$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/D69F6688CD8511EBB5252063C4F9AE02.roa File: D69F6688CD8511EBB5252063C4F9AE02.roa (raw, json) Hash identifier: o45AFhO6SSMQiWqggKeTKMzwcSJwvQDsZ1NlO/kkLkM= Subject key identifier: BD:E7:FB:AD:D9:66:5B:53:FD:86:66:DC:FE:00:37:74:F7:E9:75:8E Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 34D6 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/D69F6688CD8511EBB5252063C4F9AE02.roa Signing time: Fri 12 Sep 2025 14:50:30 +0000 ROA not before: Fri 12 Sep 2025 14:50:29 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9584 IP address blocks: 114.142.144.0/20 maxlen: 24 202.65.192.0/19 maxlen: 24 202.66.128.0/19 maxlen: 24 202.134.64.0/18 maxlen: 24 219.90.112.0/20 maxlen: 24 2001:eb0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13526 (0x34d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422, serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Sep 12 14:50:29 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c43335-7d8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:34:42:0b:a5:98:63:e0:41:38:01:06:b4:29: da:d0:0d:68:6c:74:4f:17:20:55:3f:e0:78:83:03: 13:32:27:91:41:24:0e:f5:a8:82:eb:d1:de:7f:64: ad:a3:a6:16:1f:10:99:39:12:93:c4:22:e2:63:4d: da:39:50:c5:7b:2d:b4:ad:fd:80:60:74:7a:c2:e1: 75:40:fe:63:05:d4:a3:80:ff:1a:f6:26:86:a5:14: ef:76:69:49:b4:bd:b7:a5:96:de:00:de:cd:f1:61: 70:43:00:4c:53:73:4f:1a:5d:48:09:bd:a5:0f:4d: 06:c2:45:24:76:2a:d7:f0:e4:7b:91:63:3d:10:f6: 8b:6e:17:df:e9:66:de:45:e8:01:2a:e5:ef:ea:d6: d4:a5:6f:a2:8f:66:88:79:8c:8f:b5:41:19:23:e0: 0a:dc:b1:c0:e3:9f:ce:43:9e:52:dd:8b:9d:23:96: 6d:7c:88:1b:db:68:16:7e:f2:de:17:8c:cb:e7:20: e0:44:bc:9f:59:68:40:ed:c4:89:6a:29:a0:94:ca: 73:49:20:a9:e1:37:f0:f1:f9:6f:66:13:b8:13:0b: 98:dc:ff:07:b7:ae:71:41:ef:21:18:7d:68:df:10: 47:85:fd:c7:69:3d:3a:73:d1:05:e7:bb:47:32:79: 5c:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:E7:FB:AD:D9:66:5B:53:FD:86:66:DC:FE:00:37:74:F7:E9:75:8E X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/D69F6688CD8511EBB5252063C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.142.144.0/20 202.65.192.0/19 202.66.128.0/19 202.134.64.0/18 219.90.112.0/20 IPv6: 2001:eb0::/32 Signature Algorithm: sha256WithRSAEncryption a1:d8:a0:28:b5:00:b9:8d:3f:c5:95:a9:17:97:78:62:82:1d: b1:62:1f:11:46:39:95:e1:35:b4:4a:3a:04:7b:59:5b:aa:be: 4e:51:9f:74:c6:81:6e:52:24:00:99:38:78:e2:1a:cf:ab:6f: ec:31:36:88:59:c6:7d:ab:de:5f:8e:e5:78:e7:45:ae:45:1a: 67:9a:a4:39:b0:ba:f6:9c:ba:31:40:8d:45:02:f3:52:b4:24: 62:1b:bf:a8:5b:e9:7a:fc:71:a0:f5:ac:0a:29:3c:28:77:8d: 71:e5:c9:91:a6:d4:f0:75:3a:e0:ed:59:c7:04:b4:64:47:65: a7:99:14:ce:81:e2:e1:92:19:2f:57:c5:67:95:45:8e:31:50: 82:5e:47:b4:69:af:c1:de:49:2e:41:7b:ed:90:b5:e1:b6:db: 32:fb:b0:87:53:7d:c7:34:b8:e4:0a:29:e5:00:1a:96:4b:86: 96:39:02:e7:76:11:30:07:92:fa:3b:ec:b2:b3:6a:61:13:22: b6:98:23:f3:19:e4:e6:f4:d1:d7:e0:30:f6:f9:eb:8f:7e:36: 5f:4f:6d:1d:b8:f6:91:91:23:a2:b8:5c:6a:07:cf:4b:ab:3f: d6:25:72:3d:16:b8:21:45:d0:e2:fc:19:95:3a:49:a1:70:15: e5:c8:7b:76 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICNNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjUwOTEyMTQ1MDI5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0MzMzNS03ZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlDRCC6WYY+BBOAEGtCna0A1obHRPFyBVP+B4gwMTMieRQSQO9aiC69Hef2St o6YWHxCZORKTxCLiY03aOVDFey20rf2AYHR6wuF1QP5jBdSjgP8a9iaGpRTvdmlJ tL23pZbeAN7N8WFwQwBMU3NPGl1ICb2lD00GwkUkdirX8OR7kWM9EPaLbhff6Wbe RegBKuXv6tbUpW+ij2aIeYyPtUEZI+AK3LHA45/OQ55S3YudI5ZtfIgb22gWfvLe F4zL5yDgRLyfWWhA7cSJaimglMpzSSCp4Tfw8flvZhO4EwuY3P8Ht65xQe8hGH1o 3xBHhf3HaT06c9EF57tHMnlcgwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFL3n+63Z ZltT/YZm3P4AN3T36XWOMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0MjIvQTJDNzM4NjgxRDg1MTFFMjg3MDM2QURDMDhCMDJDRDIvRDY5RjY2ODhD RDg1MTFFQkI1MjUyMDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBARyjpADBAXKQcADBAXKQoADBAbKhkADBATbWnAwDQQCAAIw BwMFACABDrAwDQYJKoZIhvcNAQELBQADggEBAKHYoCi1ALmNP8WVqReXeGKCHbFi HxFGOZXhNbRKOgR7WVuqvk5Rn3TGgW5SJACZOHjiGs+rb+wxNohZxn2r3l+O5Xjn Ra5FGmeapDmwuvacujFAjUUC81K0JGIbv6hb6Xr8caD1rAopPCh3jXHlyZGm1PB1 OuDtWccEtGRHZaeZFM6B4uGSGS9XxWeVRY4xUIJeR7Rpr8HeSS5Be+2QteG22zL7 sIdTfcc0uOQKKeUAGpZLhpY5Aud2ETAHkvo77LKzamETIraYI/MZ5Ob00dfgMPb5 649+Nl9PbR249pGRI6K4XGoHz0urP9Ylcj0WuCFF0OL8GZU6SaFwFeXIe3Y= -----END CERTIFICATE-----Generated at Fri Sep 19 02:15:41 2025 by rpki-client