$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/D3C8593E905E11EFAF2C185CC4F9AE02.roa File: D3C8593E905E11EFAF2C185CC4F9AE02.roa (raw, json) Hash identifier: ETR2zwPyd2A7y4UYuOybCcuJB7a9x37gwBrY0zAjMjI= Subject key identifier: D9:98:92:33:46:52:B7:D8:AC:F3:B6:A1:9B:A2:CC:DF:98:E2:F5:C6 Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1D86 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/D3C8593E905E11EFAF2C185CC4F9AE02.roa Signing time: Wed 24 Sep 2025 16:34:40 +0000 ROA not before: Wed 24 Sep 2025 16:34:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 397373 IP address blocks: 115.42.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7558 (0x1d86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Sep 24 16:34:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d41da0-1618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f9:97:64:95:42:df:a2:86:2d:85:fb:37:6e: ee:bb:02:a5:5f:24:06:fd:8f:3e:a7:8a:c3:1d:f2: c1:a3:0b:c7:c3:dc:63:48:b3:8d:8e:e6:fc:49:cb: 12:af:1d:28:2a:d6:e3:c3:0a:11:3b:12:4f:62:8c: 42:5e:6a:d5:1c:62:ad:71:1c:1c:b1:72:f5:9e:2b: b9:9e:ef:0a:1c:a5:e5:d9:a3:e7:71:11:79:24:22: cc:9f:1d:94:97:90:ec:e6:b7:1e:e5:b8:f7:a1:af: 7e:b9:3c:9b:ca:3d:41:f1:85:e8:52:77:13:82:f3: 84:32:e3:1e:1d:4a:f6:f0:49:90:2d:a6:09:3d:24: 45:e3:ad:e6:db:67:3e:b2:96:42:7c:b0:34:4e:b5: d0:d6:62:9c:4b:f5:56:f4:50:0f:57:e0:a5:68:a7: 76:b4:95:a9:00:c3:0a:0d:5b:ab:b0:6c:76:67:f4: 7b:c3:21:65:c8:b9:e1:b3:65:b3:f3:df:44:56:76: 16:de:75:6f:ab:73:a6:ee:1b:09:ab:16:da:92:dd: 4c:01:61:fc:ee:16:3e:1f:ae:d1:7d:19:0f:a9:ac: 61:42:23:33:fc:05:84:49:fd:1e:6b:4f:7f:6f:4e: 3c:35:45:90:67:32:69:5d:17:91:ab:10:ca:2f:84: 3c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:98:92:33:46:52:B7:D8:AC:F3:B6:A1:9B:A2:CC:DF:98:E2:F5:C6 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/D3C8593E905E11EFAF2C185CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.42.71.0/24 Signature Algorithm: sha256WithRSAEncryption 66:b3:60:3a:82:d8:23:0c:52:13:79:49:79:3f:96:b8:0b:3b: ef:5f:03:a7:c7:cc:33:56:45:06:16:f0:44:0c:76:11:4a:bb: b2:66:91:5e:a7:5c:23:42:76:46:bc:17:1c:9e:08:86:81:01: 7b:84:8f:9c:df:1f:7b:39:7b:8d:19:91:01:e3:17:05:20:c4: d3:45:8a:1e:24:ba:54:c7:36:62:8d:b6:64:f2:cb:ce:43:e1: 55:9b:a7:b9:0c:5e:dc:13:74:5f:a1:b7:92:81:35:18:2b:af: 82:57:e9:2a:9e:f6:17:e1:24:51:1b:80:31:c2:6d:7c:52:7c: 12:83:86:2f:08:83:45:82:1d:a7:d5:7e:73:a3:87:b4:67:e2: 44:67:03:ce:34:9d:57:ad:eb:2b:e6:15:42:ab:59:4b:88:94: a8:21:a4:d4:56:c0:3d:9b:5a:e5:43:61:4c:4e:dc:cf:ce:26: 7f:33:e7:92:03:08:5c:6e:d3:cd:e3:f7:d0:ae:95:61:6d:51: 45:01:eb:86:0b:76:be:71:00:88:91:2e:70:5d:cd:b4:b8:c0: f2:ad:e1:76:71:26:f6:69:74:57:42:60:d2:00:01:cd:38:7b: de:48:35:3c:80:73:08:ef:b8:1f:17:eb:a0:21:e9:63:e8:2c: 19:d8:17:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwOTI0MTYzNDQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0MWRhMC0xNjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPmXZJVC36KGLYX7N27uuwKlXyQG/Y8+p4rDHfLBowvHw9xjSLONjub8ScsS rx0oKtbjwwoROxJPYoxCXmrVHGKtcRwcsXL1niu5nu8KHKXl2aPncRF5JCLMnx2U l5Ds5rce5bj3oa9+uTybyj1B8YXoUncTgvOEMuMeHUr28EmQLaYJPSRF463m22c+ spZCfLA0TrXQ1mKcS/VW9FAPV+ClaKd2tJWpAMMKDVursGx2Z/R7wyFlyLnhs2Wz 899EVnYW3nVvq3Om7hsJqxbakt1MAWH87hY+H67RfRkPqaxhQiMz/AWESf0ea09/ b048NUWQZzJpXReRqxDKL4Q8qQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNmYkjNG UrfYrPO2oZuizN+Y4vXGMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvRDNDODU5M0U5 MDVFMTFFRkFGMkMxODVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABzKkcwDQYJKoZIhvcNAQELBQADggEBAGazYDqC2CMMUhN5 SXk/lrgLO+9fA6fHzDNWRQYW8EQMdhFKu7JmkV6nXCNCdka8FxyeCIaBAXuEj5zf H3s5e40ZkQHjFwUgxNNFih4kulTHNmKNtmTyy85D4VWbp7kMXtwTdF+ht5KBNRgr r4JX6Sqe9hfhJFEbgDHCbXxSfBKDhi8Ig0WCHafVfnOjh7Rn4kRnA840nVet6yvm FUKrWUuIlKghpNRWwD2bWuVDYUxO3M/OJn8z55IDCFxu083j99CulWFtUUUB64YL dr5xAIiRLnBdzbS4wPKt4XZxJvZpdFdCYNIAAc04e95INTyAcwjvuB8X66Ah6WPo LBnYF0k= -----END CERTIFICATE-----Generated at Mon Oct 20 09:37:11 2025 by rpki-client