$ rpki-client -vvf rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FF5BF8249A4111F0A04F703EC4F9AE02.roa File: FF5BF8249A4111F0A04F703EC4F9AE02.roa (raw, json) Hash identifier: iScThtYyHAtRsJGeo4LgzdxeB5YiqkEobfpoS62JfqI= Subject key identifier: 78:7A:0F:F9:C1:A8:08:FB:22:2B:54:D7:F3:F6:74:48:2E:F6:08:15 Certificate issuer: /CN=A9159B6F/serialNumber=15839330A81ED8992073A23804C9F590538FB9D2 Certificate serial: 0134 Authority key identifier: 15:83:93:30:A8:1E:D8:99:20:73:A2:38:04:C9:F5:90:53:8F:B9:D2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYOTMKge2Jkgc6I4BMn1kFOPudI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FF5BF8249A4111F0A04F703EC4F9AE02.roa Signing time: Thu 25 Sep 2025 19:01:10 +0000 ROA not before: Thu 25 Sep 2025 19:01:10 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138032 IP address blocks: 157.20.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FYOTMKge2Jkgc6I4BMn1kFOPudI.crl rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FYOTMKge2Jkgc6I4BMn1kFOPudI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYOTMKge2Jkgc6I4BMn1kFOPudI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:18:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159B6F, serialNumber=15839330A81ED8992073A23804C9F590538FB9D2 Validity Not Before: Sep 25 19:01:10 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68d59175-b95b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:21:01:51:b3:30:8a:10:11:ef:93:be:12:15: c6:62:95:ae:4c:7a:19:bc:3c:20:3e:b7:d2:5b:2d: 0d:d2:9c:f0:71:12:16:12:1a:f6:df:e0:97:cd:51: c1:82:fe:21:14:ed:36:94:e7:f8:0f:ce:1d:9d:0c: 61:04:d5:ce:2e:e6:9a:74:b3:ae:4f:bb:d1:27:b5: e7:b9:5b:07:41:4a:c1:7d:f9:d8:ff:85:15:49:36: 51:a1:b7:7f:3e:ef:6f:9a:34:e5:f6:29:4f:58:cf: d7:54:ee:f9:55:80:40:22:17:c8:b2:d8:67:01:78: 3e:b1:61:ab:06:08:96:ea:d1:bd:f9:03:2f:86:1d: 2b:c8:d9:6b:ba:c0:e9:21:76:cd:88:e8:72:04:4a: 8d:f1:f3:62:98:80:21:36:9b:d9:c0:ff:7b:3c:76: 5a:0b:9a:00:2c:57:a1:c7:1b:4f:93:6c:ea:b1:a4: 64:5a:c9:f6:d9:db:eb:2f:3b:cd:23:60:19:8a:26: ba:da:12:81:24:44:7c:d3:5e:25:e4:bc:45:3e:d8: a0:cd:8a:bc:c8:98:a6:b2:c6:1c:00:71:fa:50:cf: af:e5:a3:2e:05:74:b5:ea:87:76:94:f0:a8:e9:ee: 1a:3b:e9:c7:e1:1b:8b:cf:ad:71:e5:15:31:69:b0: dd:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:7A:0F:F9:C1:A8:08:FB:22:2B:54:D7:F3:F6:74:48:2E:F6:08:15 X509v3 Authority Key Identifier: keyid:15:83:93:30:A8:1E:D8:99:20:73:A2:38:04:C9:F5:90:53:8F:B9:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FYOTMKge2Jkgc6I4BMn1kFOPudI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FYOTMKge2Jkgc6I4BMn1kFOPudI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159B6F/2AD5F6D8D09C11EE80AB8D7EC4F9AE02/FF5BF8249A4111F0A04F703EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.75.0/24 