$ rpki-client -vvf rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/63F05DE02F1D11EDA3E29B09C4F9AE02.roa File: 63F05DE02F1D11EDA3E29B09C4F9AE02.roa (raw, json) Hash identifier: +cjSEjrCbRsWjKbOnlHA21txqQ/09N0BEt4ab1fE4as= Subject key identifier: C2:F1:C0:E5:7D:D9:5D:73:B7:80:84:9B:A6:56:3F:A8:E0:BE:D9:02 Certificate issuer: /CN=A915C631/serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Certificate serial: 0381 Authority key identifier: 7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/63F05DE02F1D11EDA3E29B09C4F9AE02.roa Signing time: Wed 05 Nov 2025 01:15:37 +0000 ROA not before: Wed 05 Nov 2025 01:15:37 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 18390 IP address blocks: 27.96.192.0/19 maxlen: 24 115.69.0.0/18 maxlen: 24 202.172.96.0/19 maxlen: 24 203.23.236.0/22 maxlen: 24 203.29.65.0/24 maxlen: 24 203.29.124.0/23 maxlen: 24 203.31.202.0/23 maxlen: 24 203.56.244.0/22 maxlen: 24 203.57.48.0/23 maxlen: 24 210.1.192.0/19 maxlen: 24 2407:e400::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C631, serialNumber=7BD3E43D134E5235E97603CE8BA9486B62A9B1E6 Validity Not Before: Nov 5 01:15:37 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=690aa539-68bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0f:bc:a5:07:74:1f:2f:a6:f4:89:50:5b:e5: a1:ab:ef:65:f4:72:a9:2e:b8:4a:76:83:ae:76:9e: 12:93:c3:db:2b:64:24:0e:40:ed:d2:db:e2:7f:c7: 53:87:f3:06:88:e5:fa:09:01:2c:49:22:20:12:23: ea:9e:bb:86:66:0d:49:35:48:44:6b:31:5b:66:bd: c1:ce:d0:82:af:db:7d:47:23:e1:33:53:54:12:2c: 6e:17:c9:f4:9f:d9:d9:cd:74:ee:eb:4d:bb:6c:a5: 7b:b1:a0:85:0e:35:e1:c7:74:fd:43:2a:df:75:87: 00:fa:14:50:13:6e:d4:d8:cb:e7:e2:29:c1:02:bc: 25:8f:f2:e5:1d:1a:fd:2d:91:94:ac:c3:c2:ac:b8: 8c:f3:f1:a5:b6:2b:3d:f6:1c:e4:b1:3a:70:51:d7: cf:6b:26:e1:f8:e5:42:4a:54:7f:e3:f3:d2:21:1d: 55:a8:77:9c:a3:b8:89:7e:98:d6:8d:b3:e1:d3:09: 1e:1c:98:c8:15:bf:ea:d3:5e:af:95:3e:df:98:e3: f8:50:b4:68:0e:25:f0:5d:f4:0a:c3:23:ef:46:6c: c5:0d:db:b8:5b:e7:05:be:a5:8c:87:da:d5:bb:9d: 9a:8c:04:36:37:7e:ed:ee:bc:43:0b:df:85:3f:b8: 51:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:F1:C0:E5:7D:D9:5D:73:B7:80:84:9B:A6:56:3F:A8:E0:BE:D9:02 X509v3 Authority Key Identifier: keyid:7B:D3:E4:3D:13:4E:52:35:E9:76:03:CE:8B:A9:48:6B:62:A9:B1:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/e9PkPRNOUjXpdgPOi6lIa2KpseY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9PkPRNOUjXpdgPOi6lIa2KpseY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C631/39E4D7A8DC7811ECA4E30617C4F9AE02/63F05DE02F1D11EDA3E29B09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.96.192.0/19 115.69.0.0/18 202.172.96.0/19 203.23.236.0/22 203.29.65.0/24 203.29.124.0/23 