$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/A2239B14782011F0A1950D84C4F9AE02.roa File: A2239B14782011F0A1950D84C4F9AE02.roa (raw, json) Hash identifier: uRH2cuGSTKJvgNoy+Zb1UaKolBxs7SYQUUNOq8LSf4M= Subject key identifier: A7:27:58:4D:D0:C2:69:05:5E:9A:5A:9A:27:7E:A3:16:23:0C:39:32 Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Certificate serial: 3517 Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/A2239B14782011F0A1950D84C4F9AE02.roa Signing time: Wed 13 Aug 2025 08:36:40 +0000 ROA not before: Wed 13 Aug 2025 08:36:40 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55361 IP address blocks: 122.8.15.0/24 maxlen: 24 122.8.16.0/24 maxlen: 24 122.8.17.0/24 maxlen: 24 122.8.56.0/24 maxlen: 24 122.8.62.0/24 maxlen: 24 122.8.82.0/24 maxlen: 24 122.8.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:23:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13591 (0x3517) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F, serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Validity Not Before: Aug 13 08:36:40 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=689c4e98-89c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2e:b8:56:58:de:3b:38:f9:92:2f:6e:55:cb: e5:79:22:84:26:91:e7:6e:f4:bf:00:2f:5e:56:c5: 60:62:e1:a0:f1:6b:37:18:4e:e0:af:1d:38:40:ff: 96:78:b6:3a:bc:73:7e:93:fd:57:71:3c:7e:2f:16: 3c:cc:23:b6:53:b8:4d:7f:20:d6:18:17:82:3c:19: 5c:bd:00:2c:0c:2a:e5:10:08:c0:68:26:71:09:7d: 9c:09:d5:5d:fd:23:ab:0e:c3:26:ef:af:42:dc:ed: d5:11:8c:60:29:6d:6e:93:f7:8a:20:8f:4b:37:03: f2:3a:8e:e9:6d:92:c1:8d:44:a2:60:d4:e8:cd:ab: 5c:f3:76:fd:d3:01:33:da:fa:01:0d:7e:1b:66:2c: d6:6f:fc:28:53:6e:e8:e3:89:fe:e7:ed:d3:4b:99: eb:e6:e3:a1:2c:42:52:88:0c:5f:db:89:42:2c:18: 0b:5c:35:ab:a8:f1:df:ab:35:ca:5f:fd:4f:49:17: 4a:75:ea:ef:1f:dd:56:f2:54:0c:13:42:15:30:4e: 04:32:0b:08:c6:be:af:f5:5a:a1:d0:1d:09:be:65: 4b:94:36:06:0e:d0:ee:d3:0d:13:f8:f1:cb:da:42: a6:c8:cc:10:3d:1e:bc:51:91:3c:1a:4f:75:20:0a: 34:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:27:58:4D:D0:C2:69:05:5E:9A:5A:9A:27:7E:A3:16:23:0C:39:32 X509v3 Authority Key Identifier: keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/A2239B14782011F0A1950D84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.8.15.0-122.8.17.255 122.8.56.0/24 122.8.62.0/24 122.8.82.0/23 Signature Algorithm: sha256WithRSAEncryption b9:96:47:cc:2e:dd:dc:a2:fc:88:11:7d:46:29:b5:35:97:e2: 06:b5:b3:76:8c:6e:d9:b8:0e:de:39:b4:a5:e1:d3:2c:bf:f1: 78:ff:00:34:32:b6:a3:79:a9:be:9c:b4:e3:81:0c:7e:4e:8f: 20:13:13:cc:46:ad:7f:58:fa:ed:07:bd:68:83:1d:d3:16:72: e7:1b:c5:b2:f0:ff:a7:14:0d:c6:c1:13:e7:46:4b:69:1a:f3: 84:aa:7b:a0:4d:ed:9f:98:b9:0b:5a:da:6d:1a:a0:21:80:3a: f0:69:4a:35:40:3e:ac:9a:ae:f5:fe:ee:69:2b:50:07:e7:be: cd:9d:aa:26:c1:d3:0d:8f:6c:c2:99:b3:dd:9e:ea:a4:87:7a: 26:d2:30:8c:6d:32:4e:95:e4:be:fd:47:df:ff:d8:c2:1f:e5: c8:7a:16:05:93:58:18:6a:5d:f8:75:38:57:75:75:8d:02:e4: 40:77:c6:7d:12:ae:a7:43:dc:f2:15:2e:d5:17:90:d7:6d:eb: bb:5b:a4:c0:70:06:7a:a6:c8:9d:1c:5a:4e:3b:2d:fc:60:55: 7c:9a:1f:92:4f:dd:8f:f5:d1:64:a9:5f:35:9c:65:90:8c:2b: 8e:d9:03:fb:f9:65:ec:94:9f:66:2d:68:b2:91:2b:8c:36:a8: 01:75:59:fe -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICNRcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3MEYxMTAvBgNVBAUTKEJCNUI4MTU2QjAzN0U1RDIyMjYzRUFDN0Y2QTExQzA1 MkZERjYzM0YwHhcNMjUwODEzMDgzNjQwWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODljNGU5OC04OWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxC64VljeOzj5ki9uVcvleSKEJpHnbvS/AC9eVsVgYuGg8Ws3GE7grx04QP+W eLY6vHN+k/1XcTx+LxY8zCO2U7hNfyDWGBeCPBlcvQAsDCrlEAjAaCZxCX2cCdVd /SOrDsMm769C3O3VEYxgKW1uk/eKII9LNwPyOo7pbZLBjUSiYNTozatc83b90wEz 2voBDX4bZizWb/woU27o44n+5+3TS5nr5uOhLEJSiAxf24lCLBgLXDWrqPHfqzXK X/1PSRdKdervH91W8lQME0IVME4EMgsIxr6v9Vqh0B0JvmVLlDYGDtDu0w0T+PHL 2kKmyMwQPR68UZE8Gk91IAo0PwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFKcnWE3Q wmkFXppamid+oxYjDDkyMB8GA1UdIwQYMBaAFLtbgVawN+XSImPqx/ahHAUv32M/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzcwRi83MzQ2RThBMjYw NDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVkSWlZLXJIOXFFY0JTX2ZZ ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxdUJWckEzNWRJaVktckg5cUVjQlNfZll6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM3MEYvNzM0NkU4QTI2MDQ5MTFFMkEzMDc1NzhEMjk3OUJCMjAvQTIyMzlCMTQ3 ODIwMTFGMEExOTUwRDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCAwDAMEAHoIDwMEAXoIEAMEAHoIOAMEAHoIPgMEAXoIUjANBgkq hkiG9w0BAQsFAAOCAQEAuZZHzC7d3KL8iBF9Rim1NZfiBrWzdoxu2bgO3jm0peHT LL/xeP8ANDK2o3mpvpy044EMfk6PIBMTzEatf1j67Qe9aIMd0xZy5xvFsvD/pxQN xsET50ZLaRrzhKp7oE3tn5i5C1rabRqgIYA68GlKNUA+rJqu9f7uaStQB+e+zZ2q JsHTDY9swpmz3Z7qpId6JtIwjG0yTpXkvv1H3//Ywh/lyHoWBZNYGGpd+HU4V3V1 jQLkQHfGfRKup0Pc8hUu1ReQ123ru1ukwHAGeqbInRxaTjst/GBVfJofkk/dj/XR ZKlfNZxlkIwrjtkD+/ll7JSfZi1ospErjDaoAXVZ/g== -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:30 2025 by rpki-client