$ rpki-client -vvf rpki.apnic.net/member_repository/A917960F/BA35E0A8976B11F0AEE7A584C4F9AE02/84BE275E976C11F0867B3309C4F9AE02.roa File: 84BE275E976C11F0867B3309C4F9AE02.roa (raw, json) Hash identifier: oi8XzJpwIHjUbhgHF5idfGzl4HHACOp+2V7vOP1CBSs= Subject key identifier: 17:95:1C:D2:6D:E3:8A:4F:96:E7:D4:6A:68:B4:E5:6E:32:23:C2:4C Certificate issuer: /CN=A917960F/serialNumber=8125B06E074C28C2F82105C43100049EDF6E00F8 Certificate serial: 04 Authority key identifier: 81:25:B0:6E:07:4C:28:C2:F8:21:05:C4:31:00:04:9E:DF:6E:00:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gSWwbgdMKML4IQXEMQAEnt9uAPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917960F/BA35E0A8976B11F0AEE7A584C4F9AE02/84BE275E976C11F0867B3309C4F9AE02.roa Signing time: Mon 22 Sep 2025 04:29:56 +0000 ROA not before: Mon 22 Sep 2025 04:29:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154258 IP address blocks: 45.115.40.0/23 maxlen: 23 45.115.40.0/24 maxlen: 24 45.115.41.0/24 maxlen: 24 2402:2d60::/32 maxlen: 32 2402:2d60::/36 maxlen: 36 2402:2d60:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917960F/BA35E0A8976B11F0AEE7A584C4F9AE02/gSWwbgdMKML4IQXEMQAEnt9uAPg.crl rsync://rpki.apnic.net/member_repository/A917960F/BA35E0A8976B11F0AEE7A584C4F9AE02/gSWwbgdMKML4IQXEMQAEnt9uAPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gSWwbgdMKML4IQXEMQAEnt9uAPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917960F, serialNumber=8125B06E074C28C2F82105C43100049EDF6E00F8 Validity Not Before: Sep 22 04:29:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68d0d0c4-1136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a5:3e:d2:9d:c8:7e:bf:07:45:5f:c5:24:a1: 4d:d6:ae:4c:50:7a:58:8b:a2:ca:6c:a2:bc:dd:20: 77:ee:cc:4d:3b:0d:ae:f5:a1:5e:81:c2:c9:8b:4a: 77:e3:61:28:45:1c:87:2c:b0:2e:7f:32:6f:a3:97: 17:5d:4e:4b:85:dd:bb:c7:39:4f:3b:86:58:55:f1: 70:f6:7c:03:2d:3e:50:49:6a:81:dc:25:bd:3e:bc: 23:b7:8b:98:1a:d4:18:e5:e1:4d:b4:a8:4b:3b:35: 4e:15:2f:5d:7e:3d:89:b6:31:0d:3b:60:8b:85:1a: 81:0f:35:6d:b1:17:72:30:f4:f2:72:c1:c9:bf:50: 97:bd:8d:69:be:ce:82:e2:48:c0:68:e1:61:da:bf: 28:df:7e:56:5c:13:dd:d1:9c:a2:aa:af:11:6b:80: 8f:c3:52:b0:7d:43:ca:e1:b1:40:14:67:e8:4d:d3: 40:46:2b:ab:6f:f4:1d:78:c1:b1:99:53:da:f1:72: 11:1c:73:34:ed:1f:f7:ee:55:c8:c1:0e:ac:82:db: a7:34:bf:1a:02:90:2a:99:15:16:09:eb:c2:c6:64: 9f:91:bf:96:83:f5:34:cf:c6:54:d9:a2:74:8b:01: 6b:5e:02:82:af:a6:77:eb:f9:42:b7:10:fb:ff:2b: 29:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:95:1C:D2:6D:E3:8A:4F:96:E7:D4:6A:68:B4:E5:6E:32:23:C2:4C X509v3 Authority Key Identifier: