$ rpki-client -vvf rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/03D29A521AD611F0BC67FC1CC4F9AE02.roa File: 03D29A521AD611F0BC67FC1CC4F9AE02.roa (raw, json) Hash identifier: 1U6J+6Id+mf2w4NcxMra67o7UyeEGu3wuhpl6ihE5eM= Subject key identifier: AB:AD:D9:D7:D3:10:F8:46:54:0A:43:79:00:CF:5A:9B:19:2D:84:A8 Certificate issuer: /CN=A919B3BC/serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Certificate serial: 1E5C Authority key identifier: 51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/03D29A521AD611F0BC67FC1CC4F9AE02.roa Signing time: Mon 20 Oct 2025 16:24:01 +0000 ROA not before: Mon 20 Oct 2025 16:24:01 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 58424 IP address blocks: 146.88.202.0/23 maxlen: 24 146.88.206.0/23 maxlen: 24 167.179.0.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:24:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7772 (0x1e5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B3BC, serialNumber=5136E00D03D1F38500AB6729B72ED3D72CD6A105 Validity Not Before: Oct 20 16:24:01 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f66221-f06a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:40:e4:43:f2:de:48:53:a8:b2:2a:43:30:d3: 33:7f:3f:64:54:c3:51:fa:84:3e:75:85:e2:c5:e4: 51:b9:51:be:d0:db:43:6f:c9:50:3a:ff:25:74:f2: 62:69:c8:af:21:23:47:2a:01:ba:76:c2:3a:fc:e2: c9:2a:24:fe:95:42:38:7b:79:ad:27:f2:9e:27:3c: 8d:49:02:0e:ae:7b:09:2a:8d:ee:89:7a:c9:92:29: ec:e3:f0:73:ab:73:7a:2e:9b:67:0d:b7:18:2c:8a: fc:95:93:1e:4c:da:f0:78:f1:32:b4:e1:2f:be:8a: 45:68:99:8d:2d:cb:d8:18:f8:24:ba:a3:b7:b4:d9: fb:ba:77:c1:d7:63:3f:27:14:dd:00:da:f0:55:ec: dc:70:b6:3d:ea:c6:55:a9:54:ec:93:90:9c:bf:1b: 30:cf:20:15:be:6a:b2:f3:2c:67:d4:ef:66:c4:95: d8:e4:3e:46:d9:6b:1b:77:b9:f5:00:e9:b5:6a:c4: 55:1e:c5:93:6d:c6:5b:88:38:a0:97:15:fa:8f:5e: ef:b5:70:61:b7:09:a6:0d:4f:50:05:48:ee:f4:1b: 8d:af:62:4f:09:da:35:07:73:58:ce:36:5c:6d:3b: 09:a5:23:5a:8b:7a:07:f9:d5:38:68:3e:41:26:b1: d6:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:AD:D9:D7:D3:10:F8:46:54:0A:43:79:00:CF:5A:9B:19:2D:84:A8 X509v3 Authority Key Identifier: keyid:51:36:E0:0D:03:D1:F3:85:00:AB:67:29:B7:2E:D3:D7:2C:D6:A1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/UTbgDQPR84UAq2cpty7T1yzWoQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UTbgDQPR84UAq2cpty7T1yzWoQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B3BC/304197E88F9B11E6BEC5CB25C4F9AE02/03D29A521AD611F0BC67FC1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 146.88.202.0/23 146.88.206.0/23 167.179.0.0/23 