$ rpki-client -vvf rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/9A3B7A6C5C8111F09B95A34AC4F9AE02.roa File: 9A3B7A6C5C8111F09B95A34AC4F9AE02.roa (raw, json) Hash identifier: SNNnHO/eblmsoaPKtADN1dyH0LspNteqC579SF1W9eA= Subject key identifier: 8C:DF:C6:C6:41:C9:00:25:E9:45:C6:F3:43:E7:8A:BA:1C:57:93:A2 Certificate issuer: /CN=A915BC98/serialNumber=FF8CCBE618755A1F5199BD0C82760E8EDB8F85BA Certificate serial: A6 Authority key identifier: FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/9A3B7A6C5C8111F09B95A34AC4F9AE02.roa Signing time: Sat 16 Aug 2025 16:21:15 +0000 ROA not before: Sat 16 Aug 2025 16:21:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 215750 IP address blocks: 163.223.178.0/24 maxlen: 24 2401:f860::/44 maxlen: 44 2401:f860::/48 maxlen: 48 2401:f860:1::/48 maxlen: 48 2401:f860:2::/48 maxlen: 48 2401:f860:3::/48 maxlen: 48 2401:f860:4::/48 maxlen: 48 2401:f860:5::/48 maxlen: 48 2401:f860:6::/48 maxlen: 48 2401:f860:7::/48 maxlen: 48 2401:f860:8::/48 maxlen: 48 2401:f860:9::/48 maxlen: 48 2401:f860:a::/48 maxlen: 48 2401:f860:b::/48 maxlen: 48 2401:f860:c::/48 maxlen: 48 2401:f860:d::/48 maxlen: 48 2401:f860:e::/48 maxlen: 48 2401:f860:f::/48 maxlen: 48 2401:f860:88::/48 maxlen: 48 2401:f860:89::/48 maxlen: 48 2401:f860:90::/48 maxlen: 48 2401:f860:94::/48 maxlen: 48 2401:f860:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.crl rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:32:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BC98, serialNumber=FF8CCBE618755A1F5199BD0C82760E8EDB8F85BA Validity Not Before: Aug 16 16:21:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a0affb-8de7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:78:58:1f:90:43:a7:87:da:d5:22:a2:08:8a: 9c:8f:44:42:e1:bb:38:50:be:d4:b4:be:3d:81:3d: 6a:87:bc:ae:2f:f9:eb:15:c6:12:9e:c0:be:c7:fb: 61:97:2b:2e:2c:46:2a:20:5d:07:8b:08:1e:6a:96: f1:28:ae:73:41:e0:31:54:11:ce:51:2e:66:90:53: 25:3b:30:98:cb:32:26:7b:66:04:2e:fa:e5:ee:12: d0:4d:5a:29:27:6c:5e:7c:61:c4:24:f3:ec:22:0a: 49:4a:47:d5:bb:d3:8a:dd:a2:c7:39:bb:a1:ad:04: 05:e1:6f:cf:c6:c7:65:1e:1c:1e:d4:98:2f:b8:d5: d1:06:f0:e0:45:b0:7a:72:74:a2:63:ba:c7:b5:d7: 98:fe:f8:d6:a0:57:b8:3c:a3:e4:72:06:26:e8:8a: 10:6a:4e:65:3c:8c:99:17:ae:15:70:58:25:6f:39: 16:25:7d:b7:94:96:fb:13:c0:60:ec:9e:2b:68:a7: 2a:b6:89:a6:6c:eb:fb:8a:f3:d1:21:b3:b4:07:ca: aa:05:39:d0:4b:9c:f6:32:5d:88:72:00:31:d4:01: 6a:ed:23:9a:17:2c:41:8a:b8:96:20:0a:d7:a7:f0: 80:03:e9:22:bb:39:5b:6f:69:f8:58:2a:24:50:e7: a0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:DF:C6:C6:41:C9:00:25:E9:45:C6:F3:43:E7:8A:BA:1C:57:93:A2 X509v3 Authority Key Identifier: