$ rpki-client -vvf rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/8E31656CC9FF11EEA53CA25CC4F9AE02.roa File: 8E31656CC9FF11EEA53CA25CC4F9AE02.roa (raw, json) Hash identifier: WWVsNPRylFl9Oj5E0+wxXjfLrjfPmxjiDu6REzUJaLM= Subject key identifier: 60:B8:FD:2D:9F:F1:B1:34:EF:A3:D2:1B:98:F3:C3:B3:CF:A1:37:6F Certificate issuer: /CN=A9191885/serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Certificate serial: 0125 Authority key identifier: 87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/8E31656CC9FF11EEA53CA25CC4F9AE02.roa Signing time: Mon 01 Sep 2025 04:55:21 +0000 ROA not before: Mon 01 Sep 2025 04:55:21 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140549 IP address blocks: 157.15.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:04:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191885, serialNumber=870186B657D11B298A84B02420EE74E1FBB5C282 Validity Not Before: Sep 1 04:55:21 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b52738-f812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:e9:2f:6e:11:7f:17:b8:fe:18:29:9f:0a:7d: d1:51:f5:6c:8c:34:24:55:a8:a2:0e:35:4b:6b:9d: 7e:fc:69:93:17:ae:cb:40:04:b8:b7:1f:77:5a:41: a4:52:1f:35:44:18:85:ae:df:2e:44:00:19:73:3d: dd:b1:cb:9f:da:2a:95:94:55:59:ae:76:90:6c:b9: 21:35:cc:88:28:c4:02:1f:a1:1b:37:25:f6:e0:17: df:96:84:0f:48:bd:f8:a9:05:fa:5d:59:c2:ba:eb: 11:8a:fc:0b:68:94:5b:c8:18:d7:8c:8d:6c:4b:77: 5f:84:76:51:61:3c:eb:06:39:79:73:3d:61:9d:2c: 44:f4:2e:0f:45:f8:d0:30:ae:e2:ce:9f:f1:da:ac: 2d:41:70:83:ba:af:b8:b9:b1:43:7d:ad:ca:8e:6e: 4c:81:69:5f:f0:e1:d6:2a:1b:fc:70:19:a8:14:6d: f4:8c:f1:bf:9f:25:b1:63:d8:b4:3a:37:9d:fc:94: 05:f9:be:76:66:a1:cf:75:3a:eb:0f:1a:5d:6c:0d: fa:2f:d0:5f:b7:c6:17:c5:93:4a:7e:ce:b4:9d:27: 7b:ff:19:7f:45:50:42:44:07:5d:0c:31:29:31:61: dc:27:49:e6:31:00:3d:90:eb:96:c2:29:2a:39:f8: a5:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B8:FD:2D:9F:F1:B1:34:EF:A3:D2:1B:98:F3:C3:B3:CF:A1:37:6F X509v3 Authority Key Identifier: keyid:87:01:86:B6:57:D1:1B:29:8A:84:B0:24:20:EE:74:E1:FB:B5:C2:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/hwGGtlfRGymKhLAkIO504fu1woI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hwGGtlfRGymKhLAkIO504fu1woI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191885/D5FEA3DEC9FD11EEA677793BC4F9AE02/8E31656CC9FF11EEA53CA25CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.15.213.0/24 Signature Algorithm: sha256WithRSAEncryption 01:fb:d1:d9:1a:df:82:6a:4e:1d:9e:dc:35:37:1a:51:bf:d7: 19:5d:62:65:1b:b4:8d:23:34:0f:34:51:85:99:00:33:30:ab: 31:1e:6b:13:16:6c:15:b3:a1:bc:d3:35:44:82:8d:73:97:1c: 96:0c:7b:5f:9b:aa:0f:69:c2:c2:c1:00:bb:0d:fe:b4:43:77: ed:3f:fe:68:0a:2f:e8:73:2a:5c:ba:d9:b8:98:ac:48:0f:d3: 2a:5f:9c:06:bb:05:54:05:04:b6:b2:79:77:f5:46:57:58:91: 12:29:36:7f:c6:67:64:ee:1c:f4:30:ff:eb:d1:d2:11:6f:85: 1c:5f:a5:54:65:1e:cc:f7:7c:5a:8f:93:52:8a:12:ce:63:9c: f2:99:99:62:db:7b:b1:17:9f:61:dc:ca:de:3c:51:8a:60:1f: 1f:3d:83:ae:61:89:76:5a:84:48:b8:b9:22:3b:f6:1f:86:45: 61:2e:85:d3:55:85:15:15:0a:04:5e:8d:0a:c1:d2:63:a6:e5: 9d:0f:0f:32:9d:21:1d:6a:b3:21:09:f5:53:aa:25:b1:fc:09: 58:3b:b4:44:a0:d5:2d:64:3b:00:d5:6c:a3:d6:9e:69:17:82: 60:34:af:1a:30:0c:03:59:b8:47:70:d7:48:74:b4:80:87:06: 41:18:9d:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4ODUxMTAvBgNVBAUTKDg3MDE4NkI2NTdEMTFCMjk4QTg0QjAyNDIwRUU3NEUx RkJCNUMyODIwHhcNMjUwOTAxMDQ1NTIxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI1MjczOC1mODEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoekvbhF/F7j+GCmfCn3RUfVsjDQkVaiiDjVLa51+/GmTF67LQAS4tx93WkGk Uh81RBiFrt8uRAAZcz3dscuf2iqVlFVZrnaQbLkhNcyIKMQCH6EbNyX24BffloQP SL34qQX6XVnCuusRivwLaJRbyBjXjI1sS3dfhHZRYTzrBjl5cz1hnSxE9C4PRfjQ MK7izp/x2qwtQXCDuq+4ubFDfa3Kjm5MgWlf8OHWKhv8cBmoFG30jPG/nyWxY9i0 Ojed/JQF+b52ZqHPdTrrDxpdbA36L9Bft8YXxZNKfs60nSd7/xl/RVBCRAddDDEp MWHcJ0nmMQA9kOuWwikqOfilPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGC4/S2f 8bE076PSG5jzw7PPoTdvMB8GA1UdIwQYMBaAFIcBhrZX0RspioSwJCDudOH7tcKC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4NS9ENUZFQTNERUM5 RkQxMUVFQTY3Nzc5M0JDNEY5QUUwMi9od0dHdGxmUkd5bUtoTEFrSU81MDRmdTF3 b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2h3R0d0bGZSR3ltS2hMQWtJTzUwNGZ1MXdvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE4ODUvRDVGRUEzREVDOUZEMTFFRUE2Nzc3OTNCQzRGOUFFMDIvOEUzMTY1NkND OUZGMTFFRUE1M0NBMjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACdD9UwDQYJKoZIhvcNAQELBQADggEBAAH70dka34JqTh2e 3DU3GlG/1xldYmUbtI0jNA80UYWZADMwqzEeaxMWbBWzobzTNUSCjXOXHJYMe1+b qg9pwsLBALsN/rRDd+0//mgKL+hzKly62biYrEgP0ypfnAa7BVQFBLayeXf1RldY kRIpNn/GZ2TuHPQw/+vR0hFvhRxfpVRlHsz3fFqPk1KKEs5jnPKZmWLbe7EXn2Hc yt48UYpgHx89g65hiXZahEi4uSI79h+GRWEuhdNVhRUVCgRejQrB0mOm5Z0PDzKd IR1qsyEJ9VOqJbH8CVg7tESg1S1kOwDVbKPWnmkXgmA0rxowDANZuEdw10h0tICH BkEYnYU= -----END CERTIFICATE-----Generated at Sat Sep 6 23:01:37 2025 by rpki-client