$ rpki-client -vvf rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/8BBD25F4EAE311EF95C23D4DC4F9AE02.roa File: 8BBD25F4EAE311EF95C23D4DC4F9AE02.roa (raw, json) Hash identifier: JxYPfmW8Tav5SjQHIMJfNEwgSNWW1t6Utgf2ZPhePRI= Subject key identifier: 68:6B:6F:1D:B9:0D:2F:DF:15:7C:8E:35:58:0F:5E:F6:C9:B2:F8:4E Certificate issuer: /CN=A9174685/serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Certificate serial: 0963 Authority key identifier: A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/8BBD25F4EAE311EF95C23D4DC4F9AE02.roa Signing time: Tue 14 Oct 2025 21:50:18 +0000 ROA not before: Tue 14 Oct 2025 21:50:18 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9441 IP address blocks: 202.58.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:14:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2403 (0x963) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174685, serialNumber=A5F065FCC9EDA11DCA4D0DFC6D7C99075298D7FF Validity Not Before: Oct 14 21:50:18 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68eec59a-8612 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:79:5b:ab:6b:b7:cc:9c:6d:5c:6b:21:0e:03: 8a:a0:3e:aa:39:90:ca:58:08:1c:a0:97:80:32:c6: b9:27:56:6c:5c:ce:c7:22:9c:85:50:d8:48:6f:3d: 7d:6f:3c:54:41:39:c4:70:79:41:d5:11:2b:89:3c: 69:7b:fb:27:cf:61:be:da:81:dc:35:f2:d9:42:c5: 67:4b:1e:fe:2e:21:4b:cf:d2:09:20:88:e9:9f:92: d4:93:88:e5:65:b6:f3:97:59:92:82:d2:47:34:e3: 46:97:68:8c:62:87:72:55:74:5e:56:f1:ce:cf:ce: 43:5e:62:0b:f3:22:b4:b8:5a:03:24:23:69:f1:b0: 0f:08:91:d4:a5:38:3a:85:39:da:b6:7c:24:f9:6d: 8e:ab:42:a0:7c:01:20:7b:f3:5d:eb:6c:50:7a:58: a4:9d:cc:82:3c:c9:58:6d:90:82:22:ab:eb:e5:95: 87:f6:de:35:ae:1e:85:3b:34:56:c2:a5:ca:55:90: dc:c9:d6:64:9e:f1:a0:4a:3f:40:7f:21:6b:02:e1: 1e:c6:a9:68:a3:5e:ae:13:1f:f9:a0:ca:47:1d:d4: 19:78:04:6f:ab:bc:ce:d2:fd:76:e4:9f:e9:bf:4d: 6f:3a:49:3b:5f:f3:e0:5e:2e:d0:53:ea:ac:0f:93: df:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6B:6F:1D:B9:0D:2F:DF:15:7C:8E:35:58:0F:5E:F6:C9:B2:F8:4E X509v3 Authority Key Identifier: keyid:A5:F0:65:FC:C9:ED:A1:1D:CA:4D:0D:FC:6D:7C:99:07:52:98:D7:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/pfBl_MntoR3KTQ38bXyZB1KY1_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pfBl_MntoR3KTQ38bXyZB1KY1_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174685/2D159182A97311EA9AABE923C4F9AE02/8BBD25F4EAE311EF95C23D4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.58.252.0/24 