$ rpki-client -vvf rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/CB24F37C033711F0B76A8520C4F9AE02.roa File: CB24F37C033711F0B76A8520C4F9AE02.roa (raw, json) Hash identifier: 98s3ds+kGQSvl0ncwBjphBprg+/d5JhkpC63UpEc2Nk= Subject key identifier: F8:83:E2:06:2A:05:D3:69:75:19:2E:43:19:EA:2E:B9:AA:72:48:79 Certificate issuer: /CN=A9152787/serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Certificate serial: A5 Authority key identifier: 5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/CB24F37C033711F0B76A8520C4F9AE02.roa Signing time: Wed 27 Aug 2025 06:42:21 +0000 ROA not before: Wed 27 Aug 2025 06:42:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151495 IP address blocks: 157.20.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 06:41:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152787, serialNumber=5D946D4F479D37BCE1700CB0BADD51A2C3DF620F Validity Not Before: Aug 27 06:42:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68aea8cd-12dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:91:22:7b:bb:9e:ca:5b:6f:d2:60:0b:5f:93: b1:cb:a0:92:7a:d0:5c:a0:f2:ef:76:18:be:22:ae: 36:2f:72:62:62:44:0c:ff:6d:d1:6f:8e:ae:7d:55: 0b:0d:f8:60:aa:ac:44:ca:94:7a:5b:14:37:e9:f2: de:21:3b:5c:b4:51:47:fb:e8:43:30:25:5a:11:c6: a3:a8:b8:57:87:6f:66:d6:76:59:87:d7:78:ff:19: 49:f7:71:03:c3:c2:90:63:82:58:f2:6b:61:ad:87: f4:97:45:17:0c:1b:5e:96:58:51:be:d3:48:a5:1e: 94:b8:c6:3b:87:62:af:97:8b:1c:f7:13:92:d0:ca: 6f:d5:7e:a1:4f:dc:19:5a:39:5e:40:c9:be:34:17: 54:fc:cb:c1:95:28:b7:d0:6e:b0:ae:f7:65:b8:e2: 10:0d:f6:22:eb:3d:8e:85:c3:ab:13:e2:9a:90:86: a1:5d:4c:f4:b4:7a:6c:1f:e5:8d:97:7d:e2:71:b7: 28:d8:8a:f6:01:b1:45:d8:bd:cb:05:ea:02:87:8a: d8:e7:9c:f5:62:02:7f:ca:d4:a6:e5:94:22:bd:2c: 3f:b3:8e:b9:93:0d:fd:3b:71:cc:95:c7:c4:81:5b: 8e:81:63:5f:57:60:c1:df:1e:39:0f:62:ba:9d:85: 4f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:83:E2:06:2A:05:D3:69:75:19:2E:43:19:EA:2E:B9:AA:72:48:79 X509v3 Authority Key Identifier: keyid:5D:94:6D:4F:47:9D:37:BC:E1:70:0C:B0:BA:DD:51:A2:C3:DF:62:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/XZRtT0edN7zhcAywut1RosPfYg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/XZRtT0edN7zhcAywut1RosPfYg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152787/2286562A8F7911EF92AC781EC4F9AE02/CB24F37C033711F0B76A8520C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.20.65.0/24 Signature Algorithm: sha256WithRSAEncryption b4:5d:65:d4:71:74:5f:0b:b3:65:6d:63:cc:1f:db:b8:41:5d: 55:dc:da:09:6b:5a:da:42:6e:75:51:e9:b7:98:87:1d:81:4d: fd:26:23:8c:55:f5:2e:37:8f:2c:e2:0e:ed:38:59:b0:ca:40: 10:e2:01:11:e3:a8:7d:bc:01:21:dc:88:e8:09:9b:f1:f6:4c: 90:a0:b4:ef:cc:36:89:13:bb:58:2c:ea:6b:03:96:e1:54:69: 67:ff:d3:f9:d4:53:8e:12:7f:90:cf:02:97:d7:81:c6:87:be: 35:c8:75:18:17:94:11:61:8d:ff:e1:3e:90:f7:dd:b5:3f:31: bd:92:b6:59:86:51:f3:e7:4c:9d:8b:62:43:dc:93:51:b4:a7: 81:01:35:df:98:f5:4b:a2:a2:62:0a:2e:73:67:4d:ac:14:56: 3e:12:f6:01:55:2c:76:f9:05:b9:07:13:99:98:15:0c:69:41: ab:f3:31:89:b6:49:de:b8:62:34:7a:05:a3:c5:e8:55:96:18: ee:d6:e2:58:a8:4e:f8:ab:3a:fd:6f:14:06:a9:8c:d0:97:57: a4:d4:4e:21:68:18:c8:e9:d8:05:78:09:e7:02:69:c3:a7:ce: 82:c7:e5:a0:26:4e:2e:02:2a:d4:56:2c:9a:6e:48:1b:75:25: 4a:22:15:2b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI3ODcxMTAvBgNVBAUTKDVEOTQ2RDRGNDc5RDM3QkNFMTcwMENCMEJBREQ1MUEy QzNERjYyMEYwHhcNMjUwODI3MDY0MjIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlYThjZC0xMmRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypEie7ueyltv0mALX5Oxy6CSetBcoPLvdhi+Iq42L3JiYkQM/23Rb46ufVUL DfhgqqxEypR6WxQ36fLeITtctFFH++hDMCVaEcajqLhXh29m1nZZh9d4/xlJ93ED w8KQY4JY8mthrYf0l0UXDBtellhRvtNIpR6UuMY7h2Kvl4sc9xOS0Mpv1X6hT9wZ WjleQMm+NBdU/MvBlSi30G6wrvdluOIQDfYi6z2OhcOrE+KakIahXUz0tHpsH+WN l33icbco2Ir2AbFF2L3LBeoCh4rY55z1YgJ/ytSm5ZQivSw/s465kw39O3HMlcfE gVuOgWNfV2DB3x45D2K6nYVPGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPiD4gYq BdNpdRkuQxnqLrmqckh5MB8GA1UdIwQYMBaAFF2UbU9HnTe84XAMsLrdUaLD32IP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mjc4Ny8yMjg2NTYyQThG NzkxMUVGOTJBQzc4MUVDNEY5QUUwMi9YWlJ0VDBlZE43emhjQXl3dXQxUm9zUGZZ ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1haUnRUMGVkTjd6aGNBeXd1dDFSb3NQZllnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTI3ODcvMjI4NjU2MkE4Rjc5MTFFRjkyQUM3ODFFQzRGOUFFMDIvQ0IyNEYzN0Mw MzM3MTFGMEI3NkE4NTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdFEEwDQYJKoZIhvcNAQELBQADggEBALRdZdRxdF8Ls2Vt Y8wf27hBXVXc2glrWtpCbnVR6beYhx2BTf0mI4xV9S43jyziDu04WbDKQBDiARHj qH28ASHciOgJm/H2TJCgtO/MNokTu1gs6msDluFUaWf/0/nUU44Sf5DPApfXgcaH vjXIdRgXlBFhjf/hPpD33bU/Mb2StlmGUfPnTJ2LYkPck1G0p4EBNd+Y9UuiomIK LnNnTawUVj4S9gFVLHb5BbkHE5mYFQxpQavzMYm2Sd64YjR6BaPF6FWWGO7W4lio TvirOv1vFAapjNCXV6TUTiFoGMjp2AV4CecCacOnzoLH5aAmTi4CKtRWLJpuSBt1 JUoiFSs= -----END CERTIFICATE-----Generated at Sun Sep 7 19:18:40 2025 by rpki-client