$ rpki-client -vvf rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/70FED13CCEF611ED9DDE0A39C4F9AE02.roa File: 70FED13CCEF611ED9DDE0A39C4F9AE02.roa (raw, json) Hash identifier: 6YMCbYV0HjEFxQW7Rqr8k/qQPvulelScO8qALM4FUVY= Subject key identifier: EB:EF:E3:25:EE:95:DC:DE:AB:8B:BC:EF:AC:49:33:8B:DB:4F:0A:8A Certificate issuer: /CN=A915CCEA/serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Certificate serial: 0979 Authority key identifier: 86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/70FED13CCEF611ED9DDE0A39C4F9AE02.roa Signing time: Tue 02 Sep 2025 20:40:36 +0000 ROA not before: Tue 02 Sep 2025 20:40:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 3300 IP address blocks: 61.14.0.0/18 maxlen: 24 203.187.128.0/19 maxlen: 24 2402:fb00::/32 maxlen: 32 2402:fb00::/34 maxlen: 40 2402:fb00:4000::/34 maxlen: 40 2402:fb00:8000::/34 maxlen: 40 2402:fb00:c000::/34 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 20:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2425 (0x979) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CCEA, serialNumber=862B73B9CE3504B0BA241D14FDAC0EC4B4E4ADC2 Validity Not Before: Sep 2 20:40:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b75644-3509 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:89:24:dd:dc:7e:71:b7:d7:bb:79:6a:c2:49: f3:b0:30:a9:b7:c7:16:ba:76:4a:35:04:2e:15:01: 56:4d:ab:cd:51:1d:2c:ea:88:fc:c9:2c:ca:9d:62: b3:b1:f8:d5:c3:db:96:0b:ab:82:f1:c8:43:4b:8f: 83:bb:3d:b7:c1:ee:71:74:7d:8b:2c:db:4e:4f:91: e5:78:4a:13:11:8c:21:8b:d8:d5:e1:45:a4:1a:3f: 72:ec:d2:be:6f:62:0d:0b:54:2b:ca:f0:98:41:df: 3e:16:7e:21:93:17:a0:e1:7c:70:ac:c9:b7:b1:ea: f2:ad:5b:1d:b7:b8:16:2d:43:45:15:24:d4:fb:75: 4e:43:1d:59:7c:96:1d:d8:ee:07:5a:57:a9:ec:0e: f9:52:86:94:f2:5a:2f:f6:89:0d:7e:1a:87:74:93: 93:a6:63:13:43:18:08:30:b9:fb:5f:ae:d4:d5:88: 7d:15:9f:51:1f:4d:41:73:28:30:ff:ec:e1:13:37: 0a:57:b1:0f:e1:67:0e:23:e9:35:8e:60:ee:e9:e4: 53:1f:88:f9:28:af:c9:80:fb:5a:63:9a:e9:f8:36: 3f:ff:4f:56:1a:eb:f7:7c:b0:59:10:69:73:ee:7f: 6f:b8:80:8d:ad:b5:b7:76:d8:be:b8:01:dc:e3:e5: 6e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:EF:E3:25:EE:95:DC:DE:AB:8B:BC:EF:AC:49:33:8B:DB:4F:0A:8A X509v3 Authority Key Identifier: keyid:86:2B:73:B9:CE:35:04:B0:BA:24:1D:14:FD:AC:0E:C4:B4:E4:AD:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/hitzuc41BLC6JB0U_awOxLTkrcI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hitzuc41BLC6JB0U_awOxLTkrcI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CCEA/406EF178A0C311EA8764236FC4F9AE02/70FED13CCEF611ED9DDE0A39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.14.0.0/18 