$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/D169AD50985511F09A18185EC4F9AE02.roa File: D169AD50985511F09A18185EC4F9AE02.roa (raw, json) Hash identifier: gqjEr96Yck7DcthvfK2CSUidOZKPUY9JGM9VjopIO6s= Subject key identifier: 26:F7:9C:CA:D7:AE:83:B3:20:E3:FB:C4:05:0E:B1:9B:D4:D7:BB:08 Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 35A0 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/D169AD50985511F09A18185EC4F9AE02.roa Signing time: Tue 23 Sep 2025 08:18:00 +0000 ROA not before: Tue 23 Sep 2025 08:18:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 23647 IP address blocks: 202.51.65.0/24 maxlen: 24 202.51.66.0/24 maxlen: 24 202.51.67.0/24 maxlen: 24 202.51.76.0/24 maxlen: 24 202.51.77.0/24 maxlen: 24 202.51.79.0/24 maxlen: 24 202.51.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:27:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13728 (0x35a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Sep 23 08:18:00 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68d257b8-8dcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:4b:26:b6:ca:52:f2:5d:da:cd:0a:29:92:fa: 24:76:00:a5:be:43:a1:75:7a:8c:f1:56:8c:81:75: 90:50:ab:ac:89:06:88:2e:5b:7d:d8:10:84:62:86: 2d:3b:4c:a5:1d:af:9b:b9:99:46:52:2f:2c:d7:31: f3:1a:f6:55:04:ec:cf:0b:70:26:b9:24:f9:37:23: ff:cd:af:39:83:6a:6d:01:0b:33:4b:00:e4:f0:34: 92:7f:7a:36:49:5e:d1:3b:f5:03:2b:d0:98:1f:69: a0:c3:e0:a6:7e:66:f7:b7:17:14:98:f5:20:86:65: fd:1e:1c:6a:ff:58:7c:0d:d3:b3:a7:60:60:f5:67: 11:9f:01:6e:59:b6:97:e4:28:8c:d4:37:c4:69:3a: 96:5e:28:62:3b:c0:69:be:c1:53:df:f3:a8:29:07: 24:7e:72:ee:f7:f0:18:7e:78:da:d9:ca:78:a2:3a: b2:2f:09:1b:79:97:c2:c5:a4:74:b4:61:eb:3c:a2: 2f:0e:02:30:d6:b6:92:00:56:de:37:12:a7:40:a4: f7:80:8a:e7:f8:61:11:9d:99:39:26:9f:a5:c9:51: 3c:20:99:10:66:c3:ba:00:23:dd:c3:18:4e:b8:d0: f9:14:8c:54:24:36:f8:59:73:18:18:84:c5:47:78: 83:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F7:9C:CA:D7:AE:83:B3:20:E3:FB:C4:05:0E:B1:9B:D4:D7:BB:08 X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/D169AD50985511F09A18185EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.51.65.0-202.51.67.255 202.51.76.0/23 202.51.79.0/24 202.51.94.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:75:df:a3:85:b3:e7:3b:bc:ac:97:dd:e2:47:9e:96:f5:56: 64:ab:63:b4:43:d6:c0:16:5e:04:13:17:92:d9:2f:22:44:4d: 76:41:4e:16:9d:da:45:9f:24:07:22:9e:8c:d0:c8:78:68:5f: 21:0c:a8:44:8c:aa:af:2e:15:66:f4:1f:3e:48:6e:ce:1f:00: 35:e7:0c:6c:73:a4:d4:9b:14:b5:e7:7e:5f:3a:40:a2:ad:46: 22:84:71:19:3c:40:bf:52:04:f8:0e:ad:f5:6d:ff:b8:dc:9a: a5:76:65:5f:e1:40:2c:a6:48:0c:17:e4:75:d0:dc:84:19:cb: 5d:17:03:d5:c4:a7:ab:01:c8:16:97:a7:7b:38:3b:7e:49:54: 89:0c:bb:90:b4:3a:07:fa:81:ff:31:cb:f5:cc:ef:f6:ed:0e: 87:66:bc:eb:db:ed:dc:f8:5b:43:27:ba:92:3c:8f:48:3a:b7: 14:d3:bc:4e:fb:ee:0c:10:17:f8:2e:5e:2b:ce:10:b5:f1:8a: 16:89:52:5e:94:49:ca:99:f7:74:ab:0f:03:65:b9:ab:c9:ab: 60:82:9f:b0:2d:4e:84:85:d8:8e:f1:fa:e1:71:b5:b0:40:bf: 21:7d:4e:48:8f:eb:06:58:cc:30:58:22:38:22:97:74:23:30: 7c:0f:ff:aa -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUwOTIzMDgxODAwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQyNTdiOC04ZGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEsmtspS8l3azQopkvokdgClvkOhdXqM8VaMgXWQUKusiQaILlt92BCEYoYt O0ylHa+buZlGUi8s1zHzGvZVBOzPC3AmuST5NyP/za85g2ptAQszSwDk8DSSf3o2 SV7RO/UDK9CYH2mgw+Cmfmb3txcUmPUghmX9Hhxq/1h8DdOzp2Bg9WcRnwFuWbaX 5CiM1DfEaTqWXihiO8BpvsFT3/OoKQckfnLu9/AYfnja2cp4ojqyLwkbeZfCxaR0 tGHrPKIvDgIw1raSAFbeNxKnQKT3gIrn+GERnZk5Jp+lyVE8IJkQZsO6ACPdwxhO uND5FIxUJDb4WXMYGITFR3iDXQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFCb3nMrX roOzIOP7xAUOsZvU17sIMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY1NTAvOEI5QkQyMDIxRDg1MTFFMkI0MTIzMERDMDhCMDJDRDIvRDE2OUFENTA5 ODU1MTFGMDlBMTgxODVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCAwDAMEAMozQQMEAsozQAMEAcozTAMEAMozTwMEAMozXjANBgkq hkiG9w0BAQsFAAOCAQEAD3Xfo4Wz5zu8rJfd4keelvVWZKtjtEPWwBZeBBMXktkv IkRNdkFOFp3aRZ8kByKejNDIeGhfIQyoRIyqry4VZvQfPkhuzh8ANecMbHOk1JsU ted+XzpAoq1GIoRxGTxAv1IE+A6t9W3/uNyapXZlX+FALKZIDBfkddDchBnLXRcD 1cSnqwHIFpenezg7fklUiQy7kLQ6B/qB/zHL9czv9u0Oh2a869vt3PhbQye6kjyP SDq3FNO8TvvuDBAX+C5eK84QtfGKFolSXpRJypn3dKsPA2W5q8mrYIKfsC1OhIXY jvH64XG1sEC/IX1OSI/rBljMMFgiOCKXdCMwfA//qg== -----END CERTIFICATE-----Generated at Mon Oct 20 02:47:35 2025 by rpki-client