$ rpki-client -vvf rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/8589BDA6AF1D11F0B0944E21C4F9AE02.roa File: 8589BDA6AF1D11F0B0944E21C4F9AE02.roa (raw, json) Hash identifier: OCxgZUXuuiXCjfU7ZMNyTvoGnc7fsEw85v/0cyOZ60g= Subject key identifier: 53:87:FB:65:68:B7:71:5C:97:62:2D:8D:1C:56:CA:60:14:6A:57:0F Certificate issuer: /CN=A918EDB2/serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Certificate serial: 1FC1 Authority key identifier: A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/8589BDA6AF1D11F0B0944E21C4F9AE02.roa Signing time: Wed 22 Oct 2025 08:02:58 +0000 ROA not before: Wed 22 Oct 2025 08:02:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 154299 IP address blocks: 138.252.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:24:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8129 (0x1fc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EDB2, serialNumber=A7AE474416B0E8AD3A89E86774A640FEBE6973F9 Validity Not Before: Oct 22 08:02:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68f88fb2-ae27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:3f:ac:a4:88:1c:81:2e:df:80:e8:43:70:57: 70:9c:7e:83:8c:61:da:9c:b8:f5:2c:99:fc:e2:ab: f1:df:9a:bc:95:59:ad:73:e5:fa:6f:39:0a:6e:31: 56:ea:f0:75:fb:a3:61:f8:7b:e5:28:b3:f9:3c:a2: 13:18:10:26:48:bc:6b:de:5d:64:a0:1d:56:39:11: 2c:d7:87:27:84:8b:1f:f3:55:26:57:78:d4:6a:eb: 65:6e:95:b6:fc:4a:17:7b:1c:0e:f8:b4:07:e7:bb: 46:59:ef:a8:c6:65:77:2a:19:e1:a0:b0:24:5b:f9: 61:d7:0b:e0:88:72:a8:cb:22:b9:5b:5f:3b:84:56: 18:af:b3:e1:29:e0:5e:50:17:7d:20:6c:a7:2f:4d: d7:71:93:6e:81:e3:12:59:b5:f6:e0:17:65:b2:d2: 72:1a:2e:5d:7a:38:ce:97:d7:02:9c:c2:fd:c9:c4: d5:cf:d6:cf:6c:a8:1b:89:5e:a6:a3:d1:57:4a:ce: 07:73:1b:2a:2f:06:11:89:37:c4:fc:40:2e:3e:3e: 23:d8:12:a0:b4:e7:96:67:52:f6:21:49:98:c1:e2: 05:a7:28:52:01:f5:86:09:b6:6e:ab:6e:95:f7:d3: 84:5f:6b:9c:59:7a:6c:ee:43:20:de:9f:50:f0:34: 40:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:87:FB:65:68:B7:71:5C:97:62:2D:8D:1C:56:CA:60:14:6A:57:0F X509v3 Authority Key Identifier: keyid:A7:AE:47:44:16:B0:E8:AD:3A:89:E8:67:74:A6:40:FE:BE:69:73:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/p65HRBaw6K06iehndKZA_r5pc_k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/p65HRBaw6K06iehndKZA_r5pc_k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/8589BDA6AF1D11F0B0944E21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.38.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:a3:a3:0e:2e:4f:dd:19:f4:d4:c6:6c:26:ad:57:79:52:e1: 56:b3:d3:c8:b0:51:f3:48:a8:ed:d4:50:95:fc:53:65:74:22: 05:26:c4:10:7b:32:47:4c:13:81:42:43:f5:17:e5:31:b1:87: 33:49:fd:9d:a4:d6:ed:b2:7f:d1:a9:43:00:0e:5c:ca:23:52: 89:75:32:ea:e3:08:5f:65:19:52:6f:eb:06:97:c5:d5:60:2a: 7b:f6:dd:70:33:f6:10:14:c1:79:10:ee:c4:ae:c9:eb:bf:1c: 66:ca:f0:04:4d:bd:94:c5:a8:50:ad:f6:f7:7c:d5:fa:d7:e0: 0b:23:90:a4:29:50:de:cc:17:86:dc:4f:47:ff:d7:0a:d3:57: f7:fb:0b:69:7e:02:33:e9:a3:c0:62:7c:00:67:51:b5:76:68: 75:15:06:06:91:8d:d6:48:2c:c3:75:70:3e:aa:c1:9b:18:7f: 7e:f1:16:64:5a:2b:c3:b7:62:1a:5b:6e:21:76:d4:1a:51:c2: 1d:8f:90:39:47:7d:fa:d1:bd:1e:8c:7a:e5:7a:8b:87:b8:ce: d7:93:94:99:54:b3:c0:77:0b:79:6f:cf:79:2e:07:a6:33:4e: ec:1e:c5:17:d6:f0:2c:e4:a8:b4:96:01:c0:a5:38:c2:4b:96: 37:96:1f:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH8EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVEQjIxMTAvBgNVBAUTKEE3QUU0NzQ0MTZCMEU4QUQzQTg5RTg2Nzc0QTY0MEZF QkU2OTczRjkwHhcNMjUxMDIyMDgwMjU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY4OGZiMi1hZTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoT+spIgcgS7fgOhDcFdwnH6DjGHanLj1LJn84qvx35q8lVmtc+X6bzkKbjFW 6vB1+6Nh+HvlKLP5PKITGBAmSLxr3l1koB1WOREs14cnhIsf81UmV3jUautlbpW2 /EoXexwO+LQH57tGWe+oxmV3KhnhoLAkW/lh1wvgiHKoyyK5W187hFYYr7PhKeBe UBd9IGynL03XcZNugeMSWbX24BdlstJyGi5dejjOl9cCnML9ycTVz9bPbKgbiV6m o9FXSs4HcxsqLwYRiTfE/EAuPj4j2BKgtOeWZ1L2IUmYweIFpyhSAfWGCbZuq26V 99OEX2ucWXps7kMg3p9Q8DRA3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFOH+2Vo t3Fcl2ItjRxWymAUalcPMB8GA1UdIwQYMBaAFKeuR0QWsOitOonoZ3SmQP6+aXP5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RURCMi8xQzU3Q0VBQzcw RTkxMUUyQjM2RDRCNkIyOTc5QkIyMC9wNjVIUkJhdzZLMDZpZWhuZEtaQV9yNXBj X2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3A2NUhSQmF3NkswNmllaG5kS1pBX3I1cGNfay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVEQjIvMUM1N0NFQUM3MEU5MTFFMkIzNkQ0QjZCMjk3OUJCMjAvODU4OUJEQTZB RjFEMTFGMEIwOTQ0RTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGK/CYwDQYJKoZIhvcNAQELBQADggEBAFyjow4uT90Z9NTG bCatV3lS4Vaz08iwUfNIqO3UUJX8U2V0IgUmxBB7MkdME4FCQ/UX5TGxhzNJ/Z2k 1u2yf9GpQwAOXMojUol1MurjCF9lGVJv6waXxdVgKnv23XAz9hAUwXkQ7sSuyeu/ HGbK8ARNvZTFqFCt9vd81frX4AsjkKQpUN7MF4bcT0f/1wrTV/f7C2l+AjPpo8Bi fABnUbV2aHUVBgaRjdZILMN1cD6qwZsYf37xFmRaK8O3YhpbbiF21BpRwh2PkDlH ffrRvR6MeuV6i4e4zteTlJlUs8B3C3lvz3kuB6YzTuwexRfW8CzkqLSWAcClOMJL ljeWHwM= -----END CERTIFICATE-----Generated at Tue Nov 4 22:13:24 2025 by rpki-client