$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/215A8FDE4B9E11EEBF766C7FC4F9AE02.roa File: 215A8FDE4B9E11EEBF766C7FC4F9AE02.roa (raw, json) Hash identifier: 3KAXB0y77UEXT0NSmBqRqJYol3EdpUOQESEbjqAUowo= Subject key identifier: 14:2D:38:D2:81:77:F5:2F:91:85:BB:D2:A2:E6:80:81:2E:42:EF:51 Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 08EF Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/215A8FDE4B9E11EEBF766C7FC4F9AE02.roa Signing time: Tue 04 Nov 2025 21:40:36 +0000 ROA not before: Tue 04 Nov 2025 21:40:36 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 4682 IP address blocks: 61.245.0.0/22 maxlen: 22 61.245.0.0/24 maxlen: 24 61.245.1.0/24 maxlen: 24 61.245.2.0/24 maxlen: 24 61.245.3.0/24 maxlen: 24 2001:ded:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:40:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2287 (0x8ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA, serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Nov 4 21:40:36 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690a72d4-564b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:32:a7:86:30:91:2b:eb:a9:7d:e6:73:15:69: c2:c3:a7:bc:08:18:14:f4:de:90:7c:e6:65:ca:0f: 3f:4f:2f:bf:c6:6c:a1:b3:38:a4:b2:14:4c:1f:6f: c1:c7:29:31:27:04:a4:db:ec:b8:fb:9f:79:59:55: 0f:c5:9c:3a:f1:30:4e:f9:81:1e:57:d5:6b:44:d5: 74:4d:e9:9f:f6:6e:b9:79:e3:67:f9:0c:84:4f:68: 26:d2:bb:f4:06:0e:da:bf:ef:3a:f8:f6:92:ac:0b: 17:2f:a4:f8:1e:d3:ff:3a:00:bd:5c:16:44:10:7c: ac:2b:92:d0:31:e7:ca:1f:74:d6:db:bc:ef:45:c2: e9:1e:fb:e0:f2:ee:fb:55:f9:c6:86:e1:6b:19:97: 20:60:9a:ff:ff:2c:c6:7d:97:06:35:b3:84:c3:0c: e1:a4:9d:50:d5:ba:fc:bb:48:23:f4:51:7f:e2:51: 87:29:09:3d:96:81:c0:19:ed:4c:89:b4:3d:52:2c: de:68:91:83:83:a2:07:73:9c:da:eb:df:f2:cf:78: 76:5d:07:7e:8f:d0:21:4d:7f:88:b5:d1:36:d7:e2: 07:4f:f4:0e:34:d8:23:a6:47:20:ef:ee:7e:26:ed: 44:33:98:5a:94:4f:0c:28:70:ce:e1:99:69:ce:46: 9e:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2D:38:D2:81:77:F5:2F:91:85:BB:D2:A2:E6:80:81:2E:42:EF:51 X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/215A8FDE4B9E11EEBF766C7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.245.0.0/22 IPv6: 2001:ded:4000::/48 Signature Algorithm: sha256WithRSAEncryption 72:8f:b5:15:52:59:66:dc:14:93:4f:b7:63:58:11:85:93:59: 75:8f:9c:ad:41:c6:67:8c:c4:18:1e:e4:13:6b:5a:86:55:b4: af:30:bf:46:3a:99:0b:0b:10:6d:b0:ec:01:84:35:dd:2b:ae: 25:9d:1f:94:d7:c5:e8:f8:16:7d:b3:ed:7e:a3:4e:f4:da:a7: 95:c1:88:53:b1:37:7c:04:be:99:cb:ad:5c:40:ab:9f:19:d9: 34:82:1b:cf:8d:83:f3:79:b3:6b:a7:a7:a0:c8:1b:77:8f:03: 41:8b:47:25:93:cb:dd:db:ac:56:43:a6:be:80:3d:4e:bd:e2: 11:49:a2:32:80:c0:08:68:e2:10:91:30:e4:84:90:23:17:5d: 33:a4:56:e3:5a:8e:a8:f8:0a:f1:12:03:d4:7d:53:dc:1d:e4: 41:3f:43:ec:81:93:7b:82:f0:ca:10:cc:a3:48:9a:13:7d:fe: 52:eb:2d:28:91:5c:97:c0:bb:a1:af:ee:1a:2b:36:6f:ee:5a: d3:cf:c1:ef:8e:64:19:4b:67:d4:36:b9:8d:9d:e4:55:46:83: c8:61:b8:3e:5a:f1:cf:ed:3f:0c:64:2a:3a:af:38:ca:5d:0e: 01:e9:6c:27:dd:14:87:e0:d7:b8:01:94:50:34:9e:b2:4b:0a: a7:5e:f8:13 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjUxMTA0MjE0MDM2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNzJkNC01NjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyzKnhjCRK+upfeZzFWnCw6e8CBgU9N6QfOZlyg8/Ty+/xmyhszikshRMH2/B xykxJwSk2+y4+595WVUPxZw68TBO+YEeV9VrRNV0Temf9m65eeNn+QyET2gm0rv0 Bg7av+86+PaSrAsXL6T4HtP/OgC9XBZEEHysK5LQMefKH3TW27zvRcLpHvvg8u77 VfnGhuFrGZcgYJr//yzGfZcGNbOEwwzhpJ1Q1br8u0gj9FF/4lGHKQk9loHAGe1M ibQ9UizeaJGDg6IHc5za69/yz3h2XQd+j9AhTX+ItdE21+IHT/QONNgjpkcg7+5+ Ju1EM5halE8MKHDO4Zlpzkae4wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBQtONKB d/UvkYW70qLmgIEuQu9RMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvMjE1QThGREU0 QjlFMTFFRUJGNzY2QzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAI99QAwDwQCAAIwCQMHACABDe1AADANBgkqhkiG9w0BAQsF AAOCAQEAco+1FVJZZtwUk0+3Y1gRhZNZdY+crUHGZ4zEGB7kE2tahlW0rzC/RjqZ CwsQbbDsAYQ13SuuJZ0flNfF6PgWfbPtfqNO9NqnlcGIU7E3fAS+mcutXECrnxnZ NIIbz42D83mza6enoMgbd48DQYtHJZPL3dusVkOmvoA9Tr3iEUmiMoDACGjiEJEw 5ISQIxddM6RW41qOqPgK8RID1H1T3B3kQT9D7IGTe4LwyhDMo0iaE33+UustKJFc l8C7oa/uGis2b+5a08/B745kGUtn1Da5jZ3kVUaDyGG4Plrxz+0/DGQqOq84yl0O AelsJ90Uh+DXuAGUUDSesksKp174Ew== -----END CERTIFICATE-----Generated at Wed Nov 5 13:11:37 2025 by rpki-client