$ rpki-client -vvf rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4EEAF1DAE96211ED9A14B935C4F9AE02.roa File: 4EEAF1DAE96211ED9A14B935C4F9AE02.roa (raw, json) Hash identifier: p/UGppIjgdU0zgcCE801w9qFglLFdJgIlJ6pMarUbMo= Subject key identifier: 5A:85:47:2D:3A:83:CB:A9:EC:C2:83:4F:AA:21:82:B2:4D:49:9B:58 Certificate issuer: /CN=A9156740/serialNumber=E2BBAD393158A0674C6949EC3B8A0B73F86029A2 Certificate serial: 02AC Authority key identifier: E2:BB:AD:39:31:58:A0:67:4C:69:49:EC:3B:8A:0B:73:F8:60:29:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4rutOTFYoGdMaUnsO4oLc_hgKaI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4EEAF1DAE96211ED9A14B935C4F9AE02.roa Signing time: Thu 25 Sep 2025 02:20:14 +0000 ROA not before: Thu 25 Sep 2025 02:20:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 8075 IP address blocks: 202.27.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4rutOTFYoGdMaUnsO4oLc_hgKaI.crl rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4rutOTFYoGdMaUnsO4oLc_hgKaI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4rutOTFYoGdMaUnsO4oLc_hgKaI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156740, serialNumber=E2BBAD393158A0674C6949EC3B8A0B73F86029A2 Validity Not Before: Sep 25 02:20:14 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d4a6de-fb93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bb:47:2c:a1:e5:48:b6:4d:eb:a8:59:67:bf: e2:0e:ff:fb:ff:b0:e7:57:0f:c4:45:81:65:dc:ac: 85:f1:0c:c9:9b:f9:d8:7a:91:1b:8e:bc:d7:57:47: d2:f9:40:92:08:aa:62:68:da:74:34:09:b8:35:29: a2:12:d1:62:66:f4:15:90:f7:81:a7:12:91:de:db: 79:93:03:06:67:99:1f:92:36:a3:1d:b5:a9:5e:24: 32:36:16:26:1f:df:69:fb:47:5c:ed:14:fd:a0:ed: 9b:00:cf:40:25:73:20:59:f5:a6:b2:c0:de:a9:8f: 05:6f:be:d0:25:44:10:a7:a0:0f:a8:21:d7:8e:86: 9f:64:c5:f9:d5:b3:8a:36:aa:8f:26:96:02:a7:67: ca:9a:9d:18:11:43:af:e7:37:04:13:88:82:3c:e5: 9b:8a:16:29:02:9a:87:48:cf:58:2c:33:af:48:a4: d9:9d:ad:20:67:c8:e5:b8:34:80:48:b6:4e:f4:13: 04:ff:21:40:4a:07:3a:e6:b3:a2:6d:7e:ce:50:0e: ac:0d:6b:07:24:4d:1b:2a:8d:4e:02:ab:79:d9:62: ed:6b:17:cd:96:ce:de:53:5f:d6:2b:6e:23:22:4c: 41:16:b3:0e:7d:5f:aa:4a:8b:6d:c7:6c:24:ba:aa: df:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:85:47:2D:3A:83:CB:A9:EC:C2:83:4F:AA:21:82:B2:4D:49:9B:58 X509v3 Authority Key Identifier: keyid:E2:BB:AD:39:31:58:A0:67:4C:69:49:EC:3B:8A:0B:73:F8:60:29:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4rutOTFYoGdMaUnsO4oLc_hgKaI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4rutOTFYoGdMaUnsO4oLc_hgKaI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4EEAF1DAE96211ED9A14B935C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.27.147.0/24 