30osyapr4pZfL2iuEDm8zDgc0xjF8apz7o9OGE4GEw0fAJzB5V7 d+uQDvfkZca8ZJ68Ver7YiYl3xdlBHKDzra3mi0TkQlogmXiGcnOcX7+DMDwnyrz vjNMohgVeYkIrRVzrCpatpRJxW7H+GKg87N9zbtoCjJ6/NxqWRQjEONFIrFvdvgO TsPJDbhE+4DM/xCZMPR951W7AhVre2GJoeWz6bjyEMs2y/er4fXn9ekteQ5FG8dD DDXcuDGIIPVpxEzQwJ36+f819oVMTvQ8HOETf0Zh3nqQX/TZnLkqumZpNbchwYtV ISuFQmy/niEcf1Fgg65Og/6Bt+HtKA== -----END CERTIFICATE-----Generated at Tue Oct 21 13:28:00 2025 by rpki-client