$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/1D3D0DC21E5811EFAC23683BC4F9AE02.roa File: 1D3D0DC21E5811EFAC23683BC4F9AE02.roa (raw, json) Hash identifier: VRtnd9Tj1mWAfM/JLgDB4PLLpcyhK2ei01M7Ec3zpI8= Subject key identifier: F4:6A:04:D8:86:F5:8C:04:23:BB:B4:5A:68:79:3A:D2:52:2E:81:B8 Certificate issuer: /CN=A915F89C/serialNumber=466F112442C5D02E60F24699193AE215195B3BA9 Certificate serial: 0DC6 Authority key identifier: 46:6F:11:24:42:C5:D0:2E:60:F2:46:99:19:3A:E2:15:19:5B:3B:A9 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/1D3D0DC21E5811EFAC23683BC4F9AE02.roa Signing time: Mon 18 Aug 2025 14:50:36 +0000 ROA not before: Mon 18 Aug 2025 14:50:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9506 IP address blocks: 151.192.64.0/18 maxlen: 24 151.192.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.crl rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C, serialNumber=466F112442C5D02E60F24699193AE215195B3BA9 Validity Not Before: Aug 18 14:50:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a33dbc-b21b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ae:47:69:3d:60:e8:72:42:42:4b:42:b4:5d: 63:a6:f1:42:2c:0b:d2:45:75:f6:be:5a:b7:7b:d4: 5b:5a:a5:bd:84:d4:d2:2e:ad:0a:d3:b3:5d:27:68: 9b:d8:45:1d:38:ce:95:9e:e1:e0:a3:b2:10:d6:83: f0:47:33:25:82:ec:65:7e:73:8e:c7:45:72:22:28: c1:70:a6:e5:1c:76:0e:4c:e0:f6:cc:58:33:b3:04: 42:91:35:28:ca:f4:be:27:d1:91:6f:ef:bc:3f:b6: 61:38:85:cd:79:6d:c4:b7:8a:6a:4d:e6:08:d4:5c: 99:9b:ab:8c:fe:d9:d8:e4:70:6c:a2:1b:6b:64:76: e6:a7:92:f1:ec:5d:a3:2b:ec:3a:90:92:a7:ca:1d: f7:6b:72:ce:b8:f1:88:ee:68:71:25:33:35:25:e6: 28:cb:a1:c0:20:82:00:4d:37:8e:b1:e3:45:e1:92: 88:b7:7f:13:0b:34:63:5c:d3:cc:92:2b:bb:59:df: 88:e1:fd:f1:f8:e9:e7:8d:35:64:70:1e:0b:60:b9: 0c:93:1f:6c:cb:29:be:95:b2:75:aa:23:9f:a9:71: 22:fa:16:e5:dd:51:31:c3:04:35:94:c7:f1:9e:e9: 12:e7:da:eb:ed:23:01:e9:55:be:0e:b1:65:30:e5: 11:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:6A:04:D8:86:F5:8C:04:23:BB:B4:5A:68:79:3A:D2:52:2E:81:B8 X509v3 Authority Key Identifier: keyid:46:6F:11:24:42:C5:D0:2E:60:F2:46:99:19:3A:E2:15:19:5B:3B:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/Rm8RJELF0C5g8kaZGTriFRlbO6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Rm8RJELF0C5g8kaZGTriFRlbO6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/01B069F6CEBB11E99B1F7D3EC4F9AE02/1D3D0DC21E5811EFAC23683BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 