$ rpki-client -vvf rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/7506D296A76311F0AD88321FC4F9AE02.roa File: 7506D296A76311F0AD88321FC4F9AE02.roa (raw, json) Hash identifier: frork6Vp5nTPit2f2Krk9q4CNRaNCPR0fWvNDj+VLgM= Subject key identifier: 89:53:9A:53:B4:72:C6:86:C0:09:89:F1:F3:FA:19:D9:21:F3:9D:3D Certificate issuer: /CN=A918D1BD/serialNumber=C395D01A08C15A211103CE81061E26824F56BDD8 Certificate serial: 02 Authority key identifier: C3:95:D0:1A:08:C1:5A:21:11:03:CE:81:06:1E:26:82:4F:56:BD:D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w5XQGgjBWiERA86BBh4mgk9Wvdg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/7506D296A76311F0AD88321FC4F9AE02.roa Signing time: Sun 12 Oct 2025 12:03:26 +0000 ROA not before: Sun 12 Oct 2025 12:03:26 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140641 IP address blocks: 138.252.20.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/w5XQGgjBWiERA86BBh4mgk9Wvdg.crl rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/w5XQGgjBWiERA86BBh4mgk9Wvdg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w5XQGgjBWiERA86BBh4mgk9Wvdg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D1BD, serialNumber=C395D01A08C15A211103CE81061E26824F56BDD8 Validity Not Before: Oct 12 12:03:26 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68eb990d-a338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f3:11:08:a9:05:d7:01:d9:32:0c:00:cd:c4: ca:90:69:f9:b6:17:44:f5:da:2b:9d:ad:b5:e9:87: e2:59:45:05:45:ba:60:4f:52:58:c6:dc:17:2c:e9: 62:2b:96:84:11:c2:b1:97:bb:e4:2a:07:59:94:06: d9:08:82:f5:fe:f4:6f:a4:bd:80:f8:28:41:f8:27: e2:7f:01:70:49:44:fe:ee:e1:95:fb:f3:e1:4e:63: 46:8e:c2:4a:cf:38:5b:53:f0:ab:7c:87:e5:b6:0a: 33:62:2b:5f:7d:17:8e:86:31:41:3c:0f:77:30:ed: 65:80:c4:a5:2b:f2:0f:a5:4e:5d:f2:2a:a6:ad:ef: 36:38:54:b7:55:d3:41:46:82:aa:9c:f3:6e:aa:3b: ff:aa:4d:96:7d:f0:74:aa:61:06:86:4c:3e:58:38: e4:c1:dc:a5:a7:1e:7d:d6:04:ac:c9:67:95:4d:78: fc:87:31:00:b5:e7:54:a4:cc:41:fb:7a:24:84:42: ec:94:8d:8b:60:97:5b:fa:1a:e0:c4:d7:ee:4a:ed: 04:ae:a6:6d:8d:4f:54:33:27:6a:dd:15:3d:83:e5: 2b:ff:2c:97:ae:a3:d1:f8:1c:0f:65:ba:58:6b:54: ec:64:3f:23:f6:c1:9d:c6:b1:48:9b:e8:21:c1:d0: 4f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:53:9A:53:B4:72:C6:86:C0:09:89:F1:F3:FA:19:D9:21:F3:9D:3D X509v3 Authority Key Identifier: keyid:C3:95:D0:1A:08:C1:5A:21:11:03:CE:81:06:1E:26:82:4F:56:BD:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/w5XQGgjBWiERA86BBh4mgk9Wvdg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w5XQGgjBWiERA86BBh4mgk9Wvdg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D1BD/A706F8B2A76211F08FDE3413C4F9AE02/7506D296A76311F0AD88321FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.20.0/23 