$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa File: AA14FB00C70811ECBAECCC78C4F9AE02.roa (raw, json) Hash identifier: 6vANpzfgkdA95BOGghUjzousLRYpV7ZyXI+Ad3LxlZE= Subject key identifier: 8D:3F:F0:95:81:25:01:CE:CE:EB:A9:46:33:7B:08:66:A6:EE:2D:9D Certificate issuer: /CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Certificate serial: 042E Authority key identifier: 8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa Signing time: Thu 02 Oct 2025 23:24:38 +0000 ROA not before: Thu 02 Oct 2025 23:24:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 141.163.128.0/20 maxlen: 24 141.163.144.0/20 maxlen: 24 141.163.160.0/20 maxlen: 24 141.163.176.0/20 maxlen: 24 141.163.192.0/20 maxlen: 24 141.163.208.0/20 maxlen: 24 141.163.224.0/20 maxlen: 24 141.163.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:10:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1070 (0x42e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E, serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Validity Not Before: Oct 2 23:24:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68df09b6-445e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d0:78:c0:82:94:d3:81:eb:40:86:9e:ee:d3: b2:d0:0c:65:65:16:49:de:8f:63:f9:da:ac:ee:81: 80:fe:21:e2:f8:fa:48:a6:3f:4a:5e:b1:28:de:3f: bf:4f:cb:84:41:e0:f5:8f:db:41:59:3e:f8:8e:97: ec:40:f8:e7:6e:c7:5c:81:bf:bd:5c:9f:6f:69:8c: 39:58:54:b0:0e:79:ea:e6:f2:6f:98:95:20:25:0e: d0:91:43:7f:c5:30:da:ba:57:38:d8:72:f2:4c:1f: 80:e6:ec:ec:a1:48:cd:a7:a5:3d:b4:15:17:c6:fc: 4c:a0:5f:b1:d2:bc:cd:65:14:01:c4:fb:89:db:45: 4e:29:44:7b:be:32:d8:69:76:6e:bb:78:bc:19:05: 6d:7f:6b:bf:2a:a6:b0:4f:2d:24:07:0c:31:09:53: da:b3:99:7b:54:92:76:70:a4:7e:8f:5c:bd:20:de: 74:b8:e5:e4:4f:c4:46:cc:df:0a:29:ab:90:3d:0f: 53:64:fe:b6:e7:3b:84:ea:40:90:61:68:30:96:0c: df:97:c2:b1:3b:db:c2:ff:5e:f2:48:2e:c5:77:03: 2a:5d:23:77:51:57:bf:a8:a6:91:ad:6e:6b:15:7d: 2a:bf:00:47:d1:87:b0:02:ca:c0:ca:c7:e3:f5:d0: a0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:3F:F0:95:81:25:01:CE:CE:EB:A9:46:33:7B:08:66:A6:EE:2D:9D X509v3 Authority Key Identifier: keyid:8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.163.128.0/17 Signature Algorithm: sha256WithRSAEncryption 48:25:4a:c2:7d:01:43:b1:06:75:48:e4:ea:22:e5:a5:e2:31: 92:1e:66:18:c6:d6:69:f2:a1:96:b0:fd:e8:ce:13:92:be:56: 05:05:6e:9e:cf:20:34:b8:f2:77:75:4c:c4:df:ca:83:34:98: a6:6c:a5:fa:3d:0a:3e:18:45:39:57:3c:70:9f:db:16:bd:b4: df:89:1f:4c:2f:b4:dc:e7:3d:fd:f6:bd:4d:2f:be:9d:b9:2a: 4a:c3:2b:b8:c2:fd:38:16:81:e8:3c:ce:33:59:9a:52:0f:b3: 75:9f:0a:e9:3f:34:43:7d:86:a5:e2:da:dc:cd:98:92:28:fd: ce:e7:a6:6b:4f:23:38:46:ce:45:0a:36:1a:ab:6f:cd:b1:80: c8:a2:2c:ee:37:87:4a:1b:97:3f:c1:52:91:1a:24:fa:89:ca: 10:13:d4:12:75:e4:3f:c1:5f:58:96:2d:87:1d:97:b1:79:8d: ee:b0:ce:e5:13:e5:8c:e1:e6:97:e4:33:5b:1d:1c:2a:fb:9a: 8c:ae:5b:b5:ce:5d:17:a1:47:6e:d9:e7:34:10:87:40:41:dd: 9d:20:c4:5d:5b:b3:9d:6b:24:3a:0d:83:5d:c0:ea:65:d9:a6: 47:29:8c:ed:2a:89:77:37:87:1d:5f:8d:57:92:44:6e:39:76: 99:9a:4e:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDhEMjAyMDdEMUVEQjVGNUMyRDY2M0IwQTZBMTBCQ0Q0 MEJBRDNBREUwHhcNMjUxMDAyMjMyNDM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmMDliNi00NDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdB4wIKU04HrQIae7tOy0AxlZRZJ3o9j+dqs7oGA/iHi+PpIpj9KXrEo3j+/ T8uEQeD1j9tBWT74jpfsQPjnbsdcgb+9XJ9vaYw5WFSwDnnq5vJvmJUgJQ7QkUN/ xTDaulc42HLyTB+A5uzsoUjNp6U9tBUXxvxMoF+x0rzNZRQBxPuJ20VOKUR7vjLY aXZuu3i8GQVtf2u/KqawTy0kBwwxCVPas5l7VJJ2cKR+j1y9IN50uOXkT8RGzN8K KauQPQ9TZP625zuE6kCQYWgwlgzfl8KxO9vC/17ySC7FdwMqXSN3UVe/qKaRrW5r FX0qvwBH0YewAsrAysfj9dCgfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI0/8JWB JQHOzuupRjN7CGam7i2dMB8GA1UdIwQYMBaAFI0gIH0e219cLWY7CmoQvNQLrTre MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS9BNDZCRTU4ODg4 ODgxMUVDOTEyMzNBNzBDNEY5QUUwMi9qU0FnZlI3Ylgxd3RaanNLYWhDODFBdXRP dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2pTQWdmUjdiWDF3dFpqc0thaEM4MUF1dE90NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvQTQ2QkU1ODg4ODg4MTFFQzkxMjMzQTcwQzRGOUFFMDIvQUExNEZCMDBD NzA4MTFFQ0JBRUNDQzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAeNo4AwDQYJKoZIhvcNAQELBQADggEBAEglSsJ9AUOxBnVI 5Ooi5aXiMZIeZhjG1mnyoZaw/ejOE5K+VgUFbp7PIDS48nd1TMTfyoM0mKZspfo9 Cj4YRTlXPHCf2xa9tN+JH0wvtNznPf32vU0vvp25KkrDK7jC/TgWgeg8zjNZmlIP s3WfCuk/NEN9hqXi2tzNmJIo/c7npmtPIzhGzkUKNhqrb82xgMiiLO43h0oblz/B UpEaJPqJyhAT1BJ15D/BX1iWLYcdl7F5je6wzuUT5Yzh5pfkM1sdHCr7moyuW7XO XRehR27Z5zQQh0BB3Z0gxF1bs51rJDoNg13A6mXZpkcpjO0qiXc3hx1fjVeSRG45 dpmaTtY= -----END CERTIFICATE-----Generated at Wed Nov 5 05:47:12 2025 by rpki-client