$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/C19C2720CA2711EE82C12B0CC4F9AE02.roa File: C19C2720CA2711EE82C12B0CC4F9AE02.roa (raw, json) Hash identifier: vRb+yhb2srl8xWf7no5GmTVIZuGppjwK0W3JgKbtn6c= Subject key identifier: 3F:45:0F:06:E0:FA:5E:84:1D:7B:58:E6:7A:D6:3E:E2:EE:A3:2C:D9 Certificate issuer: /CN=A91CD1A2/serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Certificate serial: 013A Authority key identifier: C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/C19C2720CA2711EE82C12B0CC4F9AE02.roa Signing time: Sun 05 Oct 2025 04:30:55 +0000 ROA not before: Sun 05 Oct 2025 04:30:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136582 IP address blocks: 157.15.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:49:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD1A2, serialNumber=C3E200D4005D9A23E4BFAEAE0EDB72EA43F1D096 Validity Not Before: Oct 5 04:30:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e1f47e-1700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d3:bc:0f:71:d1:8a:fb:37:10:7f:14:d2:c2: 5e:d5:ec:ea:ed:dd:3b:38:35:96:24:94:7b:d3:fd: c8:c5:10:cd:49:1a:ff:ba:96:57:41:22:89:4a:16: fc:b6:15:54:36:62:fe:74:63:bf:9f:16:b1:ad:e4: 63:3b:21:c8:af:a5:3c:4c:a0:58:3b:a3:c6:bd:73: 72:07:f4:7a:ea:ef:45:d5:6c:25:3a:25:d0:e0:d6: 58:00:72:b3:62:4a:8b:19:aa:b4:29:55:57:02:98: 81:0e:60:8c:21:d4:30:8c:86:ca:e9:a1:41:3a:1d: e1:6f:52:1a:e1:ec:87:8f:42:80:7d:dd:73:31:8e: c8:6a:57:45:70:75:4f:98:6d:7c:90:25:7c:1c:30: b3:5c:9a:19:9b:f1:c9:da:f4:6b:b8:8b:fa:78:01: 48:1b:37:5e:7c:ec:0f:9f:5d:ff:69:72:fa:54:8a: 6f:f5:0d:8c:46:d9:8e:64:d3:09:53:f1:93:0e:fc: ce:dc:2e:6d:a8:a7:b6:9e:61:15:be:b0:4e:67:0b: 7e:74:80:f4:44:ca:d5:76:59:08:c3:3d:51:ac:7d: 9d:d6:42:e3:22:86:cd:f8:fd:3c:1b:63:81:b4:74: 1f:49:e7:be:16:42:e9:ae:bd:4c:36:f5:90:ed:f0: db:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:45:0F:06:E0:FA:5E:84:1D:7B:58:E6:7A:D6:3E:E2:EE:A3:2C:D9 X509v3 Authority Key Identifier: keyid:C3:E2:00:D4:00:5D:9A:23:E4:BF:AE:AE:0E:DB:72:EA:43:F1:D0:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/w-IA1ABdmiPkv66uDtty6kPx0JY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w-IA1ABdmiPkv66uDtty6kPx0JY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD1A2/1A1E3DE4C9FA11EE83F5B029C4F9AE02/C19C2720CA2711EE82C12B0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.225.0/24 Signature Algorithm: sha256WithRSAEncryption 