Signature Algorithm: sha256WithRSAEncryption 73:22:5c:98:26:4c:8f:4f:c1:2b:38:73:c3:2a:6b:5a:d6:5c: 7e:36:8a:50:ae:54:87:25:3c:9a:36:7b:35:98:08:d1:35:77: af:13:44:ab:5c:43:1b:6b:1b:b3:78:40:69:75:92:83:f3:b0: de:a0:63:4d:b3:ed:15:8c:cf:2e:df:ea:49:cd:e5:08:3b:54: 60:93:43:0a:b7:ce:92:49:b2:d4:e3:d5:81:49:5f:98:22:3a: 3a:2f:67:62:5b:72:0d:97:74:55:a2:84:82:b0:18:7c:29:f0: 92:e8:69:52:08:ea:d7:70:6e:c7:1c:44:c5:45:d0:30:2c:1d: 72:98:54:d2:77:4a:ec:41:10:a1:ac:f5:7b:85:6a:8d:c8:34: 74:46:2f:db:7f:68:f8:51:94:2a:78:22:85:9e:60:a0:57:b4: 20:ce:08:9a:3b:b9:e7:63:63:50:1f:43:60:f0:3a:b4:4b:84: 02:00:82:4b:ae:15:34:f7:98:3d:94:ef:81:89:a5:6a:a1:6f: 31:d5:03:a8:35:eb:7e:b5:50:b7:a4:43:83:e7:cf:69:9d:02: f1:c6:c2:49:8f:45:e2:97:26:60:f8:bd:32:5e:b1:ad:f5:f7: 23:54:9c:e7:dd:46:59:97:09:ad:cc:f0:39:c0:cf:1a:27:a2: 67:46:63:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ2ODUxMTAvBgNVBAUTKEE1RjA2NUZDQzlFREExMURDQTREMERGQzZEN0M5OTA3 NTI5OEQ3RkYwHhcNMjUxMDE0MjE1MDE4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlYzU5YS04NjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3lbq2u3zJxtXGshDgOKoD6qOZDKWAgcoJeAMsa5J1ZsXM7HIpyFUNhIbz19 bzxUQTnEcHlB1REriTxpe/snz2G+2oHcNfLZQsVnSx7+LiFLz9IJIIjpn5LUk4jl Zbbzl1mSgtJHNONGl2iMYodyVXReVvHOz85DXmIL8yK0uFoDJCNp8bAPCJHUpTg6 hTnatnwk+W2Oq0KgfAEge/Nd62xQelikncyCPMlYbZCCIqvr5ZWH9t41rh6FOzRW wqXKVZDcydZknvGgSj9AfyFrAuEexqloo16uEx/5oMpHHdQZeARvq7zO0v125J/p v01vOkk7X/PgXi7QU+qsD5PfhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGhrbx25 DS/fFXyONVgPXvbJsvhOMB8GA1UdIwQYMBaAFKXwZfzJ7aEdyk0N/G18mQdSmNf/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDY4NS8yRDE1OTE4MkE5 NzMxMUVBOUFBQkU5MjNDNEY5QUUwMi9wZkJsX01udG9SM0tUUTM4Ylh5WkIxS1kx XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BmQmxfTW50b1IzS1RRMzhiWHlaQjFLWTFfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQ2ODUvMkQxNTkxODJBOTczMTFFQTlBQUJFOTIzQzRGOUFFMDIvOEJCRDI1RjRF QUUzMTFFRjk1QzIzRDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKOvwwDQYJKoZIhvcNAQELBQADggEBAHMiXJgmTI9PwSs4 c8Mqa1rWXH42ilCuVIclPJo2ezWYCNE1d68TRKtcQxtrG7N4QGl1koPzsN6gY02z 7RWMzy7f6knN5Qg7VGCTQwq3zpJJstTj1YFJX5giOjovZ2Jbcg2XdFWihIKwGHwp 8JLoaVII6tdwbsccRMVF0DAsHXKYVNJ3SuxBEKGs9XuFao3INHRGL9t/aPhRlCp4 IoWeYKBXtCDOCJo7uedjY1AfQ2DwOrRLhAIAgkuuFTT3mD2U74GJpWqhbzHVA6g1 6361ULekQ4Pnz2mdAvHGwkmPReKXJmD4vTJesa319yNUnOfdRlmXCa3M8DnAzxon omdGYzs= -----END CERTIFICATE-----Generated at Wed Nov 5 15:05:28 2025 by rpki-client