$ rpki-client -vvf rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/7D62DD7E840D11EFB275D662C4F9AE02.roa File: 7D62DD7E840D11EFB275D662C4F9AE02.roa (raw, json) Hash identifier: pLIkppbdFI2Dvba2mWRCPANXKzDe4Q3IfvnPWtwGOsc= Subject key identifier: 45:28:4E:D3:26:4C:7D:D1:F4:97:85:4C:BC:EF:1D:64:F1:02:99:7F Certificate issuer: /CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Certificate serial: 351A Authority key identifier: 7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/7D62DD7E840D11EFB275D662C4F9AE02.roa Signing time: Fri 12 Sep 2025 14:50:46 +0000 ROA not before: Fri 12 Sep 2025 14:50:46 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 23923 IP address blocks: 116.68.192.0/20 maxlen: 24 119.148.0.0/18 maxlen: 24 182.252.64.0/20 maxlen: 24 182.252.80.0/21 maxlen: 24 182.252.88.0/22 maxlen: 24 202.53.160.0/20 maxlen: 24 2401:9c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13594 (0x351a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E9A5, serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Validity Not Before: Sep 12 14:50:46 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c43346-41d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:dd:94:86:ef:3c:a0:c2:00:d0:c7:7e:06:47: b1:3f:5b:06:40:44:fe:d8:97:10:c4:f9:4b:f2:11: 23:23:02:d3:45:e4:c1:3d:a5:5b:0a:0d:c2:c5:93: 1b:d4:ce:4e:09:9b:4b:80:ee:e2:76:10:3f:94:d6: 95:42:18:03:1b:e2:7c:30:b0:e9:16:b2:14:31:49: 1d:55:39:b7:6e:b1:1e:98:bd:e4:6a:67:a1:ac:bd: 94:7d:b6:64:bd:ce:64:82:8b:f8:84:c0:3b:c7:78: 9a:70:3b:50:ed:69:64:6f:db:ca:c5:02:47:e0:2a: ef:00:86:7a:86:11:c6:c8:13:17:56:00:9c:19:0b: 65:9c:31:db:28:9e:61:c5:7b:dc:11:35:27:06:44: fb:ff:9d:0f:5f:e2:cd:60:07:50:34:f0:01:9f:d6: ec:8d:a7:80:36:d2:a8:32:0b:09:6a:97:70:7d:ae: 26:53:9c:47:13:3f:32:a5:3c:6b:c5:5c:0f:25:db: 5d:af:a3:aa:8b:7b:ee:ce:ce:3e:53:85:1c:f3:9c: b0:ce:c4:4f:a4:57:d5:ee:c6:7a:48:5e:bb:60:e1: 28:cc:f0:4d:8f:fe:39:57:38:28:e1:f5:13:9c:f7: 3c:02:47:b8:da:2d:e6:5f:f3:4f:6c:a4:c2:58:10: bc:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:28:4E:D3:26:4C:7D:D1:F4:97:85:4C:BC:EF:1D:64:F1:02:99:7F X509v3 Authority Key Identifier: keyid:7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/7D62DD7E840D11EFB275D662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.68.192.0/20 119.148.0.0/18 182.252.64.0-182.252.91.255 202.53.160.0/20 IPv6: 2401:9c00::/32 Signature Algorithm: sha256WithRSAEncryption 5d:93:5b:89:c3:1a:58:39:14:6e:1f:83:e7:44:34:9e:ab:d2: c5:5c:63:6a:be:3c:af:28:fc:a4:75:24:3a:e5:f2:61:1b:ac: 8a:a3:65:75:54:61:30:9d:5e:b3:fd:7a:8d:17:9b:ce:22:23: 8d:7a:7b:52:62:f2:af:f7:6a:c6:fb:af:60:56:a9:93:7c:c5: 3a:75:33:71:f7:cd:08:32:b9:14:f4:64:80:16:e0:03:d7:5a: 61:d1:1a:02:9d:69:a6:9f:01:20:c5:0c:1f:48:c8:d2:16:14: 45:fe:e0:2a:62:9e:d1:b2:72:5d:83:23:27:60:33:b0:25:b0: ba:f8:ad:a7:ab:87:80:cd:0f:16:ad:72:d8:52:3f:56:2c:1b: 61:78:43:62:04:5c:59:b5:d6:0c:ff:fc:49:26:5f:ce:18:d6: 97:0c:84:f6:ac:a6:d0:95:8f:1f:db:3e:b8:45:12:14:53:98: 40:14:be:23:57:79:37:2b:58:01:4a:6e:f9:51:b7:68:d5:e9: cc:b9:b8:6f:90:aa:ef:dc:2e:22:a8:34:67:63:d5:e0:35:f0: c2:bf:33:e0:5d:7e:a9:51:66:f9:b1:20:52:79:a9:7a:6b:b1: d2:88:b6:59:ac:e8:72:d1:77:09:d2:e0:61:a8:0e:53:e8:c5: e7:57:6a:9a -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICNRowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU5QTUxMTAvBgNVBAUTKDdBQUM2N0RCQzFFQjkyOEUyOTUxMzYyRTBCQzZBQzc2 NzdFMkRDN0IwHhcNMjUwOTEyMTQ1MDQ2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0MzM0Ni00MWQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA392Uhu88oMIA0Md+BkexP1sGQET+2JcQxPlL8hEjIwLTReTBPaVbCg3CxZMb 1M5OCZtLgO7idhA/lNaVQhgDG+J8MLDpFrIUMUkdVTm3brEemL3kamehrL2UfbZk vc5kgov4hMA7x3iacDtQ7Wlkb9vKxQJH4CrvAIZ6hhHGyBMXVgCcGQtlnDHbKJ5h xXvcETUnBkT7/50PX+LNYAdQNPABn9bsjaeANtKoMgsJapdwfa4mU5xHEz8ypTxr xVwPJdtdr6Oqi3vuzs4+U4Uc85ywzsRPpFfV7sZ6SF67YOEozPBNj/45Vzgo4fUT nPc8Ake42i3mX/NPbKTCWBC8LQIDAQABo4ICvjCCArowHQYDVR0OBBYEFEUoTtMm TH3R9JeFTLzvHWTxApl/MB8GA1UdIwQYMBaAFHqsZ9vB65KOKVE2LgvGrHZ34tx7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTlBNS9BMzJFRkVCODFE ODkxMUUyOTJFNEZERTIwOEIwMkNEMi9lcXhuMjhIcmtvNHBVVFl1Qzhhc2RuZmkz SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VxeG4yOEhya280cFVUWXVDOGFzZG5maTNIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUU5QTUvQTMyRUZFQjgxRDg5MTFFMjkyRTRGREUyMDhCMDJDRDIvN0Q2MkREN0U4 NDBEMTFFRkIyNzVENjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCYEAgABMCADBAR0RMADBAZ3lAAwDAMEBrb8QAMEArb8WAMEBMo1oDANBAIA AjAHAwUAJAGcADANBgkqhkiG9w0BAQsFAAOCAQEAXZNbicMaWDkUbh+D50Q0nqvS xVxjar48ryj8pHUkOuXyYRusiqNldVRhMJ1es/16jRebziIjjXp7UmLyr/dqxvuv YFapk3zFOnUzcffNCDK5FPRkgBbgA9daYdEaAp1ppp8BIMUMH0jI0hYURf7gKmKe 0bJyXYMjJ2AzsCWwuvitp6uHgM0PFq1y2FI/ViwbYXhDYgRcWbXWDP/8SSZfzhjW lwyE9qym0JWPH9s+uEUSFFOYQBS+I1d5NytYAUpu+VG3aNXpzLm4b5Cq79wuIqg0 Z2PV4DXwwr8z4F1+qVFm+bEgUnmpemux0oi2WazoctF3CdLgYagOU+jF51dqmg== -----END CERTIFICATE-----Generated at Fri Sep 19 08:34:56 2025 by rpki-client