$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/4E2D252A699811F0B3E6984EC4F9AE02.roa File: 4E2D252A699811F0B3E6984EC4F9AE02.roa (raw, json) Hash identifier: QSoFsbrgjFW6Q9mEy4RafdhOrYTNfIv5s2+VFrUWtlk= Subject key identifier: 6B:22:BD:E7:8E:BC:8C:86:80:F0:06:53:90:F3:AC:4C:B3:56:FB:FD Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0ECE Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/4E2D252A699811F0B3E6984EC4F9AE02.roa Signing time: Sat 01 Nov 2025 08:43:16 +0000 ROA not before: Sat 01 Nov 2025 08:43:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 141372 IP address blocks: 111.92.157.0/24 maxlen: 24 111.92.158.0/24 maxlen: 24 111.92.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:59:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3790 (0xece) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Nov 1 08:43:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6905c824-0f36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:22:5b:73:dc:49:97:1d:54:7a:e0:1a:da:11: c3:2e:a6:d9:90:2b:15:24:41:71:d6:f2:06:14:c7: dd:b8:f1:3f:dc:94:1f:af:16:f7:c8:8b:1b:52:18: 08:4c:98:73:ad:0e:fe:3d:59:3b:ad:bc:6c:9d:a3: ce:e7:75:73:54:cc:72:28:25:66:3d:3c:17:69:5c: d4:b4:af:cb:dd:75:ea:1b:b5:c3:76:03:cd:af:03: 8e:ca:9a:c4:24:42:24:95:72:b8:9c:02:5f:cf:42: 13:ab:0a:e4:b6:11:14:a1:2b:7c:fe:23:da:6a:19: 81:e7:e0:3d:f5:d7:a9:9b:db:6a:ee:f7:a2:0e:52: 82:d0:b1:4e:13:ef:5c:f3:44:7b:04:4c:fe:5b:8a: bd:d7:5b:90:72:51:b1:e9:58:c5:ca:a9:99:d4:21: 08:cf:5b:fc:ee:8c:71:f4:1a:42:0a:35:1e:98:34: 66:b8:7e:8f:be:6e:fe:7e:b8:12:8f:c3:38:8d:c4: 11:35:a0:8b:4a:3a:45:e2:8b:d9:f5:26:d6:89:62: 9e:ff:b5:89:cf:66:f9:aa:a4:20:a0:5e:6f:c5:08: 1b:e0:f7:05:03:fb:f7:9a:98:e9:ed:80:d7:ca:1d: aa:e4:9b:0d:a3:e8:c5:29:f4:76:17:2e:50:37:27: 6c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:22:BD:E7:8E:BC:8C:86:80:F0:06:53:90:F3:AC:4C:B3:56:FB:FD X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/4E2D252A699811F0B3E6984EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.92.157.0-111.92.159.255 Signature Algorithm: sha256WithRSAEncryption 32:5c:ac:4d:5a:f8:0c:df:e0:df:03:2c:f1:1a:32:6f:06:7b: 7f:38:a4:28:61:ed:57:db:4f:ff:3d:c8:0c:03:c8:ea:7f:f3: a8:d6:27:7c:c9:97:16:9a:6a:e8:71:21:16:bb:29:2c:dd:55: 1b:6a:92:57:0d:51:68:3a:bf:ec:dc:ef:1d:f9:79:e0:ec:d3: b1:58:ee:79:4a:af:9a:4a:ea:f7:be:3f:9a:e6:b2:42:05:7a: 5f:3b:3e:79:dd:62:79:ff:30:9a:19:9c:be:6e:eb:77:52:2d: bb:c7:f5:ed:3d:ae:2c:66:24:dc:89:cb:dc:fb:7f:70:24:27: 00:35:d1:86:89:8e:84:95:5c:57:18:60:57:3b:8f:a3:44:64: 85:6b:63:ee:5c:47:ad:72:d0:9d:c1:ae:c5:20:dd:98:05:ea: f6:24:bc:b1:9f:a0:5a:a2:ce:5e:60:af:53:41:3c:e0:40:63: 5c:d1:86:5f:7c:80:e8:ad:2a:45:8f:5a:45:35:57:97:c6:f4: 04:1a:1d:d8:ad:61:c6:94:e6:87:40:37:bb:78:a1:d7:12:79: 0d:fe:3b:6a:4c:5f:cd:74:df:53:46:70:30:d1:10:5f:d1:22: 28:d1:f4:62:76:82:76:28:91:8c:1d:b4:55:79:3b:b7:a3:e2: ef:4b:1b:bc -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUxMTAxMDg0MzE2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA1YzgyNC0wZjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yJbc9xJlx1UeuAa2hHDLqbZkCsVJEFx1vIGFMfduPE/3JQfrxb3yIsbUhgI TJhzrQ7+PVk7rbxsnaPO53VzVMxyKCVmPTwXaVzUtK/L3XXqG7XDdgPNrwOOyprE JEIklXK4nAJfz0ITqwrkthEUoSt8/iPaahmB5+A99depm9tq7veiDlKC0LFOE+9c 80R7BEz+W4q911uQclGx6VjFyqmZ1CEIz1v87oxx9BpCCjUemDRmuH6Pvm7+frgS j8M4jcQRNaCLSjpF4ovZ9SbWiWKe/7WJz2b5qqQgoF5vxQgb4PcFA/v3mpjp7YDX yh2q5JsNo+jFKfR2Fy5QNydsqQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFGsiveeO vIyGgPAGU5DzrEyzVvv9MB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvNEUyRDI1MkE2 OTk4MTFGMEIzRTY5ODRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAG9cnQMEBW9cgDANBgkqhkiG9w0BAQsFAAOCAQEAMlys TVr4DN/g3wMs8RoybwZ7fzikKGHtV9tP/z3IDAPI6n/zqNYnfMmXFppq6HEhFrsp LN1VG2qSVw1RaDq/7NzvHfl54OzTsVjueUqvmkrq974/muayQgV6Xzs+ed1ief8w mhmcvm7rd1Itu8f17T2uLGYk3InL3Pt/cCQnADXRhomOhJVcVxhgVzuPo0RkhWtj 7lxHrXLQncGuxSDdmAXq9iS8sZ+gWqLOXmCvU0E84EBjXNGGX3yA6K0qRY9aRTVX l8b0BBod2K1hxpTmh0A3u3ih1xJ5Df47akxfzXTfU0ZwMNEQX9EiKNH0YnaCdiiR jB20VXk7t6Pi70sbvA== -----END CERTIFICATE-----Generated at Wed Nov 5 13:07:28 2025 by rpki-client