Signature Algorithm: sha256WithRSAEncryption 83:f8:1b:0d:7d:95:f7:b3:e0:f1:c1:9c:da:7c:1f:ff:d0:37: 5e:32:4f:70:2b:7b:f5:44:7b:33:90:4c:72:cb:72:ab:62:7b: 22:7c:9f:5f:77:71:82:85:a6:18:e0:65:0d:b3:0f:f6:f0:d0: c2:a4:f8:50:d5:f6:3e:6d:59:61:62:0c:10:6c:99:b0:6d:f3: 74:74:ce:7e:6b:38:6d:a8:d1:08:01:5c:06:76:4c:0e:88:46: 20:9e:7b:f5:eb:1d:90:1c:f9:2e:f4:93:e0:03:a8:e4:58:10: 66:af:81:15:10:3c:27:e3:c6:ce:79:a3:10:10:a9:25:19:36: d1:9a:17:b8:80:0e:db:b3:25:91:25:be:e5:86:5a:86:df:21: d4:10:f5:6a:f5:0e:e0:e0:87:e8:92:8f:67:14:7d:4f:8e:9a: 1b:2c:fc:df:c0:81:01:ed:99:8b:92:d2:71:63:13:75:c7:f7: 07:79:09:e0:42:d6:17:fe:2a:1e:c8:31:3c:e2:23:22:2b:50: b9:9e:2e:4c:58:ad:b0:77:42:a5:9b:5b:04:b3:73:24:d9:01: ad:a4:a6:59:81:40:92:9f:35:c0:f7:6c:bd:41:c9:09:75:14: 5f:72:22:c7:12:88:4b:eb:32:85:dd:6c:7e:8b:1a:eb:86:07: 2d:05:c0:e4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICHlwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIzQkMxMTAvBgNVBAUTKDUxMzZFMDBEMDNEMUYzODUwMEFCNjcyOUI3MkVEM0Q3 MkNENkExMDUwHhcNMjUxMDIwMTYyNDAxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY2NjIyMS1mMDZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA20DkQ/LeSFOosipDMNMzfz9kVMNR+oQ+dYXixeRRuVG+0NtDb8lQOv8ldPJi acivISNHKgG6dsI6/OLJKiT+lUI4e3mtJ/KeJzyNSQIOrnsJKo3uiXrJkins4/Bz q3N6LptnDbcYLIr8lZMeTNrwePEytOEvvopFaJmNLcvYGPgkuqO3tNn7unfB12M/ JxTdANrwVezccLY96sZVqVTsk5CcvxswzyAVvmqy8yxn1O9mxJXY5D5G2Wsbd7n1 AOm1asRVHsWTbcZbiDiglxX6j17vtXBhtwmmDU9QBUju9BuNr2JPCdo1B3NYzjZc bTsJpSNai3oH+dU4aD5BJrHW2wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKut2dfT EPhGVApDeQDPWpsZLYSoMB8GA1UdIwQYMBaAFFE24A0D0fOFAKtnKbcu09cs1qEF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjNCQy8zMDQxOTdFODhG OUIxMUU2QkVDNUNCMjVDNEY5QUUwMi9VVGJnRFFQUjg0VUFxMmNwdHk3VDF5eldv UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1VUYmdEUVBSODRVQXEyY3B0eTdUMXl6V29RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIzQkMvMzA0MTk3RTg4RjlCMTFFNkJFQzVDQjI1QzRGOUFFMDIvMDNEMjlBNTIx QUQ2MTFGMEJDNjdGQzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAGSWMoDBAGSWM4DBAGnswAwDQYJKoZIhvcNAQELBQADggEB AIP4Gw19lfez4PHBnNp8H//QN14yT3Are/VEezOQTHLLcqtieyJ8n193cYKFphjg ZQ2zD/bw0MKk+FDV9j5tWWFiDBBsmbBt83R0zn5rOG2o0QgBXAZ2TA6IRiCee/Xr HZAc+S70k+ADqORYEGavgRUQPCfjxs55oxAQqSUZNtGaF7iADtuzJZElvuWGWobf IdQQ9Wr1DuDgh+iSj2cUfU+Omhss/N/AgQHtmYuS0nFjE3XH9wd5CeBC1hf+Kh7I MTziIyIrULmeLkxYrbB3QqWbWwSzcyTZAa2kplmBQJKfNcD3bL1ByQl1FF9yIscS iEvrMoXdbH6LGuuGBy0FwOQ= -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:37 2025 by rpki-client