keyid:81:25:B0:6E:07:4C:28:C2:F8:21:05:C4:31:00:04:9E:DF:6E:00:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917960F/BA35E0A8976B11F0AEE7A584C4F9AE02/gSWwbgdMKML4IQXEMQAEnt9uAPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gSWwbgdMKML4IQXEMQAEnt9uAPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917960F/BA35E0A8976B11F0AEE7A584C4F9AE02/84BE275E976C11F0867B3309C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.40.0/23 IPv6: 2402:2d60::/32 Signature Algorithm: sha256WithRSAEncryption 65:0f:2a:ad:74:19:28:3a:da:d7:96:8c:bb:1b:26:f6:6c:af: 3c:42:82:4c:0f:a2:ed:d2:b2:ba:d3:e9:92:25:31:08:2f:c9: 73:09:25:da:63:b4:66:f6:d7:33:21:2f:3b:74:8e:70:30:72: 87:3a:01:d7:68:30:26:2d:e6:e9:1a:3d:c4:66:9a:d5:93:be: d0:ae:52:cd:e4:2b:74:33:55:02:ff:9c:0a:8d:32:11:00:f7: b9:f8:35:eb:b4:0b:ca:b7:52:6b:9b:ec:e0:a2:3a:66:c7:60: a2:99:60:4a:a1:38:ba:e6:98:2f:a0:e0:10:11:f6:e3:19:ed: 7b:53:d3:b4:08:64:28:ca:12:37:10:ba:d3:24:e3:ff:f2:6e: 9a:d4:43:48:75:82:46:88:de:a6:a6:21:9a:36:16:f5:6b:c8: 65:68:45:e6:83:0e:09:4e:fe:29:d3:68:96:e1:c9:c0:bf:a8: 68:41:63:ea:c3:23:9d:35:20:f9:c9:aa:30:b2:97:ae:8b:f8: 16:32:69:7b:76:78:31:0b:ab:0a:ce:b1:01:da:a9:20:3d:b4: d5:23:f0:7e:75:59:6f:73:e3:10:37:28:b4:ce:41:51:ee:04: ab:c9:17:a9:6b:2c:e2:41:99:09:bc:e0:f4:ff:20:a2:2d:8a: bf:57:48:de -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTYwRjExMC8GA1UEBRMoODEyNUIwNkUwNzRDMjhDMkY4MjEwNUM0MzEwMDA0OUVE RjZFMDBGODAeFw0yNTA5MjIwNDI5NTZaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDBkMGM0LTExMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5pT7Snch+vwdFX8UkoU3WrkxQeliLospsorzdIHfuzE07Da71oV6BwsmLSnfj YShFHIcssC5/Mm+jlxddTkuF3bvHOU87hlhV8XD2fAMtPlBJaoHcJb0+vCO3i5ga 1Bjl4U20qEs7NU4VL11+PYm2MQ07YIuFGoEPNW2xF3Iw9PJywcm/UJe9jWm+zoLi SMBo4WHavyjfflZcE93RnKKqrxFrgI/DUrB9Q8rhsUAUZ+hN00BGK6tv9B14wbGZ U9rxchEcczTtH/fuVcjBDqyC26c0vxoCkCqZFRYJ68LGZJ+Rv5aD9TTPxlTZonSL AWteAoKvpnfr+UK3EPv/KylNAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUF5Uc0m3j ik+W59RqaLTlbjIjwkwwHwYDVR0jBBgwFoAUgSWwbgdMKML4IQXEMQAEnt9uAPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5NjBGL0JBMzVFMEE4OTc2 QjExRjBBRUU3QTU4NEM0RjlBRTAyL2dTV3diZ2RNS01MNElRWEVNUUFFbnQ5dUFQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1NXd2JnZE1LTUw0SVFYRU1RQUVudDl1QVBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTYwRi9CQTM1RTBBODk3NkIxMUYwQUVFN0E1ODRDNEY5QUUwMi84NEJFMjc1RTk3 NkMxMUYwODY3QjMzMDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAS1zKDANBAIAAjAHAwUAJAItYDANBgkqhkiG9w0BAQsFAAOC AQEAZQ8qrXQZKDra15aMuxsm9myvPEKCTA+i7dKyutPpkiUxCC/Jcwkl2mO0ZvbX MyEvO3SOcDByhzoB12gwJi3m6Ro9xGaa1ZO+0K5SzeQrdDNVAv+cCo0yEQD3ufg1 67QLyrdSa5vs4KI6ZsdgoplgSqE4uuaYL6DgEBH24xnte1PTtAhkKMoSNxC60yTj //JumtRDSHWCRojepqYhmjYW9WvIZWhF5oMOCU7+KdNoluHJwL+oaEFj6sMjnTUg +cmqMLKXrov4FjJpe3Z4MQurCs6xAdqpID201SPwfnVZb3PjEDcotM5BUe4Eq8kX qWss4kGZCbzg9P8goi2Kv1dI3g== -----END CERTIFICATE-----Generated at Mon Oct 20 14:03:05 2025 by rpki-client