$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/8F3D594E952211F0B8EBFB65C4F9AE02.roa File: 8F3D594E952211F0B8EBFB65C4F9AE02.roa (raw, json) Hash identifier: 7yEULXCj/Jz2ysY4sQhkqvkh9pOxz55Df6jKf3N8a9o= Subject key identifier: EA:9F:78:48:59:71:0E:3B:BF:58:D0:0A:20:82:5A:D7:E2:96:CF:74 Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 39B4 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/8F3D594E952211F0B8EBFB65C4F9AE02.roa Signing time: Tue 30 Sep 2025 03:17:18 +0000 ROA not before: Tue 30 Sep 2025 03:17:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55414 IP address blocks: 115.186.14.0/23 maxlen: 24 115.186.20.0/23 maxlen: 24 115.186.22.0/23 maxlen: 23 115.186.22.0/24 maxlen: 24 115.186.24.0/23 maxlen: 23 115.186.24.0/24 maxlen: 24 115.186.26.0/23 maxlen: 24 115.186.28.0/23 maxlen: 24 115.186.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:33:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14772 (0x39b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Sep 30 03:17:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68db4bbe-0b62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6d:8e:af:d2:07:52:64:3b:a8:81:09:fe:ff: 66:b1:81:d2:92:a1:e2:dc:9b:c7:b7:3f:4a:8a:3e: 47:cd:82:1f:93:ca:c2:39:75:73:41:87:f3:f3:2d: 25:98:c6:23:5b:fd:ef:32:5b:6f:67:ef:65:e9:6e: 22:3c:3f:ce:19:9a:0b:00:12:3b:d6:cb:6c:62:12: 1b:19:6c:a0:49:0d:b5:0b:df:04:58:13:7c:9f:ff: a5:12:2b:1c:16:cf:1f:4d:cb:2e:8b:ad:25:2d:4b: c8:bb:dc:ee:ec:a5:f1:fa:02:05:90:4e:20:2b:76: bc:1a:ab:9b:ea:44:ab:f5:dc:5f:33:82:15:bb:7b: fc:e8:ae:31:0f:bb:3b:28:88:87:de:9b:4c:94:d7: 98:c5:c8:1b:9c:41:8b:7e:6f:88:81:bb:62:c1:33: 15:4e:17:a3:e8:f7:7d:54:89:d5:4a:d6:d9:45:82: a6:40:18:27:e2:18:30:b5:49:6d:87:8f:07:c5:d6: a4:1c:d0:56:7f:8f:08:3e:ef:4c:a3:cc:4b:81:9c: 68:27:a5:de:b9:51:5c:b9:e4:d4:01:8b:8f:fc:d7: 0e:9a:b2:c3:bc:b3:f7:9b:86:23:04:5c:09:4c:ec: 7f:e9:ae:25:b0:85:c9:4d:87:af:ae:06:b7:7d:11: 93:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:9F:78:48:59:71:0E:3B:BF:58:D0:0A:20:82:5A:D7:E2:96:CF:74 X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/8F3D594E952211F0B8EBFB65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.186.14.0/23 115.186.20.0-115.186.29.255 115.186.103.0/24 Signature Algorithm: sha256WithRSAEncryption 32:c9:47:f1:94:94:f1:4a:0f:b3:d0:08:57:0b:16:eb:89:17: 75:4b:11:3a:4d:35:34:1f:54:fc:8f:24:c1:af:22:26:5f:20: 22:53:e9:38:c7:81:d7:7d:75:86:2c:56:30:e8:19:af:da:a8: 10:8e:ab:9f:ab:00:fa:4a:68:f2:19:fd:19:0e:ee:ea:6f:ee: de:14:05:d1:a4:b9:ac:38:75:be:91:dd:31:ba:28:dd:74:e4: 0c:d0:48:9f:59:84:3c:99:f1:66:84:2f:4a:d4:f7:30:59:2b: 66:f3:1d:12:c1:dc:09:c1:f1:02:40:bc:33:18:b4:c9:c3:56: c6:08:f7:1f:3a:34:50:9e:f5:75:4e:fb:03:0e:35:fe:34:97: ed:24:76:41:4f:67:de:4f:5a:c6:ca:03:5c:b8:91:86:5b:7a: 74:44:29:b2:92:c5:05:c8:b3:24:b8:4b:2e:7d:ce:83:1f:c6: a0:30:1b:1b:41:1d:ad:d5:23:63:d4:09:b2:20:59:03:24:4b: 72:3e:d7:91:7b:ea:f3:e3:31:ed:d4:78:18:bd:29:b4:38:e8: 27:88:0d:19:f1:1c:45:d1:a8:6a:4d:95:9b:79:72:56:17:d5: 64:34:38:37:8b:41:36:8d:20:e4:46:26:b5:42:0e:51:dd:3c: ac:74:be:f8 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICObQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjUwOTMwMDMxNzE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiNGJiZS0wYjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuW2Or9IHUmQ7qIEJ/v9msYHSkqHi3JvHtz9Kij5HzYIfk8rCOXVzQYfz8y0l mMYjW/3vMltvZ+9l6W4iPD/OGZoLABI71stsYhIbGWygSQ21C98EWBN8n/+lEisc Fs8fTcsui60lLUvIu9zu7KXx+gIFkE4gK3a8Gqub6kSr9dxfM4IVu3v86K4xD7s7 KIiH3ptMlNeYxcgbnEGLfm+IgbtiwTMVThej6Pd9VInVStbZRYKmQBgn4hgwtUlt h48HxdakHNBWf48IPu9Mo8xLgZxoJ6XeuVFcueTUAYuP/NcOmrLDvLP3m4YjBFwJ TOx/6a4lsIXJTYevrga3fRGTTwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFOqfeEhZ cQ47v1jQCiCCWtfils90MB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvOEYzRDU5NEU5 NTIyMTFGMEI4RUJGQjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAFzug4wDAMEAnO6FAMEAXO6HAMEAHO6ZzANBgkqhkiG9w0B AQsFAAOCAQEAMslH8ZSU8UoPs9AIVwsW64kXdUsROk01NB9U/I8kwa8iJl8gIlPp OMeB1311hixWMOgZr9qoEI6rn6sA+kpo8hn9GQ7u6m/u3hQF0aS5rDh1vpHdMboo 3XTkDNBIn1mEPJnxZoQvStT3MFkrZvMdEsHcCcHxAkC8Mxi0ycNWxgj3Hzo0UJ71 dU77Aw41/jSX7SR2QU9n3k9axsoDXLiRhlt6dEQpspLFBcizJLhLLn3Ogx/GoDAb G0EdrdUjY9QJsiBZAyRLcj7XkXvq8+Mx7dR4GL0ptDjoJ4gNGfEcRdGoak2Vm3ly VhfVZDQ4N4tBNo0g5EYmtUIOUd08rHS++A== -----END CERTIFICATE-----Generated at Mon Oct 20 12:51:05 2025 by rpki-client