203.187.128.0/19 IPv6: 2402:fb00::/32 Signature Algorithm: sha256WithRSAEncryption 79:35:94:88:b7:a5:b3:93:bf:3c:42:04:4f:3d:e6:d9:9c:ec: 80:5e:d9:7c:58:89:57:9e:9f:3b:5b:c8:63:5e:34:7e:cc:97: 7d:ba:02:90:f2:e1:bb:8d:b0:29:ef:5f:14:42:9e:6c:43:2f: 54:bb:4d:ff:17:6c:fd:a0:e6:e7:4f:ea:cc:c0:95:1d:87:2c: 96:a1:8f:a1:14:31:6c:54:ad:fa:e7:65:6e:04:57:21:12:7e: 58:df:5c:3c:82:59:80:ae:a2:4d:47:6f:28:64:ca:b5:d1:b2: d2:29:b9:17:98:69:af:1a:eb:b5:d6:85:fc:ca:4b:9f:af:17: ea:9c:e2:30:bd:08:73:1a:76:b1:1b:98:8b:89:b9:95:b7:c1: 8a:0e:33:b8:f6:ab:15:4d:a2:85:e7:46:1e:3d:92:06:86:eb: 2a:fd:41:79:a9:b7:d9:8e:cf:5f:a3:8b:01:0a:fc:61:83:7f: 86:d3:3a:44:e6:d4:b7:06:ab:85:f8:d5:a1:61:00:3a:31:d1: 46:78:af:81:e7:2b:2a:60:dc:de:9c:92:b3:81:db:06:cd:db: db:92:45:3e:bf:11:8e:bb:15:dc:7d:94:11:24:96:a0:ea:86: e9:51:bd:ab:66:70:1f:00:f3:d5:0e:20:92:0a:27:ec:08:9a: fe:8c:40:10 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDRUExMTAvBgNVBAUTKDg2MkI3M0I5Q0UzNTA0QjBCQTI0MUQxNEZEQUMwRUM0 QjRFNEFEQzIwHhcNMjUwOTAyMjA0MDM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NTY0NC0zNTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqIkk3dx+cbfXu3lqwknzsDCpt8cWunZKNQQuFQFWTavNUR0s6oj8ySzKnWKz sfjVw9uWC6uC8chDS4+Duz23we5xdH2LLNtOT5HleEoTEYwhi9jV4UWkGj9y7NK+ b2INC1QryvCYQd8+Fn4hkxeg4XxwrMm3seryrVsdt7gWLUNFFSTU+3VOQx1ZfJYd 2O4HWlep7A75UoaU8lov9okNfhqHdJOTpmMTQxgIMLn7X67U1Yh9FZ9RH01Bcygw /+zhEzcKV7EP4WcOI+k1jmDu6eRTH4j5KK/JgPtaY5rp+DY//09WGuv3fLBZEGlz 7n9vuICNrbW3dti+uAHc4+Vu8QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOvv4yXu ldzeq4u876xJM4vbTwqKMB8GA1UdIwQYMBaAFIYrc7nONQSwuiQdFP2sDsS05K3C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0NFQS80MDZFRjE3OEEw QzMxMUVBODc2NDIzNkZDNEY5QUUwMi9oaXR6dWM0MUJMQzZKQjBVX2F3T3hMVGty Y0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hpdHp1YzQxQkxDNkpCMFVfYXdPeExUa3JjSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUNDRUEvNDA2RUYxNzhBMEMzMTFFQTg3NjQyMzZGQzRGOUFFMDIvNzBGRUQxM0ND RUY2MTFFRDlEREUwQTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAY9DgADBAXLu4AwDQQCAAIwBwMFACQC+wAwDQYJKoZIhvcN AQELBQADggEBAHk1lIi3pbOTvzxCBE895tmc7IBe2XxYiVeenztbyGNeNH7Ml326 ApDy4buNsCnvXxRCnmxDL1S7Tf8XbP2g5udP6szAlR2HLJahj6EUMWxUrfrnZW4E VyESfljfXDyCWYCuok1HbyhkyrXRstIpuReYaa8a67XWhfzKS5+vF+qc4jC9CHMa drEbmIuJuZW3wYoOM7j2qxVNooXnRh49kgaG6yr9QXmpt9mOz1+jiwEK/GGDf4bT OkTm1LcGq4X41aFhADox0UZ4r4HnKypg3N6ckrOB2wbN29uSRT6/EY67Fdx9lBEk lqDqhulRvatmcB8A89UOIJIKJ+wImv6MQBA= -----END CERTIFICATE-----Generated at Mon Oct 27 14:33:11 2025 by rpki-client