$ rpki-client -vvf rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DBB4BB6A48F911EC9F04C439C4F9AE02.roa File: DBB4BB6A48F911EC9F04C439C4F9AE02.roa (raw, json) Hash identifier: /T58KApZQd0ra/XBIJpEnSI47L1LMtselRFt+bUqiz8= Subject key identifier: 8D:4D:1B:15:03:70:52:55:B8:23:A7:B4:BD:75:CF:A8:18:CD:45:BE Certificate issuer: /CN=A918B5FE/serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Certificate serial: 0702 Authority key identifier: AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DBB4BB6A48F911EC9F04C439C4F9AE02.roa Signing time: Thu 16 Oct 2025 23:33:46 +0000 ROA not before: Thu 16 Oct 2025 23:33:46 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 204.48.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1794 (0x702) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918B5FE, serialNumber=AB905DDC0AFBBD1549F66EFE8117AE15000A5E0F Validity Not Before: Oct 16 23:33:46 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f180da-5cc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d8:59:3c:42:df:56:94:f9:b5:d6:5e:5e:26: 88:32:dd:93:f0:05:17:61:25:26:66:ef:40:88:27: fa:6b:32:29:7c:e8:38:d7:64:e1:ca:54:92:83:f8: 9d:3b:35:e5:34:a0:cf:e4:f6:1d:a9:68:3b:e8:e8: 99:76:31:b0:50:0d:22:4c:29:1f:d2:07:41:f9:e9: 22:6a:80:ef:5c:61:24:82:b4:3e:0e:42:15:e3:4f: 41:a2:83:06:34:5c:78:ef:e4:6a:b3:8c:27:50:99: 1a:11:f0:df:53:3d:a4:01:5b:c9:fc:15:18:94:b2: 83:aa:f5:68:ea:7e:7e:d3:b0:84:dc:59:64:f6:07: 44:72:f6:08:cf:62:ee:ab:25:24:f6:60:23:4d:f8: df:10:83:17:6b:b2:76:86:11:48:8d:d6:9f:3c:ee: c0:d7:12:4c:02:3d:40:41:1e:93:8d:b9:10:c6:d1: b2:09:4d:70:4b:bf:e8:ec:a1:55:d0:c6:55:61:39: e4:7b:e0:7e:1e:51:5e:1b:9e:4b:80:dc:d9:38:67: c4:c6:0a:de:47:a1:80:ba:21:57:38:14:0a:b7:28: 2e:21:9f:a0:df:92:7c:7b:43:c4:65:13:3c:6e:25: f7:24:68:cb:80:25:01:39:57:2a:62:27:75:4b:ec: 77:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4D:1B:15:03:70:52:55:B8:23:A7:B4:BD:75:CF:A8:18:CD:45:BE X509v3 Authority Key Identifier: keyid:AB:90:5D:DC:0A:FB:BD:15:49:F6:6E:FE:81:17:AE:15:00:0A:5E:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/q5Bd3Ar7vRVJ9m7-gReuFQAKXg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918B5FE/32C300286A9E11EBB6762318C4F9AE02/DBB4BB6A48F911EC9F04C439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.48.63.0/24 Signature Algorithm: sha256WithRSAEncryption 52:d1:92:6d:b0:ae:71:21:85:12:53:2f:50:e6:a0:d5:f8:50: a1:3f:66:7a:27:d6:58:ff:33:b2:55:81:0d:6f:1e:8b:03:e3: ea:71:10:37:23:a8:aa:ad:3a:38:c6:97:a4:ea:de:db:f1:c0: 5d:85:39:d6:ca:c9:52:23:db:be:b0:1f:28:26:fb:5f:3a:cc: e4:70:75:32:c7:cc:24:99:86:c9:dc:38:89:e1:0b:f6:b6:31: e7:8b:f9:4c:ef:ef:ee:db:1d:a5:75:18:68:ad:81:7b:13:ec: 06:7a:bb:a4:9a:f8:0d:85:2a:cb:17:28:b6:1b:05:2c:28:0b: 81:83:7b:a8:de:8a:61:42:c9:94:9a:6c:a9:38:86:37:55:72: 58:5a:49:30:82:35:21:7a:ff:02:e7:2f:fe:a9:11:48:18:bc: 8d:f8:da:15:48:ad:bc:c9:c7:8b:ae:d5:e7:de:8f:ed:d6:fc: a8:bb:98:74:6d:2c:a4:2d:59:50:d1:56:90:ba:c0:d4:af:53: 3d:2f:59:58:20:c1:a4:c4:63:d2:2b:1d:db:5a:cc:29:39:bf: 1c:15:8a:db:bd:ab:21:db:3f:ca:81:98:94:82:41:12:c0:6c: 95:b1:12:5b:f1:3f:77:8f:15:87:0f:30:b6:06:11:94:48:8a: c1:de:ab:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEI1RkUxMTAvBgNVBAUTKEFCOTA1RERDMEFGQkJEMTU0OUY2NkVGRTgxMTdBRTE1 MDAwQTVFMEYwHhcNMjUxMDE2MjMzMzQ2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYxODBkYS01Y2MxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArdhZPELfVpT5tdZeXiaIMt2T8AUXYSUmZu9AiCf6azIpfOg412ThylSSg/id OzXlNKDP5PYdqWg76OiZdjGwUA0iTCkf0gdB+ekiaoDvXGEkgrQ+DkIV409BooMG NFx47+Rqs4wnUJkaEfDfUz2kAVvJ/BUYlLKDqvVo6n5+07CE3Flk9gdEcvYIz2Lu qyUk9mAjTfjfEIMXa7J2hhFIjdafPO7A1xJMAj1AQR6TjbkQxtGyCU1wS7/o7KFV 0MZVYTnke+B+HlFeG55LgNzZOGfExgreR6GAuiFXOBQKtyguIZ+g35J8e0PEZRM8 biX3JGjLgCUBOVcqYid1S+x3LwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI1NGxUD cFJVuCOntL11z6gYzUW+MB8GA1UdIwQYMBaAFKuQXdwK+70VSfZu/oEXrhUACl4P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QjVGRS8zMkMzMDAyODZB OUUxMUVCQjY3NjIzMThDNEY5QUUwMi9xNUJkM0FyN3ZSVko5bTctZ1JldUZRQUtY ZzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3E1QmQzQXI3dlJWSjltNy1nUmV1RlFBS1hnOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEI1RkUvMzJDMzAwMjg2QTlFMTFFQkI2NzYyMzE4QzRGOUFFMDIvREJCNEJCNkE0 OEY5MTFFQzlGMDRDNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADMMD8wDQYJKoZIhvcNAQELBQADggEBAFLRkm2wrnEhhRJT L1DmoNX4UKE/Znon1lj/M7JVgQ1vHosD4+pxEDcjqKqtOjjGl6Tq3tvxwF2FOdbK yVIj276wHygm+186zORwdTLHzCSZhsncOInhC/a2MeeL+Uzv7+7bHaV1GGitgXsT 7AZ6u6Sa+A2FKssXKLYbBSwoC4GDe6jeimFCyZSabKk4hjdVclhaSTCCNSF6/wLn L/6pEUgYvI342hVIrbzJx4uu1efej+3W/Ki7mHRtLKQtWVDRVpC6wNSvUz0vWVgg waTEY9IrHdtazCk5vxwVitu9qyHbP8qBmJSCQRLAbJWxElvxP3ePFYcPMLYGEZRI isHeq1M= -----END CERTIFICATE-----Generated at Mon Oct 20 14:02:38 2025 by rpki-client