$ rpki-client -vvf rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/B3C1030CACDC11F0BA52705AC4F9AE02.roa File: B3C1030CACDC11F0BA52705AC4F9AE02.roa (raw, json) Hash identifier: rKqA3uQTl2K6WCyRtdt2sqBcSBeB7Hrkp/ESC7yZWKQ= Subject key identifier: 9D:14:21:62:94:96:76:4E:76:FD:AA:B5:86:8E:A8:1B:55:DF:C4:9C Certificate issuer: /CN=A915FDD9/serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Certificate serial: C5 Authority key identifier: 96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/B3C1030CACDC11F0BA52705AC4F9AE02.roa Signing time: Sun 19 Oct 2025 11:13:56 +0000 ROA not before: Sun 19 Oct 2025 11:13:56 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 146943 IP address blocks: 161.248.218.0/24 maxlen: 24 161.248.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:13:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FDD9, serialNumber=967B97D9E311250D82942D27E4C5F90D98138058 Validity Not Before: Oct 19 11:13:56 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68f4c7f4-a070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9b:7c:e8:a5:e8:52:8e:99:d4:e3:b6:a2:dc: b2:e8:c6:76:47:5c:ce:3b:a6:7a:b5:ab:52:72:1b: e9:cf:ee:fc:2b:ea:cd:f6:58:93:bb:1b:c9:e3:72: eb:50:4e:43:d2:88:d4:90:44:65:ee:a8:3a:79:fd: 44:54:6c:c3:e9:c6:28:94:1e:44:f9:44:c0:1f:69: b8:0a:b8:da:ab:c2:96:81:7a:13:a3:b8:a7:d1:76: 2d:51:77:47:8a:a6:ca:ef:30:a9:c9:28:2e:f3:f9: c2:61:35:2f:2c:c1:35:ff:55:9f:99:04:83:da:07: 7e:62:5e:dd:34:7b:71:9a:f1:4b:a0:ca:df:67:74: 29:5b:7e:6c:71:2f:64:09:0a:6f:ee:36:4c:45:53: 9b:04:98:66:6d:f0:6c:48:b8:94:46:c7:5f:f8:23: 5b:b5:ae:0e:a3:98:c1:86:6c:e1:49:fd:ce:a5:16: bb:cd:bf:27:2e:31:d9:18:49:03:52:ce:0f:e7:f7: 51:2f:43:be:11:eb:5f:f0:d7:a5:4a:0f:a9:b2:2d: 2e:5b:e8:87:39:eb:eb:ed:1c:a3:20:7b:fd:4b:4b: 40:66:82:f3:cf:8c:64:ac:e5:4a:55:de:fd:66:2a: df:21:17:2d:98:4d:d0:47:f1:5e:fd:8a:90:c2:47: 0d:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:14:21:62:94:96:76:4E:76:FD:AA:B5:86:8E:A8:1B:55:DF:C4:9C X509v3 Authority Key Identifier: keyid:96:7B:97:D9:E3:11:25:0D:82:94:2D:27:E4:C5:F9:0D:98:13:80:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lnuX2eMRJQ2ClC0n5MX5DZgTgFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FDD9/B622FA8AD6DE11EFB0474E1BC4F9AE02/B3C1030CACDC11F0BA52705AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.218.