$ rpki-client -vvf rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/D230A150840E11EFB3D1036BC4F9AE02.roa File: D230A150840E11EFB3D1036BC4F9AE02.roa (raw, json) Hash identifier: gkYrWkhbDnSZnPzaW3pf3edvz0FUTHjNjGt5hZNgUcM= Subject key identifier: 5B:14:91:13:0B:3D:1A:F7:AD:4F:38:CB:F2:CC:DC:BB:0C:BA:D8:BD Certificate issuer: /CN=A919E9A5/serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Certificate serial: 3518 Authority key identifier: 7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/D230A150840E11EFB3D1036BC4F9AE02.roa Signing time: Fri 12 Sep 2025 14:50:44 +0000 ROA not before: Fri 12 Sep 2025 14:50:44 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132436 IP address blocks: 182.252.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:32:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13592 (0x3518) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E9A5, serialNumber=7AAC67DBC1EB928E2951362E0BC6AC7677E2DC7B Validity Not Before: Sep 12 14:50:44 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c43344-fd68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:de:3d:05:f9:59:fa:d0:0e:c0:79:67:9d:51: b0:df:27:20:82:52:ce:41:be:d0:75:fd:41:6b:6e: 65:7a:0b:55:de:22:69:4a:eb:a2:de:8a:3f:0b:65: ae:c1:8c:a5:71:ba:67:4f:1f:a9:92:c4:63:24:e1: 73:46:cd:3e:4b:2a:17:fc:89:10:33:6e:ae:6c:57: 15:5b:88:58:b4:dd:be:5b:73:e2:ff:ba:73:6d:37: dc:0e:4d:dd:53:81:86:65:cd:17:3e:e1:6f:12:39: d4:d3:a5:57:58:cc:d5:f6:be:65:52:fd:90:70:1e: 05:12:ef:1e:a7:d6:dd:97:1e:f6:e2:c7:0b:1b:7d: 2f:b0:e7:14:33:c6:a2:26:34:e9:ab:0b:30:bc:59: a0:a4:0d:4b:50:3d:82:a5:91:d7:cc:93:96:a1:01: fa:7f:10:f5:83:cf:04:ab:c9:29:28:c1:9a:35:1f: 8d:33:68:df:18:8c:76:2e:0d:25:33:10:5d:99:cf: 56:58:9b:99:19:a1:0b:c3:c6:4b:58:97:01:ed:0f: 99:86:33:82:39:65:fa:4d:7d:c3:d8:32:bc:1e:6c: a6:46:dd:35:a5:a1:4a:c6:85:fd:2a:da:cc:22:a7: 95:35:44:17:b8:d9:a2:5e:b5:90:82:49:33:6e:c0: e0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:14:91:13:0B:3D:1A:F7:AD:4F:38:CB:F2:CC:DC:BB:0C:BA:D8:BD X509v3 Authority Key Identifier: keyid:7A:AC:67:DB:C1:EB:92:8E:29:51:36:2E:0B:C6:AC:76:77:E2:DC:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/eqxn28Hrko4pUTYuC8asdnfi3Hs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eqxn28Hrko4pUTYuC8asdnfi3Hs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E9A5/A32EFEB81D8911E292E4FDE208B02CD2/D230A150840E11EFB3D1036BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.252.92.0/24 Signature Algorithm: