$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/71685FB25F6411EFB16D4552C4F9AE02.roa File: 71685FB25F6411EFB16D4552C4F9AE02.roa (raw, json) Hash identifier: /OrLVPVfTQAPE0kSOqhjwV7inTaQkqbRHnBk9gH3iZk= Subject key identifier: 43:38:D8:D5:EC:2E:53:5F:05:DC:F2:A6:65:F2:8B:AB:08:D3:2C:5D Certificate issuer: /CN=A9179672/serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Certificate serial: FA Authority key identifier: 91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/71685FB25F6411EFB16D4552C4F9AE02.roa Signing time: Thu 09 Oct 2025 06:34:32 +0000 ROA not before: Thu 09 Oct 2025 06:34:32 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 14618 IP address blocks: 192.206.153.0/24 maxlen: 24 192.206.156.0/24 maxlen: 24 192.206.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:37:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672, serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Validity Not Before: Oct 9 06:34:32 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e75777-0455 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:f9:e9:f1:33:64:bb:3e:74:3d:5d:2d:be:f4: f7:67:2a:49:2e:b8:79:0b:8c:ce:8b:44:ed:14:f6: 88:d9:40:ef:f7:4d:29:b4:0f:60:c0:a5:57:94:c0: 33:15:d7:8a:ab:6a:51:f8:08:a3:bd:3f:fc:a3:cf: 74:6c:ab:d7:e6:c7:42:3f:15:9c:4a:ce:cf:95:3a: b1:71:c2:99:7a:77:54:09:8a:a9:3a:1e:89:05:bd: b1:a2:3a:4d:c1:e2:44:57:1e:88:3e:66:ee:12:bb: 5f:13:e0:9d:ed:f4:d6:5f:1e:9a:a9:bf:26:be:54: 77:27:b5:91:29:15:01:c8:67:ff:ac:fe:a4:69:74: 44:ec:20:98:32:e8:cb:d8:a9:3c:fc:8e:3d:44:d6: 28:2f:22:d8:88:d3:43:a1:05:08:01:f7:7c:db:20: 14:66:b5:ba:2d:1b:63:59:d9:28:b1:78:ec:e6:01: e8:97:03:e1:2a:8b:74:3b:b5:2b:64:d9:a9:26:4f: 84:92:70:19:97:0e:49:4c:24:46:9a:30:b5:80:89: f0:f1:36:5c:36:ff:cb:49:07:16:ca:dc:3e:15:7c: 26:12:86:31:ee:c8:97:5a:44:78:56:13:50:c9:56: 07:7e:0c:47:1e:55:c7:7b:7d:f4:f4:e1:26:82:d2: 79:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:38:D8:D5:EC:2E:53:5F:05:DC:F2:A6:65:F2:8B:AB:08:D3:2C:5D X509v3 Authority Key Identifier: keyid:91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/71685FB25F6411EFB16D4552C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.206.153.0/24 192.206.156.0/23 Signature Algorithm: sha256WithRSAEncryption 27:9e:90:74:e5:c3:47:ed:5e:7e:27:f1:b9:05:69:cb:e3:69: 9b:b1:fa:c8:94:7b:68:99:1e:6a:29:7e:e3:25:d7:29:75:c4: b9:32:d7:d0:5b:79:b5:a1:a8:53:37:3f:85:6d:70:71:8e:78: dc:38:e2:d7:55:76:fb:a5:7e:7f:81:6d:51:ee:ba:f0:43:9d: 6b:9c:3c:16:50:da:4d:be:93:74:63:da:a6:af:88:ed:c4:60: 87:26:c8:d9:e5:1c:84:ae:63:c2:4f:7a:b2:42:a4:ba:8d:33: a6:cc:5e:34:9b:fc:1d:86:62:e3:35:da:f6:7a:ad:82:10:17: 58:5b:28:06:4f:b2:a7:8b:40:6a:e4:9c:ee:20:70:e5:c5:4e: f3:f1:f8:09:06:57:64:03:63:71:00:e1:8a:96:0a:b7:20:bb: 97:1d:0f:79:e8:b4:ce:fe:15:8f:12:b3:ad:4e:fe:d7:a3:d0: 0f:e7:9d:29:72:17:aa:4c:11:0f:bc:63:3e:e7:0d:99:23:fd: b5:d6:1b:ca:07:9d:9c:b2:02:ea:92:59:8e:bd:be:fe:ca:c1: 2b:ce:8d:d9:66:60:26:84:65:f6:e0:bc:48:28:e9:7d:ea:58: f6:96:42:2c:ea:81:39:6c:0a:9f:13:93:ab:c6:af:1d:1f:7d: ef:d7:23:f8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk2NzIxMTAvBgNVBAUTKDkxQUE3NzgzRkIwMjc4MTk4MzhDNEE5MUM5MUM2MEQ0 MUZCM0VFQUIwHhcNMjUxMDA5MDYzNDMyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3NTc3Ny0wNDU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7vnp8TNkuz50PV0tvvT3ZypJLrh5C4zOi0TtFPaI2UDv900ptA9gwKVXlMAz FdeKq2pR+AijvT/8o890bKvX5sdCPxWcSs7PlTqxccKZendUCYqpOh6JBb2xojpN weJEVx6IPmbuErtfE+Cd7fTWXx6aqb8mvlR3J7WRKRUByGf/rP6kaXRE7CCYMujL 2Kk8/I49RNYoLyLYiNNDoQUIAfd82yAUZrW6LRtjWdkosXjs5gHolwPhKot0O7Ur ZNmpJk+EknAZlw5JTCRGmjC1gInw8TZcNv/LSQcWytw+FXwmEoYx7siXWkR4VhNQ yVYHfgxHHlXHe3309OEmgtJ5LwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEM42NXs LlNfBdzypmXyi6sI0yxdMB8GA1UdIwQYMBaAFJGqd4P7AngZg4xKkckcYNQfs+6r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTY3Mi9FNUY0NUFEMDVG NTQxMUVGOEQxOEJFMjNDNEY5QUUwMi9rYXAzZ19zQ2VCbURqRXFSeVJ4ZzFCLXo3 cXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2thcDNnX3NDZUJtRGpFcVJ5UnhnMUItejdxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk2NzIvRTVGNDVBRDA1RjU0MTFFRjhEMThCRTIzQzRGOUFFMDIvNzE2ODVGQjI1 RjY0MTFFRkIxNkQ0NTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADAzpkDBAHAzpwwDQYJKoZIhvcNAQELBQADggEBACeekHTl w0ftXn4n8bkFacvjaZux+siUe2iZHmopfuMl1yl1xLky19BbebWhqFM3P4VtcHGO eNw44tdVdvulfn+BbVHuuvBDnWucPBZQ2k2+k3Rj2qaviO3EYIcmyNnlHISuY8JP erJCpLqNM6bMXjSb/B2GYuM12vZ6rYIQF1hbKAZPsqeLQGrknO4gcOXFTvPx+AkG V2QDY3EA4YqWCrcgu5cdD3notM7+FY8Ss61O/tej0A/nnSlyF6pMEQ+8Yz7nDZkj /bXWG8oHnZyyAuqSWY69vv7KwSvOjdlmYCaEZfbgvEgo6X3qWPaWQizqgTlsCp8T k6vGrx0ffe/XI/g= -----END CERTIFICATE-----Generated at Wed Nov 5 17:08:02 2025 by rpki-client