$ rpki-client -vvf rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/D7AD2B6AF90311EBBB71C076C4F9AE02.roa File: D7AD2B6AF90311EBBB71C076C4F9AE02.roa (raw, json) Hash identifier: 9SVnSE07orKUrYj7Q2p5dxBkM3PRfBRsEx0gwE9+iMs= Subject key identifier: 3E:52:42:CF:DC:1C:9D:77:84:5E:4E:E6:26:9E:1D:39:8B:5F:37:EF Certificate issuer: /CN=A915EB0B/serialNumber=AE3FA65349551660DFF48C497E8378A630B98376 Certificate serial: 056C Authority key identifier: AE:3F:A6:53:49:55:16:60:DF:F4:8C:49:7E:83:78:A6:30:B9:83:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/D7AD2B6AF90311EBBB71C076C4F9AE02.roa Signing time: Tue 02 Sep 2025 23:44:37 +0000 ROA not before: Tue 02 Sep 2025 23:44:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138155 IP address blocks: 202.41.10.0/24 maxlen: 24 2403:6cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.crl rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:57:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1388 (0x56c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EB0B, serialNumber=AE3FA65349551660DFF48C497E8378A630B98376 Validity Not Before: Sep 2 23:44:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b78165-6cae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7a:41:37:68:fc:e0:3c:d1:10:5f:67:57:b5: 6a:61:44:a7:a1:4c:f1:cd:cc:cc:da:a6:ec:47:c2: ec:d9:46:d7:b7:56:f6:1e:69:20:1a:9e:7d:a4:d1: d0:81:b6:98:b6:31:08:87:f4:17:76:46:b0:ac:66: 3d:cc:e3:2b:02:ab:67:cc:58:4d:99:0b:e2:94:87: 33:0e:2b:3c:c1:15:8f:8c:9d:e6:41:0c:04:55:5e: 06:cf:ef:6d:a6:f2:e1:0a:ce:29:83:e6:e2:02:a2: 99:3b:eb:53:bf:6b:a2:7d:bc:64:cc:0c:b8:ae:83: 35:c5:53:b9:68:8a:38:0e:d8:11:65:f5:6a:b1:d0: 57:a7:31:3f:d2:f7:65:32:df:70:42:9a:8b:a0:ed: ff:03:14:b4:54:68:19:d5:45:31:3e:ea:f0:e7:7b: 60:9a:e7:0d:60:d6:c2:aa:5b:5b:16:3f:e2:64:ab: f5:aa:07:21:d3:fc:a8:01:ad:64:02:3b:78:4b:31: 4a:7a:de:f6:9f:aa:29:84:bf:76:ad:79:f6:eb:e7: 7a:0a:93:cf:24:54:e6:ea:5b:89:c5:fc:4d:c6:c0: 68:fa:d2:68:39:8b:15:c2:bc:c0:5f:7c:23:a7:f9: 78:58:f8:77:84:c6:27:43:28:21:53:14:57:3f:32: 25:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:52:42:CF:DC:1C:9D:77:84:5E:4E:E6:26:9E:1D:39:8B:5F:37:EF X509v3 Authority Key Identifier: keyid:AE:3F:A6:53:49:55:16:60:DF:F4:8C:49:7E:83:78:A6:30:B9:83:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rj-mU0lVFmDf9IxJfoN4pjC5g3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EB0B/3A4C4606F90011EBBA19D528C4F9AE02/D7AD2B6AF90311EBBB71C076C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.10.0/24 