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:12:e3:ab:70:67:c4:92:3c:8a:91:89:15:56:bf:e2:47:9b: 10:61:d2:5d:89:7f:52:19:23:6b:1d:84:6c:98:c9:63:79:5f: f3:75:b2:92:a5:57:9a:a2:b4:67:c5:44:47:0b:5a:cd:a6:1f: 0e:4d:01:a8:e4:92:00:ec:1f:7a:38:3f:c4:98:17:20:0d:d0: fd:7e:8e:61:1b:8a:f0:93:62:7c:74:e5:b7:41:74:fc:df:0b: 79:0e:28:43:cc:c0:a1:cc:70:b6:2f:95:26:61:f3:d3:ea:83: 01:9c:67:c6:5d:2d:eb:12:cd:1b:8b:8a:a2:6a:cd:b6:dc:47: 7f:57:46:0f:27:df:92:7d:df:5d:18:11:b1:90:89:56:f5:30: 35:9c:7e:a8:63:9b:13:9d:96:1b:ce:b0:b4:71:63:f5:f3:fa: 7a:ba:00:b8:68:ae:eb:c1:7c:35:ee:92:0b:df:65:79:d7:84: 57:f2:31:c4:cb:2e:0e:a1:ab:65:3d:d0:04:96:8b:b2:45:b0: 3a:bc:61:76:3b:1a:24:04:e2:8e:d0:cd:11:25:63:4b:fb:b3: bc:9f:96:61:99:8a:5e:b1:80:1e:18:73:ef:09:96:9f:ea:43: c7:56:31:16:24:a6:bd:5a:4c:f6:df:29:08:77:f3:fe:a6:df: 30:75:2a:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUZERDkxMTAvBgNVBAUTKDk2N0I5N0Q5RTMxMTI1MEQ4Mjk0MkQyN0U0QzVGOTBE OTgxMzgwNTgwHhcNMjUxMDE5MTExMzU2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY0YzdmNC1hMDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv5t86KXoUo6Z1OO2otyy6MZ2R1zOO6Z6tatSchvpz+78K+rN9liTuxvJ43Lr UE5D0ojUkERl7qg6ef1EVGzD6cYolB5E+UTAH2m4Crjaq8KWgXoTo7in0XYtUXdH iqbK7zCpySgu8/nCYTUvLME1/1WfmQSD2gd+Yl7dNHtxmvFLoMrfZ3QpW35scS9k CQpv7jZMRVObBJhmbfBsSLiURsdf+CNbta4Oo5jBhmzhSf3OpRa7zb8nLjHZGEkD Us4P5/dRL0O+Eetf8NelSg+psi0uW+iHOevr7RyjIHv9S0tAZoLzz4xkrOVKVd79 ZirfIRctmE3QR/Fe/YqQwkcNtQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ0UIWKU lnZOdv2qtYaOqBtV38ScMB8GA1UdIwQYMBaAFJZ7l9njESUNgpQtJ+TF+Q2YE4BY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RkREOS9CNjIyRkE4QUQ2 REUxMUVGQjA0NzRFMUJDNEY5QUUwMi9sbnVYMmVNUkpRMkNsQzBuNU1YNURaZ1Rn RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xudVgyZU1SSlEyQ2xDMG41TVg1RFpnVGdGZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUZERDkvQjYyMkZBOEFENkRFMTFFRkIwNDc0RTFCQzRGOUFFMDIvQjNDMTAzMENB Q0RDMTFGMEJBNTI3MDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+NowDQYJKoZIhvcNAQELBQADggEBAHwS46twZ8SSPIqR iRVWv+JHmxBh0l2Jf1IZI2sdhGyYyWN5X/N1spKlV5qitGfFREcLWs2mHw5NAajk kgDsH3o4P8SYFyAN0P1+jmEbivCTYnx05bdBdPzfC3kOKEPMwKHMcLYvlSZh89Pq gwGcZ8ZdLesSzRuLiqJqzbbcR39XRg8n35J9310YEbGQiVb1MDWcfqhjmxOdlhvO sLRxY/Xz+nq6ALhoruvBfDXukgvfZXnXhFfyMcTLLg6hq2U90ASWi7JFsDq8YXY7 GiQE4o7QzRElY0v7s7yflmGZil6xgB4Yc+8Jlp/qQ8dWMRYkpr1aTPbfKQh38/6m 3zB1KmI= -----END CERTIFICATE-----Generated at Mon Oct 20 07:18:36 2025 by rpki-client