$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9B315A5E46A011E7B9BAF254C4F9AE02.roa File: 9B315A5E46A011E7B9BAF254C4F9AE02.roa (raw, json) Hash identifier: o1l069BBsd3WUVBocCxI6g5VIW+fD/556imvKUhlYKw= Subject key identifier: 6A:D1:0C:F6:B0:49:84:AC:BF:E8:87:99:A0:4E:F1:75:24:48:69:92 Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1C4F Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9B315A5E46A011E7B9BAF254C4F9AE02.roa Signing time: Thu 28 Aug 2025 16:34:47 +0000 ROA not before: Thu 28 Aug 2025 16:34:47 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 54825 IP address blocks: 203.33.22.0/24 maxlen: 24 2001:df3:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:18:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7247 (0x1c4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9, serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Validity Not Before: Aug 28 16:34:47 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b08526-d8d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d4:83:dd:2f:4c:c2:3b:0a:73:a0:f2:cb:f2: e1:9c:bc:d6:99:09:85:64:d4:07:1e:db:72:50:7c: 75:1c:26:ee:fb:a7:c0:cc:41:1a:02:0e:c0:30:01: b6:cf:25:eb:6a:68:31:c0:f8:1a:95:f1:76:36:fa: 5c:59:43:ee:13:d0:1b:7b:58:15:d0:bf:0f:7d:d2: ca:5e:c6:23:5e:d5:ee:e8:51:07:da:73:2d:3d:e0: 58:0b:81:47:20:84:be:cc:2f:a4:9e:c5:82:06:3d: 4a:c7:b4:80:6d:09:64:b9:8d:6f:f3:8e:a2:30:93: 42:72:bb:7a:ae:9d:23:99:6e:a5:6e:4d:4b:1a:af: 5f:cd:f6:52:62:40:c7:01:7f:4e:5a:63:1b:21:79: b0:fa:21:70:55:ed:a7:9b:30:fc:4f:b2:a9:a8:ea: 8b:64:da:78:4f:2c:44:0b:19:24:59:84:f0:ec:0d: 32:bf:de:ee:6a:84:ec:4e:e1:19:a0:9c:f2:93:ad: ad:5c:40:27:cd:c4:75:9e:f6:52:2a:23:93:3a:a6: 51:9f:fb:34:2c:cc:ba:f0:d9:a7:69:90:b4:55:41: da:06:63:26:11:db:f8:cf:ad:98:8a:0a:b6:bf:67: 1b:bc:bf:f9:4f:88:66:4e:79:e6:49:e8:eb:8a:78: 1b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:D1:0C:F6:B0:49:84:AC:BF:E8:87:99:A0:4E:F1:75:24:48:69:92 X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9B315A5E46A011E7B9BAF254C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.22.0/24 IPv6: 2001:df3:ba00::/48 Signature Algorithm: sha256WithRSAEncryption 64:e4:7d:48:88:8c:2c:f6:05:13:f8:b4:1a:19:1d:8d:9e:1b: 45:07:be:c7:a2:f6:5d:aa:6f:69:53:93:bc:e7:d0:4e:0c:b5: 09:26:5f:2f:8a:2a:d9:1c:46:bd:9f:ee:49:4b:d5:41:72:33: 75:06:f4:b6:5e:3a:5e:b5:20:4b:ed:3f:c6:05:a9:62:9f:7f: d5:8d:07:d4:a8:7e:57:69:41:64:88:90:d1:b6:25:d2:7b:f4: 59:c5:cf:d1:46:d8:e6:ca:c5:47:b8:6a:7c:b3:94:6a:e3:64: 6e:a4:91:00:f2:50:45:ab:60:00:1b:f7:61:02:e7:8e:28:8a: b7:0c:5a:f8:ec:e2:61:89:4c:a3:62:39:a4:bd:48:d2:56:8c: 4e:d2:d6:9a:aa:ad:0d:cf:de:cb:a5:24:4c:e0:61:f8:21:7c: 5d:36:21:87:a9:97:11:a2:67:74:34:95:51:06:e2:cf:c9:84: f9:db:8e:e0:c3:f7:0f:8c:48:f8:b7:2e:80:0a:b4:3c:c6:59: 40:46:11:32:49:36:61:d8:65:fc:12:39:47:99:92:d5:73:e3: a0:07:ac:af:aa:da:86:10:51:3b:a9:85:a0:02:f6:1c:8a:0d: 93:48:10:2c:03:6e:7f:73:05:98:b7:74:ba:77:24:1c:0a:69: ec:19:b9:0f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICHE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjUwODI4MTYzNDQ3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwODUyNi1kOGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydSD3S9MwjsKc6Dyy/LhnLzWmQmFZNQHHttyUHx1HCbu+6fAzEEaAg7AMAG2 zyXramgxwPgalfF2NvpcWUPuE9Abe1gV0L8PfdLKXsYjXtXu6FEH2nMtPeBYC4FH IIS+zC+knsWCBj1Kx7SAbQlkuY1v846iMJNCcrt6rp0jmW6lbk1LGq9fzfZSYkDH AX9OWmMbIXmw+iFwVe2nmzD8T7KpqOqLZNp4TyxECxkkWYTw7A0yv97uaoTsTuEZ oJzyk62tXEAnzcR1nvZSKiOTOqZRn/s0LMy68NmnaZC0VUHaBmMmEdv4z62Yigq2 v2cbvL/5T4hmTnnmSejringbhwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGrRDPaw SYSsv+iHmaBO8XUkSGmSMB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBRTkvMDhEQTYwQzZGMUIyMTFFNjhFNzRBMjZDQzRGOUFFMDIvOUIzMTVBNUU0 NkEwMTFFN0I5QkFGMjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLIRYwDwQCAAIwCQMHACABDfO6ADANBgkqhkiG9w0BAQsF AAOCAQEAZOR9SIiMLPYFE/i0GhkdjZ4bRQe+x6L2XapvaVOTvOfQTgy1CSZfL4oq 2RxGvZ/uSUvVQXIzdQb0tl46XrUgS+0/xgWpYp9/1Y0H1Kh+V2lBZIiQ0bYl0nv0 WcXP0UbY5srFR7hqfLOUauNkbqSRAPJQRatgABv3YQLnjiiKtwxa+OziYYlMo2I5 pL1I0laMTtLWmqqtDc/ey6UkTOBh+CF8XTYhh6mXEaJndDSVUQbiz8mE+duO4MP3 D4xI+LcugAq0PMZZQEYRMkk2Ydhl/BI5R5mS1XPjoAesr6rahhBRO6mFoAL2HIoN k0gQLANuf3MFmLd0unckHApp7Bm5Dw== -----END CERTIFICATE-----Generated at Sat Sep 6 08:14:56 2025 by rpki-client