$ rpki-client -vvf rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/CD8401DE725011F0A3F05A4DC4F9AE02.roa File: CD8401DE725011F0A3F05A4DC4F9AE02.roa (raw, json) Hash identifier: VHHEU9d7IR1GGpHRO+xmBvOubv6E3+xiwg7YFKrzA9I= Subject key identifier: 13:8A:5D:95:8D:74:51:02:6F:90:03:2D:BC:D8:59:D6:14:0C:A6:79 Certificate issuer: /CN=A916807A/serialNumber=729E2F9C1D87C214735078CFD21C638E07157B5D Certificate serial: 029E Authority key identifier: 72:9E:2F:9C:1D:87:C2:14:73:50:78:CF:D2:1C:63:8E:07:15:7B:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/CD8401DE725011F0A3F05A4DC4F9AE02.roa Signing time: Sat 13 Sep 2025 15:25:14 +0000 ROA not before: Sat 13 Sep 2025 15:25:13 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138115 IP address blocks: 202.155.90.0/23 maxlen: 24 202.155.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.crl rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 670 (0x29e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916807A, serialNumber=729E2F9C1D87C214735078CFD21C638E07157B5D Validity Not Before: Sep 13 15:25:13 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68c58cd9-881f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a6:ff:2d:37:79:3f:df:d0:5e:84:f9:1c:78: 28:85:25:0c:fe:7b:f6:67:27:39:ab:04:6c:1a:bc: 98:75:53:bb:35:5f:70:fd:20:8c:80:de:59:2d:15: 12:14:fb:77:e3:7a:be:28:57:09:f1:36:74:d4:8c: 44:4f:aa:9a:d9:21:77:95:ae:cd:39:1b:a7:3a:e4: 75:03:04:9d:39:fa:16:45:7d:c8:82:2d:94:ef:1a: 23:f6:97:1f:38:cd:57:81:54:08:33:e0:d7:0e:c6: f2:83:ac:8c:d0:74:89:13:76:e5:46:bd:6c:91:75: 5d:19:35:06:b1:8e:80:76:aa:1e:6d:8c:c0:ba:67: 2b:0d:76:2b:68:59:4f:cd:c7:cc:0e:95:01:57:1d: ee:24:94:df:5c:58:51:f5:69:53:36:d8:f7:0b:12: 4c:6f:f6:16:98:f4:e4:46:5e:44:1c:ac:b8:10:f1: f4:fd:30:fb:04:bd:f2:a1:46:65:a0:8a:ae:94:5c: b4:be:63:c5:ad:25:74:61:89:a5:29:2c:d6:00:f1: 2f:b2:bf:e4:00:92:83:72:eb:bf:29:f8:d6:cb:db: a5:b6:e6:3d:89:65:67:5d:d9:e7:3d:f4:f1:78:e9: 88:84:0e:94:b9:9a:10:0d:0d:55:7c:15:20:fe:0b: 2b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8A:5D:95:8D:74:51:02:6F:90:03:2D:BC:D8:59:D6:14:0C:A6:79 X509v3 Authority Key Identifier: keyid:72:9E:2F:9C:1D:87:C2:14:73:50:78:CF:D2:1C:63:8E:07:15:7B:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/CD8401DE725011F0A3F05A4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.90.0/23 202.155.94.0/23 Signature Algorithm: sha256WithRSAEncryption 