$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F7C/07F34F08A4B211F0B84C1343C4F9AE02/E047F204A4CC11F0AE32440DC4F9AE02.roa File: E047F204A4CC11F0AE32440DC4F9AE02.roa (raw, json) Hash identifier: IbTCPbnBI2DL2kcBkW+LiJNqF8edylNBGRuBoI+lCNM= Subject key identifier: 9E:84:5D:42:2A:A7:87:85:B4:0B:E2:22:1A:20:40:7C:9B:52:A0:BE Certificate issuer: /CN=A9196F7C/serialNumber=6EF8FECEF339EA6DE9698CC2C5F58645CF65EFDE Certificate serial: 06 Authority key identifier: 6E:F8:FE:CE:F3:39:EA:6D:E9:69:8C:C2:C5:F5:86:45:CF:65:EF:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bvj-zvM56m3paYzCxfWGRc9l794.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F7C/07F34F08A4B211F0B84C1343C4F9AE02/E047F204A4CC11F0AE32440DC4F9AE02.roa Signing time: Thu 09 Oct 2025 07:47:34 +0000 ROA not before: Thu 09 Oct 2025 07:47:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 152699 IP address blocks: 157.85.92.0/24 maxlen: 24 157.85.93.0/24 maxlen: 24 157.85.94.0/24 maxlen: 24 157.85.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F7C/07F34F08A4B211F0B84C1343C4F9AE02/bvj-zvM56m3paYzCxfWGRc9l794.crl rsync://rpki.apnic.net/member_repository/A9196F7C/07F34F08A4B211F0B84C1343C4F9AE02/bvj-zvM56m3paYzCxfWGRc9l794.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bvj-zvM56m3paYzCxfWGRc9l794.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 07:52:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F7C, serialNumber=6EF8FECEF339EA6DE9698CC2C5F58645CF65EFDE Validity Not Before: Oct 9 07:47:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68e76896-1d24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:27:5f:d2:0a:30:1f:5a:43:70:46:2e:2b:1e: ab:eb:0a:59:92:fa:8a:0a:72:e6:58:27:fd:f8:e8: 35:6c:31:92:d4:73:93:18:17:94:b5:41:e9:a6:d0: 59:37:28:a4:d3:04:df:57:90:c1:09:f6:5e:96:b5: 46:da:96:fb:b2:4e:94:61:a0:d5:4a:12:cc:5a:69: 46:92:be:70:b4:63:f7:61:f0:cf:ce:e0:7a:f3:fc: c9:49:43:dc:4b:e8:b5:42:62:dc:e1:a1:0d:9b:28: e9:25:78:18:eb:81:82:df:61:2b:e8:01:dd:3c:7f: 9d:1a:41:90:09:1f:ac:7b:47:fa:5d:30:1f:bd:c1: 25:ea:0e:50:26:da:57:fa:b9:ae:87:87:75:96:24: e3:3a:c2:a4:b7:14:76:36:57:7b:54:0f:79:50:d9: 0b:fc:c5:6f:da:9f:1d:33:4d:98:5c:10:fe:34:bc: e7:33:9c:e8:c0:9e:cc:fd:c0:2b:ca:19:22:74:36: 54:3a:f5:ed:02:b8:6d:f1:26:38:a5:63:65:45:2b: a8:8e:f9:e9:7f:7a:00:d8:a7:b9:22:ef:62:45:6e: f9:f2:71:08:2e:cd:76:95:09:42:2b:b5:5c:80:0c: cc:a2:e8:a4:20:3f:4e:7d:eb:10:53:c6:47:1c:92: 8a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:84:5D:42:2A:A7:87:85:B4:0B:E2:22:1A:20:40:7C:9B:52:A0:BE X509v3 Authority Key Identifier: keyid:6E:F8:FE:CE:F3:39:EA:6D:E9:69:8C:C2:C5:F5:86:45:CF:65:EF:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F7C/07F34F08A4B211F0B84C1343C4F9AE02/bvj-zvM56m3paYzCxfWGRc9l794.