203.31.202.0/23 203.56.244.0/22 203.57.48.0/23 210.1.192.0/19 IPv6: 2407:e400::/32 Signature Algorithm: sha256WithRSAEncryption bd:f1:53:11:81:66:61:a7:25:65:02:fd:93:10:6f:b2:d2:b0: e5:d0:5f:ab:d5:8f:a0:99:06:4b:d7:24:4e:d4:f0:dd:10:11: 98:14:4a:e5:bc:22:dd:94:10:a2:89:0c:d3:8d:6b:61:59:ce: ac:ea:ec:86:7d:be:e0:e1:00:fc:a7:78:b9:87:5c:e2:f2:b5: 86:ab:9c:bf:1b:db:91:7d:03:0d:ea:c7:5a:fb:49:e5:f9:a4: aa:11:de:d5:71:e4:c2:64:1b:b0:6b:91:9e:8a:c2:eb:e0:f1: 34:fe:12:f7:59:c1:30:54:19:3b:84:0f:3d:01:12:37:83:37: 60:a0:a5:7a:10:dd:47:68:4d:b5:5a:75:5c:db:a4:84:ad:fa: c2:17:67:5f:f2:f6:cf:47:29:fc:5b:b2:d9:9b:23:86:b1:f0: 56:47:1f:1d:7c:f1:77:3e:c8:08:f0:39:b2:64:79:15:17:14: 42:a7:0c:b2:4f:98:a5:5b:5b:7b:68:df:2f:42:2d:f3:e3:98: 9f:3b:26:01:6d:db:27:a7:47:07:a8:7d:69:d2:34:41:f0:9c: 1b:10:92:bc:28:77:59:20:b1:ea:c3:38:b9:44:b1:91:d3:cb: c9:0a:c4:94:2a:a5:9f:6d:7c:25:0c:56:ef:69:82:18:d3:e7: 26:6e:38:df -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM2MzExMTAvBgNVBAUTKDdCRDNFNDNEMTM0RTUyMzVFOTc2MDNDRThCQTk0ODZC NjJBOUIxRTYwHhcNMjUxMTA1MDExNTM3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhYTUzOS02OGJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQ+8pQd0Hy+m9IlQW+Whq+9l9HKpLrhKdoOudp4Sk8PbK2QkDkDt0tvif8dT h/MGiOX6CQEsSSIgEiPqnruGZg1JNUhEazFbZr3BztCCr9t9RyPhM1NUEixuF8n0 n9nZzXTu6027bKV7saCFDjXhx3T9QyrfdYcA+hRQE27U2Mvn4inBArwlj/LlHRr9 LZGUrMPCrLiM8/Gltis99hzksTpwUdfPaybh+OVCSlR/4/PSIR1VqHeco7iJfpjW jbPh0wkeHJjIFb/q016vlT7fmOP4ULRoDiXwXfQKwyPvRmzFDdu4W+cFvqWMh9rV u52ajAQ2N37t7rxDC9+FP7hREwIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFMLxwOV9 2V1zt4CEm6ZWP6jgvtkCMB8GA1UdIwQYMBaAFHvT5D0TTlI16XYDzoupSGtiqbHm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzYzMS8zOUU0RDdBOERD NzgxMUVDQTRFMzA2MTdDNEY5QUUwMi9lOVBrUFJOT1VqWHBkZ1BPaTZsSWEyS3Bz ZVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U5UGtQUk5PVWpYcGRnUE9pNmxJYTJLcHNlWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM2MzEvMzlFNEQ3QThEQzc4MTFFQ0E0RTMwNjE3QzRGOUFFMDIvNjNGMDVERTAy RjFEMTFFREEzRTI5QjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZAYIKwYBBQUHAQcBAf8E VTBTMEIEAgABMDwDBAUbYMADBAZzRQADBAXKrGADBALLF+wDBADLHUEDBAHLHXwD BAHLH8oDBALLOPQDBAHLOTADBAXSAcAwDQQCAAIwBwMFACQH5AAwDQYJKoZIhvcN AQELBQADggEBAL3xUxGBZmGnJWUC/ZMQb7LSsOXQX6vVj6CZBkvXJE7U8N0QEZgU SuW8It2UEKKJDNONa2FZzqzq7IZ9vuDhAPyneLmHXOLytYarnL8b25F9Aw3qx1r7 SeX5pKoR3tVx5MJkG7BrkZ6Kwuvg8TT+EvdZwTBUGTuEDz0BEjeDN2CgpXoQ3Udo TbVadVzbpISt+sIXZ1/y9s9HKfxbstmbI4ax8FZHHx188Xc+yAjwObJkeRUXFEKn DLJPmKVbW3to3y9CLfPjmJ87JgFt2yenRweofWnSNEHwnBsQkrwod1kgserDOLlE sZHTy8kKxJQqpZ9tfCUMVu9pghjT5yZuON8= -----END CERTIFICATE-----Generated at Wed Nov 5 17:02:22 2025 by rpki-client