$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/AA872C46B89711F0A8B6AF18C4F9AE02.roa File: AA872C46B89711F0A8B6AF18C4F9AE02.roa (raw, json) Hash identifier: Bar2gHezA+IiS5icMhlTq3qlc1AiHlmcqsjeQVVL7II= Subject key identifier: ED:CB:82:EB:18:85:F3:BA:40:A8:47:CB:77:63:EE:5E:AA:18:99:C9 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0B52 Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/AA872C46B89711F0A8B6AF18C4F9AE02.roa Signing time: Mon 03 Nov 2025 09:29:59 +0000 ROA not before: Mon 03 Nov 2025 09:29:59 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9304 IP address blocks: 61.15.92.0/23 maxlen: 24 61.15.98.0/23 maxlen: 24 61.15.100.0/22 maxlen: 24 61.15.110.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:09:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2898 (0xb52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Nov 3 09:29:59 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=69087617-0839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0d:f0:63:b1:65:21:f0:77:ea:70:fb:78:48: 1a:68:72:26:38:e5:d2:cb:ce:7b:93:ae:cc:21:ac: 1f:92:2a:4b:08:84:ed:7b:10:fc:b1:49:cf:64:39: 4a:e5:ad:3b:27:4e:c5:63:68:cc:75:56:8c:73:0a: c7:cb:00:3f:7e:80:38:21:ce:6d:91:9a:3f:46:1d: f5:de:36:cf:d3:42:6a:e8:1b:49:52:80:24:a3:67: e9:40:fd:78:e1:23:a9:b2:f9:58:90:48:4a:2a:2c: 6e:43:5b:74:0d:52:27:3a:c1:96:25:cd:52:46:78: 48:d8:f0:fa:f7:a6:2b:16:4b:59:fe:b9:d7:d7:03: ad:48:65:23:b3:8b:74:09:5e:c3:99:f8:a4:21:fe: b3:c4:04:ad:76:c1:82:47:d5:d2:aa:36:56:49:9f: 03:d8:5b:0d:94:4c:c2:dc:41:2a:e9:eb:fa:9f:e6: b4:8f:f7:be:82:d7:2a:86:0c:d7:ad:6a:a8:72:3d: d0:3c:f0:33:bf:7f:b1:9b:ae:4a:01:60:e2:b5:7d: 24:10:9d:b5:64:35:c6:a0:8c:74:73:a3:51:7b:74: d1:cf:3d:e0:4c:af:cd:03:ab:bd:6e:49:51:f5:9b: cf:2e:53:7a:1d:c7:63:50:dc:5f:65:b2:71:c9:0c: 34:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:CB:82:EB:18:85:F3:BA:40:A8:47:CB:77:63:EE:5E:AA:18:99:C9 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/AA872C46B89711F0A8B6AF18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.15.92.0/23 61.15.98.0-61.15.103.255 61.15.110.0/23 Signature Algorithm: sha256WithRSAEncryption 85:d0:80:6d:ed:77:d4:1a:17:da:f2:83:df:3f:53:65:7b:da: 30:29:c6:24:67:26:40:a8:db:78:55:4b:a3:db:f2:90:2b:3a: ef:0c:c8:62:84:05:d0:ae:d7:b2:95:00:2d:1f:9e:a6:8c:95: 82:99:b5:ee:ad:46:cc:f9:e0:65:4f:85:9b:d8:66:62:e0:c9: 4d:a4:f2:45:5b:f8:74:af:b3:8d:17:bd:66:c2:f4:80:5a:2a: e5:74:a5:23:17:e7:01:ba:cf:04:67:ec:74:25:af:63:b5:c4: 2d:f9:a7:b3:3e:2f:fd:a2:ca:9f:7a:6d:ca:7d:35:9d:c0:c7: 3c:25:62:07:2f:ca:e9:2e:18:39:a1:bc:00:66:1f:a7:cc:2f: f2:3d:a9:49:27:ec:63:37:84:11:ed:13:2c:0f:b8:1f:f0:c7: 94:67:23:4e:22:2e:23:ab:82:97:49:b3:1c:e1:8b:62:d6:2d: 57:96:aa:4e:a7:97:73:7e:13:5e:49:fa:de:ee:38:68:70:18: 05:7f:2e:fe:44:0e:bf:89:4e:f6:12:93:97:cc:6d:e9:15:d4: 27:e5:6e:c5:67:81:c9:33:44:3f:4e:25:21:40:16:23:d7:9e: 0d:f8:aa:86:d5:21:2a:12:96:f6:2c:62:d6:98:f3:81:95:76: 6c:77:e2:d2 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICC1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUxMTAzMDkyOTU5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4NzYxNy0wODM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAug3wY7FlIfB36nD7eEgaaHImOOXSy857k67MIawfkipLCITtexD8sUnPZDlK 5a07J07FY2jMdVaMcwrHywA/foA4Ic5tkZo/Rh313jbP00Jq6BtJUoAko2fpQP14 4SOpsvlYkEhKKixuQ1t0DVInOsGWJc1SRnhI2PD696YrFktZ/rnX1wOtSGUjs4t0 CV7DmfikIf6zxAStdsGCR9XSqjZWSZ8D2FsNlEzC3EEq6ev6n+a0j/e+gtcqhgzX rWqocj3QPPAzv3+xm65KAWDitX0kEJ21ZDXGoIx0c6NRe3TRzz3gTK/NA6u9bklR 9ZvPLlN6HcdjUNxfZbJxyQw0aQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFO3LgusY hfO6QKhHy3dj7l6qGJnJMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvQUE4NzJDNDZC ODk3MTFGMEE4QjZBRjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAE9D1wwDAMEAT0PYgMEAz0PYAMEAT0PbjANBgkqhkiG9w0B AQsFAAOCAQEAhdCAbe131BoX2vKD3z9TZXvaMCnGJGcmQKjbeFVLo9vykCs67wzI YoQF0K7XspUALR+epoyVgpm17q1GzPngZU+Fm9hmYuDJTaTyRVv4dK+zjRe9ZsL0 gFoq5XSlIxfnAbrPBGfsdCWvY7XELfmnsz4v/aLKn3ptyn01ncDHPCViBy/K6S4Y OaG8AGYfp8wv8j2pSSfsYzeEEe0TLA+4H/DHlGcjTiIuI6uCl0mzHOGLYtYtV5aq TqeXc34TXkn63u44aHAYBX8u/kQOv4lO9hKTl8xt6RXUJ+VuxWeByTNEP04lIUAW I9eeDfiqhtUhKhKW9ixi1pjzgZV2bHfi0g== -----END CERTIFICATE-----Generated at Wed Nov 5 03:24:52 2025 by rpki-client