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/bvj-zvM56m3paYzCxfWGRc9l794.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F7C/07F34F08A4B211F0B84C1343C4F9AE02/E047F204A4CC11F0AE32440DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.85.92.0/22 Signature Algorithm: sha256WithRSAEncryption 28:8b:6a:ca:18:d7:2f:f1:02:a5:b0:13:b1:18:d0:be:79:20: 64:22:52:0c:93:97:e7:06:1a:80:d1:5f:46:52:35:08:29:b7: fc:3b:0b:ba:96:ea:21:b3:16:c2:e0:d2:0a:cd:cc:fd:e0:9a: 2c:5c:dc:d1:fc:c0:57:07:6c:bb:88:26:ef:0b:4b:ee:0f:b8: d5:3a:d6:9b:e7:b4:8d:2d:c3:50:25:79:da:55:0a:73:ff:05: 3a:4b:2f:91:db:da:1d:b6:ec:cf:52:9f:8b:88:22:1e:71:50: 37:e7:31:98:a4:9d:5b:81:bc:10:f3:2a:e4:4f:57:b6:35:35: a7:72:b7:93:e8:de:be:d0:b2:71:67:64:0a:af:45:e7:8e:ea: 60:56:45:9e:b6:26:02:46:fe:9a:52:00:f3:a0:a9:8d:07:0c: bd:01:6a:86:df:54:88:41:07:fa:31:be:d3:f0:20:92:6c:e1: 90:03:1e:25:04:73:04:27:73:0b:aa:5a:a8:ee:cf:df:db:9a: 87:36:ae:4b:ee:d1:38:e8:1c:be:eb:39:86:4b:b9:88:f1:e0: 77:9a:2c:3a:65:f7:31:e5:2d:65:27:12:30:87:a6:54:05:ef: 1b:5a:e8:7e:a7:b3:2e:2a:05:c4:e3:2c:79:bc:81:af:e6:a7: 5a:96:88:e3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NkY3QzExMC8GA1UEBRMoNkVGOEZFQ0VGMzM5RUE2REU5Njk4Q0MyQzVGNTg2NDVD RjY1RUZERTAeFw0yNTEwMDkwNzQ3MzRaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTc2ODk2LTFkMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpJ1/SCjAfWkNwRi4rHqvrClmS+ooKcuZYJ/346DVsMZLUc5MYF5S1Qemm0Fk3 KKTTBN9XkMEJ9l6WtUbalvuyTpRhoNVKEsxaaUaSvnC0Y/dh8M/O4Hrz/MlJQ9xL 6LVCYtzhoQ2bKOkleBjrgYLfYSvoAd08f50aQZAJH6x7R/pdMB+9wSXqDlAm2lf6 ua6Hh3WWJOM6wqS3FHY2V3tUD3lQ2Qv8xW/anx0zTZhcEP40vOcznOjAnsz9wCvK GSJ0NlQ69e0CuG3xJjilY2VFK6iO+el/egDYp7ki72JFbvnycQguzXaVCUIrtVyA DMyi6KQgP0596xBTxkcckopBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUnoRdQiqn h4W0C+IiGiBAfJtSoL4wHwYDVR0jBBgwFoAUbvj+zvM56m3paYzCxfWGRc9l794w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk2RjdDLzA3RjM0RjA4QTRC MjExRjBCODRDMTM0M0M0RjlBRTAyL2J2ai16dk01Nm0zcGFZekN4ZldHUmM5bDc5 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYnZqLXp2TTU2bTNwYVl6Q3hmV0dSYzlsNzk0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NkY3Qy8wN0YzNEYwOEE0QjIxMUYwQjg0QzEzNDNDNEY5QUUwMi9FMDQ3RjIwNEE0 Q0MxMUYwQUUzMjQ0MERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAp1VXDANBgkqhkiG9w0BAQsFAAOCAQEAKItqyhjXL/ECpbAT sRjQvnkgZCJSDJOX5wYagNFfRlI1CCm3/DsLupbqIbMWwuDSCs3M/eCaLFzc0fzA Vwdsu4gm7wtL7g+41TrWm+e0jS3DUCV52lUKc/8FOksvkdvaHbbsz1Kfi4giHnFQ N+cxmKSdW4G8EPMq5E9XtjU1p3K3k+jevtCycWdkCq9F547qYFZFnrYmAkb+mlIA 86CpjQcMvQFqht9UiEEH+jG+0/AgkmzhkAMeJQRzBCdzC6paqO7P39uahzauS+7R OOgcvus5hku5iPHgd5osOmX3MeUtZScSMIemVAXvG1rofqezLioFxOMsebyBr+an WpaI4w== -----END CERTIFICATE-----Generated at Sun Oct 19 01:41:53 2025 by rpki-client