$ rpki-client -vvf rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/D2E6AC6A60F111EFB97DD57AC4F9AE02.roa File: D2E6AC6A60F111EFB97DD57AC4F9AE02.roa (raw, json) Hash identifier: cLWjAQfHB1XuUxPtUJRHi4idez2Y+6Lxv08uwEYGrgM= Subject key identifier: 44:C2:13:A9:A4:A3:E9:93:1F:80:B0:A3:EC:62:D5:CE:6B:97:69:EF Certificate issuer: /CN=A915F89C/serialNumber=D697BB6F3F99E94480EE0BBAD3D26800AB416260 Certificate serial: 3548 Authority key identifier: D6:97:BB:6F:3F:99:E9:44:80:EE:0B:BA:D3:D2:68:00:AB:41:62:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1pe7bz-Z6USA7gu609JoAKtBYmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/D2E6AC6A60F111EFB97DD57AC4F9AE02.roa Signing time: Mon 18 Aug 2025 14:50:18 +0000 ROA not before: Mon 18 Aug 2025 14:50:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 19905 IP address blocks: 128.106.0.0/18 maxlen: 24 165.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/1pe7bz-Z6USA7gu609JoAKtBYmA.crl rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/1pe7bz-Z6USA7gu609JoAKtBYmA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1pe7bz-Z6USA7gu609JoAKtBYmA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13640 (0x3548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F89C, serialNumber=D697BB6F3F99E94480EE0BBAD3D26800AB416260 Validity Not Before: Aug 18 14:50:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a33daa-58d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e8:84:69:5d:dd:58:5a:21:2e:c2:ac:2c:2a: 33:69:d9:16:b1:79:45:57:1e:8c:1f:1e:ed:3b:ed: 89:dd:67:36:64:d9:14:74:17:40:91:a0:83:0f:ef: 9e:61:67:da:19:fd:33:f7:b3:b7:5f:c1:7e:15:cc: 8a:f3:ad:e5:64:a1:5e:63:3c:c7:a1:6e:17:05:79: 3f:ba:2d:81:6c:3d:d0:10:b6:f3:fc:71:ec:c4:0b: d5:00:a9:0e:73:ad:da:67:f7:98:ce:ec:f5:85:a7: d4:3f:49:2c:73:ce:e0:5f:16:a4:c6:e3:81:36:5a: ac:1e:3f:d4:d7:8d:ac:bb:a4:c5:af:66:1f:e0:21: 35:37:49:fd:7d:ed:32:3e:47:68:13:88:8a:2b:73: 19:ff:c6:f1:73:ec:07:55:d8:7d:81:b6:76:71:d0: d4:76:d9:ba:4e:4f:3d:32:58:d3:22:88:57:cb:a9: d9:ad:94:61:78:7c:a5:82:eb:c3:f0:b8:6f:2b:64: 26:40:1d:05:7b:7e:bf:2a:82:cc:a7:56:3a:bf:d7: 08:30:93:ea:26:ce:99:0c:e2:11:12:e1:f7:15:24: fb:ca:58:f4:5f:24:79:2f:6e:87:1b:cb:8d:11:8e: 59:d3:07:18:b5:29:8e:35:c7:dc:d7:aa:0c:7a:de: 6d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:C2:13:A9:A4:A3:E9:93:1F:80:B0:A3:EC:62:D5:CE:6B:97:69:EF X509v3 Authority Key Identifier: keyid:D6:97:BB:6F:3F:99:E9:44:80:EE:0B:BA:D3:D2:68:00:AB:41:62:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/1pe7bz-Z6USA7gu609JoAKtBYmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1pe7bz-Z6USA7gu609JoAKtBYmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F89C/5B07F3AC1D8311E29B35A5D808B02CD2/D2E6AC6A60F111EFB97DD57AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 128.106.0.0/18 165.