$ rpki-client -vvf rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/E4AFD636233211EE8737EE2AC4F9AE02.roa File: E4AFD636233211EE8737EE2AC4F9AE02.roa (raw, json) Hash identifier: NtzVmYZPONq5rR0byClnuINw111fMOuuPgaj23EaEmw= Subject key identifier: 5E:84:6E:E3:B4:74:3B:49:C0:69:A5:64:BF:44:BC:E0:D2:0E:AE:DB Certificate issuer: /CN=A9191436/serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Certificate serial: 1304 Authority key identifier: AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/E4AFD636233211EE8737EE2AC4F9AE02.roa Signing time: Wed 24 Sep 2025 14:48:39 +0000 ROA not before: Wed 24 Sep 2025 14:48:39 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9902 IP address blocks: 69.194.192.0/20 maxlen: 24 167.179.4.0/22 maxlen: 22 167.179.4.0/24 maxlen: 24 167.179.5.0/24 maxlen: 24 167.179.6.0/24 maxlen: 24 167.179.7.0/24 maxlen: 24 167.179.8.0/21 maxlen: 21 167.179.8.0/24 maxlen: 24 167.179.9.0/24 maxlen: 24 167.179.10.0/24 maxlen: 24 167.179.11.0/24 maxlen: 24 167.179.12.0/24 maxlen: 24 167.179.13.0/24 maxlen: 24 167.179.14.0/24 maxlen: 24 167.179.15.0/24 maxlen: 24 167.179.16.0/22 maxlen: 24 167.179.28.0/22 maxlen: 22 167.179.28.0/24 maxlen: 24 167.179.29.0/24 maxlen: 24 167.179.30.0/24 maxlen: 24 167.179.31.0/24 maxlen: 24 167.179.36.0/22 maxlen: 24 167.179.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4868 (0x1304) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191436, serialNumber=AD3BB603B14EFB26D715682FB041351EC8F9D367 Validity Not Before: Sep 24 14:48:39 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68d404c6-a1f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:dc:6e:16:f4:d6:72:81:c5:a8:8a:9a:3a:f3: d7:cb:aa:c9:77:76:a4:a6:1f:a8:2f:73:8b:24:4d: 9c:d9:a1:24:a0:42:d4:82:ca:0d:93:02:27:19:7f: c8:39:71:62:eb:f1:be:f1:fd:67:b7:a2:00:a6:22: 8a:71:42:ec:79:c1:22:f3:3b:ac:0b:a3:d1:00:cb: 45:fd:ee:91:18:5b:c7:68:9f:8a:d4:6b:1e:b8:55: 69:d9:95:4b:70:6f:ba:19:20:84:b5:ee:dd:e1:cd: 99:b1:d8:f6:eb:81:b1:74:62:00:18:c0:6f:ad:32: a7:96:e7:34:7f:cf:19:11:48:bf:3e:e6:df:80:33: f2:d0:57:c9:84:c1:8f:a5:25:eb:2b:ce:d0:a3:9b: 0a:6f:41:30:de:2d:ae:e4:62:dd:f6:0d:d8:ca:95: 05:5d:ec:a5:31:21:49:60:51:db:25:45:43:b3:37: 90:4c:2c:f5:ae:df:c6:c6:f4:5c:22:da:7a:47:4c: 05:9b:12:aa:76:f9:9b:69:d5:b5:32:3e:cf:7b:89: 27:17:be:77:ca:1a:8b:19:06:b4:53:78:59:1f:30: b8:a4:6d:4e:23:b8:33:2a:54:73:d4:85:d1:97:8a: 28:19:c0:a9:05:62:48:64:79:42:02:dd:f4:ab:86: a4:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:84:6E:E3:B4:74:3B:49:C0:69:A5:64:BF:44:BC:E0:D2:0E:AE:DB X509v3 Authority Key Identifier: keyid:AD:3B:B6:03:B1:4E:FB:26:D7:15:68:2F:B0:41:35:1E:C8:F9:D3:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/rTu2A7FO-ybXFWgvsEE1Hsj502c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rTu2A7FO-ybXFWgvsEE1Hsj502c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191436/A30B5A4AC78C11E8A76CD914C4F9AE02/E4AFD636233211EE8737EE2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 