$ rpki-client -vvf rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/FE5E15E2216911EC82319078C4F9AE02.roa File: FE5E15E2216911EC82319078C4F9AE02.roa (raw, json) Hash identifier: j71cmSthQcDo2Eras5pbfgnd1wVSMIr06Qrqouii3ak= Subject key identifier: B1:8E:1D:F9:1F:EF:EB:87:9A:CF:32:39:6D:07:C8:E1:EC:27:DB:40 Certificate issuer: /CN=A9171845/serialNumber=7C9B29F1F56E87EEAEB1BF7407694DB4EDDAD53B Certificate serial: 050D Authority key identifier: 7C:9B:29:F1:F5:6E:87:EE:AE:B1:BF:74:07:69:4D:B4:ED:DA:D5:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJsp8fVuh-6usb90B2lNtO3a1Ts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/FE5E15E2216911EC82319078C4F9AE02.roa Signing time: Wed 03 Sep 2025 00:15:49 +0000 ROA not before: Wed 03 Sep 2025 00:15:49 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 24324 IP address blocks: 153.111.220.0/24 maxlen: 24 153.111.222.0/24 maxlen: 24 153.111.226.0/24 maxlen: 24 153.111.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/fJsp8fVuh-6usb90B2lNtO3a1Ts.crl rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/fJsp8fVuh-6usb90B2lNtO3a1Ts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJsp8fVuh-6usb90B2lNtO3a1Ts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 23:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1293 (0x50d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171845, serialNumber=7C9B29F1F56E87EEAEB1BF7407694DB4EDDAD53B Validity Not Before: Sep 3 00:15:49 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b788b5-3937 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e4:0b:8b:c1:74:70:81:d9:1e:14:ad:14:55: 8e:d9:ad:da:d0:0a:2a:a4:ce:3a:bf:36:2e:3e:c5: 46:35:c4:01:8a:89:0c:f1:ed:b1:6d:e5:f2:12:ee: eb:59:b8:e4:25:96:8e:0d:58:85:59:bd:e4:53:c3: 2c:e2:ae:86:8d:a3:cb:93:31:7e:71:94:3b:86:67: 5b:77:92:e6:ba:30:e3:82:bd:5a:ee:61:68:a4:72: 28:f5:10:87:04:d2:bd:92:bc:6e:e4:b4:c1:3a:05: 5e:18:68:ca:c4:67:c7:3b:00:d6:04:b0:92:07:f6: 15:a8:97:24:3e:53:fb:eb:f3:52:d6:fe:7b:ac:5d: aa:99:bb:19:a1:44:67:ce:96:94:16:d6:12:ae:87: 18:f3:3e:28:2e:e9:1e:07:29:b0:56:69:d4:12:33: 8b:80:a6:7f:fb:86:2d:a4:ea:89:b3:ac:56:22:9d: 7f:44:62:22:23:39:e7:c4:54:d2:a7:8c:36:a8:b6: bb:88:77:78:04:1c:c2:68:0d:a8:56:b3:17:96:7f: 82:99:c3:2d:5d:ee:4b:1a:4a:7b:dc:15:00:8b:ff: eb:dd:2a:e0:86:59:27:18:71:80:92:e5:51:c8:bf: 61:af:af:ef:6a:c1:9c:58:03:4e:51:a8:84:a8:5a: a1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:8E:1D:F9:1F:EF:EB:87:9A:CF:32:39:6D:07:C8:E1:EC:27:DB:40 X509v3 Authority Key Identifier: keyid:7C:9B:29:F1:F5:6E:87:EE:AE:B1:BF:74:07:69:4D:B4:ED:DA:D5:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/fJsp8fVuh-6usb90B2lNtO3a1Ts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fJsp8fVuh-6usb90B2lNtO3a1Ts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171845/8675BE8020CA11ECB66C1452C4F9AE02/FE5E15E2216911EC82319078C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 153.111.220.0/24 153.111.222.0/24 153.111.226.0/24 153.111.229.