$ rpki-client -vvf rpki.apnic.net/member_repository/A919542A/5BE418828EE511F090902D68C4F9AE02/FC15F5FA8EE511F0BFFDD274C4F9AE02.roa File: FC15F5FA8EE511F0BFFDD274C4F9AE02.roa (raw, json) Hash identifier: zt0uCLgW+WWAHldwRnw7MoXPpXtobKJ/yD9+5SdfbTo= Subject key identifier: BB:93:86:39:9C:1B:52:9E:FA:24:36:6C:0B:6C:53:00:8A:A7:51:4E Certificate issuer: /CN=A919542A/serialNumber=7DF826A91E3A087ABD29A6289A123BA91F11305F Certificate serial: 02 Authority key identifier: 7D:F8:26:A9:1E:3A:08:7A:BD:29:A6:28:9A:12:3B:A9:1F:11:30:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ffgmqR46CHq9KaYomhI7qR8RMF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919542A/5BE418828EE511F090902D68C4F9AE02/FC15F5FA8EE511F0BFFDD274C4F9AE02.roa Signing time: Thu 11 Sep 2025 08:04:48 +0000 ROA not before: Thu 11 Sep 2025 08:04:48 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154220 IP address blocks: 203.34.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919542A/5BE418828EE511F090902D68C4F9AE02/ffgmqR46CHq9KaYomhI7qR8RMF8.crl rsync://rpki.apnic.net/member_repository/A919542A/5BE418828EE511F090902D68C4F9AE02/ffgmqR46CHq9KaYomhI7qR8RMF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ffgmqR46CHq9KaYomhI7qR8RMF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:00:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919542A, serialNumber=7DF826A91E3A087ABD29A6289A123BA91F11305F Validity Not Before: Sep 11 08:04:48 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68c2829f-9981 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:26:a0:8e:b2:85:cb:ad:a1:26:8f:37:b4:a7: 86:ef:28:e5:1c:b0:2a:d5:3a:58:87:58:45:e1:96: c5:57:a4:28:0f:5b:32:73:d1:48:4a:47:52:a3:df: 26:e0:47:e4:ed:a4:58:e8:08:b7:bf:56:46:3c:0e: 8e:cb:63:fd:68:3b:c0:3d:23:54:33:b9:f9:37:e8: 1d:ef:86:3f:18:3b:6e:f6:28:ac:7e:bd:e3:07:98: 5e:a6:84:d6:ee:c9:59:07:90:07:47:a4:5c:8c:04: e1:7e:6d:b1:68:aa:4c:6d:e4:cf:9a:e5:c6:a6:cd: 49:48:7c:de:55:15:34:05:88:de:37:67:79:88:53: 79:9a:20:be:2d:e7:51:0c:b5:ad:83:44:fd:b0:db: a0:28:ea:2f:28:24:e1:11:b4:cc:08:5f:c5:28:73: 2f:45:02:1a:8d:75:c9:96:d0:7e:a9:20:7e:c5:c0: a1:91:35:9b:95:ee:4b:d8:02:61:c5:45:82:99:e6: cf:a1:8a:8c:47:85:de:9d:98:d4:01:7c:ed:c1:af: 2f:74:0c:d9:20:2b:6a:54:f4:70:7e:89:f7:e1:3c: 29:c4:5f:8c:32:aa:30:30:08:07:10:40:7f:90:96: 1d:e5:73:79:ab:1b:99:f5:bd:fe:39:89:3f:97:41: 20:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:93:86:39:9C:1B:52:9E:FA:24:36:6C:0B:6C:53:00:8A:A7:51:4E X509v3 Authority Key Identifier: keyid:7D:F8:26:A9:1E:3A:08:7A:BD:29:A6:28:9A:12:3B:A9:1F:11:30:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919542A/5BE418828EE511F090902D68C4F9AE02/ffgmqR46CHq9KaYomhI7qR8RMF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ffgmqR46CHq9KaYomhI7qR8RMF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919542A/5BE418828EE511F090902D68C4F9AE02/FC15F5FA8EE511F0BFFDD274C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.34.238.