80:a4:15:ce:1e:86:e4:54:17:43:a3:99:6d:97:1d:23:b0:66: e0:ba:7f:a2:18:e7:6a:fa:c2:f5:15:40:01:62:f8:f0:b7:77: df:64:08:6c:ee:97:b9:07:10:8e:42:a0:fe:40:2b:8f:a2:bd: b1:c1:97:d0:d8:3a:18:3e:81:ef:de:cd:e3:6b:cc:14:73:a8: 84:3f:d7:67:27:ad:43:be:b0:48:ec:de:88:6b:d5:82:28:1e: aa:3e:75:c7:c2:21:5e:b7:e2:cc:1b:4f:e1:24:1a:30:7b:19: 4d:5a:a4:ec:a4:73:8c:82:4b:d3:21:9a:f7:77:15:b2:d2:a3: 36:b2:fb:50:f7:ad:52:06:f7:a6:3e:44:d6:bc:7c:3c:79:73: b9:8a:55:17:87:20:67:47:c5:fa:e8:e9:bd:5d:5d:df:30:98: 9f:ef:c0:20:68:5a:14:93:71:80:d1:5d:51:56:ce:3a:7b:02: 57:82:9d:b0:b8:aa:93:d8:81:e2:7c:c8:7f:1e:00:02:dd:8e: b6:d0:2c:0d:45:60:ae:fd:f8:8c:5b:db:5b:31:a6:1c:7f:18: c8:fa:66:12:19:14:5d:a1:05:48:5e:08:b8:26:7a:74:3f:7f: a3:35:71:ad:a2:86:83:dc:17:1c:3d:a0:ed:4c:55:05:c3:94: 50:ff:d3:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QxQTIxMTAvBgNVBAUTKEMzRTIwMEQ0MDA1RDlBMjNFNEJGQUVBRTBFREI3MkVB NDNGMUQwOTYwHhcNMjUxMDA1MDQzMDU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxZjQ3ZS0xNzAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNO8D3HRivs3EH8U0sJe1ezq7d07ODWWJJR70/3IxRDNSRr/upZXQSKJShb8 thVUNmL+dGO/nxaxreRjOyHIr6U8TKBYO6PGvXNyB/R66u9F1WwlOiXQ4NZYAHKz YkqLGaq0KVVXApiBDmCMIdQwjIbK6aFBOh3hb1Ia4eyHj0KAfd1zMY7IaldFcHVP mG18kCV8HDCzXJoZm/HJ2vRruIv6eAFIGzdefOwPn13/aXL6VIpv9Q2MRtmOZNMJ U/GTDvzO3C5tqKe2nmEVvrBOZwt+dID0RMrVdlkIwz1RrH2d1kLjIobN+P08G2OB tHQfSee+FkLprr1MNvWQ7fDb2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFD9FDwbg +l6EHXtY5nrWPuLuoyzZMB8GA1UdIwQYMBaAFMPiANQAXZoj5L+urg7bcupD8dCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDFBMi8xQTFFM0RFNEM5 RkExMUVFODNGNUIwMjlDNEY5QUUwMi93LUlBMUFCZG1pUGt2NjZ1RHR0eTZrUHgw SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3ctSUExQUJkbWlQa3Y2NnVEdHR5NmtQeDBKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QxQTIvMUExRTNERTRDOUZBMTFFRTgzRjVCMDI5QzRGOUFFMDIvQzE5QzI3MjBD QTI3MTFFRTgyQzEyQjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD+EwDQYJKoZIhvcNAQELBQADggEBAICkFc4ehuRUF0Oj mW2XHSOwZuC6f6IY52r6wvUVQAFi+PC3d99kCGzul7kHEI5CoP5AK4+ivbHBl9DY Ohg+ge/ezeNrzBRzqIQ/12cnrUO+sEjs3ohr1YIoHqo+dcfCIV634swbT+EkGjB7 GU1apOykc4yCS9Mhmvd3FbLSozay+1D3rVIG96Y+RNa8fDx5c7mKVReHIGdHxfro 6b1dXd8wmJ/vwCBoWhSTcYDRXVFWzjp7AleCnbC4qpPYgeJ8yH8eAALdjrbQLA1F YK79+Ixb21sxphx/GMj6ZhIZFF2hBUheCLgmenQ/f6M1ca2ihoPcFxw9oO1MVQXD lFD/0xg= -----END CERTIFICATE-----Generated at Tue Oct 21 07:59:45 2025 by rpki-client