$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/71685FB25F6411EFB16D4552C4F9AE02.roa File: 71685FB25F6411EFB16D4552C4F9AE02.roa (raw, json) Hash identifier: 0xJhM7XEj4IqerVzSAWeK+UrQBjq8glBzgmIW+USWgY= Subject key identifier: 2A:55:FA:0B:29:07:3B:76:D5:7F:9F:9B:73:FE:ED:33:A7:41:C7:B1 Certificate issuer: /CN=A9179672/serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Certificate serial: E3 Authority key identifier: 91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/71685FB25F6411EFB16D4552C4F9AE02.roa Signing time: Thu 04 Sep 2025 02:39:10 +0000 ROA not before: Thu 04 Sep 2025 02:39:10 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 192.206.153.0/24 maxlen: 24 192.206.156.0/24 maxlen: 24 192.206.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Validity Not Before: Sep 4 02:39:10 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b8fbce-e01b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:6d:ac:d8:13:03:a5:5e:33:42:b4:35:df:98: bc:ca:79:76:94:ed:8e:c5:7b:54:84:ae:b7:6a:a9: 0e:fb:8e:fd:83:d3:80:73:93:11:1e:bd:49:73:04: 9d:4b:83:29:41:2b:2e:e9:10:f1:76:93:35:8e:1f: fd:93:9f:cc:a3:ec:57:3f:66:8c:7c:ee:b5:7b:e6: a2:6d:7f:4f:b4:2f:00:e8:c1:73:9b:4b:ff:0a:c7: f8:c0:fa:6b:e1:0b:10:33:9f:fe:7a:d9:4d:f1:dd: 4d:82:89:10:a9:55:14:c0:95:98:95:57:84:5b:36: bb:1b:e5:78:b4:e3:43:8a:1c:19:06:e5:e4:4a:eb: c8:e1:f3:08:61:bd:02:b6:6a:35:e2:8e:b4:77:0d: 0e:05:f9:e6:6f:69:98:02:40:3d:8f:19:5c:00:de: 0f:53:09:09:de:32:bc:2e:c5:96:8e:a8:f5:41:5d: 70:06:29:14:2b:ac:21:9d:ca:0a:9a:9b:65:a2:c8: 31:36:91:05:f1:65:b8:10:c9:44:ea:ed:59:97:38: 54:43:27:50:11:6d:1c:78:2a:74:08:c8:fa:29:e8: d7:0a:18:b1:bc:6c:14:fb:b4:46:84:2a:9c:9e:91: 4c:63:f1:fb:e3:a2:7a:41:75:13:8d:1e:86:cd:fa: 8a:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:55:FA:0B:29:07:3B:76:D5:7F:9F:9B:73:FE:ED:33:A7:41:C7:B1 X509v3 Authority Key Identifier: keyid:91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/71685FB25F6411EFB16D4552C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.206.153.0/24 192.206.156.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:f4:98:3a:5a:67:73:56:c4:a9:46:41:2a:af:d3:3f:7d:70: 35:f9:c9:b7:68:d0:6c:2b:c5:f8:1c:08:85:25:f4:dc:4d:8c: 98:51:b1:8e:be:f2:bf:0a:c3:54:a5:01:1a:e0:3a:c6:4b:02: 81:4a:74:e7:f3:04:2f:a7:58:57:e0:f7:52:8f:51:0f:ec:e1: 3c:fe:35:85:44:aa:63:d8:3e:cc:08:d9:71:e1:ef:a5:49:15: 5a:0b:84:47:33:d3:da:8e:d3:a8:5f:c2:dd:5b:23:76:3a:4b: c2:ea:60:34:8e:6d:5f:0b:11:c6:2f:1f:71:3d:79:67:95:fb: 62:d7:40:2c:7e:f4:b9:3b:1f:5e:c5:92:42:b4:b7:d9:83:7b: 1b:e7:3e:a8:4d:4b:94:2d:65:c0:5e:fb:99:5f:4c:0e:02:17: 80:a3:ff:eb:1c:5e:61:f8:88:62:86:9f:98:49:39:d8:80:dc: 63:cc:65:58:4e:d7:35:4f:b8:12:32:fb:31:a6:9b:61:19:74: fc:b0:31:b6:18:44:5c:21:7a:cd:84:45:75:dc:0c:62:28:6f: 95:99:6a:f1:f6:03:b9:be:14:20:41:b0:2a:03:e9:ca:b5:f3: 73:52:65:41:f3:b3:30:32:22:a6:a8:66:9e:61:53:cd:be:e3: 7b:36:e6:7f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk2NzIxMTAvBgNVBAUTKDkxQUE3NzgzRkIwMjc4MTk4MzhDNEE5MUM5MUM2MEQ0 MUZCM0VFQUIwHhcNMjUwOTA0MDIzOTEwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI4ZmJjZS1lMDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA422s2BMDpV4zQrQ135i8ynl2lO2OxXtUhK63aqkO+479g9OAc5MRHr1JcwSd S4MpQSsu6RDxdpM1jh/9k5/Mo+xXP2aMfO61e+aibX9PtC8A6MFzm0v/Csf4wPpr 4QsQM5/+etlN8d1NgokQqVUUwJWYlVeEWza7G+V4tONDihwZBuXkSuvI4fMIYb0C tmo14o60dw0OBfnmb2mYAkA9jxlcAN4PUwkJ3jK8LsWWjqj1QV1wBikUK6whncoK mptlosgxNpEF8WW4EMlE6u1ZlzhUQydQEW0ceCp0CMj6KejXChixvGwU+7RGhCqc npFMY/H746J6QXUTjR6GzfqK9wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCpV+gsp Bzt21X+fm3P+7TOnQcexMB8GA1UdIwQYMBaAFJGqd4P7AngZg4xKkckcYNQfs+6r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTY3Mi9FNUY0NUFEMDVG NTQxMUVGOEQxOEJFMjNDNEY5QUUwMi9rYXAzZ19zQ2VCbURqRXFSeVJ4ZzFCLXo3 cXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2thcDNnX3NDZUJtRGpFcVJ5UnhnMUItejdxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk2NzIvRTVGNDVBRDA1RjU0MTFFRjhEMThCRTIzQzRGOUFFMDIvNzE2ODVGQjI1 RjY0MTFFRkIxNkQ0NTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADAzpkDBAHAzpwwDQYJKoZIhvcNAQELBQADggEBAH/0mDpa Z3NWxKlGQSqv0z99cDX5ybdo0GwrxfgcCIUl9NxNjJhRsY6+8r8Kw1SlARrgOsZL AoFKdOfzBC+nWFfg91KPUQ/s4Tz+NYVEqmPYPswI2XHh76VJFVoLhEcz09qO06hf wt1bI3Y6S8LqYDSObV8LEcYvH3E9eWeV+2LXQCx+9Lk7H17FkkK0t9mDexvnPqhN S5QtZcBe+5lfTA4CF4Cj/+scXmH4iGKGn5hJOdiA3GPMZVhO1zVPuBIy+zGmm2EZ dPywMbYYRFwhes2ERXXcDGIob5WZavH2A7m+FCBBsCoD6cq183NSZUHzszAyIqao Zp5hU82+43s25n8= -----END CERTIFICATE-----Generated at Sun Sep 7 00:36:50 2025 by rpki-client