$ rpki-client -vvf rpki.apnic.net/member_repository/A912781D/ABCC742EA3D111F09C66FD30C4F9AE02/90C6C65EA4D311F084484F52C4F9AE02.roa File: 90C6C65EA4D311F084484F52C4F9AE02.roa (raw, json) Hash identifier: Q2i1O6v1DzZNXL19jAD99uTN+5zP7WInsXGaP1sZn5s= Subject key identifier: C6:8B:F3:8F:EA:4C:4C:3A:C8:43:41:26:55:C2:C8:08:6A:F6:5F:41 Certificate issuer: /CN=A912781D/serialNumber=C31A7918F0F59CBAE2EDA23620677C876AF575AE Certificate serial: 0B Authority key identifier: C3:1A:79:18:F0:F5:9C:BA:E2:ED:A2:36:20:67:7C:87:6A:F5:75:AE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wxp5GPD1nLri7aI2IGd8h2r1da4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912781D/ABCC742EA3D111F09C66FD30C4F9AE02/90C6C65EA4D311F084484F52C4F9AE02.roa Signing time: Thu 09 Oct 2025 07:15:15 +0000 ROA not before: Thu 09 Oct 2025 07:15:15 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 136429 IP address blocks: 138.252.14.0/23 maxlen: 23 138.252.14.0/24 maxlen: 24 138.252.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912781D/ABCC742EA3D111F09C66FD30C4F9AE02/wxp5GPD1nLri7aI2IGd8h2r1da4.crl rsync://rpki.apnic.net/member_repository/A912781D/ABCC742EA3D111F09C66FD30C4F9AE02/wxp5GPD1nLri7aI2IGd8h2r1da4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wxp5GPD1nLri7aI2IGd8h2r1da4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:54:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912781D, serialNumber=C31A7918F0F59CBAE2EDA23620677C876AF575AE Validity Not Before: Oct 9 07:15:15 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68e76102-7a9e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:91:20:00:43:21:19:35:cd:c3:88:55:1a:ae: 2c:f0:cd:b5:3d:63:5d:c5:26:d1:e8:23:aa:14:84: cf:44:e4:8e:94:42:47:98:43:e8:a7:6c:3e:f5:8a: cd:1c:34:10:43:e4:07:34:37:54:0b:1e:0a:e3:8c: b7:fd:46:59:51:b0:d8:03:7d:a4:b6:8d:9d:a8:da: ab:7e:a0:6e:63:fb:f4:d1:ee:1b:90:7f:bd:3f:69: 74:f8:2a:72:92:f3:16:6c:fb:1d:d5:df:a6:4b:23: 51:35:46:1a:a2:d5:87:7b:64:c9:33:7b:f6:6b:61: 21:8a:f8:30:5f:c9:da:46:0f:06:f3:e0:19:d6:92: 59:2f:7e:f4:a8:82:de:ed:96:5f:b0:16:78:14:3c: 08:68:f6:f3:a4:cc:60:56:2c:fe:47:3c:67:0c:34: 6d:c2:f4:d6:a8:5c:ae:79:85:28:d5:bd:ca:91:44: 27:80:39:13:7b:38:f4:fd:17:46:99:cd:12:ae:a4: a0:c5:dd:ab:2b:58:38:4e:eb:4d:a2:eb:96:52:4d: 08:13:ad:01:85:76:7a:17:ce:4b:df:e0:12:12:66: f6:5e:cb:82:45:1f:90:0c:ff:27:46:7a:dc:fd:28: 3c:91:5e:ec:aa:c7:fe:2e:9e:be:8c:e3:f7:a8:2b: a7:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:8B:F3:8F:EA:4C:4C:3A:C8:43:41:26:55:C2:C8:08:6A:F6:5F:41 X509v3 Authority Key Identifier: