$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/2713F43471F211F0B2381940C4F9AE02.roa File: 2713F43471F211F0B2381940C4F9AE02.roa (raw, json) Hash identifier: vNtqGcSLIxhNnMlqrjf+EIrzDbZQ7mAzqWSJQjKC/IU= Subject key identifier: 72:30:AF:EE:DF:40:46:C7:EE:38:4D:18:35:7E:02:DD:7D:2D:DC:B5 Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0DF0 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/2713F43471F211F0B2381940C4F9AE02.roa Signing time: Tue 05 Aug 2025 11:48:51 +0000 ROA not before: Tue 05 Aug 2025 11:48:51 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 153844 IP address blocks: 14.192.156.0/24 maxlen: 24 14.192.157.0/24 maxlen: 24 111.92.156.0/24 maxlen: 24 111.92.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3568 (0xdf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Aug 5 11:48:51 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6891efa2-5052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fb:8f:57:f2:f0:6f:e6:71:48:4b:97:37:b0: 8e:70:55:fc:e4:d5:e2:25:1f:06:b6:72:99:2f:3c: 0b:3c:d4:9c:44:39:0e:63:55:80:ce:16:54:a2:19: f8:01:2f:17:c4:64:3c:79:a5:c5:04:de:97:63:00: 86:f9:a5:76:d6:a3:f0:32:31:4f:b8:71:4b:6f:56: c6:57:6c:65:83:9f:ee:8d:59:4d:3a:b8:93:f7:d5: 53:f6:b0:b2:c8:c5:56:e2:d7:54:56:1f:eb:6b:33: 0a:5a:e8:e8:56:8f:d2:86:e8:3a:c3:c8:95:da:36: 02:ca:0d:69:02:23:a2:28:27:34:1b:d3:df:1a:d5: 1b:c3:a2:f6:6a:81:4a:c0:4e:c0:f7:e3:59:a2:38: e6:d0:54:8f:14:81:be:a3:09:4c:92:9c:2f:a5:36: b8:22:bc:ac:aa:7b:a5:03:7f:7f:f0:be:b3:18:dd: 9f:96:6a:cf:f6:fb:92:bd:39:a7:79:9e:32:d1:93: 41:ca:00:7d:66:3b:7b:23:4e:2a:6d:50:1d:42:ca: 26:cd:27:82:36:3f:69:7a:56:8b:fa:7b:89:fe:0e: ed:22:ba:f7:46:3b:6d:cb:c0:55:55:fd:bf:66:ee: 7d:3d:50:fc:3f:e0:95:d8:5d:22:2e:71:60:e5:4a: 0c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:30:AF:EE:DF:40:46:C7:EE:38:4D:18:35:7E:02:DD:7D:2D:DC:B5 X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/2713F43471F211F0B2381940C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.156.0/23 111.92.156.0/23 Signature Algorithm: sha256WithRSAEncryption 14:43:4e:64:67:e4:08:6d:d7:fe:ae:a6:bb:f3:33:82:92:8b: dd:6f:33:8c:a0:82:71:7f:8f:0d:cb:c5:c5:90:82:04:55:36: 67:55:8f:2f:89:b3:d7:35:1f:df:5c:40:96:22:9f:cd:0b:02: ed:51:cf:aa:b2:54:e9:f0:14:0b:7b:70:99:ee:b9:0b:98:8a: eb:21:75:43:b5:fa:ce:ee:fe:6e:cb:b6:72:c0:fd:81:02:1c: 1a:05:45:0a:6c:ab:c4:4e:f0:a9:a6:79:cc:62:c5:50:14:4d: e6:65:bd:d9:14:92:53:fd:fa:4f:9f:1d:17:f1:10:bc:ed:9f: 46:ca:36:00:ee:7f:86:84:db:96:c7:72:3d:7f:33:b3:29:e9: b5:9f:ec:a2:3f:82:c5:fe:16:83:59:26:d4:33:3e:11:cc:53: 61:c0:47:79:12:8c:9f:db:31:1f:48:fd:a3:9b:5a:77:70:b1: c4:a0:52:d6:fa:a9:b8:7a:04:79:aa:99:15:c1:e0:a4:a4:4a: b8:4a:f2:0d:99:38:bf:29:bb:d8:9d:80:8a:a6:54:d6:52:b8: 0c:9a:62:e7:31:31:75:a8:cc:68:bf:37:9e:78:cf:8d:fb:da: 9e:d0:72:64:ab:96:52:3d:c9:19:44:d3:ce:5e:77:e2:bd:1d: 65:af:23:ab -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwODA1MTE0ODUxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxZWZhMi01MDUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPuPV/Lwb+ZxSEuXN7COcFX85NXiJR8GtnKZLzwLPNScRDkOY1WAzhZUohn4 AS8XxGQ8eaXFBN6XYwCG+aV21qPwMjFPuHFLb1bGV2xlg5/ujVlNOriT99VT9rCy yMVW4tdUVh/razMKWujoVo/Shug6w8iV2jYCyg1pAiOiKCc0G9PfGtUbw6L2aoFK wE7A9+NZojjm0FSPFIG+owlMkpwvpTa4IrysqnulA39/8L6zGN2flmrP9vuSvTmn eZ4y0ZNBygB9Zjt7I04qbVAdQsomzSeCNj9pelaL+nuJ/g7tIrr3Rjtty8BVVf2/ Zu59PVD8P+CV2F0iLnFg5UoMeQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHIwr+7f QEbH7jhNGDV+At19Ldy1MB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvMjcxM0Y0MzQ3 MUYyMTFGMEIyMzgxOTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEOwJwDBAFvXJwwDQYJKoZIhvcNAQELBQADggEBABRDTmRn 5Aht1/6uprvzM4KSi91vM4yggnF/jw3LxcWQggRVNmdVjy+Js9c1H99cQJYin80L Au1Rz6qyVOnwFAt7cJnuuQuYiushdUO1+s7u/m7LtnLA/YECHBoFRQpsq8RO8Kmm ecxixVAUTeZlvdkUklP9+k+fHRfxELztn0bKNgDuf4aE25bHcj1/M7Mp6bWf7KI/ gsX+FoNZJtQzPhHMU2HAR3kSjJ/bMR9I/aObWndwscSgUtb6qbh6BHmqmRXB4KSk SrhK8g2ZOL8pu9idgIqmVNZSuAyaYucxMXWozGi/N554z4372p7QcmSrllI9yRlE 085ed+K9HWWvI6s= -----END CERTIFICATE-----Generated at Tue Aug 12 22:50:37 2025 by rpki-client