$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/DDFD7F92A36311F0BCF40B3CC4F9AE02.roa File: DDFD7F92A36311F0BCF40B3CC4F9AE02.roa (raw, json) Hash identifier: db0WobY2OuSvFKrtHPb4XtM1BwNHUwXNkFsg7pWHA3w= Subject key identifier: 70:B4:E4:D8:25:2F:E5:02:01:FF:1A:B5:3C:45:80:FB:19:C3:1B:12 Certificate issuer: /CN=A9197CBD/serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Certificate serial: 014D Authority key identifier: B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/DDFD7F92A36311F0BCF40B3CC4F9AE02.roa Signing time: Tue 07 Oct 2025 09:56:17 +0000 ROA not before: Tue 07 Oct 2025 09:56:17 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 150180 IP address blocks: 157.10.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:58:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 333 (0x14d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBD, serialNumber=B4865E3BE9C569D2B93F2C351CAB24D1506AAC0D Validity Not Before: Oct 7 09:56:17 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68e4e3c1-9977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:ea:c1:b0:5f:99:c9:9a:0e:27:4d:fd:80: 4e:2f:63:fa:59:f3:de:64:ec:a8:e3:9b:d9:07:39: ee:96:d6:96:77:17:3d:2a:e3:8c:f7:03:f6:91:d5: 2c:4c:a5:08:e8:11:87:02:cf:ff:c3:e5:dd:86:d5: 11:28:59:0b:22:a0:c0:30:bd:3f:40:b4:28:1c:95: 7c:0f:9c:a5:79:38:cc:ab:5e:90:c8:ce:9f:a6:4d: 84:67:2f:3d:ae:ad:a4:4b:b2:48:63:1f:5b:af:d4: 4c:ff:fe:fc:10:1e:ad:3d:2e:d7:e3:8d:66:a0:5c: 03:74:e7:71:0a:60:67:8f:85:54:4a:e3:60:68:91: 6b:78:7d:74:fe:7a:23:13:40:34:7c:29:f1:93:20: 12:92:08:7f:57:c4:b4:19:27:52:3d:6b:b3:5f:89: 9c:ef:cc:ed:5b:cf:30:f9:d9:b8:35:98:f1:bb:bf: 88:d4:a8:f0:64:61:f4:17:f0:b1:27:63:b8:62:7b: 06:8f:90:cb:e1:64:78:cf:7c:2c:0c:e1:ca:21:87: a2:5e:39:0b:9d:b1:30:37:2f:12:23:95:a9:ba:d1: b0:10:05:90:ad:64:a9:d5:ec:54:de:f4:19:02:35: 78:97:1e:23:96:bc:32:6a:6c:bf:8c:b0:58:ef:b6: 60:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:B4:E4:D8:25:2F:E5:02:01:FF:1A:B5:3C:45:80:FB:19:C3:1B:12 X509v3 Authority Key Identifier: keyid:B4:86:5E:3B:E9:C5:69:D2:B9:3F:2C:35:1C:AB:24:D1:50:6A:AC:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/tIZeO-nFadK5Pyw1HKsk0VBqrA0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tIZeO-nFadK5Pyw1HKsk0VBqrA0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBD/3570DF2EB11411EE95E74365C4F9AE02/DDFD7F92A36311F0BCF40B3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.10.174.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:02:dd:6b:6c:69:28:7a:41:68:a6:a2:5b:68:55:df:98:6f: cf:4d:fd:bc:43:71:65:24:c6:c3:64:8a:98:10:65:33:c3:74: d1:13:46:97:fb:77:02:20:27:7f:7a:20:8c:2f:06:aa:06:d1: 5f:14:16:6d:bd:83:3f:3b:1e:8e:9b:d4:0d:dd:fb:b9:bf:10: 96:fd:51:0e:79:8f:65:44:a5:fd:40:22:45:d9:66:e0:87:eb: 13:ec:1f:cc:88:5d:a2:83:6c:07:25:cc:a8:c5:39:6f:74:96: 1b:b3:77:d9:d7:02:34:42:30:e8:95:8b:54:5a:99:8b:e2:81: a3:45:ed:f6:b6:27:ca:17:50:92:3f:7b:d7:98:50:a3:31:e1: d0:67:b8:ad:c1:fc:91:f1:77:ca:81:2c:a6:e7:9a:d1:be:9a: 3c:0b:55:6c:4f:d9:09:8f:8b:96:fe:96:58:98:b8:ba:4c:03: 8d:56:a2:7f:a3:36:b2:01:d7:dc:60:bb:56:d0:49:8a:43:16: 4a:5f:6f:65:97:10:bf:36:be:13:3c:8f:8b:c3:82:d4:6a:9d: 02:11:28:0e:3c:81:7d:c5:f8:b2:e6:af:61:62:3b:d6:68:cc: 29:cc:24:48:51:c5:ab:0e:d2:17:46:9f:a7:06:51:91:dc:a7: 29:91:13:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdDQkQxMTAvBgNVBAUTKEI0ODY1RTNCRTlDNTY5RDJCOTNGMkMzNTFDQUIyNEQx NTA2QUFDMEQwHhcNMjUxMDA3MDk1NjE3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU0ZTNjMS05OTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0/qwbBfmcmaDidN/YBOL2P6WfPeZOyo45vZBznultaWdxc9KuOM9wP2kdUs TKUI6BGHAs//w+XdhtURKFkLIqDAML0/QLQoHJV8D5yleTjMq16QyM6fpk2EZy89 rq2kS7JIYx9br9RM//78EB6tPS7X441moFwDdOdxCmBnj4VUSuNgaJFreH10/noj E0A0fCnxkyASkgh/V8S0GSdSPWuzX4mc78ztW88w+dm4NZjxu7+I1KjwZGH0F/Cx J2O4YnsGj5DL4WR4z3wsDOHKIYeiXjkLnbEwNy8SI5WputGwEAWQrWSp1exU3vQZ AjV4lx4jlrwyamy/jLBY77ZgjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHC05Ngl L+UCAf8atTxFgPsZwxsSMB8GA1UdIwQYMBaAFLSGXjvpxWnSuT8sNRyrJNFQaqwN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0NCRC8zNTcwREYyRUIx MTQxMUVFOTVFNzQzNjVDNEY5QUUwMi90SVplTy1uRmFkSzVQeXcxSEtzazBWQnFy QTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RJWmVPLW5GYWRLNVB5dzFIS3NrMFZCcXJBMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdDQkQvMzU3MERGMkVCMTE0MTFFRTk1RTc0MzY1QzRGOUFFMDIvRERGRDdGOTJB MzYzMTFGMEJDRjQwQjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGdCq4wDQYJKoZIhvcNAQELBQADggEBAC8C3WtsaSh6QWim oltoVd+Yb89N/bxDcWUkxsNkipgQZTPDdNETRpf7dwIgJ396IIwvBqoG0V8UFm29 gz87Ho6b1A3d+7m/EJb9UQ55j2VEpf1AIkXZZuCH6xPsH8yIXaKDbAclzKjFOW90 lhuzd9nXAjRCMOiVi1RamYvigaNF7fa2J8oXUJI/e9eYUKMx4dBnuK3B/JHxd8qB LKbnmtG+mjwLVWxP2QmPi5b+lliYuLpMA41Won+jNrIB19xgu1bQSYpDFkpfb2WX EL82vhM8j4vDgtRqnQIRKA48gX3F+LLmr2FiO9ZozCnMJEhRxasO0hdGn6cGUZHc pymREy4= -----END CERTIFICATE-----Generated at Mon Oct 20 22:34:59 2025 by rpki-client