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:4f:5a:fb:7d:3c:7b:01:cf:4e:44:85:b3:62:c4:e0:d2:c2: aa:0b:4e:73:aa:7d:d2:39:dc:d0:bd:df:85:8a:53:e7:68:eb: 75:61:10:ae:52:29:18:31:55:f5:45:1b:2c:63:88:06:c2:58: 44:38:06:79:c6:74:79:ef:e0:ee:4d:3c:93:fa:b3:d4:0a:70: 54:59:a5:c3:99:e2:e0:7a:d0:50:73:f1:ad:34:b6:90:5c:c0: 2f:a2:36:04:5f:57:b3:b4:26:91:1f:b8:71:3c:c4:46:72:a2: fd:24:56:85:18:3a:97:05:34:17:8c:10:a3:26:2e:bf:64:7c: 83:82:80:c6:c2:0b:a9:84:3a:66:a1:ee:c9:c8:3f:fb:75:f1: 1e:41:18:3a:35:c2:e1:09:b9:6e:bd:4d:cf:f0:1e:8a:f7:b2: 5e:94:93:8f:cd:e9:3e:9b:4a:3c:0d:1f:e6:62:e7:e1:05:06: ae:4d:4d:8c:88:35:64:a2:94:4a:2d:f6:ef:07:a2:1b:fe:47: 36:1f:2c:c6:95:df:74:86:27:80:84:85:e1:ed:e5:1b:63:91: 92:d2:82:15:9c:c6:14:35:6b:58:fe:62:83:10:6b:49:aa:07: 9b:e8:34:f2:08:63:11:3f:23:63:4a:0a:d8:36:42:06:37:85: 89:b1:88:09 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICNUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUY4OUMxMTAvBgNVBAUTKEQ2OTdCQjZGM0Y5OUU5NDQ4MEVFMEJCQUQzRDI2ODAw QUI0MTYyNjAwHhcNMjUwODE4MTQ1MDE4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGEzM2RhYS01OGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAweiEaV3dWFohLsKsLCozadkWsXlFVx6MHx7tO+2J3Wc2ZNkUdBdAkaCDD++e YWfaGf0z97O3X8F+FcyK863lZKFeYzzHoW4XBXk/ui2BbD3QELbz/HHsxAvVAKkO c63aZ/eYzuz1hafUP0ksc87gXxakxuOBNlqsHj/U142su6TFr2Yf4CE1N0n9fe0y PkdoE4iKK3MZ/8bxc+wHVdh9gbZ2cdDUdtm6Tk89MljTIohXy6nZrZRheHylguvD 8LhvK2QmQB0Fe36/KoLMp1Y6v9cIMJPqJs6ZDOIREuH3FST7ylj0XyR5L26HG8uN EY5Z0wcYtSmONcfc16oMet5tOwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFETCE6mk o+mTH4Cwo+xi1c5rl2nvMB8GA1UdIwQYMBaAFNaXu28/melEgO4LutPSaACrQWJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Rjg5Qy81QjA3RjNBQzFE ODMxMUUyOUIzNUE1RDgwOEIwMkNEMi8xcGU3YnotWjZVU0E3Z3U2MDlKb0FLdEJZ bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFwZTdiei1aNlVTQTdndTYwOUpvQUt0QlltQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUY4OUMvNUIwN0YzQUMxRDgzMTFFMjlCMzVBNUQ4MDhCMDJDRDIvRDJFNkFDNkE2 MEYxMTFFRkI5N0RENTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDBAaAagADAwClFTANBgkqhkiG9w0BAQsFAAOCAQEALU9a+308 ewHPTkSFs2LE4NLCqgtOc6p90jnc0L3fhYpT52jrdWEQrlIpGDFV9UUbLGOIBsJY RDgGecZ0ee/g7k08k/qz1ApwVFmlw5ni4HrQUHPxrTS2kFzAL6I2BF9Xs7QmkR+4 cTzERnKi/SRWhRg6lwU0F4wQoyYuv2R8g4KAxsILqYQ6ZqHuycg/+3XxHkEYOjXC 4Qm5br1Nz/AeiveyXpSTj83pPptKPA0f5mLn4QUGrk1NjIg1ZKKUSi327weiG/5H Nh8sxpXfdIYngISF4e3lG2ORktKCFZzGFDVrWP5igxBrSaoHm+g08ghjET8jY0oK 2DZCBjeFibGICQ== -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:59 2025 by rpki-client