151.192.64.0-151.192.255.255 Signature Algorithm: sha256WithRSAEncryption 77:6b:88:1e:29:8f:a0:94:da:c5:bc:6b:52:72:2b:8e:b0:df: e2:e1:c5:82:6e:2a:7c:73:a3:bc:73:cd:b7:ce:88:19:49:48: 2c:1e:e2:b0:2a:5a:fe:7d:1c:89:09:a6:ad:64:d3:3b:60:f2: f0:75:c9:73:8d:61:25:83:74:6f:5d:79:42:3a:44:70:8f:06: 30:6d:b8:95:08:2a:8d:fe:f2:16:cb:b9:e8:fb:e0:8f:6c:65: e7:f5:cd:2e:2d:f9:4b:ef:d1:44:5a:e8:00:b6:3e:74:cd:f6: 5d:98:39:0e:91:d7:d0:6e:2d:e0:0b:1b:48:0c:2a:5f:1b:ac: 26:1b:8f:dc:63:ee:5d:57:51:2f:9b:da:8a:5a:f7:57:a2:a2: 25:7a:e3:25:ed:a1:cc:16:bc:dd:24:8d:12:09:42:90:06:3a: 40:eb:dc:90:6f:29:29:80:4f:f7:ec:a4:17:ac:1a:3d:5c:6a: e2:24:53:f8:ed:2b:c2:c1:cf:27:9a:95:33:b9:4a:22:c4:5c: fe:bc:48:8e:c5:21:2a:dc:c1:3e:04:68:bc:dd:9c:71:6f:c8: c1:86:18:31:8a:83:bb:34:9e:33:4a:c6:ae:8e:17:81:c9:02: d8:86:81:5a:89:6d:dc:b8:bb:db:a8:4c:1f:fa:63:ec:66:5d: 5e:74:62:7d -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKDQ2NkYxMTI0NDJDNUQwMkU2MEYyNDY5OTE5M0FFMjE1 MTk1QjNCQTkwHhcNMjUwODE4MTQ1MDM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzM2RiYy1iMjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApa5HaT1g6HJCQktCtF1jpvFCLAvSRXX2vlq3e9RbWqW9hNTSLq0K07NdJ2ib 2EUdOM6VnuHgo7IQ1oPwRzMlguxlfnOOx0VyIijBcKblHHYOTOD2zFgzswRCkTUo yvS+J9GRb++8P7ZhOIXNeW3Et4pqTeYI1FyZm6uM/tnY5HBsohtrZHbmp5Lx7F2j K+w6kJKnyh33a3LOuPGI7mhxJTM1JeYoy6HAIIIATTeOseNF4ZKIt38TCzRjXNPM kiu7Wd+I4f3x+OnnjTVkcB4LYLkMkx9syym+lbJ1qiOfqXEi+hbl3VExwwQ1lMfx nukS59rr7SMB6VW+DrFlMOURXwIDAQABo4ICnDCCApgwHQYDVR0OBBYEFPRqBNiG 9YwEI7u0Wmh5OtJSLoG4MB8GA1UdIwQYMBaAFEZvESRCxdAuYPJGmRk64hUZWzup MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy8wMUIwNjlGNkNF QkIxMUU5OUIxRjdEM0VDNEY5QUUwMi9SbThSSkVMRjBDNWc4a2FaR1RyaUZSbGJP NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JtOFJKRUxGMEM1ZzhrYVpHVHJpRlJsYk82ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvMDFCMDY5RjZDRUJCMTFFOTlCMUY3RDNFQzRGOUFFMDIvMUQzRDBEQzIx RTU4MTFFRkFDMjM2ODNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMEBpfAQAMDAJfAMA0GCSqGSIb3DQEBCwUAA4IBAQB3a4ge KY+glNrFvGtSciuOsN/i4cWCbip8c6O8c823zogZSUgsHuKwKlr+fRyJCaatZNM7 YPLwdclzjWElg3RvXXlCOkRwjwYwbbiVCCqN/vIWy7no++CPbGXn9c0uLflL79FE WugAtj50zfZdmDkOkdfQbi3gCxtIDCpfG6wmG4/cY+5dV1Evm9qKWvdXoqIleuMl 7aHMFrzdJI0SCUKQBjpA69yQbykpgE/37KQXrBo9XGriJFP47SvCwc8nmpUzuUoi xFz+vEiOxSEq3ME+BGi83Zxxb8jBhhgxioO7NJ4zSsaujheByQLYhoFaiW3cuLvb qEwf+mPsZl1edGJ9 -----END CERTIFICATE-----Generated at Sun Aug 24 06:36:33 2025 by rpki-client