$ rpki-client -vvf rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa File: 9E194914B3EC11EE8B2EE910C4F9AE02.roa (raw, json) Hash identifier: /r8zkPpv2X5SfBxbvGoAdJxHIR9dMbvXa2kBS0bQC9E= Subject key identifier: 0B:9D:42:34:0D:86:41:0C:DF:41:99:C8:88:3F:21:EF:80:6A:BB:46 Certificate issuer: /CN=A91805CE/serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Certificate serial: 015E Authority key identifier: 72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa Signing time: Wed 01 Oct 2025 21:40:36 +0000 ROA not before: Wed 01 Oct 2025 21:40:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9463 IP address blocks: 202.74.128.0/22 maxlen: 22 202.74.132.0/22 maxlen: 22 202.74.136.0/22 maxlen: 22 202.74.140.0/22 maxlen: 22 202.74.147.0/24 maxlen: 24 202.74.148.0/24 maxlen: 24 202.74.149.0/24 maxlen: 24 202.74.150.0/24 maxlen: 24 202.74.152.0/23 maxlen: 23 202.74.152.0/24 maxlen: 24 202.74.153.0/24 maxlen: 24 202.74.154.0/23 maxlen: 23 202.74.154.0/24 maxlen: 24 202.74.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:56:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805CE, serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Validity Not Before: Oct 1 21:40:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68dd9fd4-c8f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:db:60:80:8d:b1:37:4e:40:9f:76:f0:a3:72: e4:21:12:f4:a3:42:37:75:66:61:b1:66:f6:6b:9d: 3b:39:6d:8d:18:df:ba:79:a6:2e:1c:ac:3d:a2:d9: df:29:e5:be:63:7f:73:df:6b:67:fb:bb:81:48:26: e6:c5:92:27:71:e7:a9:d2:da:38:84:da:a5:ef:01: 11:15:e2:60:f5:38:a0:a9:2c:be:6d:0a:b0:25:9d: 75:19:b9:85:10:65:a4:d4:ff:98:47:34:d8:37:7c: c9:ec:d1:ec:cb:b8:8f:dc:4e:ab:01:76:be:a8:09: b3:5b:47:82:5b:98:b7:d5:fe:d6:0d:90:ae:04:aa: ee:fc:02:28:62:0f:49:9a:76:83:c4:a8:ee:d8:18: d5:ba:e6:51:36:fa:d6:fb:d9:cc:ec:92:ec:f7:a9: f4:8e:47:90:d4:0a:8f:2e:3a:92:cb:ca:dd:42:6d: 74:8a:c1:ce:a3:03:b5:88:2b:87:0e:91:b6:59:5c: 53:65:be:5d:d8:1f:ba:61:20:3f:38:a4:d1:b1:2f: 73:3a:ae:1e:a9:a5:db:5d:44:cf:a9:8e:87:6d:f4: ad:a1:12:75:2a:09:14:1a:82:98:f8:53:48:0e:d4: cd:28:d4:d3:ea:92:f0:6e:08:4e:4f:bf:8a:1a:a8: 5b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:9D:42:34:0D:86:41:0C:DF:41:99:C8:88:3F:21:EF:80:6A:BB:46 X509v3 Authority Key Identifier: keyid:72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.74.128.0/20 202.74.147.0-202.74.150.255 202.74.152.0/22 Signature Algorithm: sha256WithRSAEncryption 