$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/014D4C442FBE11F0A6052D6EC4F9AE02.roa File: 014D4C442FBE11F0A6052D6EC4F9AE02.roa (raw, json) Hash identifier: Doo/4V0MrkAe4JTCXfzTFFoppMFVFA4qzFF62gZsYkk= Subject key identifier: 6E:6E:D2:25:63:3B:5C:EA:62:DB:C7:69:94:5A:F7:42:44:17:80:C7 Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0412 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/014D4C442FBE11F0A6052D6EC4F9AE02.roa Signing time: Thu 25 Sep 2025 02:21:12 +0000 ROA not before: Thu 25 Sep 2025 02:21:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153771 IP address blocks: 202.155.142.0/24 maxlen: 24 202.155.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Sep 25 02:21:12 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d4a718-9f55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:60:72:86:a7:d7:f6:42:38:e2:6c:b3:8c:d4: c9:f0:60:be:b5:b3:55:34:64:c9:2e:48:8a:de:26: 6f:61:01:d4:59:77:97:3b:68:a6:89:ff:67:c5:da: e5:f1:56:7b:52:07:bf:79:2d:9a:23:65:e0:30:92: 28:1c:46:58:9b:97:11:a6:a0:59:8c:01:78:62:26: e8:07:cf:ab:8a:71:e1:ca:13:e6:8c:17:0e:36:fd: 76:3d:f6:09:45:5c:4b:61:34:aa:2f:80:6a:55:02: 41:ac:9f:fd:64:75:4c:97:f9:d4:c0:54:70:8a:75: c6:ad:41:a1:f7:dd:97:c8:ad:95:71:5f:e5:2a:1c: 81:97:4f:0b:3f:74:c7:2b:92:c3:50:43:df:2e:53: f9:a8:fa:16:57:0f:ec:b0:8f:d1:cb:0c:c7:05:b0: fc:d7:10:83:36:97:b6:14:42:76:ef:75:d2:a8:9d: 23:49:a0:0e:b9:c5:44:2e:bb:57:69:13:59:26:e1: a0:87:a6:be:bd:90:43:fb:ed:e0:cb:2f:f3:b5:25: 55:ed:54:1e:c8:cc:7d:1b:de:59:9a:20:36:56:c9: 48:2d:5f:02:ed:28:c9:78:d9:29:be:0f:0c:93:11: 65:3d:f9:0f:76:99:78:b6:66:c0:5a:a9:50:73:44: 40:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:6E:D2:25:63:3B:5C:EA:62:DB:C7:69:94:5A:F7:42:44:17:80:C7 X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/014D4C442FBE11F0A6052D6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.142.0/24 202.155.158.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:7e:71:24:eb:29:41:cd:16:93:eb:1f:fb:17:d1:98:44:2d: 27:ab:76:51:79:37:51:99:3d:99:0c:bf:b4:61:1e:9b:dc:95: 89:1c:57:4d:46:e9:0b:78:5c:b9:a7:cd:f0:3e:43:70:59:d2: 30:ff:95:74:bd:6f:3d:de:fb:16:5d:4e:fe:ac:dc:09:99:b0: 59:c0:34:59:06:db:5e:89:d3:c6:7c:a5:6d:8b:84:dc:c1:c3: 26:db:cf:a3:f3:96:b2:5f:47:49:d6:2d:6e:59:3d:2b:93:7c: 88:eb:fc:c6:76:a6:bf:61:a5:f8:73:af:da:0b:31:2d:14:56: e0:7b:6e:1b:97:ed:62:e2:66:05:75:42:0f:ae:45:e1:8c:3e: f6:ab:91:22:8f:0a:9d:85:05:af:d4:ca:23:a1:ab:63:bd:ad: 1a:b7:a3:a8:84:0d:a0:1d:6b:66:0d:d0:39:e7:d6:cf:7d:4d: 7d:df:bf:b4:d9:fa:aa:e0:e3:2f:c3:51:a5:55:10:d1:e9:3d: f1:6a:87:cc:26:8f:17:1a:05:fe:81:87:92:8d:07:17:0f:ab: aa:8f:5c:46:10:6d:6d:92:ad:f0:3b:aa:cf:6a:10:42:e2:4a: 85:bc:f8:16:fe:c1:aa:ee:97:a8:68:1d:b0:00:70:e8:19:70: b4:ed:e6:20 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwOTI1MDIyMTEyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0YTcxOC05ZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWByhqfX9kI44myzjNTJ8GC+tbNVNGTJLkiK3iZvYQHUWXeXO2imif9nxdrl 8VZ7Uge/eS2aI2XgMJIoHEZYm5cRpqBZjAF4YiboB8+rinHhyhPmjBcONv12PfYJ RVxLYTSqL4BqVQJBrJ/9ZHVMl/nUwFRwinXGrUGh992XyK2VcV/lKhyBl08LP3TH K5LDUEPfLlP5qPoWVw/ssI/RywzHBbD81xCDNpe2FEJ273XSqJ0jSaAOucVELrtX aRNZJuGgh6a+vZBD++3gyy/ztSVV7VQeyMx9G95ZmiA2VslILV8C7SjJeNkpvg8M kxFlPfkPdpl4tmbAWqlQc0RAzQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG5u0iVj O1zqYtvHaZRa90JEF4DHMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvMDE0RDRDNDQy RkJFMTFGMEE2MDUyRDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKm44DBADKm54wDQYJKoZIhvcNAQELBQADggEBAC5+cSTr KUHNFpPrH/sX0ZhELSerdlF5N1GZPZkMv7RhHpvclYkcV01G6Qt4XLmnzfA+Q3BZ 0jD/lXS9bz3e+xZdTv6s3AmZsFnANFkG216J08Z8pW2LhNzBwybbz6PzlrJfR0nW LW5ZPSuTfIjr/MZ2pr9hpfhzr9oLMS0UVuB7bhuX7WLiZgV1Qg+uReGMPvarkSKP Cp2FBa/UyiOhq2O9rRq3o6iEDaAda2YN0Dnn1s99TX3fv7TZ+qrg4y/DUaVVENHp PfFqh8wmjxcaBf6Bh5KNBxcPq6qPXEYQbW2SrfA7qs9qEELiSoW8+Bb+warul6ho HbAAcOgZcLTt5iA= -----END CERTIFICATE-----Generated at Sun Oct 19 20:03:01 2025 by rpki-client