$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/3CF11BEA163211F0B2BBF073C4F9AE02.roa File: 3CF11BEA163211F0B2BBF073C4F9AE02.roa (raw, json) Hash identifier: mYXmm3qOBiqX+ppKAzq84i4ihYtSlzTQ28LcIhA37Gw= Subject key identifier: B2:FB:A9:0C:8C:78:A8:28:62:9E:48:D6:3A:BA:0D:40:6B:6E:B8:46 Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0424 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/3CF11BEA163211F0B2BBF073C4F9AE02.roa Signing time: Thu 25 Sep 2025 02:21:27 +0000 ROA not before: Thu 25 Sep 2025 02:21:27 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 5065 IP address blocks: 202.155.134.0/24 maxlen: 24 202.155.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1060 (0x424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Sep 25 02:21:27 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d4a727-5394 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8c:05:a6:64:6b:6a:55:5b:54:85:35:97:61: 42:2c:8e:04:63:d3:d4:94:70:d2:94:c0:a5:15:58: 42:8d:7b:99:06:08:e9:f5:b6:f4:73:16:b2:69:20: ef:42:91:70:c3:9e:31:b6:d4:ee:65:f7:1e:b6:1f: f4:08:f9:56:24:b7:f8:b0:b0:c9:1e:75:55:86:2c: 3a:8c:50:86:8d:58:6f:c7:0f:96:26:a2:22:79:3d: 79:a8:19:92:e9:4e:24:32:8a:ee:98:96:e4:21:99: fb:3a:55:e3:46:cd:95:0a:98:41:7f:b6:ac:ae:7a: 21:7e:d4:49:ec:98:dc:e1:cc:96:1c:23:30:4f:38: f2:3c:13:14:5a:d5:18:66:de:61:24:21:d7:bf:73: 6f:cb:93:c0:6d:b7:89:0e:2a:79:6c:eb:89:9c:b3: 6a:f2:96:c4:36:d3:2f:c2:f2:a5:86:6c:c8:04:c5: 8a:17:d5:ae:1f:fb:ce:e5:5c:bf:0b:98:5a:4e:dd: 09:8a:6f:2e:55:bd:8b:04:67:91:20:19:25:40:25: ce:cb:94:60:f7:72:d9:91:a5:c5:3a:29:75:58:41: 6d:f0:96:b5:d7:0f:38:78:e3:d1:01:f2:90:07:8c: 05:ad:19:67:a8:b6:da:92:2c:ad:6d:60:74:ad:90: bf:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:FB:A9:0C:8C:78:A8:28:62:9E:48:D6:3A:BA:0D:40:6B:6E:B8:46 X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/3CF11BEA163211F0B2BBF073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.134.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:c5:3e:d2:f9:e4:a7:a9:1e:02:b0:54:ac:02:d8:21:eb:c1: 86:19:07:c6:22:90:9b:05:3e:ae:a0:96:46:0c:44:e7:95:89: 1b:96:90:3f:9e:46:6d:72:72:ed:32:ea:f4:04:2c:42:f7:1f: f6:44:7f:58:21:60:a6:9f:39:58:65:6d:22:b8:2d:36:71:57: 04:f4:26:ec:d2:8c:57:aa:bb:11:62:86:e5:cc:f6:bc:55:34: a8:2e:4c:4d:26:06:5b:17:84:ac:32:f3:4c:c6:a3:32:66:50: 97:dc:14:9f:90:81:9f:b5:4a:ed:b7:97:6c:72:fd:92:77:ac: a8:6d:d5:48:3c:f1:e0:f7:84:84:e4:fa:32:9a:1c:93:1c:f1: f6:a0:85:7b:9d:e2:95:32:80:02:65:06:d0:a8:58:5e:4b:6e: cb:13:d9:f4:fe:b7:88:66:61:f6:28:46:14:ca:dc:e8:9d:8a: 91:bf:92:4d:a4:2e:c4:3f:ad:5a:a3:66:62:e4:02:af:54:c7: cd:57:2b:fa:11:fd:a0:07:84:9a:63:ab:69:83:f4:ee:9e:18: b1:4f:1e:89:65:0a:da:69:be:42:a1:13:47:8b:fd:7c:7f:66: e1:ec:9a:f6:2d:c7:89:45:ed:07:b1:6e:52:66:42:6a:f5:08: 91:b9:8a:4f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwOTI1MDIyMTI3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0YTcyNy01Mzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YwFpmRralVbVIU1l2FCLI4EY9PUlHDSlMClFVhCjXuZBgjp9bb0cxayaSDv QpFww54xttTuZfceth/0CPlWJLf4sLDJHnVVhiw6jFCGjVhvxw+WJqIieT15qBmS 6U4kMorumJbkIZn7OlXjRs2VCphBf7asrnohftRJ7Jjc4cyWHCMwTzjyPBMUWtUY Zt5hJCHXv3Nvy5PAbbeJDip5bOuJnLNq8pbENtMvwvKlhmzIBMWKF9WuH/vO5Vy/ C5haTt0Jim8uVb2LBGeRIBklQCXOy5Rg93LZkaXFOil1WEFt8Ja11w84eOPRAfKQ B4wFrRlnqLbakiytbWB0rZC/8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLL7qQyM eKgoYp5I1jq6DUBrbrhGMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvM0NGMTFCRUEx NjMyMTFGMEIyQkJGMDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKm4YwDQYJKoZIhvcNAQELBQADggEBAG/FPtL55KepHgKw VKwC2CHrwYYZB8YikJsFPq6glkYMROeViRuWkD+eRm1ycu0y6vQELEL3H/ZEf1gh YKafOVhlbSK4LTZxVwT0JuzSjFequxFihuXM9rxVNKguTE0mBlsXhKwy80zGozJm UJfcFJ+QgZ+1Su23l2xy/ZJ3rKht1Ug88eD3hITk+jKaHJMc8faghXud4pUygAJl BtCoWF5LbssT2fT+t4hmYfYoRhTK3OidipG/kk2kLsQ/rVqjZmLkAq9Ux81XK/oR /aAHhJpjq2mD9O6eGLFPHollCtppvkKhE0eL/Xx/ZuHsmvYtx4lF7QexblJmQmr1 CJG5ik8= -----END CERTIFICATE-----Generated at Sun Oct 19 20:03:01 2025 by rpki-client