$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BB52EC149A5F11F0AE92FC5FC4F9AE02.roa File: BB52EC149A5F11F0AE92FC5FC4F9AE02.roa (raw, json) Hash identifier: mcYp2gqiMZpRKKl6kLfW9qGGhTV+iWYvnxlTtNx662E= Subject key identifier: 89:BF:19:EB:67:D8:17:D6:02:15:7A:06:51:2C:6F:EB:DA:9D:7C:FA Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 042B Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BB52EC149A5F11F0AE92FC5FC4F9AE02.roa Signing time: Thu 25 Sep 2025 22:34:00 +0000 ROA not before: Thu 25 Sep 2025 22:34:00 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 400342 IP address blocks: 202.155.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1067 (0x42b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Sep 25 22:34:00 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d5c358-1d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:35:83:38:38:f2:fb:61:8c:92:e5:21:f5:0f: 52:67:fc:96:d7:43:4c:7c:be:a0:ba:88:63:7b:e8: 74:4a:d6:a8:26:5c:34:5d:3d:a5:90:ee:c4:36:ad: a5:46:16:5b:58:7e:db:df:63:6b:83:74:47:35:af: 2c:af:c1:d3:2d:0d:14:4f:98:ca:3a:ba:15:10:06: 3e:f4:a8:0e:50:bd:cc:90:94:0b:5c:b3:13:76:0b: 04:d0:94:f4:2c:a3:18:ef:6a:4b:40:49:22:fb:c2: 30:59:a2:3d:c8:e4:16:aa:42:d7:13:6f:43:c2:d4: e5:d0:5a:54:7d:06:e2:0e:13:69:24:9a:74:0d:0f: 87:d2:3b:b0:60:3d:0d:3a:85:43:12:ca:b3:d6:1c: 0b:ec:12:8d:da:ad:5a:be:59:3f:a8:4c:a1:40:40: 41:6e:b2:2e:ee:89:cc:48:0e:eb:7d:9e:e0:92:ba: 29:5a:cf:58:39:72:a6:e5:90:07:3b:b3:66:7a:a6: f4:09:f6:5d:2a:a7:44:b8:1d:25:8e:a5:ca:99:9e: 45:4f:b4:15:c0:dd:f8:17:b1:4e:2c:5b:19:cd:65: da:4a:ba:b0:98:a9:f7:6c:f1:8e:b7:68:d9:5e:ba: af:74:22:53:53:c6:e3:e2:28:9e:1f:53:78:93:1c: ed:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:BF:19:EB:67:D8:17:D6:02:15:7A:06:51:2C:6F:EB:DA:9D:7C:FA X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BB52EC149A5F11F0AE92FC5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.14.0/24 Signature Algorithm: sha256WithRSAEncryption 94:1b:29:f1:a3:30:6d:3e:2f:4a:1f:a5:26:e8:23:d4:df:9b: c5:75:dd:cc:94:7f:e8:03:8e:82:9f:d3:75:6a:39:77:f0:5a: 24:cd:a5:52:67:35:2c:08:c0:42:c5:6a:a8:a7:da:2c:09:95: 1f:2c:df:cc:35:2d:ba:ea:dd:07:80:14:b2:29:c9:9b:9f:95: c9:eb:da:5d:21:ac:09:7d:60:25:80:5f:06:44:a8:22:fd:b7: 15:6f:e0:b9:2b:c6:81:8d:6f:fa:2a:d3:bc:99:fe:da:aa:f2: b4:ed:52:ca:cf:f9:ec:4c:86:55:b5:b3:1e:a9:36:ef:b2:4b: 2d:3b:08:ab:6e:a8:cf:4e:99:1b:47:34:46:77:60:54:06:da: cb:cf:7b:bc:dd:b3:f3:29:64:5f:22:34:7c:8e:54:66:f5:82: d5:82:ac:b0:c1:be:e8:0e:4a:c8:a4:64:e4:02:33:e7:95:05: 50:4d:8a:31:ed:f6:12:e4:3f:f6:7c:b4:de:8a:da:8a:aa:49: 34:f0:d3:d0:ab:c2:6e:be:17:49:38:6c:82:7d:23:a6:f2:2b: f8:d4:70:51:b8:b9:36:88:b9:8b:28:6a:6b:5d:88:e0:3d:eb: 57:08:67:17:da:a8:59:8c:e1:f1:2d:5e:d1:fb:b4:90:c1:96: 98:70:0d:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwOTI1MjIzNDAwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ1YzM1OC0xZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTWDODjy+2GMkuUh9Q9SZ/yW10NMfL6guohje+h0StaoJlw0XT2lkO7ENq2l RhZbWH7b32Nrg3RHNa8sr8HTLQ0UT5jKOroVEAY+9KgOUL3MkJQLXLMTdgsE0JT0 LKMY72pLQEki+8IwWaI9yOQWqkLXE29DwtTl0FpUfQbiDhNpJJp0DQ+H0juwYD0N OoVDEsqz1hwL7BKN2q1avlk/qEyhQEBBbrIu7onMSA7rfZ7gkropWs9YOXKm5ZAH O7Nmeqb0CfZdKqdEuB0ljqXKmZ5FT7QVwN34F7FOLFsZzWXaSrqwmKn3bPGOt2jZ XrqvdCJTU8bj4iieH1N4kxztzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIm/Getn 2BfWAhV6BlEsb+vanXz6MB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvQkI1MkVDMTQ5 QTVGMTFGMEFFOTJGQzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKmw4wDQYJKoZIhvcNAQELBQADggEBAJQbKfGjMG0+L0of pSboI9Tfm8V13cyUf+gDjoKf03VqOXfwWiTNpVJnNSwIwELFaqin2iwJlR8s38w1 Lbrq3QeAFLIpyZuflcnr2l0hrAl9YCWAXwZEqCL9txVv4LkrxoGNb/oq07yZ/tqq 8rTtUsrP+exMhlW1sx6pNu+ySy07CKtuqM9OmRtHNEZ3YFQG2svPe7zds/MpZF8i NHyOVGb1gtWCrLDBvugOSsikZOQCM+eVBVBNijHt9hLkP/Z8tN6K2oqqSTTw09Cr wm6+F0k4bIJ9I6byK/jUcFG4uTaIuYsoamtdiOA961cIZxfaqFmM4fEtXtH7tJDB lphwDaI= -----END CERTIFICATE-----Generated at Sun Oct 19 19:51:25 2025 by rpki-client