$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/6520648CCC3A11EF97B13E83C4F9AE02.roa File: 6520648CCC3A11EF97B13E83C4F9AE02.roa (raw, json) Hash identifier: 4fJkpesBJZ/mt0rUrFKEGxiWuduz/BPkbdnPcGlT1go= Subject key identifier: A5:24:C8:70:7F:3E:74:B0:20:00:0A:D0:3A:76:F9:45:CA:FC:AC:46 Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 0423 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/6520648CCC3A11EF97B13E83C4F9AE02.roa Signing time: Thu 25 Sep 2025 02:21:26 +0000 ROA not before: Thu 25 Sep 2025 02:21:26 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 47741 IP address blocks: 202.155.144.0/21 maxlen: 24 202.155.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1059 (0x423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Sep 25 02:21:26 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d4a726-b4da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:89:0e:30:52:83:1d:65:f7:f4:4d:ee:81:0e: 68:1d:c4:99:3c:22:9c:87:f0:6a:57:14:fd:7b:7e: f4:b9:c6:2e:aa:49:af:37:02:60:3b:cc:39:4b:13: c6:7f:4b:67:53:07:8a:33:ef:29:b1:e5:12:e0:74: 52:ce:87:b6:bc:5c:4d:26:f6:e3:01:70:fc:53:14: 3a:a6:ac:90:d2:ff:d0:2b:99:f2:ab:dc:82:46:3f: 6b:58:b1:49:00:89:de:47:cb:08:37:c9:9e:a3:81: 1e:0f:9e:b7:e4:e2:a9:fd:c2:fa:c7:93:b4:78:3b: 1b:6d:91:8e:77:3a:b1:46:49:94:43:07:74:c5:ca: 40:02:f6:7f:11:96:32:9f:70:7e:71:87:39:53:54: 13:5a:27:7f:b7:a1:ef:b0:a0:e1:d3:36:0f:31:36: 83:d3:0f:ca:23:84:89:fc:c0:83:ab:00:a4:a0:89: 66:8e:a2:2f:bc:81:5c:bd:33:57:6e:bd:da:8f:81: 77:f4:8a:3e:7f:ef:22:8c:d0:ed:6a:0d:3d:b4:0c: 15:8a:c3:c6:b7:7f:76:d5:4a:bf:bb:52:79:c8:c1: 06:44:6b:1d:cd:af:42:0d:e5:ce:be:2b:03:17:1d: ac:85:80:53:31:20:45:69:4f:8f:1f:2b:18:a1:43: 6f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:24:C8:70:7F:3E:74:B0:20:00:0A:D0:3A:76:F9:45:CA:FC:AC:46 X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/6520648CCC3A11EF97B13E83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.144.0-202.155.155.255 Signature Algorithm: sha256WithRSAEncryption 2d:71:07:4c:3a:e1:86:ef:73:0f:ab:e9:64:e1:44:e1:73:fc: 31:19:7f:d7:31:0b:62:32:82:47:8b:81:2a:af:c6:e1:d3:72: 33:e0:83:99:7b:74:9e:ec:f2:3b:28:06:d5:62:31:9d:7f:32: 31:bf:1c:79:e5:1b:15:54:e8:cf:12:8a:42:05:f9:3a:a7:ad: 8c:11:0f:73:cc:b3:72:44:16:d0:3e:17:53:7d:f1:df:aa:9a: 5b:b5:f5:88:2e:05:ce:1d:98:6c:b3:81:77:3e:5b:d3:e5:07: e8:9d:6e:4f:15:a6:00:be:fd:37:b0:08:da:9a:1f:5d:64:d8: da:cd:45:0c:7a:03:6f:08:fd:e3:49:82:1a:4e:02:7b:26:37: 8c:9e:86:59:d3:10:5f:39:e3:cd:6e:cf:8c:18:52:6d:f3:85: ac:92:94:ef:8f:37:b3:6d:f6:c3:87:45:68:7b:1d:a9:9f:47: 13:db:70:23:fb:1b:5f:d5:15:c2:0a:be:4b:bb:75:80:f4:94: 8d:3c:5e:8f:13:50:f8:99:d7:ef:56:57:05:93:01:d7:84:df: f5:fd:5f:c1:d1:5d:85:ae:ab:b5:97:cb:d7:76:2d:f3:b0:c3: 32:34:01:c6:35:c0:dd:a8:f4:10:31:bb:9a:ab:69:9e:72:3b: 22:1d:5e:e1 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBCMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwOTI1MDIyMTI2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0YTcyNi1iNGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1okOMFKDHWX39E3ugQ5oHcSZPCKch/BqVxT9e370ucYuqkmvNwJgO8w5SxPG f0tnUweKM+8pseUS4HRSzoe2vFxNJvbjAXD8UxQ6pqyQ0v/QK5nyq9yCRj9rWLFJ AIneR8sIN8meo4EeD5635OKp/cL6x5O0eDsbbZGOdzqxRkmUQwd0xcpAAvZ/EZYy n3B+cYc5U1QTWid/t6HvsKDh0zYPMTaD0w/KI4SJ/MCDqwCkoIlmjqIvvIFcvTNX br3aj4F39Io+f+8ijNDtag09tAwVisPGt3921Uq/u1J5yMEGRGsdza9CDeXOvisD Fx2shYBTMSBFaU+PHysYoUNvOwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFKUkyHB/ PnSwIAAK0Dp2+UXK/KxGMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvNjUyMDY0OEND QzNBMTFFRjk3QjEzRTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBMqbkAMEAsqbmDANBgkqhkiG9w0BAQsFAAOCAQEALXEH TDrhhu9zD6vpZOFE4XP8MRl/1zELYjKCR4uBKq/G4dNyM+CDmXt0nuzyOygG1WIx nX8yMb8ceeUbFVTozxKKQgX5OqetjBEPc8yzckQW0D4XU33x36qaW7X1iC4Fzh2Y bLOBdz5b0+UH6J1uTxWmAL79N7AI2pofXWTY2s1FDHoDbwj940mCGk4CeyY3jJ6G WdMQXznjzW7PjBhSbfOFrJKU7483s232w4dFaHsdqZ9HE9twI/sbX9UVwgq+S7t1 gPSUjTxejxNQ+JnX71ZXBZMB14Tf9f1fwdFdha6rtZfL13Yt87DDMjQBxjXA3aj0 EDG7mqtpnnI7Ih1e4Q== -----END CERTIFICATE-----Generated at Sun Oct 19 20:03:01 2025 by rpki-client