$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/3154E9E8993A11F0837A6E45C4F9AE02.roa File: 3154E9E8993A11F0837A6E45C4F9AE02.roa (raw, json) Hash identifier: kx9lWNj7NgSUFsuMfRCJDT7t5wBdkdtWpvVdEqQ2TDo= Subject key identifier: B9:A7:8D:34:5B:2B:D5:07:44:50:22:C2:EA:2F:93:AE:99:9C:58:13 Certificate issuer: /CN=A9174EC5/serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Certificate serial: 80 Authority key identifier: 3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/3154E9E8993A11F0837A6E45C4F9AE02.roa Signing time: Wed 24 Sep 2025 11:32:47 +0000 ROA not before: Wed 24 Sep 2025 11:32:47 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 147040 IP address blocks: 163.47.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EC5, serialNumber=3A5E1029E65C63681232DB67D8053DD2F694E61F Validity Not Before: Sep 24 11:32:47 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68d3d6de-16cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:54:be:0c:68:d3:e4:e3:ef:64:be:0b:8a:a1: f5:d6:a2:17:e9:9b:f1:80:81:87:18:19:07:6d:9d: 6b:2f:d2:f1:6b:0a:7b:e6:75:ad:86:d3:4e:32:5a: 41:08:86:24:be:1c:03:59:91:86:ba:8e:a0:38:cd: 6e:cd:bc:7b:33:67:4b:9b:a9:9a:50:26:6b:c5:df: bc:a5:65:b1:d2:96:e0:7d:a7:8e:f5:7d:be:1c:5a: c3:cc:58:36:8f:6f:90:21:34:bc:0c:c8:1c:d2:a8: 7a:5d:d9:39:1f:55:58:c1:ab:d7:0a:29:ea:1b:af: 8f:f0:c6:8f:88:89:1c:ec:43:cf:dc:b9:40:84:4c: 06:c2:45:82:fe:26:e9:75:10:46:10:e5:1c:12:8f: 5c:22:c6:ac:80:35:d0:31:59:9f:5f:7d:01:83:3d: 25:09:c6:76:ec:ec:dc:fd:2b:37:ad:a5:2e:60:e8: 59:e3:17:ee:8e:1c:97:7d:1d:57:6f:9f:7b:a3:c2: af:4f:aa:07:db:34:ea:f4:ba:2e:9a:ff:fe:4a:ac: 8d:0a:62:ee:ef:c4:ca:73:88:73:13:e8:43:ae:dc: f4:2f:64:fe:cc:88:08:43:d9:57:b5:37:c3:84:06: bc:b1:c9:ce:14:63:06:7c:a3:15:bf:4b:b8:79:39: df:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A7:8D:34:5B:2B:D5:07:44:50:22:C2:EA:2F:93:AE:99:9C:58:13 X509v3 Authority Key Identifier: keyid:3A:5E:10:29:E6:5C:63:68:12:32:DB:67:D8:05:3D:D2:F6:94:E6:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/Ol4QKeZcY2gSMttn2AU90vaU5h8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ol4QKeZcY2gSMttn2AU90vaU5h8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EC5/82335A20D95A11EFA02FB46FC4F9AE02/3154E9E8993A11F0837A6E45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.47.26.0/23 Signature Algorithm: sha256WithRSAEncryption 63:48:a1:29:28:80:90:66:39:dc:3f:a8:ff:76:43:1b:ae:32: 84:71:f3:ab:9d:76:fe:56:92:85:3c:48:80:2d:58:3b:b1:c1: ba:db:22:6f:34:fe:33:33:7a:26:da:f4:91:7f:4b:e6:13:9d: 29:50:8e:49:ae:3a:00:79:51:97:bb:04:da:e0:27:bc:55:05: 9e:ed:d1:53:a5:31:f9:21:12:69:8d:17:62:7f:70:3c:ea:e9: f1:f9:02:99:01:02:6a:f6:20:0c:07:82:d7:b5:79:1b:56:02: 79:68:f6:8a:82:2e:24:bb:75:3e:46:d5:b0:e9:b0:69:ff:01: 75:bc:93:e1:78:06:a2:b7:2c:43:67:19:48:eb:71:53:64:a0: bc:bd:34:b8:5f:0a:51:92:76:a6:b3:0f:6d:8b:a4:5a:be:3c: d6:55:51:ef:f8:f2:61:55:d9:ce:79:73:6a:5c:2b:4b:dc:d4: 7d:21:e9:ee:8c:3d:c1:6d:45:03:21:75:2a:2c:cd:d3:02:41: 17:f1:56:40:f3:e5:7e:ab:9b:26:0a:b8:05:a3:07:5a:4d:80: 3f:cb:bc:73:1b:90:4f:91:cf:80:bb:11:20:54:0a:b2:a7:2c: 64:a0:19:2e:0f:4b:35:96:e1:59:9e:d0:25:bb:89:6a:ce:87: 75:ca:35:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQzUxMTAvBgNVBAUTKDNBNUUxMDI5RTY1QzYzNjgxMjMyREI2N0Q4MDUzREQy RjY5NEU2MUYwHhcNMjUwOTI0MTEzMjQ3WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQzZDZkZS0xNmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4FS+DGjT5OPvZL4LiqH11qIX6ZvxgIGHGBkHbZ1rL9Lxawp75nWthtNOMlpB CIYkvhwDWZGGuo6gOM1uzbx7M2dLm6maUCZrxd+8pWWx0pbgfaeO9X2+HFrDzFg2 j2+QITS8DMgc0qh6Xdk5H1VYwavXCinqG6+P8MaPiIkc7EPP3LlAhEwGwkWC/ibp dRBGEOUcEo9cIsasgDXQMVmfX30Bgz0lCcZ27Ozc/Ss3raUuYOhZ4xfujhyXfR1X b597o8KvT6oH2zTq9Loumv/+SqyNCmLu78TKc4hzE+hDrtz0L2T+zIgIQ9lXtTfD hAa8scnOFGMGfKMVv0u4eTnfNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLmnjTRb K9UHRFAiwuovk66ZnFgTMB8GA1UdIwQYMBaAFDpeECnmXGNoEjLbZ9gFPdL2lOYf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVDNS84MjMzNUEyMEQ5 NUExMUVGQTAyRkI0NkZDNEY5QUUwMi9PbDRRS2VaY1kyZ1NNdHRuMkFVOTB2YVU1 aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sNFFLZVpjWTJnU010dG4yQVU5MHZhVTVoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQzUvODIzMzVBMjBEOTVBMTFFRkEwMkZCNDZGQzRGOUFFMDIvMzE1NEU5RTg5 OTNBMTFGMDgzN0E2RTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGjLxowDQYJKoZIhvcNAQELBQADggEBAGNIoSkogJBmOdw/ qP92QxuuMoRx86uddv5WkoU8SIAtWDuxwbrbIm80/jMzeiba9JF/S+YTnSlQjkmu OgB5UZe7BNrgJ7xVBZ7t0VOlMfkhEmmNF2J/cDzq6fH5ApkBAmr2IAwHgte1eRtW Anlo9oqCLiS7dT5G1bDpsGn/AXW8k+F4BqK3LENnGUjrcVNkoLy9NLhfClGSdqaz D22LpFq+PNZVUe/48mFV2c55c2pcK0vc1H0h6e6MPcFtRQMhdSoszdMCQRfxVkDz 5X6rmyYKuAWjB1pNgD/LvHMbkE+Rz4C7ESBUCrKnLGSgGS4PSzWW4Vme0CW7iWrO h3XKNd0= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:18 2025 by rpki-client