$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/96D29A2220E011F086D75E5CC4F9AE02.roa File: 96D29A2220E011F086D75E5CC4F9AE02.roa (raw, json) Hash identifier: /26OTcYfxq7DOenn+q4eJrqzCpC7FcKEvdVGNMnS7bM= Subject key identifier: 29:77:6E:7D:C8:9E:F8:CE:7A:60:3A:1F:E1:8E:24:1F:9A:0D:B4:08 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D88 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/96D29A2220E011F086D75E5CC4F9AE02.roa Signing time: Wed 02 Jul 2025 20:30:13 +0000 ROA not before: Wed 02 Jul 2025 20:30:13 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4766 IP address blocks: 14.192.133.0/24 maxlen: 24 14.192.145.0/24 maxlen: 24 111.92.131.0/24 maxlen: 24 111.92.133.0/24 maxlen: 24 111.92.134.0/24 maxlen: 24 111.92.139.0/24 maxlen: 24 111.92.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:30:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3464 (0xd88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Jul 2 20:30:13 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686596d5-270e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c9:05:19:36:6f:6a:e3:b7:df:66:51:fd:ba: e9:0b:3c:54:61:74:7c:f5:76:c6:86:ce:ec:a3:74: 17:52:17:8c:fc:d7:bb:c8:61:71:bb:6e:e6:91:46: 59:d1:be:a0:35:ce:c8:27:0a:4a:03:d5:05:1b:59: 84:28:e4:97:19:dd:be:52:67:4a:3f:4f:7c:40:09: 17:4c:d7:0e:4d:db:50:90:bb:76:ea:c5:1c:d5:b4: b1:f0:b0:8a:a7:8f:02:ef:87:40:c8:66:e9:99:76: 6c:4c:bb:ab:ad:11:ce:5e:3a:09:91:11:84:1e:d8: 44:2d:87:d5:58:68:38:a1:24:76:00:c2:72:aa:7e: 2b:84:7a:39:7a:63:df:fe:a2:45:dd:e6:e5:b2:fb: cc:02:3d:e1:89:b0:c7:83:bf:0e:49:c9:2c:ff:3f: c7:77:4f:bd:84:24:58:68:0d:a0:04:ae:7b:9a:84: cd:44:e0:7d:75:f1:21:59:f9:8c:9d:e6:bc:51:a9: e2:15:22:6b:92:91:86:eb:d1:cd:fd:b4:79:36:a4: 88:9f:dc:bd:35:b4:31:2a:3c:2b:ae:2e:c8:b5:f7: d6:f7:98:bd:77:46:49:82:38:b9:84:b3:e3:08:67: 3e:6c:3c:bb:10:14:20:59:28:c5:d5:b4:0f:6f:fe: 09:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:77:6E:7D:C8:9E:F8:CE:7A:60:3A:1F:E1:8E:24:1F:9A:0D:B4:08 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/96D29A2220E011F086D75E5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.133.0/24 14.192.145.0/24 111.92.131.0/24 111.92.133.0-111.92.134.255 111.92.139.0/24 111.92.142.0/24 Signature Algorithm: sha256WithRSAEncryption 40:79:41:03:dd:6c:60:ed:ea:c5:f5:52:6c:13:1e:74:f0:b3: 13:33:95:3c:c9:57:8c:28:21:45:5e:a6:23:b1:dd:96:91:26: fb:ae:5c:62:12:75:72:23:54:38:72:f8:52:ee:6a:2d:bf:5d: 63:66:be:98:ee:27:b4:f2:4e:77:21:6c:b1:58:55:55:d4:61: 82:ce:58:51:93:d8:8c:3e:e0:5c:c0:4e:ae:7c:7a:68:16:e1: 51:d1:c1:b3:81:b0:99:ca:44:22:13:ac:a6:02:90:81:19:44: bc:d3:8e:f1:94:37:55:a7:8e:53:d3:56:6b:7a:e5:69:9f:f0: 65:4c:6c:a6:c3:66:43:cd:27:6f:ad:bb:2b:1e:1a:50:10:e4: e6:5e:be:ab:dc:2a:88:2a:dd:24:33:2d:ae:de:54:c5:3b:a1: 89:16:c0:bb:b2:5c:70:15:04:7e:52:ed:87:8a:80:9e:20:26: 04:c2:18:3d:c6:9e:15:16:a0:8b:07:d9:57:2c:60:65:8e:92: 4c:58:91:22:1b:fd:ff:00:ec:89:90:f8:a3:57:88:0b:72:29: 69:f5:34:71:b9:58:e8:c2:7b:70:77:79:ec:83:ed:86:aa:a6: 32:50:2b:1d:1b:1b:62:0e:97:a0:84:6a:15:af:b8:4a:50:6e: f6:6a:b0:ae -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICDYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNzAyMjAzMDEzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1OTZkNS0yNzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzskFGTZvauO332ZR/brpCzxUYXR89XbGhs7so3QXUheM/Ne7yGFxu27mkUZZ 0b6gNc7IJwpKA9UFG1mEKOSXGd2+UmdKP098QAkXTNcOTdtQkLt26sUc1bSx8LCK p48C74dAyGbpmXZsTLurrRHOXjoJkRGEHthELYfVWGg4oSR2AMJyqn4rhHo5emPf /qJF3eblsvvMAj3hibDHg78OScks/z/Hd0+9hCRYaA2gBK57moTNROB9dfEhWfmM nea8UaniFSJrkpGG69HN/bR5NqSIn9y9NbQxKjwrri7ItffW95i9d0ZJgji5hLPj CGc+bDy7EBQgWSjF1bQPb/4J7QIDAQABo4ICuzCCArcwHQYDVR0OBBYEFCl3bn3I nvjOemA6H+GOJB+aDbQIMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvOTZEMjlBMjIy MEUwMTFGMDg2RDc1RTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAAOwIUDBAAOwJEDBABvXIMwDAMEAG9chQMEAG9chgMEAG9c iwMEAG9cjjANBgkqhkiG9w0BAQsFAAOCAQEAQHlBA91sYO3qxfVSbBMedPCzEzOV PMlXjCghRV6mI7HdlpEm+65cYhJ1ciNUOHL4Uu5qLb9dY2a+mO4ntPJOdyFssVhV VdRhgs5YUZPYjD7gXMBOrnx6aBbhUdHBs4GwmcpEIhOspgKQgRlEvNOO8ZQ3VaeO U9NWa3rlaZ/wZUxspsNmQ80nb627Kx4aUBDk5l6+q9wqiCrdJDMtrt5UxTuhiRbA u7JccBUEflLth4qAniAmBMIYPcaeFRagiwfZVyxgZY6STFiRIhv9/wDsiZD4o1eI C3IpafU0cblY6MJ7cHd57IPthqqmMlArHRsbYg6XoIRqFa+4SlBu9mqwrg== -----END CERTIFICATE-----Generated at Thu Jul 3 10:28:55 2025 by rpki-client