$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/D1825C02598911F0848EA472C4F9AE02.roa File: D1825C02598911F0848EA472C4F9AE02.roa (raw, json) Hash identifier: 6FiZKuLIgUtIYIA1D6XNL/A4ah2P8QXaPUVRBeti7CE= Subject key identifier: 22:AB:04:81:0B:DE:16:77:57:E8:35:A0:A5:A4:AF:DB:AF:D1:B9:2A Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Certificate serial: 0176 Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/D1825C02598911F0848EA472C4F9AE02.roa Signing time: Sat 05 Jul 2025 10:21:31 +0000 ROA not before: Sat 05 Jul 2025 10:21:31 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9712 IP address blocks: 43.231.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:48:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 374 (0x176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155647, serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Validity Not Before: Jul 5 10:21:31 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6868fcab-960b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:14:1f:2e:7b:7e:f0:68:c9:d3:0a:92:46:6d: 9b:0f:2a:82:8e:3e:0b:78:b0:ef:14:ef:b8:79:f2: f5:bf:1f:c5:f7:44:8d:d3:1f:ef:2c:4a:f3:3a:26: 64:18:4d:2d:db:a0:09:54:e1:5a:41:89:ff:ed:57: 8e:57:b1:09:8f:ae:1d:3c:6f:60:c5:2a:88:f2:e5: a8:25:6c:e8:ae:7f:31:ef:90:70:0c:5c:97:43:60: ae:4f:6e:4b:3c:11:0a:71:c0:95:8c:1e:12:c1:a9: 1a:2a:23:a0:fc:fc:be:c9:cd:9e:ca:21:7d:99:09: 3e:93:14:c7:8f:41:0a:c8:ea:53:70:7d:f0:49:d1: 17:f2:ef:e2:9c:63:9f:1f:7d:e6:5d:55:0d:96:b7: 3e:e2:74:61:33:4d:21:9b:65:c8:a7:42:36:ee:40: 28:44:cf:2a:80:cf:33:0b:00:5a:fe:bc:bd:b9:89: 67:66:33:b3:6b:be:63:7a:57:91:f2:2b:98:be:c3: 74:0f:65:8e:4a:0c:bb:ad:03:01:3d:8e:58:a9:bb: 7f:28:aa:0c:5b:30:20:73:a7:23:fb:19:e1:ca:58: a3:19:71:6e:fa:14:e5:97:d7:c7:b2:2c:7b:09:10: 20:45:59:22:89:ab:d3:05:b9:a8:0c:4c:1c:7c:d5: 61:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AB:04:81:0B:DE:16:77:57:E8:35:A0:A5:A4:AF:DB:AF:D1:B9:2A X509v3 Authority Key Identifier: keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/D1825C02598911F0848EA472C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.204.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:b0:d0:dd:37:6a:ee:c9:62:3e:9f:0c:30:00:ec:85:f3:c7: 3b:5c:a0:3a:38:e8:59:84:66:7b:bd:bf:eb:47:3d:f9:83:6c: e4:72:6e:2e:b7:1f:16:f9:e1:c5:cd:a4:e1:4d:f2:33:47:cc: 20:9c:e4:6d:2d:1f:16:29:b9:6a:b5:6a:97:9c:3f:13:c0:df: 13:9f:d1:8b:bb:38:ff:c3:62:f8:8c:f6:28:47:30:44:27:13: f1:b0:3a:4b:f0:42:d8:bc:94:b8:63:e7:3a:d0:53:d9:08:5a: ff:a8:5a:fd:06:b7:5b:49:4c:eb:e3:6e:7a:97:95:bd:6d:29: fb:5d:82:34:0f:33:d4:36:98:e9:44:aa:d3:56:e1:39:e4:7c: e2:b8:8c:d3:97:8a:85:6f:a5:4d:92:49:2d:ff:72:0f:df:a6: e8:d8:23:6c:71:0a:27:0f:bd:f7:93:d7:0e:72:e1:77:28:fa: 2e:39:01:8b:c0:16:c0:b8:e6:93:ba:de:a4:b3:f9:4a:16:fa: 95:eb:a1:e9:3f:07:d8:39:7c:fc:df:9e:9f:4b:93:2a:8b:e7: bc:79:87:b6:2c:a3:65:a9:97:72:9f:2c:20:be:af:85:c4:53: 76:fc:15:18:c4:05:75:94:9a:4d:43:ef:d9:f7:e6:bf:3c:54: c2:b1:59:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2NDcxMTAvBgNVBAUTKEFEMzQ0NURCNDIwMTBCMTIxNUE0OUU0MjdGMUFFNzQw MEQ3ODhCRkIwHhcNMjUwNzA1MTAyMTMxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4ZmNhYi05NjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3hQfLnt+8GjJ0wqSRm2bDyqCjj4LeLDvFO+4efL1vx/F90SN0x/vLErzOiZk GE0t26AJVOFaQYn/7VeOV7EJj64dPG9gxSqI8uWoJWzorn8x75BwDFyXQ2CuT25L PBEKccCVjB4SwakaKiOg/Py+yc2eyiF9mQk+kxTHj0EKyOpTcH3wSdEX8u/inGOf H33mXVUNlrc+4nRhM00hm2XIp0I27kAoRM8qgM8zCwBa/ry9uYlnZjOza75jeleR 8iuYvsN0D2WOSgy7rQMBPY5Yqbt/KKoMWzAgc6cj+xnhylijGXFu+hTll9fHsix7 CRAgRVkiiavTBbmoDEwcfNVhnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCKrBIEL 3hZ3V+g1oKWkr9uv0bkqMB8GA1UdIwQYMBaAFK00RdtCAQsSFaSeQn8a50ANeIv7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY0Ny85MDVDMTA0NkYz NkYxMUVFOTk3MkVCNzlDNEY5QUUwMi9yVFJGMjBJQkN4SVZwSjVDZnhyblFBMTRp X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUUkYyMElCQ3hJVnBKNUNmeHJuUUExNGlfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2NDcvOTA1QzEwNDZGMzZGMTFFRTk5NzJFQjc5QzRGOUFFMDIvRDE4MjVDMDI1 OTg5MTFGMDg0OEVBNDcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr58wwDQYJKoZIhvcNAQELBQADggEBAFqw0N03au7JYj6f DDAA7IXzxztcoDo46FmEZnu9v+tHPfmDbORybi63Hxb54cXNpOFN8jNHzCCc5G0t HxYpuWq1apecPxPA3xOf0Yu7OP/DYviM9ihHMEQnE/GwOkvwQti8lLhj5zrQU9kI Wv+oWv0Gt1tJTOvjbnqXlb1tKftdgjQPM9Q2mOlEqtNW4TnkfOK4jNOXioVvpU2S SS3/cg/fpujYI2xxCicPvfeT1w5y4Xco+i45AYvAFsC45pO63qSz+UoW+pXroek/ B9g5fPzfnp9LkyqL57x5h7Yso2Wpl3KfLCC+r4XEU3b8FRjEBXWUmk1D79n35r88 VMKxWUc= -----END CERTIFICATE-----Generated at Wed Nov 5 16:43:30 2025 by rpki-client