$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/8B92BEBE5F6411EFA6B37A52C4F9AE02.roa File: 8B92BEBE5F6411EFA6B37A52C4F9AE02.roa (raw, json) Hash identifier: GkFsgcCTQi41PJZpo8ztHv+JYmuc5dpzqADAG4n65Kw= Subject key identifier: D8:E0:84:E7:D0:93:A2:F1:5C:18:81:C6:AE:25:1A:50:F0:D4:08:35 Certificate issuer: /CN=A9179672/serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Certificate serial: E4 Authority key identifier: 91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/8B92BEBE5F6411EFA6B37A52C4F9AE02.roa Signing time: Thu 04 Sep 2025 02:39:11 +0000 ROA not before: Thu 04 Sep 2025 02:39:11 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 192.206.153.0/24 maxlen: 24 192.206.156.0/24 maxlen: 24 192.206.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Validity Not Before: Sep 4 02:39:11 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68b8fbce-0f69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:11:7a:ef:48:3a:d5:b5:78:d2:b1:a1:eb:e5: 95:28:e6:d5:39:b1:4e:6b:44:09:fc:85:a4:0c:6c: 4e:2f:32:f2:89:39:ff:94:58:db:4b:6e:7d:c9:ba: c4:b6:1e:b8:5d:ea:ee:f5:46:52:f5:27:9d:0d:f1: c8:2f:3f:60:f2:c8:9d:55:bc:0e:66:8c:75:a0:91: bf:4c:83:17:e7:c8:9a:96:bb:70:97:a5:78:17:c9: ed:af:60:cd:58:c5:e1:96:a9:d6:0a:98:95:12:60: b3:ab:95:ce:e3:21:50:a2:e5:07:33:4e:b5:5a:a7: 31:44:fe:63:e7:63:fa:68:fb:25:89:27:9b:ea:2d: ce:07:ee:43:9b:ca:61:36:38:d2:86:a7:23:ce:40: 50:22:c9:7c:68:da:35:0d:64:b5:01:34:eb:e6:1a: bb:99:83:41:cd:81:d9:28:c3:2b:d2:64:e8:e8:0e: cc:dd:83:52:33:25:3a:f3:06:41:d4:7e:55:19:14: 69:aa:c8:0b:c1:ff:ce:5a:a8:a2:cd:29:29:b5:70: 88:08:6d:7a:c1:de:d7:15:15:07:1f:09:8b:02:fa: 52:67:19:05:d6:02:d4:2b:5e:e9:ae:2d:26:d9:78: 06:38:e7:5e:10:2d:8c:64:1b:a1:d0:22:e6:66:33: 5d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:E0:84:E7:D0:93:A2:F1:5C:18:81:C6:AE:25:1A:50:F0:D4:08:35 X509v3 Authority Key Identifier: keyid:91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/8B92BEBE5F6411EFA6B37A52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.206.153.0/24 192.206.156.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:03:5e:91:13:4f:fb:2c:9c:fe:20:e2:36:93:86:d9:0a:fb: b6:33:43:1d:54:71:32:0a:7f:c6:0e:b5:88:7a:8b:a3:c4:66: 2b:c0:70:66:6d:c6:87:9f:2a:71:a0:4b:9e:73:b7:b3:68:20: 93:c9:b8:6c:4d:7e:a1:1f:06:c6:e1:1e:bf:f0:30:4a:ee:d7: 4d:02:3f:24:60:3c:97:74:01:67:58:99:a7:e3:f7:6d:09:c0: 96:ed:fd:63:6e:5a:47:aa:f5:9e:5f:e5:b2:6c:5f:ec:33:9a: fe:46:5a:2f:06:2f:c7:43:1d:79:4d:60:a7:9e:cc:c4:74:1d: 0b:96:4b:fa:74:bb:df:85:37:5b:01:f9:4c:8d:cd:da:c5:a3: ae:95:31:0c:e1:9b:ec:fd:9e:a6:c5:69:75:94:83:c4:5f:12: cd:48:23:df:67:84:a2:cb:1d:d0:70:aa:67:4c:e4:59:f3:f9: 16:9e:67:32:e0:a5:cf:b0:b9:31:14:9c:e2:ec:3d:c9:78:1b: d4:6f:e7:51:4f:1c:8c:33:13:5a:eb:d1:ec:06:58:f3:99:a5: 06:60:5d:5e:7a:ed:ee:b4:d3:ed:02:51:55:ba:b3:9c:ba:11: e2:11:18:01:30:fb:96:05:19:1c:6f:0e:60:49:95:40:6f:6e: 9e:29:0b:8f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk2NzIxMTAvBgNVBAUTKDkxQUE3NzgzRkIwMjc4MTk4MzhDNEE5MUM5MUM2MEQ0 MUZCM0VFQUIwHhcNMjUwOTA0MDIzOTExWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI4ZmJjZS0wZjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7hF670g61bV40rGh6+WVKObVObFOa0QJ/IWkDGxOLzLyiTn/lFjbS259ybrE th64Xeru9UZS9SedDfHILz9g8sidVbwOZox1oJG/TIMX58ialrtwl6V4F8ntr2DN WMXhlqnWCpiVEmCzq5XO4yFQouUHM061WqcxRP5j52P6aPsliSeb6i3OB+5Dm8ph NjjShqcjzkBQIsl8aNo1DWS1ATTr5hq7mYNBzYHZKMMr0mTo6A7M3YNSMyU68wZB 1H5VGRRpqsgLwf/OWqiizSkptXCICG16wd7XFRUHHwmLAvpSZxkF1gLUK17pri0m 2XgGOOdeEC2MZBuh0CLmZjNdWwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNjghOfQ k6LxXBiBxq4lGlDw1Ag1MB8GA1UdIwQYMBaAFJGqd4P7AngZg4xKkckcYNQfs+6r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTY3Mi9FNUY0NUFEMDVG NTQxMUVGOEQxOEJFMjNDNEY5QUUwMi9rYXAzZ19zQ2VCbURqRXFSeVJ4ZzFCLXo3 cXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2thcDNnX3NDZUJtRGpFcVJ5UnhnMUItejdxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk2NzIvRTVGNDVBRDA1RjU0MTFFRjhEMThCRTIzQzRGOUFFMDIvOEI5MkJFQkU1 RjY0MTFFRkE2QjM3QTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADAzpkDBAHAzpwwDQYJKoZIhvcNAQELBQADggEBAF4DXpET T/ssnP4g4jaThtkK+7YzQx1UcTIKf8YOtYh6i6PEZivAcGZtxoefKnGgS55zt7No IJPJuGxNfqEfBsbhHr/wMEru100CPyRgPJd0AWdYmafj920JwJbt/WNuWkeq9Z5f 5bJsX+wzmv5GWi8GL8dDHXlNYKeezMR0HQuWS/p0u9+FN1sB+UyNzdrFo66VMQzh m+z9nqbFaXWUg8RfEs1II99nhKLLHdBwqmdM5Fnz+RaeZzLgpc+wuTEUnOLsPcl4 G9Rv51FPHIwzE1rr0ewGWPOZpQZgXV567e600+0CUVW6s5y6EeIRGAEw+5YFGRxv DmBJlUBvbp4pC48= -----END CERTIFICATE-----Generated at Sun Sep 7 00:37:18 2025 by rpki-client