$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/69F70CA058AC11F09233031BC4F9AE02.roa File: 69F70CA058AC11F09233031BC4F9AE02.roa (raw, json) Hash identifier: 2Puhp7/s84Ka+c1PIsRk7dV+hCO9uJyQczuwL9aw3Io= Subject key identifier: A1:25:A5:82:2A:02:77:5A:DB:DC:45:95:7B:A9:C2:40:A5:A3:49:01 Certificate issuer: /CN=A917DB77/serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Certificate serial: 02 Authority key identifier: 8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/69F70CA058AC11F09233031BC4F9AE02.roa Signing time: Fri 04 Jul 2025 07:56:38 +0000 ROA not before: Fri 04 Jul 2025 07:56:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153841 IP address blocks: 163.227.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:37:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB77, serialNumber=8AF598294B6B23A139EDF54F2428BC619651AA17 Validity Not Before: Jul 4 07:56:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68678936-c6d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cf:f4:cd:d4:5f:df:8d:f7:a8:7a:0d:00:d2: d3:fe:8b:d0:67:d8:95:8e:62:44:26:ab:25:81:15: 93:3d:51:5d:35:83:0b:5a:93:13:52:f8:6a:0b:16: 4e:fb:67:55:2c:66:62:21:2a:74:98:7b:f1:bc:71: 49:fc:16:1d:30:20:36:45:dd:e3:7f:d8:d2:70:e5: f3:68:ae:00:98:23:83:c9:95:3d:22:70:1e:9f:60: cf:73:57:c0:4f:22:ad:5e:09:9b:94:41:43:e4:06: 18:df:04:29:d6:6e:f0:1d:2e:19:26:6a:43:68:41: 06:64:56:2c:c8:1c:ad:59:60:3c:98:0e:3a:51:b6: 14:20:70:07:21:9d:3e:1a:e1:d1:78:d2:c1:d5:d6: ac:02:43:2b:43:3f:0c:4f:6d:cd:32:8e:d9:d7:21: 88:9a:b2:9c:e9:1a:45:41:a7:27:c9:3a:c8:be:ab: de:23:d4:7a:5c:aa:db:cf:1f:b0:ed:40:53:3a:67: 93:01:a9:dc:d0:55:16:3f:4e:88:f9:6f:c0:92:00: c7:ab:be:4d:f7:59:a9:66:3b:d4:ff:27:72:62:0a: a1:ed:f6:ff:2a:fc:44:82:36:4e:6e:29:96:4d:57: c9:cb:c0:2d:21:0c:99:92:1f:4a:f2:ba:fd:4c:90: 92:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:25:A5:82:2A:02:77:5A:DB:DC:45:95:7B:A9:C2:40:A5:A3:49:01 X509v3 Authority Key Identifier: keyid:8A:F5:98:29:4B:6B:23:A1:39:ED:F5:4F:24:28:BC:61:96:51:AA:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/ivWYKUtrI6E57fVPJCi8YZZRqhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivWYKUtrI6E57fVPJCi8YZZRqhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB77/934E356258AA11F0B2EEA114C4F9AE02/69F70CA058AC11F09233031BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.204.0/24 Signature Algorithm: sha256WithRSAEncryption d7:71:28:2a:57:43:20:4d:26:69:8b:f4:68:5c:a1:d4:6c:93: 11:87:85:10:48:d1:50:ef:d1:92:51:a5:59:23:79:33:fe:63: 1e:e3:2c:49:24:79:ec:a7:71:0a:e5:78:60:41:40:fe:27:c4: 57:35:b0:86:aa:06:cc:c9:87:ec:67:da:d5:a4:57:bf:38:1a: 26:50:ed:ea:84:77:80:5e:59:69:95:75:56:90:a0:69:96:96: 7d:6e:fc:99:9c:b3:31:44:75:a5:55:72:d6:ce:85:7f:93:43: ee:46:ea:f8:f8:a8:ed:bf:9d:99:3e:f7:93:42:c2:d8:41:77: b0:89:38:8c:4f:69:af:84:b2:8e:c8:43:3b:bf:a4:39:9d:eb: 66:da:4f:52:cd:ec:04:84:77:4c:24:7a:a9:c0:18:07:0d:1c: 25:fa:4c:88:ca:03:a7:50:fc:f8:8e:a6:5c:e3:8f:78:25:52: 75:3b:cb:fc:67:5b:59:f1:31:de:ae:c9:3e:35:51:f2:6d:16: 14:11:8f:28:0e:0c:0e:ba:0f:a8:d9:07:55:31:d1:ef:f5:15: 03:86:67:12:a7:c9:ef:f5:c2:03:6d:65:99:c9:aa:77:c0:50: e6:05:72:01:3d:55:95:29:3d:77:a8:ed:a6:1c:f9:1c:5b:6c: 88:ba:32:1e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 REI3NzExMC8GA1UEBRMoOEFGNTk4Mjk0QjZCMjNBMTM5RURGNTRGMjQyOEJDNjE5 NjUxQUExNzAeFw0yNTA3MDQwNzU2MzhaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Njc4OTM2LWM2ZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXz/TN1F/fjfeoeg0A0tP+i9Bn2JWOYkQmqyWBFZM9UV01gwtakxNS+GoLFk77 Z1UsZmIhKnSYe/G8cUn8Fh0wIDZF3eN/2NJw5fNorgCYI4PJlT0icB6fYM9zV8BP Iq1eCZuUQUPkBhjfBCnWbvAdLhkmakNoQQZkVizIHK1ZYDyYDjpRthQgcAchnT4a 4dF40sHV1qwCQytDPwxPbc0yjtnXIYiaspzpGkVBpyfJOsi+q94j1HpcqtvPH7Dt QFM6Z5MBqdzQVRY/Toj5b8CSAMervk33WalmO9T/J3JiCqHt9v8q/ESCNk5uKZZN V8nLwC0hDJmSH0ryuv1MkJIRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUoSWlgioC d1rb3EWVe6nCQKWjSQEwHwYDVR0jBBgwFoAUivWYKUtrI6E57fVPJCi8YZZRqhcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdEQjc3LzkzNEUzNTYyNThB QTExRjBCMkVFQTExNEM0RjlBRTAyL2l2V1lLVXRySTZFNTdmVlBKQ2k4WVpaUnFo Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXZXWUtVdHJJNkU1N2ZWUEpDaThZWlpScWhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 REI3Ny85MzRFMzU2MjU4QUExMUYwQjJFRUExMTRDNEY5QUUwMi82OUY3MENBMDU4 QUMxMUYwOTIzMzAzMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKPjzDANBgkqhkiG9w0BAQsFAAOCAQEA13EoKldDIE0maYv0 aFyh1GyTEYeFEEjRUO/RklGlWSN5M/5jHuMsSSR57KdxCuV4YEFA/ifEVzWwhqoG zMmH7Gfa1aRXvzgaJlDt6oR3gF5ZaZV1VpCgaZaWfW78mZyzMUR1pVVy1s6Ff5ND 7kbq+Pio7b+dmT73k0LC2EF3sIk4jE9pr4SyjshDO7+kOZ3rZtpPUs3sBIR3TCR6 qcAYBw0cJfpMiMoDp1D8+I6mXOOPeCVSdTvL/GdbWfEx3q7JPjVR8m0WFBGPKA4M DroPqNkHVTHR7/UVA4ZnEqfJ7/XCA21lmcmqd8BQ5gVyAT1VlSk9d6jtphz5HFts iLoyHg== -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:04 2025 by rpki-client