$ rpki-client -vvf rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/8EA5A6E28C7D11F0B0706F1EC4F9AE02.roa File: 8EA5A6E28C7D11F0B0706F1EC4F9AE02.roa (raw, json) Hash identifier: EVLtvEiDogBu3QcVhxjleJTDGMs7gXBmi6TLdVrRV/s= Subject key identifier: 5E:EF:C6:A7:A9:CB:33:82:9F:AF:19:5B:E2:68:FF:C6:52:40:B7:B7 Certificate issuer: /CN=A9178F62/serialNumber=63FA0006261D9E4CD4905906E5439694BE627BB1 Certificate serial: 28 Authority key identifier: 63:FA:00:06:26:1D:9E:4C:D4:90:59:06:E5:43:96:94:BE:62:7B:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_oABiYdnkzUkFkG5UOWlL5ie7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/8EA5A6E28C7D11F0B0706F1EC4F9AE02.roa Signing time: Mon 08 Sep 2025 06:32:14 +0000 ROA not before: Mon 08 Sep 2025 06:32:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153766 IP address blocks: 163.227.14.0/23 maxlen: 23 163.227.14.0/24 maxlen: 24 163.227.15.0/24 maxlen: 24 2401:fc20::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/Y_oABiYdnkzUkFkG5UOWlL5ie7E.crl rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/Y_oABiYdnkzUkFkG5UOWlL5ie7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_oABiYdnkzUkFkG5UOWlL5ie7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178F62, serialNumber=63FA0006261D9E4CD4905906E5439694BE627BB1 Validity Not Before: Sep 8 06:32:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68be786e-f564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:21:5d:b4:57:9f:b7:96:94:c2:f0:b9:48:ad: 6c:08:e1:8b:ca:1d:9e:c7:5c:01:56:c6:38:52:94: e6:18:bd:a7:35:8f:d1:0f:6b:71:2f:aa:37:9e:f4: 59:a5:0f:72:95:4e:17:ab:14:4f:2e:d7:a9:45:3f: df:65:a9:a7:85:0b:0f:0c:c5:2b:a6:e8:24:49:e3: f8:cc:b0:e1:e9:87:1e:7e:54:a3:17:9b:72:55:88: 06:87:b1:30:71:cb:20:26:0e:39:aa:ab:a7:b4:d4: 6d:ad:b9:68:3a:24:f2:b5:02:08:f8:56:9d:de:7c: 2d:e2:32:45:20:e6:94:fc:d9:1f:34:0c:9a:76:5c: 25:f2:f4:a2:c8:00:8a:cf:d0:58:f4:77:29:7e:30: cb:30:72:6c:6e:b1:ea:9e:11:29:96:0e:78:41:12: 96:3d:09:02:67:15:3c:d4:ac:79:54:a9:64:b1:d0: 2c:f9:1b:50:55:68:71:22:7a:42:48:3a:8e:8a:7f: 37:cf:e6:e9:2c:5c:6c:5f:d5:85:08:2f:98:e0:a0: e2:19:07:fb:87:f5:c1:60:3e:14:de:ff:e2:c4:2d: 43:d9:45:fc:7a:37:9c:ad:6c:70:6b:e1:c1:88:b9: a2:31:fc:5c:1d:fa:54:8a:5f:5f:fd:de:7b:7e:16: cb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EF:C6:A7:A9:CB:33:82:9F:AF:19:5B:E2:68:FF:C6:52:40:B7:B7 X509v3 Authority Key Identifier: keyid:63:FA:00:06:26:1D:9E:4C:D4:90:59:06:E5:43:96:94:BE:62:7B:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/Y_oABiYdnkzUkFkG5UOWlL5ie7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_oABiYdnkzUkFkG5UOWlL5ie7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178F62/B878C2C85DFD11F0B5C07B4BC4F9AE02/8EA5A6E28C7D11F0B0706F1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.14.0/23 