$ rpki-client -vvf rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/C865C1BC8D2E11F0A977AE41C4F9AE02.roa File: C865C1BC8D2E11F0A977AE41C4F9AE02.roa (raw, json) Hash identifier: 4+U1k9OAedZH316Ll+MqnC5sjLliIqDqE+4KiwveiWg= Subject key identifier: 8E:1C:02:04:7C:D2:78:21:BE:18:F5:A7:28:3E:42:73:57:9B:3C:EC Certificate issuer: /CN=A9189D9B/serialNumber=7F0397C6A94E525976834BBFD5802F15B795FB8E Certificate serial: 56 Authority key identifier: 7F:03:97:C6:A9:4E:52:59:76:83:4B:BF:D5:80:2F:15:B7:95:FB:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fwOXxqlOUll2g0u_1YAvFbeV-44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/C865C1BC8D2E11F0A977AE41C4F9AE02.roa Signing time: Mon 29 Sep 2025 02:50:50 +0000 ROA not before: Mon 29 Sep 2025 02:50:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153836 IP address blocks: 163.227.185.0/24 maxlen: 24 2001:df5:77c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/fwOXxqlOUll2g0u_1YAvFbeV-44.crl rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/fwOXxqlOUll2g0u_1YAvFbeV-44.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fwOXxqlOUll2g0u_1YAvFbeV-44.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:33:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86 (0x56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189D9B, serialNumber=7F0397C6A94E525976834BBFD5802F15B795FB8E Validity Not Before: Sep 29 02:50:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68d9f40a-13c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:7d:98:2c:96:ce:2c:3c:42:61:b7:d6:f9:f2: 54:61:5e:04:d3:4a:4c:81:ef:8b:1b:45:b7:5f:56: 6e:ca:fc:d6:7e:28:c8:d5:92:2a:a0:5d:1d:db:22: 7e:94:5e:f3:53:f4:74:54:1f:89:bd:97:59:49:b1: 25:93:4a:ef:5d:54:57:b1:ec:16:e0:95:e0:cb:a5: 49:b6:33:20:93:dc:43:2e:1c:13:5e:01:26:25:6c: 61:60:a8:25:3c:33:a0:ab:7f:7f:1f:47:c3:27:9d: 8e:c1:89:0f:97:96:e8:ac:5b:83:d1:ea:12:02:69: f1:92:05:2e:6f:cc:17:45:84:b7:32:bd:80:79:4d: 3d:56:5a:ee:b5:95:5b:dc:68:02:2e:fb:c3:da:1d: d9:85:22:62:1d:05:ea:a9:85:6c:0b:0e:d8:27:a4: f5:2b:2d:f7:1c:be:dd:cb:4c:f2:1e:3a:3c:2f:1d: 2b:96:4a:44:9d:a3:e7:2c:f5:b3:8e:1d:16:91:13: a8:b9:81:1b:d2:89:9c:57:ac:0e:2b:11:e7:5f:35: a9:ed:4a:90:41:14:3c:f2:b6:48:57:97:e7:68:42: 82:79:29:03:98:6b:6a:f1:bd:90:db:ea:ea:b5:54: 2f:f4:6e:dd:0f:9b:20:eb:7c:ec:fe:b1:d0:88:b6: af:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:1C:02:04:7C:D2:78:21:BE:18:F5:A7:28:3E:42:73:57:9B:3C:EC X509v3 Authority Key Identifier: keyid:7F:03:97:C6:A9:4E:52:59:76:83:4B:BF:D5:80:2F:15:B7:95:FB:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/fwOXxqlOUll2g0u_1YAvFbeV-44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fwOXxqlOUll2g0u_1YAvFbeV-44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189D9B/B2A577C2274511F0AED2B469C4F9AE02/C865C1BC8D2E11F0A977AE41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.185.0/24 