Signature Algorithm: sha256WithRSAEncryption 80:18:7f:0f:a5:4f:c4:24:12:67:02:45:28:84:78:f4:28:0b: ff:46:10:cd:56:8e:aa:01:f2:28:18:78:0f:97:26:db:88:ab: 04:85:5f:ca:b2:cf:0a:b6:8f:74:52:97:aa:be:93:30:81:00: 90:f5:90:38:9c:78:f6:f9:c3:21:8f:7c:47:c3:a7:9e:39:18: c3:00:6d:90:ab:01:fc:59:6d:7d:7b:0a:5c:82:30:0d:a7:91: 63:2f:c7:2c:b0:f1:d4:b9:06:cb:af:f9:f8:86:b4:25:e2:22: ae:d9:f4:46:ff:71:95:f0:90:08:ba:54:4c:7a:96:58:b5:76: c6:10:a7:f9:40:68:16:69:ca:83:bc:d1:d1:f6:db:76:37:dc: f0:30:86:13:62:fc:42:f9:e6:26:36:ab:5e:53:72:91:e5:c7: 46:27:39:a8:ae:1d:88:89:5d:c3:62:75:d1:8d:69:9b:8c:a4: 33:c8:7f:4d:a6:97:9b:be:e9:b4:0e:84:bc:bd:6e:82:0d:7d: b4:0e:61:4f:38:d3:69:ed:3f:01:8f:94:64:ff:fc:d2:4c:14: 25:a0:b7:73:97:8f:f0:6f:07:4e:89:2a:6a:fa:7a:cc:8d:1b: ec:a9:dc:fd:5a:e9:55:37:9e:dc:93:d2:5a:59:91:ad:06:9e: f3:37:23:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlCNkYxMTAvBgNVBAUTKDE1ODM5MzMwQTgxRUQ4OTkyMDczQTIzODA0QzlGNTkw NTM4RkI5RDIwHhcNMjUwOTI1MTkwMTEwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ1OTE3NS1iOTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iEBUbMwihAR75O+EhXGYpWuTHoZvDwgPrfSWy0N0pzwcRIWEhr23+CXzVHB gv4hFO02lOf4D84dnQxhBNXOLuaadLOuT7vRJ7XnuVsHQUrBffnY/4UVSTZRobd/ Pu9vmjTl9ilPWM/XVO75VYBAIhfIsthnAXg+sWGrBgiW6tG9+QMvhh0ryNlrusDp IXbNiOhyBEqN8fNimIAhNpvZwP97PHZaC5oALFehxxtPk2zqsaRkWsn22dvrLzvN I2AZiia62hKBJER8014l5LxFPtigzYq8yJimssYcAHH6UM+v5aMuBXS16od2lPCo 6e4aO+nH4RuLz61x5RUxabDdpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHh6D/nB qAj7IitU1/P2dEgu9ggVMB8GA1UdIwQYMBaAFBWDkzCoHtiZIHOiOATJ9ZBTj7nS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUI2Ri8yQUQ1RjZEOEQw OUMxMUVFODBBQjhEN0VDNEY5QUUwMi9GWU9UTUtnZTJKa2djNkk0Qk1uMWtGT1B1 ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ZZT1RNS2dlMkprZ2M2STRCTW4xa0ZPUHVkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTlCNkYvMkFENUY2RDhEMDlDMTFFRTgwQUI4RDdFQzRGOUFFMDIvRkY1QkY4MjQ5 QTQxMTFGMEEwNEY3MDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFEswDQYJKoZIhvcNAQELBQADggEBAIAYfw+lT8QkEmcC RSiEePQoC/9GEM1WjqoB8igYeA+XJtuIqwSFX8qyzwq2j3RSl6q+kzCBAJD1kDic ePb5wyGPfEfDp545GMMAbZCrAfxZbX17ClyCMA2nkWMvxyyw8dS5Bsuv+fiGtCXi Iq7Z9Eb/cZXwkAi6VEx6lli1dsYQp/lAaBZpyoO80dH223Y33PAwhhNi/EL55iY2 q15TcpHlx0YnOaiuHYiJXcNiddGNaZuMpDPIf02ml5u+6bQOhLy9boINfbQOYU84 02ntPwGPlGT//NJMFCWgt3OXj/BvB06JKmr6esyNG+yp3P1a6VU3ntyT0lpZka0G nvM3IxI= -----END CERTIFICATE-----Generated at Tue Oct 21 05:50:57 2025 by rpki-client