69.194.192.0/20 167.179.4.0-167.179.19.255 167.179.28.0/22 167.179.36.0-167.179.47.255 Signature Algorithm: sha256WithRSAEncryption 64:99:df:4c:de:dc:43:82:cf:37:66:70:b8:de:bc:55:02:5a: a4:da:30:52:59:55:1b:9c:a1:fb:6d:8d:c0:71:58:02:d5:79: b0:22:0d:30:b9:88:b7:a8:64:f8:91:1f:97:77:fb:79:d5:ac: af:db:ac:01:69:9e:8c:6c:33:7a:11:51:c5:c0:4d:35:6e:f5: 78:b0:43:b2:42:2d:e7:b9:74:17:b2:b7:a6:5f:f0:78:d3:fe: e9:f7:ee:eb:7d:89:ee:ab:71:62:fc:2c:f2:0a:7c:8a:dd:a4: 4d:43:16:9e:2a:bb:18:00:1a:ad:7c:23:29:97:c1:69:a1:63: d8:ae:ad:94:d3:c0:69:46:9b:36:5d:84:9f:db:c2:d9:db:6a: c9:11:d1:73:fd:b4:86:31:f6:25:da:52:1a:25:c5:ad:fd:42: f5:15:b9:64:f5:f5:e6:01:4d:e9:45:1a:11:2d:29:dd:57:cd: 3a:4a:ff:bc:21:58:6a:29:62:75:6f:00:2e:81:1a:63:34:6c: b8:32:f4:b9:b4:70:fd:5f:e4:2c:74:ad:95:13:cf:4a:35:e4: e2:23:47:65:ce:7e:3e:64:38:2f:af:3d:3d:6e:a2:55:9a:b5: 83:20:33:b7:08:29:a3:60:0d:37:b0:21:11:9a:27:9f:22:2c: fe:05:97:ef -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICEwQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE0MzYxMTAvBgNVBAUTKEFEM0JCNjAzQjE0RUZCMjZENzE1NjgyRkIwNDEzNTFF QzhGOUQzNjcwHhcNMjUwOTI0MTQ0ODM5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0MDRjNi1hMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztxuFvTWcoHFqIqaOvPXy6rJd3akph+oL3OLJE2c2aEkoELUgsoNkwInGX/I OXFi6/G+8f1nt6IApiKKcULsecEi8zusC6PRAMtF/e6RGFvHaJ+K1GseuFVp2ZVL cG+6GSCEte7d4c2Zsdj264GxdGIAGMBvrTKnluc0f88ZEUi/PubfgDPy0FfJhMGP pSXrK87Qo5sKb0Ew3i2u5GLd9g3YypUFXeylMSFJYFHbJUVDszeQTCz1rt/GxvRc Itp6R0wFmxKqdvmbadW1Mj7Pe4knF753yhqLGQa0U3hZHzC4pG1OI7gzKlRz1IXR l4ooGcCpBWJIZHlCAt30q4akBQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFF6EbuO0 dDtJwGmlZL9EvODSDq7bMB8GA1UdIwQYMBaAFK07tgOxTvsm1xVoL7BBNR7I+dNn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTQzNi9BMzBCNUE0QUM3 OEMxMUU4QTc2Q0Q5MTRDNEY5QUUwMi9yVHUyQTdGTy15YlhGV2d2c0VFMUhzajUw MmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JUdTJBN0ZPLXliWEZXZ3ZzRUUxSHNqNTAyYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE0MzYvQTMwQjVBNEFDNzhDMTFFOEE3NkNEOTE0QzRGOUFFMDIvRTRBRkQ2MzYy MzMyMTFFRTg3MzdFRTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgDBARFwsAwDAMEAqezBAMEAqezEAMEAqezHDAMAwQCp7MkAwQE p7MgMA0GCSqGSIb3DQEBCwUAA4IBAQBkmd9M3txDgs83ZnC43rxVAlqk2jBSWVUb nKH7bY3AcVgC1XmwIg0wuYi3qGT4kR+Xd/t51ayv26wBaZ6MbDN6EVHFwE01bvV4 sEOyQi3nuXQXsremX/B40/7p9+7rfYnuq3Fi/CzyCnyK3aRNQxaeKrsYABqtfCMp l8FpoWPYrq2U08BpRps2XYSf28LZ22rJEdFz/bSGMfYl2lIaJcWt/UL1Fblk9fXm AU3pRRoRLSndV806Sv+8IVhqKWJ1bwAugRpjNGy4MvS5tHD9X+QsdK2VE89KNeTi I0dlzn4+ZDgvrz09bqJVmrWDIDO3CCmjYA03sCERmiefIiz+BZfv -----END CERTIFICATE-----Generated at Mon Oct 20 18:26:50 2025 by rpki-client