$ rpki-client -vvf rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/DEB93E12828F11EF9E87BB73C4F9AE02.roa File: DEB93E12828F11EF9E87BB73C4F9AE02.roa (raw, json) Hash identifier: 4/7UnX5ze5wrjMqFOLuyIDjnmWsUK84zcdUUtFoXAm8= Subject key identifier: A6:45:0A:84:79:F1:09:AA:5E:76:C6:AC:84:BA:D3:35:65:B3:C7:CD Certificate issuer: /CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Certificate serial: 0758 Authority key identifier: B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/DEB93E12828F11EF9E87BB73C4F9AE02.roa Signing time: Sat 30 Aug 2025 23:15:30 +0000 ROA not before: Sat 30 Aug 2025 23:15:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55740 IP address blocks: 14.96.183.0/24 maxlen: 24 14.96.192.0/23 maxlen: 24 14.97.20.0/24 maxlen: 24 14.97.48.0/24 maxlen: 24 2406:e00:800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 19:50:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1880 (0x758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DEA4, serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Validity Not Before: Aug 30 23:15:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b38612-7469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b2:db:dc:c0:37:de:da:73:8a:6e:a7:b7:d9: 2f:71:6b:d8:a4:af:ae:91:08:a0:0d:b4:fe:f8:46: cc:8c:d0:25:e1:0f:97:53:5d:96:c9:02:c3:90:5a: da:bf:f1:1a:97:c9:b1:33:28:ac:9c:cb:f2:4c:60: 26:06:92:b4:70:04:49:73:6e:85:b7:29:0c:93:cb: c3:b7:3d:10:3a:d8:f2:62:0c:aa:70:85:08:56:86: ae:be:bd:00:c2:30:33:40:d8:ed:44:7e:63:cc:01: c3:cc:e9:1e:d8:39:50:7d:62:36:c4:79:9c:03:3a: 96:f2:dd:e4:2f:7d:d4:2f:d6:99:e7:64:7d:33:a4: 21:af:13:b4:cc:0c:90:18:92:35:34:a5:ea:a5:84: e0:81:bb:f1:2c:0e:d3:24:bf:ae:af:3c:83:e6:4d: a9:0e:32:5d:31:d9:d7:83:e9:91:d3:db:d5:7e:90: 76:d9:47:c7:47:d0:e9:d4:91:96:2e:03:b7:58:f3: 49:31:f1:c2:05:fc:f4:5e:4b:b5:69:12:99:c1:b9: f2:84:3e:f5:31:46:f9:53:d7:2e:08:dd:db:a4:31: 64:c7:a2:71:e9:b1:62:d0:b5:f1:c1:fa:bc:ec:bd: 8b:6e:7b:d7:a2:99:5a:0f:3b:f8:2e:18:1f:38:7c: 94:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:45:0A:84:79:F1:09:AA:5E:76:C6:AC:84:BA:D3:35:65:B3:C7:CD X509v3 Authority Key Identifier: keyid:B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/DEB93E12828F11EF9E87BB73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.96.183.0/24 14.96.192.0/23 14.97.20.0/24 14.97.48.0/24 IPv6: 2406:e00:800::/48 Signature Algorithm: sha256WithRSAEncryption c1:86:b4:79:ca:ce:c5:12:ab:49:d4:6c:61:a9:e4:ae:d7:df: 