$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/DECE1662A87D11EE882D7B6EC4F9AE02.roa File: DECE1662A87D11EE882D7B6EC4F9AE02.roa (raw, json) Hash identifier: xl8vsoM8lRXsIwAeubyIxGM45u4MhqEQVgY77rzjzp4= Subject key identifier: 4F:11:52:B3:7E:26:51:3B:B8:E7:27:B7:ED:93:E5:3A:C1:FA:5A:E0 Certificate issuer: /CN=A9192B86/serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Certificate serial: 0152 Authority key identifier: FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/DECE1662A87D11EE882D7B6EC4F9AE02.roa Signing time: Sun 05 Oct 2025 04:31:10 +0000 ROA not before: Sun 05 Oct 2025 04:31:10 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133070 IP address blocks: 115.187.18.0/23 maxlen: 23 115.187.18.0/24 maxlen: 24 115.187.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192B86, serialNumber=FDD91DD30E9B1FEA3BB7E12AEF76216628129B23 Validity Not Before: Oct 5 04:31:10 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68e1f48e-f488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c2:b4:aa:03:bc:52:78:b4:2f:e1:e1:47:56: 27:a1:51:59:ba:14:3d:11:cd:9b:de:c7:9e:aa:64: f8:bb:10:c8:95:83:a7:e6:e1:48:d1:3d:a0:96:18: ea:b8:8c:9c:e3:22:32:8f:ff:63:10:d3:88:24:46: 0a:a3:8b:60:b4:01:f7:27:8b:0c:5c:b9:08:6d:a9: 42:90:5b:b9:ad:5d:0b:78:09:ac:fa:52:80:13:1c: a5:2c:39:64:8f:3d:bc:44:cc:a2:5f:66:59:c4:50: 61:d5:47:80:3a:4d:ae:d4:8c:23:5c:db:c8:51:1a: c6:61:23:61:e3:fb:c0:c1:3e:cf:d3:08:b6:68:4c: 82:e5:62:6f:a7:7b:2e:b4:75:80:f5:4b:8f:77:3d: 66:8f:90:aa:4f:de:49:c4:b4:f3:8d:79:17:66:2b: 52:72:c3:83:7a:40:94:63:c9:48:30:d3:98:c4:93: 87:75:5a:ee:29:84:25:ca:5a:05:ed:57:2e:d1:33: cd:20:88:4a:c6:90:1d:af:b6:9a:9d:16:08:f1:89: b7:34:18:5d:97:b0:28:4a:f4:70:a0:d5:fd:b5:f3: 10:48:cd:09:cc:c7:ef:10:77:e1:b0:7c:1c:8e:b9: b4:c0:73:8d:ab:7d:1d:c8:e9:62:28:ff:cf:9d:52: f7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:11:52:B3:7E:26:51:3B:B8:E7:27:B7:ED:93:E5:3A:C1:FA:5A:E0 X509v3 Authority Key Identifier: keyid:FD:D9:1D:D3:0E:9B:1F:EA:3B:B7:E1:2A:EF:76:21:66:28:12:9B:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/_dkd0w6bH-o7t-Eq73YhZigSmyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_dkd0w6bH-o7t-Eq73YhZigSmyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B86/86E977CAA87D11EE9FA55A6DC4F9AE02/DECE1662A87D11EE882D7B6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.187.18.