$ rpki-client -vvf rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/4197AB74735611F080D68151C4F9AE02.roa File: 4197AB74735611F080D68151C4F9AE02.roa (raw, json) Hash identifier: uw93y6FGovmGq+bi/XnqUmoXwqLRFeM+9sTlrsvluUo= Subject key identifier: FF:3C:BE:1B:26:6F:E1:73:66:6B:8B:44:18:8F:10:D9:43:30:02:EA Certificate issuer: /CN=A917E27F/serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Certificate serial: 04 Authority key identifier: D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/4197AB74735611F080D68151C4F9AE02.roa Signing time: Thu 07 Aug 2025 06:17:56 +0000 ROA not before: Thu 07 Aug 2025 06:17:56 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 133908 IP address blocks: 192.84.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E27F, serialNumber=D8E7B15F9CB91674E5127FD406D7D9E718E08AB0 Validity Not Before: Aug 7 06:17:56 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68944513-1902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ec:3f:77:7c:ed:d4:84:f6:3f:1d:f0:47:9c: c6:3c:e3:3c:de:4e:ab:fc:04:93:e7:fa:a8:8f:6f: 04:5d:d3:aa:b1:2c:8d:55:09:50:81:78:1f:c5:d4: de:a0:9f:6f:8d:92:cc:e9:ac:8e:cd:11:cd:84:de: 8c:8e:57:8d:c2:2e:36:e2:63:c3:8d:4a:cb:dd:0c: 46:77:dc:41:10:fd:d4:a6:a0:20:cf:1a:60:42:e2: 7e:7b:99:e4:7e:4b:58:56:47:f7:70:6d:81:9f:00: 1d:2d:73:3a:5b:76:41:a8:16:3c:fc:dc:d4:65:94: 18:d5:99:4f:c6:09:2d:ef:fa:23:a7:39:fd:e0:61: 00:2a:a6:a5:65:5c:d5:d9:90:d3:db:8f:8c:b8:55: 24:19:b3:d9:c9:1b:22:1a:d9:d5:be:ef:1a:b3:cc: 9d:7f:ca:5b:84:6b:29:82:ff:2a:88:d1:38:ca:39: b3:07:f8:52:c1:d7:a2:f1:14:55:5f:db:91:71:0a: 8a:d6:a2:e1:63:ce:f7:fb:ee:05:da:d5:fe:48:05: 8a:29:9f:6c:ec:4d:f6:39:f8:18:c6:d6:85:03:5f: 9f:bd:ef:f0:55:e9:28:cb:89:fc:5e:43:f4:2e:ae: 8c:00:b8:40:0e:9a:f8:cb:fc:c3:3d:69:b3:14:2e: e7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:3C:BE:1B:26:6F:E1:73:66:6B:8B:44:18:8F:10:D9:43:30:02:EA X509v3 Authority Key Identifier: keyid:D8:E7:B1:5F:9C:B9:16:74:E5:12:7F:D4:06:D7:D9:E7:18:E0:8A:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/2OexX5y5FnTlEn_UBtfZ5xjgirA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2OexX5y5FnTlEn_UBtfZ5xjgirA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E27F/769D2D6672B711F09C04690DC4F9AE02/4197AB74735611F080D68151C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.84.219.0/24 Signature Algorithm: sha256WithRSAEncryption 