Signature Algorithm: sha256WithRSAEncryption 72:68:b4:81:83:a5:a6:d1:88:f9:3e:39:b8:5d:75:4d:c6:b6: f9:04:47:41:4b:6a:ae:d1:5a:4f:cd:84:96:b6:5b:c1:9f:2b: 1f:da:15:18:cc:34:45:0e:72:a8:92:25:3a:e2:d5:a4:e1:bc: 3c:f5:a9:89:77:e6:87:f5:c5:be:93:cb:6d:b4:94:70:ef:c0: 60:e7:59:27:db:d4:46:fa:21:f7:ed:33:a4:11:21:5a:84:09: 41:91:db:87:a1:15:f7:25:e8:00:16:42:af:f4:6c:20:86:a7: cc:23:dd:ea:e0:a8:68:81:28:78:fc:15:2b:c6:34:1b:fb:f1: 91:83:ff:44:66:5b:54:c2:f4:0f:83:84:40:cb:ec:57:21:ff: 66:36:b5:39:88:8f:69:01:05:6d:bb:16:cd:b8:d7:a3:91:68: 7c:f9:60:30:f4:6f:76:ab:d6:57:49:13:92:1c:49:e0:f5:f3: d3:33:07:30:55:b9:fe:e0:a0:d7:a4:60:02:1e:2f:86:99:ff: c2:4a:d4:d8:54:6b:ee:6e:14:f5:9e:bc:ca:17:50:80:90:85: 81:18:16:96:a5:b0:0b:fa:ec:ff:b4:0b:4e:0f:6b:b2:de:86: cc:30:60:5b:32:d8:3c:27:da:c1:ce:89:0d:8e:63:d6:d4:ed: 0f:48:40:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY3NDAxMTAvBgNVBAUTKEUyQkJBRDM5MzE1OEEwNjc0QzY5NDlFQzNCOEEwQjcz Rjg2MDI5QTIwHhcNMjUwOTI1MDIyMDE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0YTZkZS1mYjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLtHLKHlSLZN66hZZ7/iDv/7/7DnVw/ERYFl3KyF8QzJm/nYepEbjrzXV0fS +UCSCKpiaNp0NAm4NSmiEtFiZvQVkPeBpxKR3tt5kwMGZ5kfkjajHbWpXiQyNhYm H99p+0dc7RT9oO2bAM9AJXMgWfWmssDeqY8Fb77QJUQQp6APqCHXjoafZMX51bOK NqqPJpYCp2fKmp0YEUOv5zcEE4iCPOWbihYpApqHSM9YLDOvSKTZna0gZ8jluDSA SLZO9BME/yFASgc65rOibX7OUA6sDWsHJE0bKo1OAqt52WLtaxfNls7eU1/WK24j IkxBFrMOfV+qSottx2wkuqrfjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFqFRy06 g8up7MKDT6ohgrJNSZtYMB8GA1UdIwQYMBaAFOK7rTkxWKBnTGlJ7DuKC3P4YCmi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njc0MC8zNTI4QjBDQzE2 QzAxMUVEODAwODlBMjFDNEY5QUUwMi80cnV0T1RGWW9HZE1hVW5zTzRvTGNfaGdL YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRydXRPVEZZb0dkTWFVbnNPNG9MY19oZ0thSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY3NDAvMzUyOEIwQ0MxNkMwMTFFRDgwMDg5QTIxQzRGOUFFMDIvNEVFQUYxREFF OTYyMTFFRDlBMTRCOTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKG5MwDQYJKoZIhvcNAQELBQADggEBAHJotIGDpabRiPk+ ObhddU3GtvkER0FLaq7RWk/NhJa2W8GfKx/aFRjMNEUOcqiSJTri1aThvDz1qYl3 5of1xb6Ty220lHDvwGDnWSfb1Eb6IfftM6QRIVqECUGR24ehFfcl6AAWQq/0bCCG p8wj3ergqGiBKHj8FSvGNBv78ZGD/0RmW1TC9A+DhEDL7Fch/2Y2tTmIj2kBBW27 Fs2416ORaHz5YDD0b3ar1ldJE5IcSeD189MzBzBVuf7goNekYAIeL4aZ/8JK1NhU a+5uFPWevMoXUICQhYEYFpalsAv67P+0C04Pa7LehswwYFsy2Dwn2sHOiQ2OY9bU 7Q9IQAs= -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:34 2025 by rpki-client