sha256WithRSAEncryption 64:86:67:3b:71:4d:89:a5:b0:02:6a:27:3d:bf:5e:57:d3:55: 4c:38:02:73:35:4c:2c:61:b6:51:16:bd:19:aa:35:e1:fe:07: 41:76:3b:65:fd:e3:0b:22:ee:76:72:f1:ae:70:10:3f:41:6e: 46:d8:d2:c6:e7:d7:19:30:93:d2:15:a7:d9:5a:bd:91:8f:c1: d1:1c:37:0d:8e:00:1b:05:6b:19:bf:20:10:8e:ea:41:71:d5: 07:61:96:9d:35:c1:9b:e6:de:4a:55:ff:44:31:71:e8:e1:39: 92:8a:02:9f:23:34:78:9f:9d:29:9d:9b:f5:8c:9f:2c:fd:e3: 93:20:c0:0f:f2:57:0f:82:80:f0:79:6b:da:b0:23:19:19:5c: 5e:38:f3:00:85:94:4c:9f:84:31:6f:37:28:66:d5:62:7f:18: c4:c2:34:3a:15:09:f6:10:57:6e:44:aa:84:f7:9b:4c:cd:30: ab:dd:70:83:f8:ff:ea:13:eb:32:b3:34:40:3c:f5:b2:a7:93: 0c:51:3c:5a:0a:4e:59:c4:ca:e8:e2:b3:b7:ab:23:b4:e5:d1: 44:f1:c6:19:e9:be:fc:b6:cb:38:a7:e2:96:24:95:06:b3:ee: e0:9c:78:7a:72:6d:92:3e:f5:1d:b2:f6:9c:3d:05:ae:9c:9e: 84:66:f0:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNRgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU5QTUxMTAvBgNVBAUTKDdBQUM2N0RCQzFFQjkyOEUyOTUxMzYyRTBCQzZBQzc2 NzdFMkRDN0IwHhcNMjUwOTEyMTQ1MDQ0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0MzM0NC1mZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvN49BflZ+tAOwHlnnVGw3ycgglLOQb7Qdf1Ba25legtV3iJpSuui3oo/C2Wu wYylcbpnTx+pksRjJOFzRs0+SyoX/IkQM26ubFcVW4hYtN2+W3Pi/7pzbTfcDk3d U4GGZc0XPuFvEjnU06VXWMzV9r5lUv2QcB4FEu8ep9bdlx724scLG30vsOcUM8ai JjTpqwswvFmgpA1LUD2CpZHXzJOWoQH6fxD1g88Eq8kpKMGaNR+NM2jfGIx2Lg0l MxBdmc9WWJuZGaELw8ZLWJcB7Q+ZhjOCOWX6TX3D2DK8HmymRt01paFKxoX9KtrM IqeVNUQXuNmiXrWQgkkzbsDgxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFsUkRML PRr3rU84y/LM3LsMuti9MB8GA1UdIwQYMBaAFHqsZ9vB65KOKVE2LgvGrHZ34tx7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTlBNS9BMzJFRkVCODFE ODkxMUUyOTJFNEZERTIwOEIwMkNEMi9lcXhuMjhIcmtvNHBVVFl1Qzhhc2RuZmkz SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VxeG4yOEhya280cFVUWXVDOGFzZG5maTNIcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUU5QTUvQTMyRUZFQjgxRDg5MTFFMjkyRTRGREUyMDhCMDJDRDIvRDIzMEExNTA4 NDBFMTFFRkIzRDEwMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC2/FwwDQYJKoZIhvcNAQELBQADggEBAGSGZztxTYmlsAJq Jz2/XlfTVUw4AnM1TCxhtlEWvRmqNeH+B0F2O2X94wsi7nZy8a5wED9BbkbY0sbn 1xkwk9IVp9lavZGPwdEcNw2OABsFaxm/IBCO6kFx1Qdhlp01wZvm3kpV/0Qxcejh OZKKAp8jNHifnSmdm/WMnyz945MgwA/yVw+CgPB5a9qwIxkZXF448wCFlEyfhDFv Nyhm1WJ/GMTCNDoVCfYQV25EqoT3m0zNMKvdcIP4/+oT6zKzNEA89bKnkwxRPFoK TlnEyujis7erI7Tl0UTxxhnpvvy2yzin4pYklQaz7uCceHpybZI+9R2y9pw9Ba6c noRm8Bs= -----END CERTIFICATE-----Generated at Fri Sep 19 15:15:46 2025 by rpki-client