$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/6313DADA500011EBB74A2C2AC4F9AE02.roa File: 6313DADA500011EBB74A2C2AC4F9AE02.roa (raw, json) Hash identifier: Dh1mpv4UoWbEEeCnj4hWDVua0Kb3Ya4BmP9+TVk00i8= Subject key identifier: FC:43:CD:68:41:23:13:1D:0D:3D:9D:6F:E6:0D:63:7F:4A:C0:B9:ED Certificate issuer: /CN=A917C422/serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Certificate serial: 2BA7 Authority key identifier: 35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/6313DADA500011EBB74A2C2AC4F9AE02.roa Signing time: Fri 12 Sep 2025 14:50:29 +0000 ROA not before: Fri 12 Sep 2025 14:50:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9584 IP address blocks: 152.104.0.0/18 maxlen: 24 152.104.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11175 (0x2ba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=35439E0BF35C888BB84D1B24ECDE7060CF744E91 Validity Not Before: Sep 12 14:50:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c43334-4938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:af:42:74:79:de:2b:96:70:5f:d8:66:ec:37: 21:07:ff:ed:15:43:00:bd:f2:f0:58:63:ec:e8:75: 86:3d:fc:41:52:b8:57:33:b5:b8:ce:aa:81:36:a1: 00:76:fc:6c:e3:35:4c:35:b2:8c:75:71:b2:34:a2: 15:4f:d3:9f:43:e2:cc:2e:90:f6:97:3d:32:68:04: e5:5d:5c:28:29:d8:53:10:0c:cf:b8:1b:79:9d:1e: dd:b6:34:8b:2b:4b:6f:8e:d7:53:3b:a3:84:39:7f: 89:5f:ed:06:07:34:ac:c6:4e:25:26:e5:62:77:d8: 2d:d6:d3:fa:8b:16:b9:a5:30:47:69:aa:e8:87:12: 68:37:de:7d:e6:57:63:f7:34:55:04:87:1c:a3:06: 9d:f1:dc:37:84:1f:41:83:2b:67:48:4e:2a:68:d1: 3b:8a:2c:0e:70:7a:4c:28:0e:d2:0e:39:f9:5a:6d: 54:12:66:0e:f7:2a:39:67:a4:94:bf:a8:bc:7a:ce: b1:23:c0:0d:fd:53:59:61:ee:f2:df:2d:e6:85:b1: c8:a5:93:a7:3a:c8:ac:a2:b9:7e:3c:0a:9a:7a:7a: 33:26:c7:eb:44:80:43:01:12:87:e6:8b:64:02:75: 82:98:2e:4b:17:3b:be:d2:74:a3:0d:36:e1:07:0c: 78:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:43:CD:68:41:23:13:1D:0D:3D:9D:6F:E6:0D:63:7F:4A:C0:B9:ED X509v3 Authority Key Identifier: keyid:35:43:9E:0B:F3:5C:88:8B:B8:4D:1B:24:EC:DE:70:60:CF:74:4E:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/NUOeC_NciIu4TRsk7N5wYM90TpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/NUOeC_NciIu4TRsk7N5wYM90TpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/3E745368ED5511E38072C57E5911EA32/6313DADA500011EBB74A2C2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.104.0.0-152.104.95.255 Signature Algorithm: sha256WithRSAEncryption 