$ rpki-client -vvf rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/B2B006BAE3E911EEB845B268C4F9AE02.roa File: B2B006BAE3E911EEB845B268C4F9AE02.roa (raw, json) Hash identifier: fj5an6uMsWFMPTZr6PrKep91XRX3rQER6UmH0deptJM= Subject key identifier: 9B:9A:43:B4:2E:E8:3C:D6:59:FB:CC:B1:60:BB:ED:3C:A3:11:8E:68 Certificate issuer: /CN=A9131711/serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Certificate serial: CC Authority key identifier: B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/B2B006BAE3E911EEB845B268C4F9AE02.roa Signing time: Tue 25 Feb 2025 07:09:11 +0000 ROA not before: Tue 25 Feb 2025 07:09:11 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152473 IP address blocks: 157.15.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:21:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131711, serialNumber=B57B207F0E1C1BA873A0793582C7A8134098674C Validity Not Before: Feb 25 07:09:11 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67bd6c96-86f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:14:35:8d:2d:fe:ff:89:36:ca:9c:53:96:20: e0:b0:df:6f:9f:fe:5f:95:c2:84:8e:15:69:50:22: 35:99:1d:91:9d:1e:30:e4:fe:59:04:97:f2:01:7a: 07:bb:c9:b3:5d:43:9c:a5:80:5d:23:8d:26:6b:16: 48:b2:a8:59:b0:c2:d5:b9:fa:f9:f4:1b:3e:47:b4: 36:f1:49:93:77:9e:0b:62:c7:50:a2:4f:17:8c:f2: eb:42:25:d8:95:32:80:fb:5b:81:da:a2:f5:db:56: 87:e7:da:80:65:0e:2a:7d:29:14:0b:06:b3:b9:f3: 25:0b:78:49:fa:df:f4:f2:c8:70:9b:e9:f4:6a:49: d0:9f:12:49:ea:64:e4:b2:de:2b:d9:9b:62:37:cc: 2b:e5:92:e6:a3:11:58:55:1c:5f:53:8e:7d:29:fb: 4f:ee:63:fc:33:e4:52:85:ff:33:b7:f0:7a:70:37: 3c:40:2d:19:3c:fb:18:03:2d:54:58:a2:56:ad:fd: c4:b9:2d:01:82:0a:a0:98:68:03:51:81:6a:65:58: 55:2d:ff:e8:20:69:f2:cc:33:33:aa:11:70:fc:8a: 66:59:c7:d6:8d:16:80:13:ba:57:81:5f:c8:e4:bc: 96:0c:44:fd:57:0e:6d:fe:ca:8e:b3:c4:fa:57:c0: ad:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:9A:43:B4:2E:E8:3C:D6:59:FB:CC:B1:60:BB:ED:3C:A3:11:8E:68 X509v3 Authority Key Identifier: keyid:B5:7B:20:7F:0E:1C:1B:A8:73:A0:79:35:82:C7:A8:13:40:98:67:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/tXsgfw4cG6hzoHk1gseoE0CYZ0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/tXsgfw4cG6hzoHk1gseoE0CYZ0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131711/9FDD2DA0C99111EE891BA419C4F9AE02/B2B006BAE3E911EEB845B268C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.222.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:b2:20:01:22:0d:c1:b2:6a:ce:93:89:8f:a9:8d:a2:86:9a: a0:8e:69:29:b8:56:6c:5f:dc:d2:28:18:cc:23:e6:ec:d2:34: f6:6f:15:74:96:4f:5f:cc:ac:e7:e2:da:73:db:95:08:85:32: ed:cf:8e:dd:bb:21:2b:be:90:84:ee:e0:c8:87:71:3d:72:d0: 0a:97:0e:9e:d0:69:1f:d7:15:d6:78:46:bd:f7:17:1d:9a:9a: 11:d1:65:8b:c2:50:5b:b6:9c:cc:5d:9d:86:60:1d:52:81:f5: cc:c2:43:eb:4b:d0:ae:17:20:ab:f2:00:b2:25:57:22:2e:a6: bf:ca:49:49:aa:84:52:2b:6c:1a:61:b5:1d:e7:44:6b:5d:02: 8c:d7:8e:f2:1f:24:39:1f:7b:77:5a:1d:d5:b7:a5:da:ca:20: b1:a2:e1:e8:fa:aa:a7:96:2b:24:3a:88:b1:4a:2e:1f:eb:de: 53:70:18:67:cc:5c:d1:9a:fb:48:f5:3c:36:9e:38:85:fb:10: 4f:52:7b:e7:4e:57:b7:35:94:88:76:29:74:7a:91:c5:74:0d: f1:f8:43:4e:bd:ce:96:96:87:a0:ec:5d:7d:9f:eb:fe:3f:eb: c9:62:4c:26:a1:e3:61:0c:c1:15:b7:3a:4c:f5:c0:36:ab:1b: 9d:43:30:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE3MTExMTAvBgNVBAUTKEI1N0IyMDdGMEUxQzFCQTg3M0EwNzkzNTgyQzdBODEz NDA5ODY3NEMwHhcNMjUwMjI1MDcwOTExWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2JkNmM5Ni04NmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRQ1jS3+/4k2ypxTliDgsN9vn/5flcKEjhVpUCI1mR2RnR4w5P5ZBJfyAXoH u8mzXUOcpYBdI40maxZIsqhZsMLVufr59Bs+R7Q28UmTd54LYsdQok8XjPLrQiXY lTKA+1uB2qL121aH59qAZQ4qfSkUCwazufMlC3hJ+t/08shwm+n0aknQnxJJ6mTk st4r2ZtiN8wr5ZLmoxFYVRxfU459KftP7mP8M+RShf8zt/B6cDc8QC0ZPPsYAy1U WKJWrf3EuS0BggqgmGgDUYFqZVhVLf/oIGnyzDMzqhFw/IpmWcfWjRaAE7pXgV/I 5LyWDET9Vw5t/sqOs8T6V8CtlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJuaQ7Qu 6DzWWfvMsWC77TyjEY5oMB8GA1UdIwQYMBaAFLV7IH8OHBuoc6B5NYLHqBNAmGdM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTcxMS85RkREMkRBMEM5 OTExMUVFODkxQkE0MTlDNEY5QUUwMi90WHNnZnc0Y0c2aHpvSGsxZ3Nlb0UwQ1la MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3RYc2dmdzRjRzZoem9IazFnc2VvRTBDWVowdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE3MTEvOUZERDJEQTBDOTkxMTFFRTg5MUJBNDE5QzRGOUFFMDIvQjJCMDA2QkFF M0U5MTFFRUI4NDVCMjY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD94wDQYJKoZIhvcNAQELBQADggEBADuyIAEiDcGyas6T iY+pjaKGmqCOaSm4Vmxf3NIoGMwj5uzSNPZvFXSWT1/MrOfi2nPblQiFMu3Pjt27 ISu+kITu4MiHcT1y0AqXDp7QaR/XFdZ4Rr33Fx2amhHRZYvCUFu2nMxdnYZgHVKB 9czCQ+tL0K4XIKvyALIlVyIupr/KSUmqhFIrbBphtR3nRGtdAozXjvIfJDkfe3da HdW3pdrKILGi4ej6qqeWKyQ6iLFKLh/r3lNwGGfMXNGa+0j1PDaeOIX7EE9Se+dO V7c1lIh2KXR6kcV0DfH4Q069zpaWh6DsXX2f6/4/68liTCah42EMwRW3Okz1wDar G51DMP8= -----END CERTIFICATE-----Generated at Tue Nov 4 18:55:53 2025 by rpki-client