$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/A97B2098C70811ECBAECCC78C4F9AE02.roa File: A97B2098C70811ECBAECCC78C4F9AE02.roa (raw, json) Hash identifier: ucXZf4eu0/AY5wwnvuYXaUOhU2IDoNXJmo5ZEBv0MfQ= Subject key identifier: 6A:EA:CA:3A:97:2B:30:D1:37:85:05:0D:34:27:02:DC:85:3A:B5:7A Certificate issuer: /CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Certificate serial: 042D Authority key identifier: 8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/A97B2098C70811ECBAECCC78C4F9AE02.roa Signing time: Thu 02 Oct 2025 23:24:37 +0000 ROA not before: Thu 02 Oct 2025 23:24:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 14618 IP address blocks: 141.163.128.0/20 maxlen: 24 141.163.144.0/20 maxlen: 24 141.163.160.0/20 maxlen: 24 141.163.176.0/20 maxlen: 24 141.163.192.0/20 maxlen: 24 141.163.208.0/20 maxlen: 24 141.163.224.0/20 maxlen: 24 141.163.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 Oct 2025 23:17:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1069 (0x42d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Validity Not Before: Oct 2 23:24:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68df09b5-5dda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a7:74:d0:0b:4c:0c:f8:c8:44:1a:1b:87:7b: 8b:bb:17:61:24:b3:da:89:da:dc:34:db:a2:31:8a: ae:c5:a2:5e:b3:1b:97:56:5f:3a:3a:89:f3:7d:41: 50:82:e0:67:43:4b:73:6c:87:90:7c:a5:06:bf:5c: 47:c3:7f:53:bf:61:b6:46:dc:36:a8:99:65:f8:41: 08:97:93:b8:6c:8d:a8:0c:59:b2:8f:ad:f3:82:db: 58:bb:c3:a3:86:2d:db:e9:9f:10:32:7e:26:93:de: 2a:15:29:7e:7c:b7:79:a5:c5:d1:18:a6:b9:a1:7b: ac:78:51:23:c3:37:95:16:0d:5b:9e:bc:49:a2:f1: e0:7d:75:a2:06:45:28:a2:62:45:53:e1:f8:ae:b1: 09:3a:a2:8a:c1:0d:df:ea:88:c9:cf:19:b6:21:43: 4e:bb:cd:14:22:32:cf:73:70:ad:40:46:3e:5a:4f: c1:3e:7d:8a:cb:ee:97:6e:89:f3:cc:07:81:68:40: a5:22:c4:84:df:bb:0a:39:ec:a1:7f:2d:64:73:32: 33:7c:79:c8:11:c5:81:fe:c8:79:66:16:e0:83:76: 79:9e:b4:a4:2f:b6:0e:19:a7:93:25:10:77:53:fc: 20:d5:57:71:ac:72:f4:78:86:ac:75:22:1c:46:5f: 42:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:EA:CA:3A:97:2B:30:D1:37:85:05:0D:34:27:02:DC:85:3A:B5:7A X509v3 Authority Key Identifier: keyid:8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/A97B2098C70811ECBAECCC78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.163.128.0/17 Signature Algorithm: sha256WithRSAEncryption 02:23:99:30:6e:03:dc:45:f7:4f:bb:e4:69:81:8e:47:7b:87: fc:cd:e7:f4:c7:2b:37:04:29:49:ec:da:0d:9c:13:20:18:b4: 78:fa:9e:c0:a9:92:a1:05:af:03:89:f3:bb:22:00:42:b2:5e: 1d:de:2d:81:8f:2e:5a:84:51:65:74:2a:85:f4:17:67:9b:f5: e1:83:f3:2b:ce:99:c1:c9:8e:70:17:9c:d8:28:d0:b6:59:99: 6b:04:f7:d6:39:85:56:9f:24:b6:c3:49:de:a4:5a:d3:db:ce: 85:1a:10:f9:58:c0:e3:96:65:c0:59:1c:3b:1a:02:8c:ee:d6: f8:19:81:00:53:31:4a:af:f3:d2:43:37:df:ae:35:40:dc:67: 3d:bf:b9:d4:ad:f0:b5:a8:bf:89:f1:ed:5f:59:2a:10:d1:dd: 1c:c9:94:dc:5c:cb:cf:9d:75:0b:c1:33:57:5c:7f:39:d3:ba: fc:eb:54:b6:5e:b2:9c:e9:97:0f:04:87:c2:95:21:a1:3d:64: 5e:87:21:53:1a:fb:d7:bf:ea:5d:77:f9:13:da:17:d7:1d:4e: 4c:f7:ef:75:c6:31:f1:ae:58:6b:00:bf:aa:95:13:33:9b:b1: 3e:0f:88:a6:96:c7:ab:02:4a:ec:da:39:92:b0:0c:00:82:a0: e4:3e:d3:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBC0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDhEMjAyMDdEMUVEQjVGNUMyRDY2M0IwQTZBMTBCQ0Q0 MEJBRDNBREUwHhcNMjUxMDAyMjMyNDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmMDliNS01ZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06d00AtMDPjIRBobh3uLuxdhJLPaidrcNNuiMYquxaJesxuXVl86OonzfUFQ guBnQ0tzbIeQfKUGv1xHw39Tv2G2Rtw2qJll+EEIl5O4bI2oDFmyj63zgttYu8Oj hi3b6Z8QMn4mk94qFSl+fLd5pcXRGKa5oXuseFEjwzeVFg1bnrxJovHgfXWiBkUo omJFU+H4rrEJOqKKwQ3f6ojJzxm2IUNOu80UIjLPc3CtQEY+Wk/BPn2Ky+6Xbonz zAeBaEClIsSE37sKOeyhfy1kczIzfHnIEcWB/sh5Zhbgg3Z5nrSkL7YOGaeTJRB3 U/wg1VdxrHL0eIasdSIcRl9CoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGrqyjqX KzDRN4UFDTQnAtyFOrV6MB8GA1UdIwQYMBaAFI0gIH0e219cLWY7CmoQvNQLrTre MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS9BNDZCRTU4ODg4 ODgxMUVDOTEyMzNBNzBDNEY5QUUwMi9qU0FnZlI3Ylgxd3RaanNLYWhDODFBdXRP dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2pTQWdmUjdiWDF3dFpqc0thaEM4MUF1dE90NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvQTQ2QkU1ODg4ODg4MTFFQzkxMjMzQTcwQzRGOUFFMDIvQTk3QjIwOThD NzA4MTFFQ0JBRUNDQzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAeNo4AwDQYJKoZIhvcNAQELBQADggEBAAIjmTBuA9xF90+7 5GmBjkd7h/zN5/THKzcEKUns2g2cEyAYtHj6nsCpkqEFrwOJ87siAEKyXh3eLYGP LlqEUWV0KoX0F2eb9eGD8yvOmcHJjnAXnNgo0LZZmWsE99Y5hVafJLbDSd6kWtPb zoUaEPlYwOOWZcBZHDsaAozu1vgZgQBTMUqv89JDN9+uNUDcZz2/udSt8LWov4nx 7V9ZKhDR3RzJlNxcy8+ddQvBM1dcfznTuvzrVLZespzplw8Eh8KVIaE9ZF6HIVMa +9e/6l13+RPaF9cdTkz373XGMfGuWGsAv6qVEzObsT4PiKaWx6sCSuzaOZKwDACC oOQ+0w0= -----END CERTIFICATE-----Generated at Wed Oct 8 19:44:56 2025 by rpki-client