81:22:a3:64:ef:8f:9c:8d:f4:81:21:98:69:5d:e2:a0:72:e5: 38:31:1f:e8:51:60:8b:a3:17:c6:38:c1:86:4c:9b:a3:a1:2d: d5:e0:2a:44:cb:89:f0:18:e4:57:db:5f:02:77:19:4e:a3:d4: cf:11:9c:f7:04:1b:f9:dc:e5:5b:e2:0d:26:5f:a2:fe:06:93: 64:62:34:0c:b6:9f:9a:b5:b8:a2:29:03:7e:3e:e6:67:b6:91: 1b:66:38:93:52:5e:e0:47:1e:96:b2:76:04:c1:a5:13:a8:04: 85:c5:ce:2b:e6:33:f0:72:42:98:e8:cd:0f:4b:33:b0:43:a8: 34:6a:8c:79:3f:b8:93:c1:38:c0:d8:98:35:a6:2a:8a:06:27: 11:ae:8f:74:f2:d7:7e:6d:05:6d:2f:04:a8:64:73:0b:43:1b: 58:7a:0a:0f:32:43:dc:4b:2e:ec:e8:5d:e6:1b:84:1b:ac:65: 64:71:5c:62:40:0c:fd:0b:fb:cb:55:df:14:f0:72:52:7d:9f: a0:41:e0:2b:6d:06:7c:54:ec:7e:ba:00:33:d9:ee:d4:ec:6f: 95:c9:a3:f3:ca:9a:ad:f3:44:e5:81:24:df:88:11:32:af:d2: 53:9f:0d:8e:ec:50:97:e4:0e:20:d2:a5:6d:d1:6b:3d:59:1d: d9:c8:3e:be -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICK6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDM1NDM5RTBCRjM1Qzg4OEJCODREMUIyNEVDREU3MDYw Q0Y3NDRFOTEwHhcNMjUwOTEyMTQ1MDI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0MzMzNC00OTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2q9CdHneK5ZwX9hm7DchB//tFUMAvfLwWGPs6HWGPfxBUrhXM7W4zqqBNqEA dvxs4zVMNbKMdXGyNKIVT9OfQ+LMLpD2lz0yaATlXVwoKdhTEAzPuBt5nR7dtjSL K0tvjtdTO6OEOX+JX+0GBzSsxk4lJuVid9gt1tP6ixa5pTBHaarohxJoN9595ldj 9zRVBIccowad8dw3hB9BgytnSE4qaNE7iiwOcHpMKA7SDjn5Wm1UEmYO9yo5Z6SU v6i8es6xI8AN/VNZYe7y3y3mhbHIpZOnOsisorl+PAqaenozJsfrRIBDARKH5otk AnWCmC5LFzu+0nSjDTbhBwx4BQIDAQABo4ICnDCCApgwHQYDVR0OBBYEFPxDzWhB IxMdDT2db+YNY39KwLntMB8GA1UdIwQYMBaAFDVDngvzXIiLuE0bJOzecGDPdE6R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi8zRTc0NTM2OEVE NTUxMUUzODA3MkM1N0U1OTExRUEzMi9OVU9lQ19OY2lJdTRUUnNrN041d1lNOTBU cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL05VT2VDX05jaUl1NFRSc2s3TjV3WU05MFRwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0MjIvM0U3NDUzNjhFRDU1MTFFMzgwNzJDNTdFNTkxMUVBMzIvNjMxM0RBREE1 MDAwMTFFQkI3NEEyQzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMDA5hoAwQFmGhAMA0GCSqGSIb3DQEBCwUAA4IBAQCBIqNk 74+cjfSBIZhpXeKgcuU4MR/oUWCLoxfGOMGGTJujoS3V4CpEy4nwGORX218CdxlO o9TPEZz3BBv53OVb4g0mX6L+BpNkYjQMtp+atbiiKQN+PuZntpEbZjiTUl7gRx6W snYEwaUTqASFxc4r5jPwckKY6M0PSzOwQ6g0aox5P7iTwTjA2Jg1piqKBicRro90 8td+bQVtLwSoZHMLQxtYegoPMkPcSy7s6F3mG4QbrGVkcVxiQAz9C/vLVd8U8HJS fZ+gQeArbQZ8VOx+ugAz2e7U7G+VyaPzypqt80TlgSTfiBEyr9JTnw2O7FCX5A4g 0qVt0Ws9WR3ZyD6+ -----END CERTIFICATE-----Generated at Tue Oct 21 19:47:15 2025 by rpki-client