keyid:FF:8C:CB:E6:18:75:5A:1F:51:99:BD:0C:82:76:0E:8E:DB:8F:85:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_4zL5hh1Wh9Rmb0MgnYOjtuPhbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BC98/ABAFF5EA061211F08E9AE529C4F9AE02/9A3B7A6C5C8111F09B95A34AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.178.0/24 IPv6: 2401:f860::/44 2401:f860:88::/47 2401:f860:90::/48 2401:f860:94::/48 2401:f860:100::/40 Signature Algorithm: sha256WithRSAEncryption e7:a5:1d:c0:d8:d6:4f:ae:d4:da:15:28:eb:80:0b:32:77:56: 13:64:85:4b:10:1f:e3:ee:3e:e7:ee:62:d2:44:5b:c4:ac:b7: 7f:25:b2:bf:92:b4:c8:45:71:16:21:e8:ee:c4:35:9b:d7:1b: 69:8b:8d:94:89:69:5d:38:e7:a9:6b:a3:5b:96:78:8d:af:1e: 5d:e5:0a:8c:7b:68:64:e0:55:8d:c0:9d:7e:df:86:10:ac:b9: 3c:0f:d9:ca:42:4d:b0:46:09:07:c6:63:f3:68:ec:86:e3:a6: 44:99:b0:76:c6:5d:83:33:cc:46:7a:a6:f7:96:4d:80:2e:cb: d2:58:43:5c:c7:71:03:3d:56:b2:3a:d5:7b:8e:de:fd:bf:f5: ad:9e:44:b4:5e:73:8e:ce:3c:79:eb:df:67:c9:7b:ce:be:83: 5d:d8:93:c2:ec:a9:25:e0:05:d5:9b:d5:58:7f:ff:7a:c6:57: 4c:7b:9d:9e:d5:85:f6:7b:2a:ac:44:59:5c:e9:c9:19:f3:ff: 94:ad:89:75:0b:bb:ce:bc:2c:01:7f:d8:6a:ac:fc:d4:66:7a: 98:94:3d:05:a4:c4:b7:b0:a4:bd:1c:1e:1a:a3:d6:06:0d:9d: 1c:3f:39:ce:7b:44:83:03:cf:b7:fd:ae:00:ab:1d:5f:28:6d: 37:86:98:4e -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDOTgxMTAvBgNVBAUTKEZGOENDQkU2MTg3NTVBMUY1MTk5QkQwQzgyNzYwRThF REI4Rjg1QkEwHhcNMjUwODE2MTYyMTE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEwYWZmYi04ZGU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6HhYH5BDp4fa1SKiCIqcj0RC4bs4UL7UtL49gT1qh7yuL/nrFcYSnsC+x/th lysuLEYqIF0HiwgeapbxKK5zQeAxVBHOUS5mkFMlOzCYyzIme2YELvrl7hLQTVop J2xefGHEJPPsIgpJSkfVu9OK3aLHObuhrQQF4W/PxsdlHhwe1JgvuNXRBvDgRbB6 cnSiY7rHtdeY/vjWoFe4PKPkcgYm6IoQak5lPIyZF64VcFglbzkWJX23lJb7E8Bg 7J4raKcqtommbOv7ivPRIbO0B8qqBTnQS5z2Ml2IcgAx1AFq7SOaFyxBiriWIArX p/CAA+kiuzlbb2n4WCokUOegKwIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFIzfxsZB yQAl6UXG80PnirocV5OiMB8GA1UdIwQYMBaAFP+My+YYdVofUZm9DIJ2Do7bj4W6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkM5OC9BQkFGRjVFQTA2 MTIxMUYwOEU5QUU1MjlDNEY5QUUwMi9fNHpMNWhoMVdoOVJtYjBNZ25ZT2p0dVBo Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL180ekw1aGgxV2g5Um1iME1nbllPanR1UGhiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJDOTgvQUJBRkY1RUEwNjEyMTFGMDhFOUFFNTI5QzRGOUFFMDIvOUEzQjdBNkM1 QzgxMTFGMDlCOTVBMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMAwEAgABMAYDBACj37IwMgQCAAIwLAMHBCQB+GAAAAMHASQB+GAAiAMHACQB +GAAkAMHACQB+GAAlAMGACQB+GABMA0GCSqGSIb3DQEBCwUAA4IBAQDnpR3A2NZP rtTaFSjrgAsyd1YTZIVLEB/j7j7n7mLSRFvErLd/JbK/krTIRXEWIejuxDWb1xtp i42UiWldOOepa6NblniNrx5d5QqMe2hk4FWNwJ1+34YQrLk8D9nKQk2wRgkHxmPz aOyG46ZEmbB2xl2DM8xGeqb3lk2ALsvSWENcx3EDPVayOtV7jt79v/WtnkS0XnOO zjx5699nyXvOvoNd2JPC7Kkl4AXVm9VYf/96xldMe52e1YX2eyqsRFlc6ckZ8/+U rYl1C7vOvCwBf9hqrPzUZnqYlD0FpMS3sKS9HB4ao9YGDZ0cPznOe0SDA8+3/a4A qx1fKG03hphO -----END CERTIFICATE-----Generated at Sun Aug 24 00:33:18 2025 by rpki-client