IPv6: 2401:fc20::/32 Signature Algorithm: sha256WithRSAEncryption 32:48:66:d7:f5:6a:73:e1:a5:28:bd:88:ca:d7:a6:a8:74:87: 20:dd:a1:a7:3a:e5:49:9c:97:5c:9b:92:dd:c6:13:88:12:4c: 31:a7:20:52:ed:35:9b:dd:02:b4:97:e2:54:36:ea:d8:55:ff: 2b:ff:f8:1f:87:20:db:88:bc:59:c0:af:4b:61:ab:8b:90:c3: 4a:4a:e2:61:e3:e5:9a:91:ed:59:30:1a:5b:4a:99:eb:20:aa: 23:b0:0f:b3:6d:8a:b9:00:1e:f5:84:fd:2b:d0:54:7c:05:9b: 1b:fd:75:3a:01:23:c8:f3:91:54:9d:b5:88:d7:49:c9:07:a6: a1:34:cf:12:7b:34:f2:aa:49:49:56:68:65:87:c5:6b:88:42: 48:c6:b8:fe:6a:fa:24:4f:19:14:8d:48:56:fd:19:1b:a2:5a: 77:65:10:ca:d1:76:84:f4:48:52:fe:c0:a8:63:07:45:88:db: f3:fb:06:10:12:65:0f:4a:d6:a1:d3:a5:ad:8d:bf:e4:97:d8: 0c:5a:b6:ab:cf:25:ba:ca:4a:dc:22:5f:98:7d:bc:8e:79:4c: 35:a4:7a:3c:7c:2a:b9:b3:f5:e4:07:44:83:e3:74:dc:ca:31: 19:eb:dd:70:38:99:3c:9c:27:c0:58:7c:d9:2b:55:7b:09:51: 9a:36:83:e5 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBKDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OEY2MjExMC8GA1UEBRMoNjNGQTAwMDYyNjFEOUU0Q0Q0OTA1OTA2RTU0Mzk2OTRC RTYyN0JCMTAeFw0yNTA5MDgwNjMyMTRaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YmU3ODZlLWY1NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIIV20V5+3lpTC8LlIrWwI4YvKHZ7HXAFWxjhSlOYYvac1j9EPa3Evqjee9Fml D3KVTherFE8u16lFP99lqaeFCw8MxSum6CRJ4/jMsOHphx5+VKMXm3JViAaHsTBx yyAmDjmqq6e01G2tuWg6JPK1Agj4Vp3efC3iMkUg5pT82R80DJp2XCXy9KLIAIrP 0Fj0dyl+MMswcmxuseqeESmWDnhBEpY9CQJnFTzUrHlUqWSx0Cz5G1BVaHEiekJI Oo6KfzfP5uksXGxf1YUIL5jgoOIZB/uH9cFgPhTe/+LELUPZRfx6N5ytbHBr4cGI uaIx/Fwd+lSKX1/93nt+FsvLAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUXu/Gp6nL M4Kfrxlb4mj/xlJAt7cwHwYDVR0jBBgwFoAUY/oABiYdnkzUkFkG5UOWlL5ie7Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4RjYyL0I4NzhDMkM4NURG RDExRjBCNUMwN0I0QkM0RjlBRTAyL1lfb0FCaVlkbmt6VWtGa0c1VU9XbEw1aWU3 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWV9vQUJpWWRua3pVa0ZrRzVVT1dsTDVpZTdFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEY2Mi9CODc4QzJDODVERkQxMUYwQjVDMDdCNEJDNEY5QUUwMi84RUE1QTZFMjhD N0QxMUYwQjA3MDZGMUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAaPjDjANBAIAAjAHAwUAJAH8IDANBgkqhkiG9w0BAQsFAAOC AQEAMkhm1/Vqc+GlKL2IytemqHSHIN2hpzrlSZyXXJuS3cYTiBJMMacgUu01m90C tJfiVDbq2FX/K//4H4cg24i8WcCvS2Gri5DDSkriYePlmpHtWTAaW0qZ6yCqI7AP s22KuQAe9YT9K9BUfAWbG/11OgEjyPORVJ21iNdJyQemoTTPEns08qpJSVZoZYfF a4hCSMa4/mr6JE8ZFI1IVv0ZG6Jad2UQytF2hPRIUv7AqGMHRYjb8/sGEBJlD0rW odOlrY2/5JfYDFq2q88luspK3CJfmH28jnlMNaR6PHwqubP15AdEg+N03MoxGevd cDiZPJwnwFh82StVewlRmjaD5Q== -----END CERTIFICATE-----Generated at Mon Oct 20 10:10:35 2025 by rpki-client