$ rpki-client -vvf rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/30BF32F2C28C11EAB764BF4CC4F9AE02.roa File: 30BF32F2C28C11EAB764BF4CC4F9AE02.roa (raw, json) Hash identifier: b5DdIZNxNs7SwL8wjURZkRL1TSIObO5dLWDMjnjAx3A= Subject key identifier: 36:B2:AD:1C:C1:11:1A:84:75:76:CA:5D:E7:DA:DA:4E:4C:3F:99:05 Certificate issuer: /CN=A9194335/serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E Certificate serial: 1038 Authority key identifier: 91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/30BF32F2C28C11EAB764BF4CC4F9AE02.roa Signing time: Thu 02 Oct 2025 17:47:08 +0000 ROA not before: Thu 02 Oct 2025 17:47:08 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 140702 IP address blocks: 202.87.4.0/22 maxlen: 24 203.57.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 17:51:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4152 (0x1038) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194335, serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E Validity Not Before: Oct 2 17:47:08 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68deba9b-280e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d8:d8:b6:36:3a:c5:b1:13:df:76:52:87:a9: 05:26:91:e2:89:05:91:ee:c9:5a:4e:18:bb:db:c8: fa:68:59:82:a1:02:33:72:5d:75:01:68:57:0e:58: 92:c3:e5:11:0b:d0:b8:2b:c0:8e:6e:f8:7f:ec:e8: bb:d7:4a:ba:8e:e5:0d:61:23:2e:9b:e6:f8:1c:23: cf:71:08:b5:06:35:32:5e:56:e8:64:f7:66:d5:c0: eb:4d:8c:7e:17:e5:8c:8e:38:5d:84:28:7f:7a:fa: 16:90:be:fd:07:9d:af:31:fe:f2:4b:f5:c2:12:b1: de:6e:e3:52:b7:9c:9b:5e:a9:b6:8d:23:ca:76:19: 41:9a:d3:5a:0d:8c:77:9b:db:93:d9:14:32:fd:45: 49:89:c2:50:7f:7f:be:c3:9b:12:18:ea:28:e2:e3: bd:d4:fe:25:19:59:53:2d:12:7b:ce:78:62:8a:c6: a0:b7:43:a8:cc:ae:0e:ef:1f:00:ca:ed:ca:9f:d0: 80:86:30:8d:b9:14:e0:99:a4:12:30:fa:69:6d:e0: 4a:aa:e1:4c:1d:79:9e:e0:3d:65:48:29:36:fe:5c: ae:93:1d:68:a7:d8:df:7b:d3:1a:5f:f2:35:33:f5: a8:17:e3:67:b5:f0:16:dd:00:ac:ec:2b:9e:cf:d7: b4:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B2:AD:1C:C1:11:1A:84:75:76:CA:5D:E7:DA:DA:4E:4C:3F:99:05 X509v3 Authority Key Identifier: keyid:91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/30BF32F2C28C11EAB764BF4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.87.4.0/22 203.57.38.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:c7:71:67:cf:2e:d4:93:51:b2:e6:fe:bc:5c:27:ef:c5:6e: c7:1b:14:22:70:12:48:a3:cf:3e:3c:75:31:68:4f:9a:0e:3e: 5f:c1:64:ac:b6:5f:47:42:bb:e1:05:43:52:d3:44:db:4b:1c: 82:9a:b1:53:42:9a:85:1a:8d:52:78:6f:0f:e7:80:ca:7f:91: 61:9f:d9:70:ec:96:cd:04:24:ff:1c:17:da:b8:94:f4:a3:96: b3:e7:8a:02:41:4d:27:e0:b3:1b:25:94:4e:20:ef:ea:21:bf: e7:d4:a3:f0:50:f2:a7:8f:f0:10:08:1a:7f:43:96:65:11:49: e0:13:0a:72:1c:67:df:dc:2e:78:22:5f:dc:24:04:52:a9:cd: fe:78:b1:9a:e4:b2:58:d4:d6:41:a0:af:08:4b:72:01:bf:7f: 23:e8:e1:62:09:1c:20:18:67:c0:95:aa:88:3b:bb:21:5e:d0: 20:79:f4:98:15:96:cd:07:bf:48:24:eb:45:c5:36:b9:83:f7: a5:82:16:e7:7d:8c:a1:35:f4:13:cd:61:02:9b:40:d4:22:cd: 0d:4c:35:ca:da:bc:5f:16:01:a6:5a:47:bb:60:40:eb:47:63: 20:ee:f2:cd:91:07:d3:c5:82:49:c6:25:5f:1a:3b:56:ae:83: cd:b3:c7:ca -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQzMzUxMTAvBgNVBAUTKDkxQkM3OUFFMTVDQ0FFQTQ0RTRGRTc4NDVGQkZDQTYz RTdGQUVCOUUwHhcNMjUxMDAyMTc0NzA4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlYmE5Yi0yODBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtjYtjY6xbET33ZSh6kFJpHiiQWR7slaThi728j6aFmCoQIzcl11AWhXDliS w+URC9C4K8CObvh/7Oi710q6juUNYSMum+b4HCPPcQi1BjUyXlboZPdm1cDrTYx+ F+WMjjhdhCh/evoWkL79B52vMf7yS/XCErHebuNSt5ybXqm2jSPKdhlBmtNaDYx3 m9uT2RQy/UVJicJQf3++w5sSGOoo4uO91P4lGVlTLRJ7znhiisagt0OozK4O7x8A yu3Kn9CAhjCNuRTgmaQSMPppbeBKquFMHXme4D1lSCk2/lyukx1op9jfe9MaX/I1 M/WoF+NntfAW3QCs7Cuez9e0bQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDayrRzB ERqEdXbKXefa2k5MP5kFMB8GA1UdIwQYMBaAFJG8ea4VzK6kTk/nhF+/ymPn+uue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDMzNS8zNDJEMjIyODUx RDExMUU5QUYxRkY3M0NDNEY5QUUwMi9rYng1cmhYTXJxUk9ULWVFWDdfS1ktZjY2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tieDVyaFhNcnFST1QtZUVYN19LWS1mNjY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQzMzUvMzQyRDIyMjg1MUQxMTFFOUFGMUZGNzNDQzRGOUFFMDIvMzBCRjMyRjJD MjhDMTFFQUI3NjRCRjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALKVwQDBADLOSYwDQYJKoZIhvcNAQELBQADggEBAE3HcWfP LtSTUbLm/rxcJ+/FbscbFCJwEkijzz48dTFoT5oOPl/BZKy2X0dCu+EFQ1LTRNtL HIKasVNCmoUajVJ4bw/ngMp/kWGf2XDsls0EJP8cF9q4lPSjlrPnigJBTSfgsxsl lE4g7+ohv+fUo/BQ8qeP8BAIGn9DlmURSeATCnIcZ9/cLngiX9wkBFKpzf54sZrk sljU1kGgrwhLcgG/fyPo4WIJHCAYZ8CVqog7uyFe0CB59JgVls0Hv0gk60XFNrmD 96WCFud9jKE19BPNYQKbQNQizQ1MNcravF8WAaZaR7tgQOtHYyDu8s2RB9PFgknG JV8aO1aug82zx8o= -----END CERTIFICATE-----Generated at Fri Oct 24 18:13:39 2025 by rpki-client