4d:24:59:34:69:fd:20:8c:49:6e:7e:16:7c:ac:83:0d:fb:a0: eb:b5:4b:86:78:0e:09:30:52:13:c1:01:51:cf:9d:e3:06:37: aa:ec:92:ae:3a:b6:ca:86:e1:37:53:bc:76:76:26:43:17:74: cd:64:b1:bc:b7:7e:d9:32:02:70:9e:3a:06:33:9c:11:46:ff: 9f:86:80:fd:ee:ab:34:42:e2:ef:ec:c8:a2:4b:0d:41:a9:cd: 0b:d4:24:9d:d0:d5:d6:5e:60:5e:fe:9a:0e:fa:57:1f:b5:2b: 9a:12:aa:c8:47:51:e5:ff:7c:97:91:01:0a:25:86:24:fb:d7: ea:e7:c5:0f:62:f4:8d:49:e5:59:cb:11:4f:ee:ef:cf:41:d2: 11:b0:db:1e:e3:9c:a3:01:3a:7e:27:65:41:1e:14:c4:c3:e9: 69:21:48:bf:20:2b:98:90:c5:44:e7:8a:64:dc:e8:41:2c:9f: 4c:54:ef:a2:31:96:79:d4:af:cd:3b:ac:97:36:b0:f6:87:4b: 42:90:ab:02:3e:db:be:58:b9:98:b4:20:1b:cb:db:d8:0e:64: f7:eb:73:9d:0c:26:fc:9c:69:61:45:88:72:bd:43:9f:76:b6: 56:c2:9f:09 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICB1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RFQTQxMTAvBgNVBAUTKEI0RDZGRkQ1REZGOUVBQzQxM0FCNDQwOEUwOTYzN0Iw OTQ5NERCQzgwHhcNMjUwODMwMjMxNTMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzODYxMi03NDY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAybLb3MA33tpzim6nt9kvcWvYpK+ukQigDbT++EbMjNAl4Q+XU12WyQLDkFra v/Eal8mxMyisnMvyTGAmBpK0cARJc26FtykMk8vDtz0QOtjyYgyqcIUIVoauvr0A wjAzQNjtRH5jzAHDzOke2DlQfWI2xHmcAzqW8t3kL33UL9aZ52R9M6QhrxO0zAyQ GJI1NKXqpYTggbvxLA7TJL+urzyD5k2pDjJdMdnXg+mR09vVfpB22UfHR9Dp1JGW LgO3WPNJMfHCBfz0Xku1aRKZwbnyhD71MUb5U9cuCN3bpDFkx6Jx6bFi0LXxwfq8 7L2LbnvXoplaDzv4LhgfOHyUHQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFKZFCoR5 8QmqXnbGrIS60zVls8fNMB8GA1UdIwQYMBaAFLTW/9Xf+erEE6tECOCWN7CUlNvI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REVBNC9BMjQyNkI2MDk4 MjkxMUVCQjc4ODIwODFDNEY5QUUwMi90TmJfMWRfNTZzUVRxMFFJNEpZM3NKU1Uy OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROYl8xZF81NnNRVHEwUUk0Slkzc0pTVTI4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RFQTQvQTI0MjZCNjA5ODI5MTFFQkI3ODgyMDgxQzRGOUFFMDIvREVCOTNFMTI4 MjhGMTFFRjlFODdCQjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAAOYLcDBAEOYMADBAAOYRQDBAAOYTAwDwQCAAIwCQMHACQG DgAIADANBgkqhkiG9w0BAQsFAAOCAQEAwYa0ecrOxRKrSdRsYankrtffTSRZNGn9 IIxJbn4WfKyDDfug67VLhngOCTBSE8EBUc+d4wY3quySrjq2yobhN1O8dnYmQxd0 zWSxvLd+2TICcJ46BjOcEUb/n4aA/e6rNELi7+zIoksNQanNC9QkndDV1l5gXv6a DvpXH7UrmhKqyEdR5f98l5EBCiWGJPvX6ufFD2L0jUnlWcsRT+7vz0HSEbDbHuOc owE6fidlQR4UxMPpaSFIvyArmJDFROeKZNzoQSyfTFTvojGWedSvzTuslzaw9odL QpCrAj7bvli5mLQgG8vb2A5k9+tznQwm/JxpYUWIcr1Dn3a2VsKfCQ== -----END CERTIFICATE-----Generated at Sun Sep 7 02:44:17 2025 by rpki-client