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:18:a2:79:c9:14:e8:9a:80:aa:32:ed:f0:f8:b8:b3:7f:9e: 28:13:ab:b0:6a:3b:dc:54:d5:4a:fa:c8:d1:25:49:77:35:ed: 0f:f3:04:48:bf:c7:8f:1b:7d:83:5a:d7:ee:be:15:37:80:f5: da:fc:1b:9f:42:93:4d:9e:22:b0:ec:67:03:10:29:0f:a5:c1: 84:e8:f0:47:d6:2f:67:ad:5d:38:54:5c:56:9f:03:6c:06:b4: ff:a1:5d:29:d3:8a:01:01:00:b1:5f:dc:c1:2d:15:1f:79:9c: 8c:0c:98:7e:17:4c:3a:e4:ac:b5:d7:54:ff:f6:18:70:dd:80: 07:b5:1e:ff:1d:f3:11:84:a2:f9:c2:bc:2a:67:e6:60:d5:e2: bb:f0:e8:c2:8d:6d:e2:b5:21:ff:15:f0:26:07:d8:af:12:d7: 11:ae:36:75:4a:d3:7d:1e:3e:34:c0:e9:04:23:63:32:64:f7: f0:c7:89:57:be:47:a4:39:a4:8c:f8:b1:fb:fe:c4:77:53:78: 93:9b:ae:79:9d:9c:19:6b:43:93:6e:c6:31:fc:d8:89:d3:5f: 08:84:f0:f6:14:cd:2d:9d:c2:8e:27:89:0b:8d:1d:44:f4:4c: f3:1e:77:48:1f:8e:28:c9:61:88:27:a2:1b:a5:dd:fb:ba:43: 54:83:08:c8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE4NDUxMTAvBgNVBAUTKDdDOUIyOUYxRjU2RTg3RUVBRUIxQkY3NDA3Njk0REI0 RUREQUQ1M0IwHhcNMjUwOTAzMDAxNTQ5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ODhiNS0zOTM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq+QLi8F0cIHZHhStFFWO2a3a0AoqpM46vzYuPsVGNcQBiokM8e2xbeXyEu7r WbjkJZaODViFWb3kU8Ms4q6GjaPLkzF+cZQ7hmdbd5LmujDjgr1a7mFopHIo9RCH BNK9krxu5LTBOgVeGGjKxGfHOwDWBLCSB/YVqJckPlP76/NS1v57rF2qmbsZoURn zpaUFtYSrocY8z4oLukeBymwVmnUEjOLgKZ/+4YtpOqJs6xWIp1/RGIiIznnxFTS p4w2qLa7iHd4BBzCaA2oVrMXln+CmcMtXe5LGkp73BUAi//r3SrghlknGHGAkuVR yL9hr6/vasGcWANOUaiEqFqh6wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFLGOHfkf 7+uHms8yOW0HyOHsJ9tAMB8GA1UdIwQYMBaAFHybKfH1bofurrG/dAdpTbTt2tU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTg0NS84Njc1QkU4MDIw Q0ExMUVDQjY2QzE0NTJDNEY5QUUwMi9mSnNwOGZWdWgtNnVzYjkwQjJsTnRPM2Ex VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZKc3A4ZlZ1aC02dXNiOTBCMmxOdE8zYTFUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE4NDUvODY3NUJFODAyMENBMTFFQ0I2NkMxNDUyQzRGOUFFMDIvRkU1RTE1RTIy MTY5MTFFQzgyMzE5MDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBACZb9wDBACZb94DBACZb+IDBACZb+UwDQYJKoZIhvcNAQEL BQADggEBAAsYonnJFOiagKoy7fD4uLN/nigTq7BqO9xU1Ur6yNElSXc17Q/zBEi/ x48bfYNa1+6+FTeA9dr8G59Ck02eIrDsZwMQKQ+lwYTo8EfWL2etXThUXFafA2wG tP+hXSnTigEBALFf3MEtFR95nIwMmH4XTDrkrLXXVP/2GHDdgAe1Hv8d8xGEovnC vCpn5mDV4rvw6MKNbeK1If8V8CYH2K8S1xGuNnVK030ePjTA6QQjYzJk9/DHiVe+ R6Q5pIz4sfv+xHdTeJObrnmdnBlrQ5NuxjH82InTXwiE8PYUzS2dwo4niQuNHUT0 TPMed0gfjijJYYgnohul3fu6Q1SDCMg= -----END CERTIFICATE-----Generated at Mon Sep 8 13:34:21 2025 by rpki-client