$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/0B989CC8BC6711EAA9856B6AC4F9AE02.roa File: 0B989CC8BC6711EAA9856B6AC4F9AE02.roa (raw, json) Hash identifier: 0j38Uo+iFQdO5kEPFTuORuug7S4L8ZW5Ebjy0sA1lBc= Subject key identifier: ED:89:6E:5B:0B:44:A8:F9:10:68:0D:DB:29:27:DE:8C:92:DB:81:60 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F6D Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/0B989CC8BC6711EAA9856B6AC4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:31 +0000 ROA not before: Sat 30 Aug 2025 16:35:31 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 17799 IP address blocks: 218.30.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8045 (0x1f6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:31 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32853-8231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:41:95:e3:cd:49:fb:9d:6d:f6:59:98:93:57: d7:c4:88:57:84:8d:0f:e1:1b:cc:1d:c8:f4:f1:6a: 2e:12:e8:21:87:32:d2:b3:8b:fc:69:b5:74:44:c7: d4:78:8a:79:ce:2b:c0:d8:d2:2a:06:75:09:e7:b9: fb:91:30:09:31:0e:aa:d9:31:b4:95:94:f8:17:4f: 2e:a1:d3:62:74:09:f2:6f:a2:6d:08:e9:c6:46:39: 65:16:5a:40:b6:c9:70:07:ae:0a:b6:d9:10:fc:71: da:72:d5:2a:dd:1e:49:b9:82:b4:bd:a1:63:36:18: 2c:f9:b6:c9:ce:1a:33:9e:bc:97:98:13:85:3a:fd: 92:35:34:c9:07:ee:88:35:45:aa:79:8c:86:48:09: cd:7e:89:fb:ce:a1:05:1d:e1:21:4b:cc:e9:2e:a7: 7e:1a:a1:ca:42:e6:f2:2a:49:b8:82:a3:ac:64:76: bb:5b:8f:88:33:c7:8e:8c:2e:e1:ea:f3:80:d4:12: 93:c4:0d:80:1e:07:6f:72:78:a2:55:de:35:d4:79: 1d:55:79:e3:2e:b4:30:e2:9d:d8:3f:9f:d1:ed:a8: 1b:6b:88:ec:dc:b0:ae:39:19:43:64:30:c9:72:02: ae:69:c3:17:20:6f:0a:43:32:68:c7:09:df:a4:c6: d3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:89:6E:5B:0B:44:A8:F9:10:68:0D:DB:29:27:DE:8C:92:DB:81:60 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/0B989CC8BC6711EAA9856B6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.30.170.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:8a:f1:23:79:93:06:ea:a9:55:76:a9:08:a5:38:8e:af:eb: 59:33:f1:79:b0:06:e4:63:d1:b8:9f:41:fd:94:82:59:14:6e: cb:53:c4:c9:5a:3f:1e:dd:38:c9:69:ed:56:29:6b:9b:c0:a8: d9:d9:a9:6c:9d:2c:cb:13:82:be:af:06:db:68:cd:aa:cf:ec: fc:63:06:c0:2f:94:df:73:d8:ef:8d:39:14:ae:95:64:9e:e8: 1e:40:eb:2d:35:f5:fd:fd:8f:83:6e:7d:fd:6a:23:0f:06:7a: 2d:a5:2f:e8:54:14:ce:cd:7b:65:04:1a:7b:c6:9d:b2:a9:0a: 10:b5:10:d0:98:78:de:b2:28:05:56:1c:b8:6b:c1:2a:4a:f9: 96:ab:32:17:b9:27:29:42:bb:3a:86:0e:80:65:94:4f:be:e0: 70:96:8e:82:43:2d:44:40:1f:7e:4f:b9:1b:c5:4e:33:85:e7: 04:78:e1:94:51:59:9c:52:72:d9:e5:18:7a:59:86:5d:b3:c4: 0a:fa:97:73:71:4f:f9:74:dd:b5:97:ce:62:84:fb:90:53:4e: 40:7b:1b:f6:7a:68:2a:b5:3c:70:bb:b4:77:7d:57:ac:a9:ac: 98:d1:45:f7:9b:7b:08:10:46:fc:a6:06:06:19:34:02:da:09: e2:f9:21:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH20wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTMxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg1My04MjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo0GV481J+51t9lmYk1fXxIhXhI0P4RvMHcj08WouEughhzLSs4v8abV0RMfU eIp5zivA2NIqBnUJ57n7kTAJMQ6q2TG0lZT4F08uodNidAnyb6JtCOnGRjllFlpA tslwB64KttkQ/HHactUq3R5JuYK0vaFjNhgs+bbJzhoznryXmBOFOv2SNTTJB+6I NUWqeYyGSAnNfon7zqEFHeEhS8zpLqd+GqHKQubyKkm4gqOsZHa7W4+IM8eOjC7h 6vOA1BKTxA2AHgdvcniiVd411HkdVXnjLrQw4p3YP5/R7agba4js3LCuORlDZDDJ cgKuacMXIG8KQzJoxwnfpMbTRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO2JblsL RKj5EGgN2ykn3oyS24FgMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMEI5ODlDQzhC QzY3MTFFQUE5ODU2QjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADaHqowDQYJKoZIhvcNAQELBQADggEBAG+K8SN5kwbqqVV2 qQilOI6v61kz8XmwBuRj0bifQf2UglkUbstTxMlaPx7dOMlp7VYpa5vAqNnZqWyd LMsTgr6vBttozarP7PxjBsAvlN9z2O+NORSulWSe6B5A6y019f39j4Nuff1qIw8G ei2lL+hUFM7Ne2UEGnvGnbKpChC1ENCYeN6yKAVWHLhrwSpK+ZarMhe5JylCuzqG DoBllE++4HCWjoJDLURAH35PuRvFTjOF5wR44ZRRWZxSctnlGHpZhl2zxAr6l3Nx T/l03bWXzmKE+5BTTkB7G/Z6aCq1PHC7tHd9V6yprJjRRfebewgQRvymBgYZNALa CeL5IT4= -----END CERTIFICATE-----Generated at Sat Sep 6 20:22:28 2025 by rpki-client