$ rpki-client -vvf rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/B94E87EAD44911ED88A2367FC4F9AE02.roa File: B94E87EAD44911ED88A2367FC4F9AE02.roa (raw, json) Hash identifier: QVZDCd1ya5oxlLiJqZP/4xPWOb/nFUonfRIHAss0Ydc= Subject key identifier: 9E:E5:B1:F5:47:41:E0:0C:4F:A9:F5:F9:49:29:FD:B0:25:49:16:00 Certificate issuer: /CN=A9179CA8/serialNumber=D6961ADA8CD577CC33D71A9A2DC81B0C1925AC98 Certificate serial: 01D3 Authority key identifier: D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/B94E87EAD44911ED88A2367FC4F9AE02.roa Signing time: Tue 23 Sep 2025 03:20:56 +0000 ROA not before: Tue 23 Sep 2025 03:20:56 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 131225 IP address blocks: 202.1.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.crl rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179CA8, serialNumber=D6961ADA8CD577CC33D71A9A2DC81B0C1925AC98 Validity Not Before: Sep 23 03:20:56 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d21218-d94a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:b4:ba:d0:a6:e7:84:7e:d4:eb:48:bb:e8:69: 89:63:91:1a:9a:f3:83:24:c1:62:d6:52:ff:af:da: b8:8c:ab:47:5a:a4:73:7f:91:7c:22:0f:6b:2a:36: 22:40:79:b1:1d:f3:5f:41:fb:94:ac:e4:b9:da:67: 1b:ec:07:89:5a:68:87:b3:17:04:cc:73:84:a5:75: 80:62:24:a9:51:42:8c:1f:9a:92:e7:b4:08:35:f7: 5a:7d:f1:56:d0:74:77:e1:25:24:7f:3e:b6:52:77: 6e:88:ec:1b:1f:4f:f0:1b:b2:84:92:c2:a0:f3:3d: 5d:db:e4:41:ab:95:54:a7:87:69:53:85:8a:91:72: 56:b2:e2:c3:32:23:00:1d:d7:72:91:62:1e:a3:3d: 1e:9a:07:e9:d7:03:82:49:c6:76:19:6e:5c:31:52: 9d:20:d5:c2:fb:62:8b:ee:22:5f:ee:5e:c1:35:e6: 59:09:c3:9c:eb:81:41:e0:7e:64:9e:d8:d4:a1:cd: a1:45:5a:36:09:da:8f:de:07:75:60:c3:7e:60:4e: 64:18:66:53:9b:ab:fa:23:ab:00:ce:ac:22:b4:bd: e6:ff:9b:4f:78:ed:81:0b:92:9a:07:10:91:b2:71: e5:60:23:98:b9:92:50:72:d9:23:4e:ba:7c:ca:ac: 5f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:E5:B1:F5:47:41:E0:0C:4F:A9:F5:F9:49:29:FD:B0:25:49:16:00 X509v3 Authority Key Identifier: keyid:D6:96:1A:DA:8C:D5:77:CC:33:D7:1A:9A:2D:C8:1B:0C:19:25:AC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/1pYa2ozVd8wz1xqaLcgbDBklrJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pYa2ozVd8wz1xqaLcgbDBklrJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179CA8/05660926D44711EDAA41BF7EC4F9AE02/B94E87EAD44911ED88A2367FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.233.