18:2e:30:ce:df:28:39:13:9a:c0:07:a2:4e:07:d3:c9:d7:fd: 3c:45:5a:b2:98:29:8a:fa:44:ab:eb:25:ad:c3:0d:6d:6d:d8: 53:a3:29:97:21:a3:f2:ad:74:55:33:47:8e:69:ab:4c:bc:7c: 63:82:19:b4:77:b8:a3:63:8c:6e:e7:91:d0:63:ad:cc:a6:cc: 34:90:56:44:92:ce:9e:7b:41:4a:cf:90:a0:08:ae:37:a5:bc: 4c:22:7c:2f:49:7b:0c:5e:c4:ef:40:42:50:a8:15:75:de:35: 2b:86:f7:41:e3:9e:cd:c8:24:d4:d9:7e:13:30:a4:bf:38:91: e4:96:0b:60:fd:16:f7:f1:c6:cd:0f:df:28:bf:e7:33:ad:4e: 34:1c:67:9b:73:76:db:24:b6:ef:87:c8:bf:e1:19:ad:85:08: d9:97:41:98:8e:af:0d:c1:2a:d6:33:67:61:ca:4d:af:d8:5e: 66:41:42:c2:c3:aa:a6:ba:c1:6b:87:55:bb:be:c9:6e:c1:71: be:62:8b:ad:b7:cb:97:22:77:5a:c8:a3:6c:52:46:1b:95:b3: 4d:93:a3:c9:6b:ff:ac:3f:9b:c7:05:99:6f:22:a3:bf:b8:88: 83:3c:ed:e8:12:d7:4c:1e:4d:63:57:4c:60:1d:5e:9d:ae:cc: 10:7b:68:85 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1Q0UxMTAvBgNVBAUTKDcyOTI2RkM2MEY3QzE4NEE2MUQ3M0JEMDk0QUE2QTM4 NkI2MzAwMkEwHhcNMjUxMDAxMjE0MDM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRkOWZkNC1jOGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6NtggI2xN05An3bwo3LkIRL0o0I3dWZhsWb2a507OW2NGN+6eaYuHKw9otnf KeW+Y39z32tn+7uBSCbmxZInceep0to4hNql7wERFeJg9TigqSy+bQqwJZ11GbmF EGWk1P+YRzTYN3zJ7NHsy7iP3E6rAXa+qAmzW0eCW5i31f7WDZCuBKru/AIoYg9J mnaDxKju2BjVuuZRNvrW+9nM7JLs96n0jkeQ1AqPLjqSy8rdQm10isHOowO1iCuH DpG2WVxTZb5d2B+6YSA/OKTRsS9zOq4eqaXbXUTPqY6HbfStoRJ1KgkUGoKY+FNI DtTNKNTT6pLwbghOT7+KGqhbRQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFAudQjQN hkEM30GZyIg/Ie+AartGMB8GA1UdIwQYMBaAFHKSb8YPfBhKYdc70JSqajhrYwAq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVDRS8wRUIwOUQzNkFF NzQxMUVFOENFRDIzNUNDNEY5QUUwMi9jcEp2eGc5OEdFcGgxenZRbEtwcU9HdGpB Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NwSnZ4Zzk4R0VwaDF6dlFsS3BxT0d0akFDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA1Q0UvMEVCMDlEMzZBRTc0MTFFRThDRUQyMzVDQzRGOUFFMDIvOUUxOTQ5MTRC M0VDMTFFRThCMkVFOTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBATKSoAwDAMEAMpKkwMEAMpKlgMEAspKmDANBgkqhkiG9w0B AQsFAAOCAQEAGC4wzt8oOROawAeiTgfTydf9PEVaspgpivpEq+slrcMNbW3YU6Mp lyGj8q10VTNHjmmrTLx8Y4IZtHe4o2OMbueR0GOtzKbMNJBWRJLOnntBSs+QoAiu N6W8TCJ8L0l7DF7E70BCUKgVdd41K4b3QeOezcgk1Nl+EzCkvziR5JYLYP0W9/HG zQ/fKL/nM61ONBxnm3N22yS274fIv+EZrYUI2ZdBmI6vDcEq1jNnYcpNr9heZkFC wsOqprrBa4dVu77JbsFxvmKLrbfLlyJ3WsijbFJGG5WzTZOjyWv/rD+bxwWZbyKj v7iIgzzt6BLXTB5NY1dMYB1ena7MEHtohQ== -----END CERTIFICATE-----Generated at Mon Oct 20 10:46:22 2025 by rpki-client