$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/4E2D252A699811F0B3E6984EC4F9AE02.roa File: 4E2D252A699811F0B3E6984EC4F9AE02.roa (raw, json) Hash identifier: 3gRwjLg8N4vvmv5NGiJ46Vac0E5K7yqz3DuORE8Lbh4= Subject key identifier: 2C:59:7D:46:9F:27:E6:EC:0B:EE:63:A0:43:41:E5:64:C7:1E:26:3A Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0DDF Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/4E2D252A699811F0B3E6984EC4F9AE02.roa Signing time: Fri 25 Jul 2025 20:45:32 +0000 ROA not before: Fri 25 Jul 2025 20:45:32 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 141372 IP address blocks: 111.92.158.0/24 maxlen: 24 111.92.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:15:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3551 (0xddf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Jul 25 20:45:32 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6883eceb-737d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:38:50:1c:a3:f3:55:de:7b:75:55:0a:9d:ea: 9f:e4:08:cd:69:54:fa:5e:ce:a3:c6:f8:87:38:6a: 65:14:b4:76:3b:52:8d:57:1b:3d:f3:8a:9c:7a:92: 47:39:cf:62:f0:5d:a1:e8:2f:5c:4f:2a:8c:50:6a: 2d:a1:68:85:82:30:12:fb:b3:fc:78:dd:96:9d:e4: c1:fc:09:c5:64:94:5e:cb:30:ae:a7:88:fd:27:2d: c4:75:d9:1c:34:c3:85:c8:cf:12:69:12:58:ab:9b: 23:75:c1:92:bd:c4:21:fb:a0:04:96:5d:da:bb:18: 88:34:e3:34:d9:11:9c:ea:27:ab:1a:97:1a:57:e3: 0e:8d:7a:43:2d:13:1d:7f:ce:3f:b6:d5:8c:85:83: 22:db:39:b9:a6:b5:5e:86:db:cb:a5:ab:93:0c:92: 18:71:fd:ec:7f:fc:02:19:65:7f:e1:ee:05:db:6a: ad:4a:39:5c:ac:35:3f:85:ff:d2:ec:e5:a1:72:6b: 5a:54:43:c0:73:78:49:0d:09:11:d8:fb:35:15:7f: aa:db:3c:80:18:b7:ac:f3:29:58:4c:1b:db:1a:e6: d0:09:91:dc:f1:a6:ef:1e:b3:ad:01:f8:db:c7:4a: 9e:e4:4a:a5:e7:12:3a:23:2a:d5:fb:45:b6:fb:4c: 11:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:59:7D:46:9F:27:E6:EC:0B:EE:63:A0:43:41:E5:64:C7:1E:26:3A X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/4E2D252A699811F0B3E6984EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.92.158.0/23 Signature Algorithm: sha256WithRSAEncryption b8:bf:fa:40:34:bd:04:d2:b0:26:2c:14:8b:79:9a:97:88:c1: 62:f7:6d:91:31:23:2b:a0:08:93:e0:4d:b8:7b:72:45:10:82: 07:cc:82:0f:25:c2:eb:0b:d1:dd:39:a5:20:28:75:94:3b:97: 20:3a:78:5d:bf:3b:5f:52:df:85:de:bb:4e:1d:ed:8a:a4:d7: 40:14:0c:20:5a:1d:62:94:ac:c7:52:52:38:65:6d:0f:28:3b: 90:2d:ad:55:ac:73:76:97:36:0d:1c:72:88:59:b8:82:fe:5c: 4a:2d:0e:fa:8d:7e:ff:0a:ae:f9:f6:fb:4a:c9:0e:32:c2:e2: 12:6b:35:bf:8d:44:7a:f5:2d:05:d8:49:c7:c2:a6:de:77:2e: 6c:95:fd:7f:8d:1f:64:e2:11:a2:47:d6:6d:7c:de:f7:1e:d2: 80:56:28:3f:15:78:d7:48:cf:93:d2:ff:59:b7:df:18:ca:78: 42:68:68:67:bb:18:b9:a2:50:50:05:62:bf:65:ac:31:9b:b8: 7b:c9:36:cb:e7:bc:0b:80:c6:2c:7c:22:fb:95:75:32:87:1e: 70:16:e1:d8:b4:99:06:c6:56:54:f5:8a:2b:b2:fc:ce:1b:31: 08:46:ce:3b:b6:6b:66:0a:23:3a:1d:3b:cb:ed:87:42:1c:8e: ff:62:4e:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNzI1MjA0NTMyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgzZWNlYi03MzdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1jhQHKPzVd57dVUKneqf5AjNaVT6Xs6jxviHOGplFLR2O1KNVxs984qcepJH Oc9i8F2h6C9cTyqMUGotoWiFgjAS+7P8eN2WneTB/AnFZJReyzCup4j9Jy3Eddkc NMOFyM8SaRJYq5sjdcGSvcQh+6AEll3auxiINOM02RGc6ierGpcaV+MOjXpDLRMd f84/ttWMhYMi2zm5prVehtvLpauTDJIYcf3sf/wCGWV/4e4F22qtSjlcrDU/hf/S 7OWhcmtaVEPAc3hJDQkR2Ps1FX+q2zyAGLes8ylYTBvbGubQCZHc8abvHrOtAfjb x0qe5Eql5xI6IyrV+0W2+0wRlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCxZfUaf J+bsC+5joENB5WTHHiY6MB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvNEUyRDI1MkE2 OTk4MTFGMEIzRTY5ODRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFvXJ4wDQYJKoZIhvcNAQELBQADggEBALi/+kA0vQTSsCYs FIt5mpeIwWL3bZExIyugCJPgTbh7ckUQggfMgg8lwusL0d05pSAodZQ7lyA6eF2/ O19S34Xeu04d7Yqk10AUDCBaHWKUrMdSUjhlbQ8oO5AtrVWsc3aXNg0ccohZuIL+ XEotDvqNfv8Krvn2+0rJDjLC4hJrNb+NRHr1LQXYScfCpt53LmyV/X+NH2TiEaJH 1m183vce0oBWKD8VeNdIz5PS/1m33xjKeEJoaGe7GLmiUFAFYr9lrDGbuHvJNsvn vAuAxix8IvuVdTKHHnAW4di0mQbGVlT1iiuy/M4bMQhGzju2a2YKIzodO8vth0Ic jv9iTho= -----END CERTIFICATE-----Generated at Wed Aug 13 00:27:53 2025 by rpki-client