74:ef:e8:fb:57:4a:59:08:19:18:b4:8d:3e:3c:96:fe:e1:88: ac:52:5a:28:53:2b:1d:fa:7e:f5:c3:70:6e:d7:96:91:78:fe: aa:64:eb:1f:c9:af:5f:ff:0a:7d:89:c3:4f:2e:29:8c:4e:8c: 79:e2:07:19:47:f1:dd:aa:68:4c:88:20:61:b6:01:bc:8d:84: 69:2e:5a:da:0a:96:5d:6c:90:2e:b4:61:da:ce:0d:53:75:8d: d0:a6:58:56:09:8f:eb:c4:2f:36:20:cb:9a:81:6a:1c:bf:1e: 00:70:84:30:70:95:29:3a:5d:d7:3f:10:1e:ca:f5:98:af:a5: c1:93:6a:40:13:e2:17:22:af:f8:ed:7b:e4:28:00:65:28:9d: 0a:93:10:c6:4f:d9:e4:83:22:4c:85:54:0d:f0:5d:26:ea:d5: 5c:35:d3:b2:ea:fa:4a:64:0f:ef:93:06:3d:b5:a9:d3:4d:87: d1:83:fb:90:30:b4:fc:d9:2b:f3:85:24:4a:0e:e9:a4:51:db: e8:03:72:c0:f0:3e:e4:93:db:f0:b3:b4:08:55:33:89:76:a8: 7c:cf:a8:54:49:7f:85:80:e4:6b:5b:1a:a4:6b:1a:7d:f6:22: 90:b9:61:3d:16:9b:85:24:c4:78:6c:25:84:06:ce:6e:b4:05: 9b:02:54:57 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgwN0ExMTAvBgNVBAUTKDcyOUUyRjlDMUQ4N0MyMTQ3MzUwNzhDRkQyMUM2MzhF MDcxNTdCNUQwHhcNMjUwOTEzMTUyNTEzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM1OGNkOS04ODFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqb/LTd5P9/QXoT5HHgohSUM/nv2Zyc5qwRsGryYdVO7NV9w/SCMgN5ZLRUS FPt343q+KFcJ8TZ01IxET6qa2SF3la7NORunOuR1AwSdOfoWRX3Igi2U7xoj9pcf OM1XgVQIM+DXDsbyg6yM0HSJE3blRr1skXVdGTUGsY6AdqoebYzAumcrDXYraFlP zcfMDpUBVx3uJJTfXFhR9WlTNtj3CxJMb/YWmPTkRl5EHKy4EPH0/TD7BL3yoUZl oIqulFy0vmPFrSV0YYmlKSzWAPEvsr/kAJKDcuu/KfjWy9ultuY9iWVnXdnnPfTx eOmIhA6UuZoQDQ1VfBUg/gsr4wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBOKXZWN dFECb5ADLbzYWdYUDKZ5MB8GA1UdIwQYMBaAFHKeL5wdh8IUc1B4z9IcY44HFXtd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODA3QS8wMjYzQUI0ODNF ODgxMUVEQTYxQTlCMkFDNEY5QUUwMi9jcDR2bkIySHdoUnpVSGpQMGh4ampnY1Zl MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NwNHZuQjJId2hSelVIalAwaHhqamdjVmUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgwN0EvMDI2M0FCNDgzRTg4MTFFREE2MUE5QjJBQzRGOUFFMDIvQ0Q4NDAxREU3 MjUwMTFGMEEzRjA1QTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHKm1oDBAHKm14wDQYJKoZIhvcNAQELBQADggEBAHTv6PtX SlkIGRi0jT48lv7hiKxSWihTKx36fvXDcG7XlpF4/qpk6x/Jr1//Cn2Jw08uKYxO jHniBxlH8d2qaEyIIGG2AbyNhGkuWtoKll1skC60YdrODVN1jdCmWFYJj+vELzYg y5qBahy/HgBwhDBwlSk6Xdc/EB7K9ZivpcGTakAT4hcir/jte+QoAGUonQqTEMZP 2eSDIkyFVA3wXSbq1Vw107Lq+kpkD++TBj21qdNNh9GD+5AwtPzZK/OFJEoO6aRR 2+gDcsDwPuST2/CztAhVM4l2qHzPqFRJf4WA5GtbGqRrGn32IpC5YT0Wm4UkxHhs JYQGzm60BZsCVFc= -----END CERTIFICATE-----Generated at Sun Oct 19 21:02:32 2025 by rpki-client