Signature Algorithm: sha256WithRSAEncryption 66:b2:28:7a:02:c4:49:f4:d3:44:c7:c8:4b:da:7e:dd:e4:d7: 5e:d7:15:b8:b6:19:42:e8:ef:6c:40:6c:34:9f:7c:7f:a5:30: de:c2:a1:1d:8a:e2:dc:1e:f9:c8:8f:ef:40:00:da:63:c1:cf: 8d:1f:46:16:c8:7c:78:ca:39:40:f3:cd:b3:5e:a2:85:d7:ad: 41:31:a5:21:4d:0d:46:21:1a:d0:ae:01:3c:a7:6b:76:02:8f: 3c:c2:cf:bf:37:b9:e9:07:69:b0:70:40:6c:a9:dd:83:1e:93: 53:fb:ff:f5:9e:b0:76:12:53:9e:24:55:d0:21:c0:03:35:c4: 14:c0:e3:f9:92:c3:3d:d0:1b:24:57:85:c9:c6:08:30:8d:a3: 65:e3:0e:da:e9:cd:16:18:8a:67:cd:a6:b5:0d:ad:d5:a9:15: cb:d6:fa:c0:b8:4e:d5:5f:05:6d:39:f0:68:b4:68:1f:ad:83: c9:f3:e5:dd:50:05:4f:25:0f:f6:9f:ff:ca:c5:2a:7f:d4:b1: e6:d2:2a:6d:9b:06:3b:49:70:38:b9:38:ad:b0:a9:5c:7f:87: 2f:1a:ed:51:10:2a:86:c4:29:aa:a8:32:af:91:75:30:04:35: ba:1c:5e:1b:01:3f:2d:f3:54:7d:35:24:04:bb:f4:e2:6d:5e: c1:0e:a8:fd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 RDFCRDExMC8GA1UEBRMoQzM5NUQwMUEwOEMxNUEyMTExMDNDRTgxMDYxRTI2ODI0 RjU2QkREODAeFw0yNTEwMTIxMjAzMjZaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZWI5OTBkLWEzMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDW8xEIqQXXAdkyDADNxMqQafm2F0T12iudrbXph+JZRQVFumBPUljG3Bcs6WIr loQRwrGXu+QqB1mUBtkIgvX+9G+kvYD4KEH4J+J/AXBJRP7u4ZX78+FOY0aOwkrP OFtT8Kt8h+W2CjNiK199F46GMUE8D3cw7WWAxKUr8g+lTl3yKqat7zY4VLdV00FG gqqc826qO/+qTZZ98HSqYQaGTD5YOOTB3KWnHn3WBKzJZ5VNePyHMQC151SkzEH7 eiSEQuyUjYtgl1v6GuDE1+5K7QSupm2NT1QzJ2rdFT2D5Sv/LJeuo9H4HA9lulhr VOxkPyP2wZ3GsUib6CHB0E85AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUiVOaU7Ry xobACYnx8/oZ2SHznT0wHwYDVR0jBBgwFoAUw5XQGgjBWiERA86BBh4mgk9Wvdgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThEMUJEL0E3MDZGOEIyQTc2 MjExRjA4RkRFMzQxM0M0RjlBRTAyL3c1WFFHZ2pCV2lFUkE4NkJCaDRtZ2s5V3Zk Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdzVYUUdnakJXaUVSQTg2QkJoNG1nazlXdmRnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 RDFCRC9BNzA2RjhCMkE3NjIxMUYwOEZERTM0MTNDNEY5QUUwMi83NTA2RDI5NkE3 NjMxMUYwQUQ4ODMyMUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8FDANBgkqhkiG9w0BAQsFAAOCAQEAZrIoegLESfTTRMfI S9p+3eTXXtcVuLYZQujvbEBsNJ98f6Uw3sKhHYri3B75yI/vQADaY8HPjR9GFsh8 eMo5QPPNs16ihdetQTGlIU0NRiEa0K4BPKdrdgKPPMLPvze56QdpsHBAbKndgx6T U/v/9Z6wdhJTniRV0CHAAzXEFMDj+ZLDPdAbJFeFycYIMI2jZeMO2unNFhiKZ82m tQ2t1akVy9b6wLhO1V8FbTnwaLRoH62DyfPl3VAFTyUP9p//ysUqf9Sx5tIqbZsG O0lwOLk4rbCpXH+HLxrtURAqhsQpqqgyr5F1MAQ1uhxeGwE/LfNUfTUkBLv04m1e wQ6o/Q== -----END CERTIFICATE-----Generated at Sun Oct 19 07:09:20 2025 by rpki-client