$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/1945156684FA11F08BE45222C4F9AE02.roa File: 1945156684FA11F08BE45222C4F9AE02.roa (raw, json) Hash identifier: DF9X7tljBeM27vrGQcjRbUFT09JGAD7NUjLYONBLM4A= Subject key identifier: 8D:BE:F6:D8:93:D1:79:71:93:F4:E0:99:23:02:E8:8A:EF:40:8C:C8 Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 03DC Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/1945156684FA11F08BE45222C4F9AE02.roa Signing time: Fri 29 Aug 2025 17:03:35 +0000 ROA not before: Fri 29 Aug 2025 17:03:35 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 834 IP address blocks: 218.33.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:17:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 988 (0x3dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18, serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Aug 29 17:03:35 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68b1dd67-7368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:07:0b:24:9f:ac:4b:b4:40:fa:b4:e2:23:65: 60:11:52:cb:be:31:b7:07:f4:a0:ff:af:9c:20:7f: 22:d2:bc:b0:6f:38:bb:1d:d0:1c:7b:35:35:c9:06: 3a:16:ed:85:9e:e6:2c:7f:71:1a:82:27:82:ff:56: 37:e1:c4:58:c5:01:95:66:64:b3:52:89:51:48:e6: ab:8d:78:63:82:ad:fd:b0:70:73:29:6d:05:74:e6: 31:c0:d7:0a:4e:54:45:a3:73:14:b9:e5:78:aa:a1: 63:f7:40:c7:41:4f:91:23:a2:4e:34:e9:8e:cc:1f: ea:56:2a:29:2f:09:f0:fa:2c:37:0b:71:a8:16:19: 75:a8:ac:e5:16:ad:9d:2b:fe:08:06:95:97:6c:28: 76:b9:18:dd:b3:24:09:cc:ca:ba:bf:cd:b8:5c:ad: b5:1b:d5:17:ba:8f:fb:4b:68:e5:15:17:53:ae:54: c0:7a:aa:09:67:ed:d9:a5:37:71:bc:7e:4d:da:cf: f9:5d:3d:d1:d1:d8:bc:0e:f6:98:9f:79:2e:3f:74: c7:c1:1d:21:d9:a7:fa:72:66:55:7b:e3:7d:4d:a6: e7:1d:a1:d2:d3:e6:ce:4d:64:10:df:50:3e:34:e8: f5:b1:7e:f3:f8:8b:0b:03:e8:82:d5:05:43:2b:21: cc:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:BE:F6:D8:93:D1:79:71:93:F4:E0:99:23:02:E8:8A:EF:40:8C:C8 X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/1945156684FA11F08BE45222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.33.120.0/22 Signature Algorithm: sha256WithRSAEncryption 68:88:18:28:05:4e:2a:47:58:b6:27:4e:1d:d1:30:49:d4:b7: 8f:b7:a4:97:7d:f5:f0:67:7b:3f:6b:21:7d:6d:25:d7:a7:00: 58:94:d9:e7:1b:9d:d0:f4:ea:19:0e:b6:b0:0d:44:e6:f2:2c: 27:93:d9:48:e6:ce:1c:ee:dc:63:29:83:ee:1e:77:83:99:89: 38:86:7f:c4:a1:ed:2b:d8:da:e7:3d:09:98:9d:0c:dd:d8:ee: 6d:a7:46:57:27:1c:60:94:30:63:77:79:8f:ab:97:6f:e1:25: 99:ed:2a:50:84:40:1d:67:f0:55:33:a6:31:55:1f:bc:93:bd: f6:84:83:b4:f5:91:62:f6:e0:b0:54:20:a1:71:08:13:db:b2: d9:56:06:36:d3:97:25:30:8c:b3:41:1d:02:b9:d5:8b:f3:ef: 1a:31:01:87:69:ee:19:72:2a:9d:af:cb:da:27:8f:1e:ef:ae: 7b:b3:23:99:1e:46:f3:f5:a2:e8:d6:7b:1d:3c:34:9d:c0:3e: 9c:95:b1:0a:58:45:81:13:23:21:4c:e8:1c:4d:72:35:0a:d5: bc:9a:4e:91:6f:97:70:d4:58:85:72:92:ae:92:7d:c3:57:4a: c8:97:36:bf:cb:fd:29:2d:87:2f:c1:b6:75:42:d4:00:73:90: 7b:ae:24:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjUwODI5MTcwMzM1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxZGQ2Ny03MzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAcLJJ+sS7RA+rTiI2VgEVLLvjG3B/Sg/6+cIH8i0rywbzi7HdAcezU1yQY6 Fu2FnuYsf3EagieC/1Y34cRYxQGVZmSzUolRSOarjXhjgq39sHBzKW0FdOYxwNcK TlRFo3MUueV4qqFj90DHQU+RI6JONOmOzB/qViopLwnw+iw3C3GoFhl1qKzlFq2d K/4IBpWXbCh2uRjdsyQJzMq6v824XK21G9UXuo/7S2jlFRdTrlTAeqoJZ+3ZpTdx vH5N2s/5XT3R0di8DvaYn3kuP3THwR0h2af6cmZVe+N9TabnHaHS0+bOTWQQ31A+ NOj1sX7z+IsLA+iC1QVDKyHMlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI2+9tiT 0Xlxk/TgmSMC6IrvQIzIMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvMTk0NTE1NjY4 NEZBMTFGMDhCRTQ1MjIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALaIXgwDQYJKoZIhvcNAQELBQADggEBAGiIGCgFTipHWLYn Th3RMEnUt4+3pJd99fBnez9rIX1tJdenAFiU2ecbndD06hkOtrANRObyLCeT2Ujm zhzu3GMpg+4ed4OZiTiGf8Sh7SvY2uc9CZidDN3Y7m2nRlcnHGCUMGN3eY+rl2/h JZntKlCEQB1n8FUzpjFVH7yTvfaEg7T1kWL24LBUIKFxCBPbstlWBjbTlyUwjLNB HQK51Yvz7xoxAYdp7hlyKp2vy9onjx7vrnuzI5keRvP1oujWex08NJ3APpyVsQpY RYETIyFM6BxNcjUK1byaTpFvl3DUWIVykq6SfcNXSsiXNr/L/Skthy/BtnVC1ABz kHuuJPE= -----END CERTIFICATE-----Generated at Sun Sep 7 15:47:10 2025 by rpki-client