IPv6: 2001:df5:77c0::/48 Signature Algorithm: sha256WithRSAEncryption 16:59:b0:6f:e2:fc:5c:f7:3c:8f:d3:c2:95:b0:4e:8a:2e:f6: fc:5d:d4:af:b3:12:b2:44:c6:ad:8e:eb:f8:d8:0d:2e:a8:17: de:f8:62:17:5e:60:ef:67:66:b1:32:7e:f4:eb:b9:aa:29:1b: 1c:31:5f:2d:8b:e5:79:98:99:f2:67:c7:c5:bc:33:58:98:80: 72:a0:a8:95:c6:60:05:2e:f4:31:97:96:36:e4:05:ac:b9:a7: 0d:a8:73:d2:89:39:e3:0b:44:be:d7:11:9e:ea:db:f6:1c:b3: b3:6c:df:58:aa:75:fd:8f:70:03:ec:61:a2:27:f5:fe:b4:d1: 68:8c:07:46:c1:06:33:f4:8f:b4:c6:d0:a5:64:a7:b6:22:9d: ba:61:12:fc:d8:25:40:d0:08:d4:81:48:ce:fc:eb:df:19:8d: b3:66:9e:6b:27:10:ef:2d:f1:c9:2c:0e:19:00:b1:20:ed:f9: 2d:a5:ed:21:0b:33:6a:aa:a2:48:ec:36:f3:00:9d:6d:c5:1a: 7f:70:d8:42:d7:30:8f:3f:80:94:18:a3:3b:b9:aa:3c:4c:02: 76:8c:4d:77:aa:a7:ec:50:96:b1:9c:42:45:2b:23:fe:01:9b: 11:2e:9c:b8:cf:c6:86:bf:be:13:9f:e9:5e:5e:3d:d1:fb:1b: 06:49:99:6d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBVjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OUQ5QjExMC8GA1UEBRMoN0YwMzk3QzZBOTRFNTI1OTc2ODM0QkJGRDU4MDJGMTVC Nzk1RkI4RTAeFw0yNTA5MjkwMjUwNTBaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDlmNDBhLTEzYzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7fZgsls4sPEJht9b58lRhXgTTSkyB74sbRbdfVm7K/NZ+KMjVkiqgXR3bIn6U XvNT9HRUH4m9l1lJsSWTSu9dVFex7BbgleDLpUm2MyCT3EMuHBNeASYlbGFgqCU8 M6Crf38fR8MnnY7BiQ+XluisW4PR6hICafGSBS5vzBdFhLcyvYB5TT1WWu61lVvc aAIu+8PaHdmFImIdBeqphWwLDtgnpPUrLfccvt3LTPIeOjwvHSuWSkSdo+cs9bOO HRaRE6i5gRvSiZxXrA4rEedfNantSpBBFDzytkhXl+doQoJ5KQOYa2rxvZDb6uq1 VC/0bt0PmyDrfOz+sdCItq/FAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUjhwCBHzS eCG+GPWnKD5Cc1ebPOwwHwYDVR0jBBgwFoAUfwOXxqlOUll2g0u/1YAvFbeV+44w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5RDlCL0IyQTU3N0MyMjc0 NTExRjBBRUQyQjQ2OUM0RjlBRTAyL2Z3T1h4cWxPVWxsMmcwdV8xWUF2RmJlVi00 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZndPWHhxbE9VbGwyZzB1XzFZQXZGYmVWLTQ0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OUQ5Qi9CMkE1NzdDMjI3NDUxMUYwQUVEMkI0NjlDNEY5QUUwMi9DODY1QzFCQzhE MkUxMUYwQTk3N0FFNDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAKPjuTAPBAIAAjAJAwcAIAEN9XfAMA0GCSqGSIb3DQEBCwUA A4IBAQAWWbBv4vxc9zyP08KVsE6KLvb8XdSvsxKyRMatjuv42A0uqBfe+GIXXmDv Z2axMn7067mqKRscMV8ti+V5mJnyZ8fFvDNYmIByoKiVxmAFLvQxl5Y25AWsuacN qHPSiTnjC0S+1xGe6tv2HLOzbN9YqnX9j3AD7GGiJ/X+tNFojAdGwQYz9I+0xtCl ZKe2Ip26YRL82CVA0AjUgUjO/OvfGY2zZp5rJxDvLfHJLA4ZALEg7fktpe0hCzNq qqJI7DbzAJ1txRp/cNhC1zCPP4CUGKM7uao8TAJ2jE13qqfsUJaxnEJFKyP+AZsR Lpy4z8aGv74Tn+leXj3R+xsGSZlt -----END CERTIFICATE-----Generated at Mon Oct 20 08:33:44 2025 by rpki-client