$ rpki-client -vvf rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/4EFDF38A967011F0B0AB8765C4F9AE02.roa File: 4EFDF38A967011F0B0AB8765C4F9AE02.roa (raw, json) Hash identifier: Oq4mEMZ7D64o5eA9eSKluYrtkP+uWt5I4dDTD5h28z0= Subject key identifier: EC:CC:35:5F:A6:CB:B8:90:E7:0A:F8:81:E1:B2:A4:E3:BB:F5:68:D0 Certificate issuer: /CN=A9155ECF/serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Certificate serial: 50 Authority key identifier: DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/4EFDF38A967011F0B0AB8765C4F9AE02.roa Signing time: Sat 20 Sep 2025 22:22:35 +0000 ROA not before: Sat 20 Sep 2025 22:22:35 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 29802 IP address blocks: 163.227.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:33:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155ECF, serialNumber=DF31CF185090E154965EFFFBC664BDD721D8075F Validity Not Before: Sep 20 22:22:35 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68cf292b-747a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:56:ef:46:39:7a:f2:36:e1:31:13:f3:54:5a: d4:cc:6a:ab:8c:fa:e6:7e:ae:7f:21:96:7e:2d:c7: f0:91:3b:e9:ce:22:23:c5:40:df:73:23:8e:ca:89: da:ae:1a:b8:ae:58:94:08:61:f8:7a:02:81:37:0e: a2:93:3e:db:e2:db:12:cb:fe:c6:f2:9d:9d:af:c3: 2f:45:6b:0e:d7:60:df:38:d3:15:67:74:55:2f:24: 4f:a4:f0:55:b4:60:45:fb:57:65:57:61:f7:6b:c3: ba:c0:76:64:6c:53:e0:e0:2a:c3:a9:fe:18:d2:ec: 14:94:31:12:15:de:a7:4d:81:26:34:41:db:19:69: 4c:da:96:87:f4:9e:20:c3:98:4c:5b:fb:a1:ff:06: c2:69:08:6e:dd:51:7d:47:f9:df:8d:92:52:7b:d2: a3:96:8c:dd:0d:22:07:32:c4:7c:ed:27:b2:9d:ce: ee:81:90:db:a6:6a:78:cb:f5:2f:4f:eb:41:0f:35: a1:be:38:c2:bc:6f:f8:76:f8:54:36:1c:d2:be:da: aa:ee:7d:fb:78:09:d4:d4:5c:da:b6:c0:f5:e5:ac: 88:1e:78:c9:60:b2:d8:35:97:e8:f5:77:fa:0a:b0: 53:eb:96:38:19:69:0f:75:b1:08:d3:5d:fe:2d:ae: 8e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:CC:35:5F:A6:CB:B8:90:E7:0A:F8:81:E1:B2:A4:E3:BB:F5:68:D0 X509v3 Authority Key Identifier: keyid:DF:31:CF:18:50:90:E1:54:96:5E:FF:FB:C6:64:BD:D7:21:D8:07:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/3zHPGFCQ4VSWXv_7xmS91yHYB18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3zHPGFCQ4VSWXv_7xmS91yHYB18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155ECF/EF6B905C25F511F08BEFDA49C4F9AE02/4EFDF38A967011F0B0AB8765C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.129.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:04:1e:08:38:bc:32:e2:da:e3:3d:f5:f4:40:66:7b:0f:d4: 40:75:69:e3:60:e8:28:dc:de:d8:0a:68:70:84:3d:ee:a9:ea: e1:62:1d:4b:8f:ad:09:f9:e4:d3:2c:7d:d8:57:20:61:e4:23: fc:4f:2a:7b:ef:42:75:76:98:a9:36:aa:05:f3:57:ad:e2:48: 19:9a:30:bc:9f:9f:22:40:1a:57:1a:ef:4b:a1:e9:4b:5c:21: b1:45:ad:d4:eb:70:49:6c:16:da:26:07:43:4d:43:44:01:af: 38:83:e6:cf:ae:6e:44:e0:d4:c2:4b:8f:84:77:37:a9:43:36: 61:f2:85:4a:75:61:df:66:ce:a4:22:54:1a:56:9f:cf:2e:ed: 57:3e:08:7a:5a:84:19:66:8d:1e:9f:38:61:7f:01:ec:49:13: 79:c4:73:d9:98:2f:46:01:4d:21:59:99:ae:a3:19:da:7d:ff: 7c:2e:39:ef:a1:1a:d4:ee:1d:4f:8f:3c:35:15:70:8f:83:6c: ba:a4:e4:46:24:67:f9:90:96:04:7c:3c:f1:4c:f2:19:90:7e: e0:6d:f9:0f:56:13:83:43:d6:04:b6:3b:89:47:a3:ca:3f:c6: 04:40:35:e0:44:2d:ec:c7:30:cf:b3:2c:f6:da:10:e6:61:b7: 0b:d6:4e:e7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NUVDRjExMC8GA1UEBRMoREYzMUNGMTg1MDkwRTE1NDk2NUVGRkZCQzY2NEJERDcy MUQ4MDc1RjAeFw0yNTA5MjAyMjIyMzVaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2YyOTJiLTc0N2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzVu9GOXryNuExE/NUWtTMaquM+uZ+rn8hln4tx/CRO+nOIiPFQN9zI47Kidqu GriuWJQIYfh6AoE3DqKTPtvi2xLL/sbynZ2vwy9Faw7XYN840xVndFUvJE+k8FW0 YEX7V2VXYfdrw7rAdmRsU+DgKsOp/hjS7BSUMRIV3qdNgSY0QdsZaUzalof0niDD mExb+6H/BsJpCG7dUX1H+d+NklJ70qOWjN0NIgcyxHztJ7Kdzu6BkNumanjL9S9P 60EPNaG+OMK8b/h2+FQ2HNK+2qrufft4CdTUXNq2wPXlrIgeeMlgstg1l+j1d/oK sFPrljgZaQ91sQjTXf4tro4LAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU7Mw1X6bL uJDnCviB4bKk47v1aNAwHwYDVR0jBBgwFoAU3zHPGFCQ4VSWXv/7xmS91yHYB18w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1RUNGL0VGNkI5MDVDMjVG NTExRjA4QkVGREE0OUM0RjlBRTAyLzN6SFBHRkNRNFZTV1h2Xzd4bVM5MXlIWUIx OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3pIUEdGQ1E0VlNXWHZfN3htUzkxeUhZQjE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NUVDRi9FRjZCOTA1QzI1RjUxMUYwOEJFRkRBNDlDNEY5QUUwMi80RUZERjM4QTk2 NzAxMUYwQjBBQjg3NjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKPjgTANBgkqhkiG9w0BAQsFAAOCAQEAXAQeCDi8MuLa4z31 9EBmew/UQHVp42DoKNze2ApocIQ97qnq4WIdS4+tCfnk0yx92FcgYeQj/E8qe+9C dXaYqTaqBfNXreJIGZowvJ+fIkAaVxrvS6HpS1whsUWt1OtwSWwW2iYHQ01DRAGv OIPmz65uRODUwkuPhHc3qUM2YfKFSnVh32bOpCJUGlafzy7tVz4IelqEGWaNHp84 YX8B7EkTecRz2ZgvRgFNIVmZrqMZ2n3/fC4576Ea1O4dT488NRVwj4NsuqTkRiRn +ZCWBHw88UzyGZB+4G35D1YTg0PWBLY7iUejyj/GBEA14EQt7Mcwz7Ms9toQ5mG3 C9ZO5w== -----END CERTIFICATE-----Generated at Mon Oct 20 09:58:19 2025 by rpki-client