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:09:2a:fa:80:61:1d:71:5b:10:f1:80:e7:4e:a1:85:35:e8: 39:1a:8e:7f:a9:15:f6:69:48:a3:78:29:2e:03:1f:25:d3:54: f6:9f:29:2f:76:8d:90:45:c7:de:ef:ef:63:9f:95:80:e6:cb: f0:98:c4:34:bf:5e:75:fd:fd:9f:5c:4c:19:ed:c2:8c:4a:8d: 54:42:9b:35:58:bb:b2:ba:f1:99:10:dc:28:6b:17:79:a4:75: 25:36:e6:79:66:eb:25:05:e7:50:0e:17:f0:89:af:cf:73:94: 8e:41:23:5a:91:2c:18:78:45:62:d5:7e:c7:21:63:04:0f:1c: 4e:3b:d1:ac:8c:fd:fd:f0:32:2d:67:28:e1:02:fb:00:55:52: 6e:18:6e:70:9e:46:6a:88:24:53:ac:38:fd:02:d3:26:77:a2: 8d:54:dd:81:b7:8e:b7:9e:23:54:3d:2f:1c:42:71:fe:cc:60: 69:59:af:bf:85:0d:bc:d4:21:67:86:0d:cd:7c:d6:e7:58:c5: da:7a:db:bc:72:62:0d:9d:b1:77:22:f1:fe:1b:9c:42:bf:41: 92:3c:12:1e:8f:07:36:25:e5:f7:e7:04:c5:59:3c:1a:be:d1: e5:2a:de:16:c4:15:c6:50:c2:57:32:1f:fc:64:ad:27:8b:4f: f6:94:24:51 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTQyQTExMC8GA1UEBRMoN0RGODI2QTkxRTNBMDg3QUJEMjlBNjI4OUExMjNCQTkx RjExMzA1RjAeFw0yNTA5MTEwODA0NDhaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzI4MjlmLTk5ODEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEJqCOsoXLraEmjze0p4bvKOUcsCrVOliHWEXhlsVXpCgPWzJz0UhKR1Kj3ybg R+TtpFjoCLe/VkY8Do7LY/1oO8A9I1Qzufk36B3vhj8YO272KKx+veMHmF6mhNbu yVkHkAdHpFyMBOF+bbFoqkxt5M+a5camzUlIfN5VFTQFiN43Z3mIU3maIL4t51EM ta2DRP2w26Ao6i8oJOERtMwIX8Uocy9FAhqNdcmW0H6pIH7FwKGRNZuV7kvYAmHF RYKZ5s+hioxHhd6dmNQBfO3Bry90DNkgK2pU9HB+iffhPCnEX4wyqjAwCAcQQH+Q lh3lc3mrG5n1vf45iT+XQSAzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUu5OGOZwb Up76JDZsC2xTAIqnUU4wHwYDVR0jBBgwFoAUffgmqR46CHq9KaYomhI7qR8RMF8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1NDJBLzVCRTQxODgyOEVF NTExRjA5MDkwMkQ2OEM0RjlBRTAyL2ZmZ21xUjQ2Q0hxOUthWW9taEk3cVI4Uk1G OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZmZnbXFSNDZDSHE5S2FZb21oSTdxUjhSTUY4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTQyQS81QkU0MTg4MjhFRTUxMUYwOTA5MDJENjhDNEY5QUUwMi9GQzE1RjVGQThF RTUxMUYwQkZGREQyNzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsi7jANBgkqhkiG9w0BAQsFAAOCAQEACwkq+oBhHXFbEPGA 506hhTXoORqOf6kV9mlIo3gpLgMfJdNU9p8pL3aNkEXH3u/vY5+VgObL8JjENL9e df39n1xMGe3CjEqNVEKbNVi7srrxmRDcKGsXeaR1JTbmeWbrJQXnUA4X8Imvz3OU jkEjWpEsGHhFYtV+xyFjBA8cTjvRrIz9/fAyLWco4QL7AFVSbhhucJ5GaogkU6w4 /QLTJneijVTdgbeOt54jVD0vHEJx/sxgaVmvv4UNvNQhZ4YNzXzW51jF2nrbvHJi DZ2xdyLx/hucQr9BkjwSHo8HNiXl9+cExVk8Gr7R5SreFsQVxlDCVzIf/GStJ4tP 9pQkUQ== -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:25 2025 by rpki-client