keyid:C3:1A:79:18:F0:F5:9C:BA:E2:ED:A2:36:20:67:7C:87:6A:F5:75:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912781D/ABCC742EA3D111F09C66FD30C4F9AE02/wxp5GPD1nLri7aI2IGd8h2r1da4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/wxp5GPD1nLri7aI2IGd8h2r1da4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912781D/ABCC742EA3D111F09C66FD30C4F9AE02/90C6C65EA4D311F084484F52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.14.0/23 Signature Algorithm: sha256WithRSAEncryption 22:e5:32:74:41:55:d5:ee:04:f4:3b:d1:e5:cd:6e:8e:59:10: c9:a3:49:e2:c9:d2:0e:22:8e:a2:42:af:41:32:75:ac:09:ce: 74:df:b8:23:ef:ef:29:64:a9:e6:dc:54:c5:b1:25:f1:75:0c: ec:6f:77:08:51:8f:71:35:89:66:01:5f:08:a0:67:6b:41:af: 40:3b:85:94:ce:a3:ee:2f:0c:b4:95:be:6c:94:e9:fc:75:0c: 9b:e9:ff:b3:1f:b7:1e:57:93:25:6c:b1:d2:b8:df:96:ca:66: fb:d1:12:ea:91:45:a2:a2:2d:a1:d8:d8:c1:8e:43:3c:2b:e2: 8c:6f:50:45:9e:d6:a9:29:bd:d8:77:e4:d0:77:20:21:c1:09: 78:8f:a6:11:5f:75:81:c2:44:17:0c:f6:34:c4:46:0e:34:ac: c3:eb:56:ac:d8:11:c0:d1:76:7b:2a:72:00:8e:b1:9d:16:a5: 5c:fa:a6:57:8d:89:a8:8d:cf:9a:3b:b9:54:5c:bd:b0:40:0d: ea:f0:70:99:fc:e6:0b:5b:28:1c:20:5c:3d:29:7c:73:75:8c: 61:bc:76:4a:83:f2:9f:d6:7b:d7:b9:e5:27:c8:a6:12:1f:e3: 80:79:22:a8:d6:5c:7c:27:c7:8c:0e:1f:e5:3f:11:94:3f:b2: 88:00:7e:d6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzgxRDExMC8GA1UEBRMoQzMxQTc5MThGMEY1OUNCQUUyRURBMjM2MjA2NzdDODc2 QUY1NzVBRTAeFw0yNTEwMDkwNzE1MTVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTc2MTAyLTdhOWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYkSAAQyEZNc3DiFUarizwzbU9Y13FJtHoI6oUhM9E5I6UQkeYQ+inbD71is0c NBBD5Ac0N1QLHgrjjLf9RllRsNgDfaS2jZ2o2qt+oG5j+/TR7huQf70/aXT4KnKS 8xZs+x3V36ZLI1E1Rhqi1Yd7ZMkze/ZrYSGK+DBfydpGDwbz4BnWklkvfvSogt7t ll+wFngUPAho9vOkzGBWLP5HPGcMNG3C9NaoXK55hSjVvcqRRCeAORN7OPT9F0aZ zRKupKDF3asrWDhO602i65ZSTQgTrQGFdnoXzkvf4BISZvZey4JFH5AM/ydGetz9 KDyRXuyqx/4unr6M4/eoK6e3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUxovzj+pM TDrIQ0EmVcLICGr2X0EwHwYDVR0jBBgwFoAUwxp5GPD1nLri7aI2IGd8h2r1da4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3ODFEL0FCQ0M3NDJFQTNE MTExRjA5QzY2RkQzMEM0RjlBRTAyL3d4cDVHUEQxbkxyaTdhSTJJR2Q4aDJyMWRh NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvd3hwNUdQRDFuTHJpN2FJMklHZDhoMnIxZGE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzgxRC9BQkNDNzQyRUEzRDExMUYwOUM2NkZEMzBDNEY5QUUwMi85MEM2QzY1RUE0 RDMxMUYwODQ0ODRGNTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8DjANBgkqhkiG9w0BAQsFAAOCAQEAIuUydEFV1e4E9DvR 5c1ujlkQyaNJ4snSDiKOokKvQTJ1rAnOdN+4I+/vKWSp5txUxbEl8XUM7G93CFGP cTWJZgFfCKBna0GvQDuFlM6j7i8MtJW+bJTp/HUMm+n/sx+3HleTJWyx0rjflspm +9ES6pFFoqItodjYwY5DPCvijG9QRZ7WqSm92Hfk0HcgIcEJeI+mEV91gcJEFwz2 NMRGDjSsw+tWrNgRwNF2eypyAI6xnRalXPqmV42JqI3Pmju5VFy9sEAN6vBwmfzm C1soHCBcPSl8c3WMYbx2SoPyn9Z717nlJ8imEh/jgHkiqNZcfCfHjA4f5T8RlD+y iAB+1g== -----END CERTIFICATE-----Generated at Sun Oct 19 01:30:01 2025 by rpki-client