$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/95F1EC2A20E011F086D75E5CC4F9AE02.roa File: 95F1EC2A20E011F086D75E5CC4F9AE02.roa (raw, json) Hash identifier: zZ01aBMJhxPRWYcBOSC9TVmwbp4jLZvzYb+hZ09VOg0= Subject key identifier: 28:15:3E:8B:57:B3:0F:34:BB:C2:91:1A:CC:2F:76:F9:54:0D:2E:57 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D84 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/95F1EC2A20E011F086D75E5CC4F9AE02.roa Signing time: Wed 02 Jul 2025 20:30:09 +0000 ROA not before: Wed 02 Jul 2025 20:30:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 2914 IP address blocks: 14.192.133.0/24 maxlen: 24 14.192.145.0/24 maxlen: 24 111.92.131.0/24 maxlen: 24 111.92.133.0/24 maxlen: 24 111.92.134.0/24 maxlen: 24 111.92.139.0/24 maxlen: 24 111.92.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Jul 2 20:30:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686596d1-11ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:58:6a:ab:90:9a:93:fd:83:fd:33:80:97:48: de:36:05:aa:94:49:78:f3:86:06:f3:12:2e:0e:83: b6:4e:21:8b:cd:9d:a6:de:b4:6c:4f:91:d2:c3:45: 49:69:0c:11:3b:48:d6:8e:d2:79:80:ba:b9:17:18: ee:bd:75:a8:f8:ae:0b:40:e2:53:a1:61:66:3b:9e: 52:3f:7f:ca:50:56:19:7b:36:82:b6:03:d8:64:2b: 8e:03:c2:55:37:03:5c:77:93:9a:10:4e:42:70:fe: 57:31:21:eb:d1:ee:32:d9:fd:5e:69:b7:e9:74:4c: 21:2e:2d:88:0d:0f:7b:11:fe:60:63:b2:c3:45:65: d7:a7:56:62:84:a1:34:0b:b5:f3:90:fa:dd:d1:3e: a2:81:06:38:0b:dc:3f:de:b2:e7:11:89:ae:5f:4b: 08:40:32:0d:48:08:c4:0d:3e:63:aa:a2:53:0f:df: b6:75:dd:b8:6c:17:91:6c:4f:d8:56:88:d2:a8:b1: 51:09:7e:fd:1f:6a:d2:23:62:32:8e:19:9b:73:e7: aa:45:44:49:b6:6a:09:55:40:a8:2c:80:47:da:03: a5:b2:6f:c1:63:ba:97:85:8d:8c:25:29:39:46:e1: c4:0f:aa:1f:d9:16:65:dc:95:3b:71:a3:db:8a:df: 1d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:15:3E:8B:57:B3:0F:34:BB:C2:91:1A:CC:2F:76:F9:54:0D:2E:57 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/95F1EC2A20E011F086D75E5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.133.0/24 14.192.145.0/24 111.92.131.0/24 111.92.133.0-111.92.134.255 111.92.139.0/24 111.92.142.0/24 Signature Algorithm: sha256WithRSAEncryption 02:1f:b3:06:3e:ee:2a:0d:47:82:c7:80:f5:47:28:c9:2a:0d: fb:00:c5:5d:a2:2c:34:eb:02:03:64:d9:7e:3c:2a:19:e3:07: b8:cb:18:d2:93:c4:8f:ef:10:ae:d8:76:d6:fc:32:08:e9:09: 36:8b:80:c4:07:7b:88:3b:84:3e:66:b9:be:96:c0:95:1f:2e: 64:e4:05:6a:64:0f:ce:03:d1:75:63:96:93:eb:2e:12:52:9d: bf:e2:ba:fb:39:74:9f:92:66:af:19:b4:f6:4b:c6:06:63:f9: dd:eb:8b:98:5f:ad:b2:91:68:bf:94:65:52:7b:05:2d:af:70: 25:cb:97:81:72:4f:14:df:6d:b5:42:af:ab:fe:10:5f:37:ab: 8a:b1:d4:03:08:5a:2f:62:77:94:8b:58:8b:d5:30:0d:e7:4f: f6:a1:df:21:0e:f4:c5:d4:27:41:11:87:15:4c:f7:7c:54:f4: ee:57:6d:12:fc:59:81:e4:d0:ef:8e:94:80:21:1e:46:fd:d7: 9e:d7:93:89:99:fe:c6:ba:87:da:56:ac:94:63:c7:85:3a:f8: 06:6f:7c:8e:36:50:d9:ef:d8:cd:89:21:16:6d:7a:08:1f:ea: 24:6d:b8:47:8a:b1:a9:a1:da:5d:1d:a8:e8:ee:81:76:7c:ab: c3:80:c6:ef -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNzAyMjAzMDA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1OTZkMS0xMWZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lhqq5Cak/2D/TOAl0jeNgWqlEl484YG8xIuDoO2TiGLzZ2m3rRsT5HSw0VJ aQwRO0jWjtJ5gLq5FxjuvXWo+K4LQOJToWFmO55SP3/KUFYZezaCtgPYZCuOA8JV NwNcd5OaEE5CcP5XMSHr0e4y2f1eabfpdEwhLi2IDQ97Ef5gY7LDRWXXp1ZihKE0 C7XzkPrd0T6igQY4C9w/3rLnEYmuX0sIQDINSAjEDT5jqqJTD9+2dd24bBeRbE/Y VojSqLFRCX79H2rSI2Iyjhmbc+eqRURJtmoJVUCoLIBH2gOlsm/BY7qXhY2MJSk5 RuHED6of2RZl3JU7caPbit8dTQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFCgVPotX sw80u8KRGswvdvlUDS5XMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvOTVGMUVDMkEy MEUwMTFGMDg2RDc1RTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAAOwIUDBAAOwJEDBABvXIMwDAMEAG9chQMEAG9chgMEAG9c iwMEAG9cjjANBgkqhkiG9w0BAQsFAAOCAQEAAh+zBj7uKg1HgseA9UcoySoN+wDF XaIsNOsCA2TZfjwqGeMHuMsY0pPEj+8Qrth21vwyCOkJNouAxAd7iDuEPma5vpbA lR8uZOQFamQPzgPRdWOWk+suElKdv+K6+zl0n5Jmrxm09kvGBmP53euLmF+tspFo v5RlUnsFLa9wJcuXgXJPFN9ttUKvq/4QXzerirHUAwhaL2J3lItYi9UwDedP9qHf IQ70xdQnQRGHFUz3fFT07ldtEvxZgeTQ746UgCEeRv3XnteTiZn+xrqH2laslGPH hTr4Bm98jjZQ2e/YzYkhFm16CB/qJG24R4qxqaHaXR2o6O6Bdnyrw4DG7w== -----END CERTIFICATE-----Generated at Wed Jul 2 23:20:37 2025 by rpki-client