30:ed:b6:e8:76:ad:4f:27:a1:99:1d:06:1c:b2:09:f8:cd:cb: ae:05:84:44:7c:ac:a2:53:b1:f7:b8:41:b2:52:c7:78:01:ea: f8:6f:97:20:2f:25:d0:91:cc:8d:e2:ad:bb:11:2f:91:74:9c: 07:7e:6d:22:68:73:8c:fe:c9:e9:45:74:07:df:7c:88:f0:56: 3d:b4:d8:b5:6a:70:72:5c:5c:b2:6d:c5:01:13:06:fa:ee:77: 14:61:20:3c:10:f9:3a:dd:4f:76:61:28:10:14:f4:2b:23:6a: fa:12:5f:49:ff:41:8d:9b:cf:65:51:00:b3:c9:03:c1:87:cb: c1:ab:a6:0f:84:c7:f9:f6:41:d1:f5:5e:de:a0:80:70:69:16: 24:19:55:ab:4f:08:bc:c1:b4:79:4e:07:6d:bd:c4:31:ee:0f: 93:a8:10:9f:5f:c3:a9:0a:25:d6:92:d6:d9:9c:2e:56:fd:bc: 2f:35:52:b0:43:56:96:6c:e0:41:54:2d:72:1f:b9:cb:4b:bd: 48:77:2c:0b:38:c5:4c:d3:3c:dc:4d:23:95:c4:20:fe:b6:57: dd:2f:7a:cb:62:19:e2:d0:9f:e0:2b:b1:5b:eb:3d:ce:78:36: c7:a5:aa:c0:c3:e6:b7:50:8d:69:d6:16:62:dc:c6:7e:82:e9: 7a:85:1c:7e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTI3RjExMC8GA1UEBRMoRDhFN0IxNUY5Q0I5MTY3NEU1MTI3RkQ0MDZEN0Q5RTcx OEUwOEFCMDAeFw0yNTA4MDcwNjE3NTZaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTQ0NTEzLTE5MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCv7D93fO3UhPY/HfBHnMY84zzeTqv8BJPn+qiPbwRd06qxLI1VCVCBeB/F1N6g n2+NkszprI7NEc2E3oyOV43CLjbiY8ONSsvdDEZ33EEQ/dSmoCDPGmBC4n57meR+ S1hWR/dwbYGfAB0tczpbdkGoFjz83NRllBjVmU/GCS3v+iOnOf3gYQAqpqVlXNXZ kNPbj4y4VSQZs9nJGyIa2dW+7xqzzJ1/yluEaymC/yqI0TjKObMH+FLB16LxFFVf 25FxCorWouFjzvf77gXa1f5IBYopn2zsTfY5+BjG1oUDX5+97/BV6SjLifxeQ/Qu rowAuEAOmvjL/MM9abMULufHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/zy+GyZv 4XNma4tEGI8Q2UMwAuowHwYDVR0jBBgwFoAU2OexX5y5FnTlEn/UBtfZ5xjgirAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMjdGLzc2OUQyRDY2NzJC NzExRjA5QzA0NjkwREM0RjlBRTAyLzJPZXhYNXk1Rm5UbEVuX1VCdGZaNXhqZ2ly QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMk9leFg1eTVGblRsRW5fVUJ0Zlo1eGpnaXJBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTI3Ri83NjlEMkQ2NjcyQjcxMUYwOUMwNDY5MERDNEY5QUUwMi80MTk3QUI3NDcz NTYxMUYwODBENjgxNTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMBU2zANBgkqhkiG9w0BAQsFAAOCAQEAMO226HatTyehmR0G HLIJ+M3LrgWERHysolOx97hBslLHeAHq+G+XIC8l0JHMjeKtuxEvkXScB35tImhz jP7J6UV0B998iPBWPbTYtWpwclxcsm3FARMG+u53FGEgPBD5Ot1PdmEoEBT0KyNq +hJfSf9BjZvPZVEAs8kDwYfLwaumD4TH+fZB0fVe3qCAcGkWJBlVq08IvMG0eU4H bb3EMe4Pk6gQn1/DqQol1pLW2ZwuVv28LzVSsENWlmzgQVQtch+5y0u9SHcsCzjF TNM83E0jlcQg/rZX3S96y2IZ4tCf4CuxW+s9zng2x6WqwMPmt1CNadYWYtzGfoLp eoUcfg== -----END CERTIFICATE-----Generated at Wed Nov 5 00:03:30 2025 by rpki-client