$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D931AD927E0F11EE97A4761DC4F9AE02.roa File: D931AD927E0F11EE97A4761DC4F9AE02.roa (raw, json) Hash identifier: 6CETeBmdxLp575yCFO+woa7316cbcGtcb5tHB4lGr3U= Subject key identifier: 96:01:5B:3D:4D:93:1B:69:6D:66:7B:FF:08:C0:D3:DA:B8:D4:BD:7D Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F6A Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D931AD927E0F11EE97A4761DC4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:29 +0000 ROA not before: Sat 30 Aug 2025 16:35:29 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151397 IP address blocks: 203.86.116.0/24 maxlen: 24 240e:983:2010::/48 maxlen: 48 240e:983:2020::/48 maxlen: 48 240e:983:2030::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8042 (0x1f6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:29 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32850-7925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:51:ee:10:79:05:4a:e8:19:26:74:67:7d:1b: fd:80:2c:c2:92:0a:87:9f:c7:66:84:bc:4d:cf:1f: b4:61:ea:31:14:07:b7:f6:96:0a:63:27:07:e7:b2: 4d:dc:50:a7:96:61:fc:8c:fc:28:ae:0b:4e:eb:e6: 6b:ee:f1:6a:f4:dc:7b:4e:80:d2:89:c9:48:aa:fc: 75:e8:91:cb:c2:ef:c4:a6:5b:31:79:23:b9:d5:91: d4:23:e9:d5:59:a7:bb:a8:6d:29:71:e8:b5:23:7f: 2c:0c:25:4a:5a:f6:46:4a:1a:61:3c:2e:57:e4:86: e9:8d:04:b2:4e:6b:02:0a:49:4c:9f:13:41:79:d7: 8a:e9:06:82:93:66:13:f3:74:60:7f:fc:63:57:ac: f9:f5:8d:96:bc:ef:66:a4:d7:e5:f7:3b:7d:3a:bc: 14:17:e7:14:7a:ab:d9:b4:88:6a:cd:ed:5b:39:b8: a2:d1:bb:15:52:23:ec:63:c1:1b:b5:d0:02:bc:1f: 79:b2:b2:ad:7a:37:df:b4:44:a5:30:32:db:f8:70: b4:f8:88:9e:2a:91:06:6f:70:c9:71:07:24:db:aa: 73:98:7a:01:aa:9f:1d:0f:8a:cd:2c:63:83:1f:6e: 1a:47:db:99:13:a5:f2:3e:a9:25:fb:d9:77:8e:d9: fd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:01:5B:3D:4D:93:1B:69:6D:66:7B:FF:08:C0:D3:DA:B8:D4:BD:7D X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D931AD927E0F11EE97A4761DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.86.116.0/24 IPv6: 240e:983:2010::/48 240e:983:2020::/48 240e:983:2030::/48 Signature Algorithm: sha256WithRSAEncryption 96:57:32:9e:12:17:f1:f0:c8:c3:fe:47:66:0c:2d:3c:61:0f: 7c:e9:19:fe:c6:c7:8f:43:ef:53:3e:e7:2d:04:70:5e:bc:b8: ee:e4:f8:dc:e9:69:04:90:72:1b:bb:99:e6:c0:4d:e5:7d:72: 39:8b:8b:2c:73:41:5d:e0:e3:97:69:70:86:91:a1:68:00:b3: a6:43:e8:d0:7d:6b:ac:e6:46:d3:ec:cf:ea:b1:b9:38:f3:51: 9c:e0:88:c9:44:f2:8c:0f:e2:61:df:8d:24:77:bc:ce:c8:2b: 20:e6:78:6e:2a:71:9d:92:68:c6:50:24:33:3f:2f:70:f1:ff: 75:5e:03:29:1d:cb:76:ef:aa:e9:01:35:c7:17:1b:5c:02:85: 17:27:65:77:78:f9:b8:6e:55:d5:aa:b5:97:49:3b:fb:1d:eb: 74:9d:94:07:a3:03:af:8d:c2:74:00:9d:cd:3b:82:69:61:37: 53:62:75:e7:de:af:59:9f:3d:5b:46:ac:f4:8b:55:31:df:be: a9:4a:5c:e8:4f:e3:26:d6:5c:ed:1b:71:b1:37:e2:55:16:19: 22:bb:e4:16:b0:e8:3c:e0:89:23:23:5b:ba:05:d5:c5:a4:dc: 45:e8:48:e5:ed:91:58:6c:74:e8:06:be:ad:85:4d:39:8a:2b: 05:26:a8:b6 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICH2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTI5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg1MC03OTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVHuEHkFSugZJnRnfRv9gCzCkgqHn8dmhLxNzx+0YeoxFAe39pYKYycH57JN 3FCnlmH8jPworgtO6+Zr7vFq9Nx7ToDSiclIqvx16JHLwu/EplsxeSO51ZHUI+nV Wae7qG0pcei1I38sDCVKWvZGShphPC5X5IbpjQSyTmsCCklMnxNBedeK6QaCk2YT 83Rgf/xjV6z59Y2WvO9mpNfl9zt9OrwUF+cUeqvZtIhqze1bObii0bsVUiPsY8Eb tdACvB95srKtejfftESlMDLb+HC0+IieKpEGb3DJcQck26pzmHoBqp8dD4rNLGOD H24aR9uZE6XyPqkl+9l3jtn9awIDAQABo4ICuDCCArQwHQYDVR0OBBYEFJYBWz1N kxtpbWZ7/wjA09q41L19MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDkzMUFEOTI3 RTBGMTFFRTk3QTQ3NjFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMAwEAgABMAYDBADLVnQwIQQCAAIwGwMHACQOCYMgEAMHACQOCYMgIAMHACQO CYMgMDANBgkqhkiG9w0BAQsFAAOCAQEAllcynhIX8fDIw/5HZgwtPGEPfOkZ/sbH j0PvUz7nLQRwXry47uT43OlpBJByG7uZ5sBN5X1yOYuLLHNBXeDjl2lwhpGhaACz pkPo0H1rrOZG0+zP6rG5OPNRnOCIyUTyjA/iYd+NJHe8zsgrIOZ4bipxnZJoxlAk Mz8vcPH/dV4DKR3Ldu+q6QE1xxcbXAKFFydld3j5uG5V1aq1l0k7+x3rdJ2UB6MD r43CdACdzTuCaWE3U2J1596vWZ89W0as9ItVMd++qUpc6E/jJtZc7RtxsTfiVRYZ IrvkFrDoPOCJIyNbugXVxaTcRehI5e2RWGx06Aa+rYVNOYorBSaotg== -----END CERTIFICATE-----Generated at Sat Sep 6 20:22:02 2025 by rpki-client