$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/57BD12E2CA1411ED9F6F423BC4F9AE02.roa File: 57BD12E2CA1411ED9F6F423BC4F9AE02.roa (raw, json) Hash identifier: /pyPonPmEFKa1hXT9c5EeNmCysabzskN0N3q8itE/yQ= Subject key identifier: CD:6A:40:D5:DA:A0:89:F8:78:69:D9:5A:A3:37:B0:D3:5A:9E:7B:05 Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 34B8 Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/57BD12E2CA1411ED9F6F423BC4F9AE02.roa Signing time: Fri 24 Jan 2025 14:50:30 +0000 ROA not before: Fri 24 Jan 2025 14:50:30 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 132737 IP address blocks: 202.153.188.0/24 maxlen: 24 202.153.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:28:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13496 (0x34b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A, serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Validity Not Before: Jan 24 14:50:30 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6793a8b5-fc68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f9:f4:5b:98:0b:0b:30:3e:64:2f:bf:64:91: 74:b7:01:91:93:46:f2:d6:4c:14:bc:bd:66:49:81: dd:2c:33:af:86:70:bc:61:cf:c0:a7:b8:66:31:42: 5e:5d:cb:2c:00:34:36:b9:18:c5:5e:59:16:01:d4: 7c:ae:93:e0:e9:f1:80:78:47:14:18:65:43:b3:c5: 51:21:a0:b7:93:8d:47:d0:ac:3a:1e:72:6f:06:46: 02:c0:3d:c1:32:db:f9:bc:f0:53:5f:5a:49:3a:11: 2c:d8:d9:5b:b6:eb:b7:0f:90:2a:68:04:6e:20:07: c2:45:30:8b:c5:c8:af:49:8a:79:8b:12:6b:e3:54: 8b:3b:aa:e3:76:2a:83:47:0a:e2:24:e4:9c:33:76: a3:bd:f3:3a:5e:50:4b:f6:94:73:d9:62:f5:be:6e: 91:51:15:e0:cc:be:28:e3:d2:c0:dc:f1:78:49:3d: 4d:01:b2:b2:a8:12:5c:32:6b:96:a7:4e:9b:b2:6b: 7d:9f:c0:26:c6:53:98:2c:0f:3e:c6:45:6b:7c:a7: 90:b9:ce:5a:d8:5b:45:1d:64:ea:27:a1:99:75:0b: d4:64:db:8f:78:05:1d:7f:36:e8:e4:b9:76:b9:30: 20:13:92:36:a3:1a:c4:ca:74:d8:d1:ba:85:91:ef: 48:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:6A:40:D5:DA:A0:89:F8:78:69:D9:5A:A3:37:B0:D3:5A:9E:7B:05 X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/57BD12E2CA1411ED9F6F423BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.153.188.0/24 202.153.190.0/24 Signature Algorithm: sha256WithRSAEncryption 13:10:65:36:c1:77:ec:1a:01:f2:09:75:2c:c6:8f:04:7a:bc: 11:ad:65:2c:6d:53:3c:d6:68:8f:78:da:b0:18:dd:e3:ad:61: 4e:b5:12:4f:e0:20:22:c5:0f:67:ba:0b:7e:fe:d6:1e:f5:68: db:97:05:dc:f3:92:e0:35:1a:67:fc:a5:dd:a8:60:45:50:c4: e7:a7:ed:ec:17:4a:f9:37:97:5e:ee:64:c2:07:63:bc:37:d2: 7d:24:e7:88:17:7f:5d:2d:8b:9c:d5:26:44:ec:c6:c5:c7:68: 52:ed:b5:43:4d:dd:c6:53:e7:b1:4f:3e:b8:33:80:f4:80:d9: 6d:4d:81:ee:90:89:dc:77:51:b6:8d:7f:f5:93:00:2e:6b:90: f7:56:77:68:26:3f:21:f6:aa:a0:0c:d2:0c:5b:10:64:46:cc: a4:df:28:2e:21:20:56:b2:4e:70:d8:e8:d6:49:4d:bf:6e:2d: d4:36:a3:95:a4:cd:1f:ba:79:89:42:49:8c:36:be:52:d4:27: 1f:08:c3:56:f1:b5:af:97:c5:d5:6a:31:95:b1:fb:dc:ed:14: db:08:cf:cb:45:9b:44:f0:7d:92:0c:c3:ed:8e:28:2a:29:ba: a8:06:fa:a7:28:f2:a9:0f:00:11:b2:77:c3:63:21:20:28:c8: ab:ee:16:ee -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNLgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjUwMTI0MTQ1MDMwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYThiNS1mYzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPn0W5gLCzA+ZC+/ZJF0twGRk0by1kwUvL1mSYHdLDOvhnC8Yc/Ap7hmMUJe XcssADQ2uRjFXlkWAdR8rpPg6fGAeEcUGGVDs8VRIaC3k41H0Kw6HnJvBkYCwD3B Mtv5vPBTX1pJOhEs2Nlbtuu3D5AqaARuIAfCRTCLxcivSYp5ixJr41SLO6rjdiqD RwriJOScM3ajvfM6XlBL9pRz2WL1vm6RURXgzL4o49LA3PF4ST1NAbKyqBJcMmuW p06bsmt9n8AmxlOYLA8+xkVrfKeQuc5a2FtFHWTqJ6GZdQvUZNuPeAUdfzbo5Ll2 uTAgE5I2oxrEynTY0bqFke9IHwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM1qQNXa oIn4eGnZWqM3sNNannsFMB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvNTdCRDEyRTJD QTE0MTFFRDlGNkY0MjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKmbwDBADKmb4wDQYJKoZIhvcNAQELBQADggEBABMQZTbB d+waAfIJdSzGjwR6vBGtZSxtUzzWaI942rAY3eOtYU61Ek/gICLFD2e6C37+1h71 aNuXBdzzkuA1Gmf8pd2oYEVQxOen7ewXSvk3l17uZMIHY7w30n0k54gXf10ti5zV JkTsxsXHaFLttUNN3cZT57FPPrgzgPSA2W1Nge6Qidx3UbaNf/WTAC5rkPdWd2gm PyH2qqAM0gxbEGRGzKTfKC4hIFayTnDY6NZJTb9uLdQ2o5WkzR+6eYlCSYw2vlLU Jx8Iw1bxta+XxdVqMZWx+9ztFNsIz8tFm0TwfZIMw+2OKCopuqgG+qco8qkPABGy d8NjISAoyKvuFu4= -----END CERTIFICATE-----Generated at Wed Nov 5 15:34:54 2025 by rpki-client