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:ab:c9:eb:5c:61:14:c5:73:d5:f2:e3:4b:95:2e:ea:80:06: fb:02:13:f4:23:49:bf:9f:65:46:9c:1f:fb:c0:ad:1a:da:a4: 61:10:43:de:66:87:cc:b4:e3:0f:79:3a:d9:a9:c7:e6:de:04: 84:46:97:32:26:82:35:00:9a:44:27:df:12:22:96:71:61:e6: e1:12:5e:f9:0a:db:aa:65:3a:0b:ca:c6:ee:6d:a6:b4:89:75: ac:bc:e2:f1:bd:c4:fa:f4:25:c3:64:e4:7a:7d:bc:b8:5b:76: 4b:31:fb:51:1a:93:5a:65:6c:f6:88:02:9a:c6:63:fe:e6:a9: fb:3d:00:ab:e3:32:03:3b:6a:30:d0:e1:e1:dc:7e:26:97:6b: d4:2a:61:81:30:59:b0:8f:b7:5b:33:9c:48:9e:2b:79:0d:35: a1:b3:e5:8b:e1:5d:5c:96:ed:e2:72:77:fd:e8:54:77:a8:f8: 6e:8e:e7:fd:87:a7:a4:a1:83:9c:42:05:54:12:b0:54:0e:bf: 7e:b3:79:84:6e:89:07:59:ba:3f:f1:31:70:07:9c:17:51:b0: 4f:77:97:90:dd:31:7e:8e:fb:a5:3c:a7:76:6c:cb:a0:f6:78: 1b:8d:d2:3a:81:68:9e:29:c2:0b:d5:b6:03:9e:16:99:3f:ce: 06:78:67:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCODYxMTAvBgNVBAUTKEZERDkxREQzMEU5QjFGRUEzQkI3RTEyQUVGNzYyMTY2 MjgxMjlCMjMwHhcNMjUxMDA1MDQzMTEwWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxZjQ4ZS1mNDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sK0qgO8Uni0L+HhR1YnoVFZuhQ9Ec2b3seeqmT4uxDIlYOn5uFI0T2glhjq uIyc4yIyj/9jENOIJEYKo4tgtAH3J4sMXLkIbalCkFu5rV0LeAms+lKAExylLDlk jz28RMyiX2ZZxFBh1UeAOk2u1IwjXNvIURrGYSNh4/vAwT7P0wi2aEyC5WJvp3su tHWA9UuPdz1mj5CqT95JxLTzjXkXZitScsODekCUY8lIMNOYxJOHdVruKYQlyloF 7Vcu0TPNIIhKxpAdr7aanRYI8Ym3NBhdl7AoSvRwoNX9tfMQSM0JzMfvEHfhsHwc jrm0wHONq30dyOliKP/PnVL3vQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE8RUrN+ JlE7uOcnt+2T5TrB+lrgMB8GA1UdIwQYMBaAFP3ZHdMOmx/qO7fhKu92IWYoEpsj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkI4Ni84NkU5NzdDQUE4 N0QxMUVFOUZBNTVBNkRDNEY5QUUwMi9fZGtkMHc2Ykgtbzd0LUVxNzNZaFppZ1Nt eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19ka2QwdzZiSC1vN3QtRXE3M1loWmlnU215TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJCODYvODZFOTc3Q0FBODdEMTFFRTlGQTU1QTZEQzRGOUFFMDIvREVDRTE2NjJB ODdEMTFFRTg4MkQ3QjZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFzuxIwDQYJKoZIhvcNAQELBQADggEBAJ6ryetcYRTFc9Xy 40uVLuqABvsCE/QjSb+fZUacH/vArRrapGEQQ95mh8y04w95Otmpx+beBIRGlzIm gjUAmkQn3xIilnFh5uESXvkK26plOgvKxu5tprSJday84vG9xPr0JcNk5Hp9vLhb dksx+1Eak1plbPaIAprGY/7mqfs9AKvjMgM7ajDQ4eHcfiaXa9QqYYEwWbCPt1sz nEieK3kNNaGz5YvhXVyW7eJyd/3oVHeo+G6O5/2Hp6Shg5xCBVQSsFQOv36zeYRu iQdZuj/xMXAHnBdRsE93l5DdMX6O+6U8p3Zsy6D2eBuN0jqBaJ4pwgvVtgOeFpk/ zgZ4Z9M= -----END CERTIFICATE-----Generated at Mon Oct 20 21:34:13 2025 by rpki-client