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:fe:73:c2:c4:2f:b4:35:6d:bd:1a:e1:07:87:11:3e:fe:5e: 7c:00:e6:dc:aa:91:04:19:e1:da:9a:e9:76:c3:2c:4a:d3:53: 66:b7:3f:a6:49:66:d5:c0:f3:d2:21:42:3b:40:b4:10:8c:d5: 6a:33:7b:17:da:f2:d4:1c:d7:33:32:1f:d6:29:bf:8a:69:0e: 34:ee:53:ff:eb:19:32:15:3e:9c:de:c8:35:1c:96:8e:22:91: 40:ce:dd:f1:20:85:21:04:50:b5:78:94:72:bd:bf:09:39:52: 0b:be:12:d1:2a:60:8d:2d:5d:7a:62:cc:b3:fe:18:07:54:24: a5:62:16:5b:4a:9b:b6:a2:f7:be:54:50:4d:38:a0:af:f1:93: 53:40:d3:5a:c0:90:e0:25:2e:a4:c9:d4:9a:32:c6:a7:38:8b: f8:06:2c:a9:31:e9:39:04:60:10:41:02:e2:8d:12:3f:30:38: ee:50:79:44:d0:82:83:bc:62:ea:ab:45:6b:a9:e4:b0:10:c3: 66:b9:7e:db:8b:c6:87:32:59:b4:d4:5c:4b:ec:87:db:b5:fb: 8c:69:dd:39:64:4f:f0:9a:0d:84:72:6c:22:85:f2:ab:d7:0d: ae:28:91:b1:2a:75:e1:12:13:df:57:b4:a7:4c:63:77:be:34: 71:dd:1a:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlDQTgxMTAvBgNVBAUTKEQ2OTYxQURBOENENTc3Q0MzM0Q3MUE5QTJEQzgxQjBD MTkyNUFDOTgwHhcNMjUwOTIzMDMyMDU2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQyMTIxOC1kOTRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8rS60KbnhH7U60i76GmJY5EamvODJMFi1lL/r9q4jKtHWqRzf5F8Ig9rKjYi QHmxHfNfQfuUrOS52mcb7AeJWmiHsxcEzHOEpXWAYiSpUUKMH5qS57QINfdaffFW 0HR34SUkfz62UnduiOwbH0/wG7KEksKg8z1d2+RBq5VUp4dpU4WKkXJWsuLDMiMA HddykWIeoz0emgfp1wOCScZ2GW5cMVKdINXC+2KL7iJf7l7BNeZZCcOc64FB4H5k ntjUoc2hRVo2CdqP3gd1YMN+YE5kGGZTm6v6I6sAzqwitL3m/5tPeO2BC5KaBxCR snHlYCOYuZJQctkjTrp8yqxfqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ7lsfVH QeAMT6n1+Ukp/bAlSRYAMB8GA1UdIwQYMBaAFNaWGtqM1XfMM9cami3IGwwZJayY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUNBOC8wNTY2MDkyNkQ0 NDcxMUVEQUE0MUJGN0VDNEY5QUUwMi8xcFlhMm96VmQ4d3oxeHFhTGNnYkRCa2xy SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwWWEyb3pWZDh3ejF4cWFMY2diREJrbHJKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlDQTgvMDU2NjA5MjZENDQ3MTFFREFBNDFCRjdFQzRGOUFFMDIvQjk0RTg3RUFE NDQ5MTFFRDg4QTIzNjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKAekwDQYJKoZIhvcNAQELBQADggEBAH7+c8LEL7Q1bb0a 4QeHET7+XnwA5tyqkQQZ4dqa6XbDLErTU2a3P6ZJZtXA89IhQjtAtBCM1Wozexfa 8tQc1zMyH9Ypv4ppDjTuU//rGTIVPpzeyDUclo4ikUDO3fEghSEEULV4lHK9vwk5 Ugu+EtEqYI0tXXpizLP+GAdUJKViFltKm7ai975UUE04oK/xk1NA01rAkOAlLqTJ 1Joyxqc4i/gGLKkx6TkEYBBBAuKNEj8wOO5QeUTQgoO8YuqrRWup5LAQw2a5ftuL xocyWbTUXEvsh9u1+4xp3TlkT/CaDYRybCKF8qvXDa4okbEqdeESE99XtKdMY3e+ NHHdGog= -----END CERTIFICATE-----Generated at Mon Oct 20 21:54:56 2025 by rpki-client