$ rpki-client -vvf rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa File: B8F3C5B4E01811ED8385DA62C4F9AE02.roa (raw, json) Hash identifier: KmbLnAg6ov5pbSc4GHHtI4bgompHpB3w8fab5eJbYog= Subject key identifier: 8D:58:DD:C3:7F:CF:4E:03:25:6C:21:8A:1E:77:89:F4:1E:2D:D8:36 Certificate issuer: /CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Certificate serial: 01BF Authority key identifier: 2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa Signing time: Fri 29 Aug 2025 03:51:52 +0000 ROA not before: Fri 29 Aug 2025 03:51:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24437 IP address blocks: 130.95.0.0/16 maxlen: 16 130.95.38.0/24 maxlen: 24 130.95.241.0/24 maxlen: 24 130.95.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 03:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193BF8, serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Validity Not Before: Aug 29 03:51:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b123d7-fac9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:27:c5:18:e9:b5:64:5f:bb:72:2d:01:63:1b: d8:25:5c:f3:38:84:ad:d9:5b:99:41:0e:5d:47:0c: a1:9d:2a:2c:6a:09:a0:83:87:65:30:c6:e1:8a:3f: b0:87:95:81:ae:25:51:c8:97:e6:d8:10:01:3a:cf: 0e:c7:97:75:28:8b:52:fb:50:03:19:0c:6c:3c:78: 63:cc:30:06:ca:35:95:68:5f:49:50:13:f7:bb:81: b1:7f:ad:2e:c5:5a:c9:0e:17:6b:34:77:55:82:a9: 33:da:a8:70:32:06:61:76:ad:86:ab:cb:e2:94:38: 93:b6:69:02:de:3c:3c:06:d3:c9:0c:d6:09:df:7a: a7:22:70:0d:7b:71:ce:89:7f:80:aa:b4:c0:ca:f7: 63:20:72:f8:0f:fd:8a:a3:a0:37:70:eb:fc:16:18: 18:f3:90:7c:ba:ea:bd:e7:d1:c5:e7:f2:17:14:4f: 76:70:bf:db:70:41:f6:2a:fd:6d:fd:fe:0b:b8:c5: 2c:bb:6c:ea:1f:69:89:60:d3:d8:a8:c3:86:a2:cf: 6d:51:b4:86:c3:9c:36:5d:5e:15:54:d9:1b:18:0b: 8c:ce:6e:a6:1d:62:22:67:8a:9b:04:a4:3f:39:42: 0f:27:2e:58:4f:36:7a:cf:06:b7:95:af:cd:0c:6d: d1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:58:DD:C3:7F:CF:4E:03:25:6C:21:8A:1E:77:89:F4:1E:2D:D8:36 X509v3 Authority Key Identifier: keyid:2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.95.0.0/16 Signature Algorithm: sha256WithRSAEncryption 12:4a:b2:8e:ad:ca:53:ec:74:bd:e0:c6:6c:e1:3a:d3:11:f8: 33:e9:0f:a7:3f:34:9b:03:56:d7:8e:cd:32:04:7c:a8:85:43: 2f:d2:a1:1b:e1:8c:70:42:0d:bf:a2:c8:7d:1d:00:4f:97:f5: 01:af:43:58:60:f7:4e:90:1c:1f:94:c5:77:58:08:b5:e0:0e: c0:76:af:78:4b:4d:53:b5:20:0f:8f:ee:53:29:93:14:da:a5: da:fd:c0:9d:d3:3d:e4:b3:7e:4f:82:64:4f:92:c5:15:7a:0a: 8d:88:bf:24:ee:31:33:26:ce:ff:c9:77:ea:ff:74:5f:d7:10: 38:38:95:a0:d8:49:c2:96:90:bd:ca:90:45:31:6b:6f:f5:f9: d8:00:78:5b:04:ea:5c:b0:fe:99:fc:59:16:1a:28:79:a8:27: 89:6d:b5:c2:b7:85:4d:c8:4f:3b:b6:c8:f9:0a:d8:06:98:26: b0:20:20:fb:62:a3:0b:9c:e0:6c:ca:a0:cb:48:7c:79:1f:e4: 8c:a7:3a:05:df:8a:66:f9:be:f8:61:c7:9c:2e:5e:1a:4a:dd: 1a:29:9f:93:d3:0a:e9:a3:45:82:bb:46:8e:8f:97:2c:76:2a: e2:65:64:80:b0:4d:e6:d1:fe:57:81:a0:a7:1d:1e:65:c6:22: 45:8a:df:9f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNCRjgxMTAvBgNVBAUTKDJBODEzQUU1RDYxNTI5NjA0NURCM0UyQzQyQ0I4RkNE QUM2QUQyMEMwHhcNMjUwODI5MDM1MTUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMjNkNy1mYWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyfFGOm1ZF+7ci0BYxvYJVzzOISt2VuZQQ5dRwyhnSosagmgg4dlMMbhij+w h5WBriVRyJfm2BABOs8Ox5d1KItS+1ADGQxsPHhjzDAGyjWVaF9JUBP3u4Gxf60u xVrJDhdrNHdVgqkz2qhwMgZhdq2Gq8vilDiTtmkC3jw8BtPJDNYJ33qnInANe3HO iX+AqrTAyvdjIHL4D/2Ko6A3cOv8FhgY85B8uuq959HF5/IXFE92cL/bcEH2Kv1t /f4LuMUsu2zqH2mJYNPYqMOGos9tUbSGw5w2XV4VVNkbGAuMzm6mHWIiZ4qbBKQ/ OUIPJy5YTzZ6zwa3la/NDG3RDQIDAQABo4IClDCCApAwHQYDVR0OBBYEFI1Y3cN/ z04DJWwhih53ifQeLdg2MB8GA1UdIwQYMBaAFCqBOuXWFSlgRds+LELLj82satIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0JGOC9BMjJCRDE1OEUw MTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktXQkYyejRzUXN1UHpheHEw Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tvRTY1ZFlWS1dCRjJ6NHNRc3VQemF4cTBndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTNCRjgvQTIyQkQxNThFMDE1MTFFREIxNjY2OTYxQzRGOUFFMDIvQjhGM0M1QjRF MDE4MTFFRDgzODVEQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCCXzANBgkqhkiG9w0BAQsFAAOCAQEAEkqyjq3KU+x0veDG bOE60xH4M+kPpz80mwNW147NMgR8qIVDL9KhG+GMcEINv6LIfR0AT5f1Aa9DWGD3 TpAcH5TFd1gIteAOwHaveEtNU7UgD4/uUymTFNql2v3AndM95LN+T4JkT5LFFXoK jYi/JO4xMybO/8l36v90X9cQODiVoNhJwpaQvcqQRTFrb/X52AB4WwTqXLD+mfxZ FhooeagniW21wreFTchPO7bI+QrYBpgmsCAg+2KjC5zgbMqgy0h8eR/kjKc6Bd+K Zvm++GHHnC5eGkrdGimfk9MK6aNFgrtGjo+XLHYq4mVkgLBN5tH+V4Ggpx0eZcYi RYrfnw== -----END CERTIFICATE-----Generated at Sun Sep 7 19:09:32 2025 by rpki-client