$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/0A8D0EC2A8F711F096E2671BC4F9AE02.roa File: 0A8D0EC2A8F711F096E2671BC4F9AE02.roa (raw, json) Hash identifier: C3Rvd9GlHQgjR9GOCnfOcqNTjtR68B8Lafxg80GYHEo= Subject key identifier: E9:FA:EE:16:89:F4:D8:3C:F6:E3:AB:93:DB:19:93:F1:C2:8D:56:DF Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 043B Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/0A8D0EC2A8F711F096E2671BC4F9AE02.roa Signing time: Tue 14 Oct 2025 12:12:24 +0000 ROA not before: Tue 14 Oct 2025 12:12:24 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 204921 IP address blocks: 202.155.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1083 (0x43b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Oct 14 12:12:24 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ee3e27-860d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8a:19:3a:2d:b6:be:fc:80:22:a5:4c:87:ee: 07:51:1a:3d:3a:2e:b6:32:49:a4:7f:5c:14:f6:4f: 76:58:1a:0e:d3:13:ec:f8:e8:3d:a7:92:15:82:c3: 18:1c:bd:09:2c:1a:d4:57:24:da:85:67:ff:0b:4a: 92:e7:32:51:02:f3:b3:a2:91:b4:8e:07:18:a0:09: cb:42:37:ea:7c:84:ab:4e:e9:ae:c8:d9:02:49:f9: 88:c7:1e:bb:95:6f:41:44:4f:0f:74:5e:2a:96:56: f1:cb:4a:aa:17:76:8b:42:86:68:28:94:bd:0e:e3: 6f:bf:5c:c2:75:e7:a9:ba:8b:27:eb:04:db:73:b4: 12:30:a4:7f:8f:d4:5c:f3:d5:b2:ce:98:36:b6:17: 76:00:de:64:3d:f5:08:ec:8b:13:7c:1c:04:ee:56: 6b:37:d8:74:bf:7d:3e:9f:e5:05:2c:e0:b4:34:3b: e7:bb:cb:f6:3d:ee:5c:d8:2b:04:f8:0f:89:c4:62: a4:b8:c9:6c:c7:b4:53:42:8a:46:77:52:88:62:60: b3:e9:0a:56:3b:bc:71:5c:76:a2:6c:28:81:c8:df: 0e:dd:64:5b:90:f6:86:10:bf:05:04:54:38:db:09: c8:3c:53:4f:bb:6c:fb:71:ee:47:45:4d:c5:a7:36: 7c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FA:EE:16:89:F4:D8:3C:F6:E3:AB:93:DB:19:93:F1:C2:8D:56:DF X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/0A8D0EC2A8F711F096E2671BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.152.0/22 Signature Algorithm: sha256WithRSAEncryption b5:a1:e8:f8:8e:89:8b:b8:01:92:98:76:e6:2a:61:8c:2c:e7: 62:bb:19:d9:f7:42:7b:cd:fa:31:05:7c:64:40:11:4f:78:9a: 4d:8c:4d:33:33:55:f3:3e:81:ee:8e:39:2e:14:6d:4a:0c:79: 60:70:d4:da:f4:e6:8b:03:34:6a:8a:39:ac:60:09:41:a8:a2: 53:0b:3c:47:67:e2:58:f6:79:27:ee:9d:5f:83:08:1e:70:2f: fc:eb:fe:de:16:b1:f4:08:4b:7c:83:99:f3:43:c0:45:56:7d: aa:aa:1f:fd:42:f7:f8:65:aa:c2:7f:23:d9:3a:30:ae:74:33: dc:9d:28:c1:9d:6d:f1:9f:ac:21:18:f8:9e:0e:d4:1d:bc:11: 6d:42:59:3f:cc:0c:95:0d:d8:ef:99:1f:0d:3e:ca:ed:d0:a0: 8e:6c:7c:fd:5e:46:e2:6b:bb:9c:f3:c0:b9:8e:f4:6e:61:08: d7:3c:19:7e:b6:7c:20:c2:9d:0d:da:ec:21:11:41:ff:9b:8c: 78:a1:69:9b:70:df:8c:de:e7:40:42:ef:97:59:68:7b:0d:b8: 3a:e7:10:69:14:28:93:2d:66:98:83:57:11:a9:06:68:60:f7: f1:29:e8:db:f8:36:23:e0:7f:41:3d:42:56:b4:9f:b4:be:3c: 0a:37:62:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUxMDE0MTIxMjI0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlM2UyNy04NjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApIoZOi22vvyAIqVMh+4HURo9Oi62Mkmkf1wU9k92WBoO0xPs+Og9p5IVgsMY HL0JLBrUVyTahWf/C0qS5zJRAvOzopG0jgcYoAnLQjfqfISrTumuyNkCSfmIxx67 lW9BRE8PdF4qllbxy0qqF3aLQoZoKJS9DuNvv1zCdeepuosn6wTbc7QSMKR/j9Rc 89Wyzpg2thd2AN5kPfUI7IsTfBwE7lZrN9h0v30+n+UFLOC0NDvnu8v2Pe5c2CsE +A+JxGKkuMlsx7RTQopGd1KIYmCz6QpWO7xxXHaibCiByN8O3WRbkPaGEL8FBFQ4 2wnIPFNPu2z7ce5HRU3FpzZ8UQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOn67haJ 9Ng89uOrk9sZk/HCjVbfMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvMEE4RDBFQzJB OEY3MTFGMDk2RTI2NzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKm5gwDQYJKoZIhvcNAQELBQADggEBALWh6PiOiYu4AZKY duYqYYws52K7Gdn3QnvN+jEFfGRAEU94mk2MTTMzVfM+ge6OOS4UbUoMeWBw1Nr0 5osDNGqKOaxgCUGoolMLPEdn4lj2eSfunV+DCB5wL/zr/t4WsfQIS3yDmfNDwEVW faqqH/1C9/hlqsJ/I9k6MK50M9ydKMGdbfGfrCEY+J4O1B28EW1CWT/MDJUN2O+Z Hw0+yu3QoI5sfP1eRuJru5zzwLmO9G5hCNc8GX62fCDCnQ3a7CERQf+bjHihaZtw 34ze50BC75dZaHsNuDrnEGkUKJMtZpiDVxGpBmhg9/Ep6Nv4NiPgf0E9Qla0n7S+ PAo3Yk0= -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:28 2025 by rpki-client