IPv6: 2403:6cc0::/32 Signature Algorithm: sha256WithRSAEncryption 26:13:86:72:31:0e:f4:3c:65:1e:ab:c1:a3:df:8e:bf:d0:48: 98:5a:77:ca:7f:37:0c:49:26:59:90:03:1e:66:28:a5:0b:88: 06:4f:9c:f9:77:59:07:18:91:fe:20:0d:29:a5:fc:60:e7:6f: aa:c9:c8:05:7c:3b:75:6f:c5:17:f1:a4:ff:3e:d7:7c:79:29: cf:83:a2:e3:cb:7c:40:bd:6b:f8:be:28:a8:b1:d9:01:7e:91: 00:22:d3:54:5b:9a:9d:42:20:7c:f1:fa:c3:eb:96:df:62:8a: 12:c4:e9:82:89:42:fa:32:fa:e9:a9:a4:4b:fa:7e:51:fb:3f: 90:b9:6e:22:77:e9:1f:af:6d:a8:13:50:2f:ef:a2:3b:27:fa: b6:7c:b7:a7:81:f5:88:ea:75:a6:37:98:98:4e:55:e0:14:fb: d1:8a:c4:c6:84:12:cd:06:3f:5f:82:8c:12:b4:7a:bd:c0:e2: fd:ca:8e:d3:f2:3b:ef:a0:93:4d:6b:2a:91:b3:08:23:cd:bc: b3:c8:39:ea:2e:ff:db:b2:14:a4:07:f4:c8:d2:4c:d5:a9:ff: 3e:87:16:32:92:dc:87:73:dd:b3:69:b2:97:27:5f:b5:43:6f: a5:83:2e:38:44:fa:7a:13:e4:23:44:fb:28:05:93:69:1b:3e: 76:fe:14:a6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVCMEIxMTAvBgNVBAUTKEFFM0ZBNjUzNDk1NTE2NjBERkY0OEM0OTdFODM3OEE2 MzBCOTgzNzYwHhcNMjUwOTAyMjM0NDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODE2NS02Y2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XpBN2j84DzREF9nV7VqYUSnoUzxzczM2qbsR8Ls2UbXt1b2HmkgGp59pNHQ gbaYtjEIh/QXdkawrGY9zOMrAqtnzFhNmQvilIczDis8wRWPjJ3mQQwEVV4Gz+9t pvLhCs4pg+biAqKZO+tTv2uifbxkzAy4roM1xVO5aIo4DtgRZfVqsdBXpzE/0vdl Mt9wQpqLoO3/AxS0VGgZ1UUxPurw53tgmucNYNbCqltbFj/iZKv1qgch0/yoAa1k Ajt4SzFKet72n6ophL92rXn26+d6CpPPJFTm6luJxfxNxsBo+tJoOYsVwrzAX3wj p/l4WPh3hMYnQyghUxRXPzIl+QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD5SQs/c HJ13hF5O5iaeHTmLXzfvMB8GA1UdIwQYMBaAFK4/plNJVRZg3/SMSX6DeKYwuYN2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUIwQi8zQTRDNDYwNkY5 MDAxMUVCQkExOUQ1MjhDNEY5QUUwMi9yai1tVTBsVkZtRGY5SXhKZm9ONHBqQzVn M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JqLW1VMGxWRm1EZjlJeEpmb040cGpDNWczWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVCMEIvM0E0QzQ2MDZGOTAwMTFFQkJBMTlENTI4QzRGOUFFMDIvRDdBRDJCNkFG OTAzMTFFQkJCNzFDMDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBADKKQowDQQCAAIwBwMFACQDbMAwDQYJKoZIhvcNAQELBQAD ggEBACYThnIxDvQ8ZR6rwaPfjr/QSJhad8p/NwxJJlmQAx5mKKULiAZPnPl3WQcY kf4gDSml/GDnb6rJyAV8O3VvxRfxpP8+13x5Kc+DouPLfEC9a/i+KKix2QF+kQAi 01Rbmp1CIHzx+sPrlt9iihLE6YKJQvoy+umppEv6flH7P5C5biJ36R+vbagTUC/v ojsn+rZ8t6eB9YjqdaY3mJhOVeAU+9GKxMaEEs0GP1+CjBK0er3A4v3KjtPyO++g k01rKpGzCCPNvLPIOeou/9uyFKQH9MjSTNWp/z6HFjKS3Idz3bNpspcnX7VDb6WD LjhE+noT5CNE+ygFk2kbPnb+FKY= -----END CERTIFICATE-----Generated at Mon Oct 20 19:49:16 2025 by rpki-client