$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/82748D8A8D3A11F0833AB01AC4F9AE02.roa File: 82748D8A8D3A11F0833AB01AC4F9AE02.roa (raw, json) Hash identifier: cwplvW7swmzZa2jvSta00RWJdejX+4mcpTxfaDMp2xI= Subject key identifier: 2B:D6:C7:FD:78:CC:49:D2:AE:67:6E:15:DB:62:8E:3B:36:42:03:A1 Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: 0102 Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/82748D8A8D3A11F0833AB01AC4F9AE02.roa Signing time: Tue 09 Sep 2025 05:11:49 +0000 ROA not before: Tue 09 Sep 2025 05:11:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153177 IP address blocks: 203.4.136.0/24 maxlen: 24 203.4.137.0/24 maxlen: 24 203.4.138.0/24 maxlen: 24 203.4.139.0/24 maxlen: 24 203.4.140.0/24 maxlen: 24 203.4.141.0/24 maxlen: 24 203.4.142.0/24 maxlen: 24 203.4.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Sep 9 05:11:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68bfb715-d65c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:eb:58:11:f6:c7:b6:48:da:a7:f2:24:41:dd: 43:93:14:20:dd:23:a5:ad:65:75:ff:c6:8c:a4:32: 39:bc:70:e4:0b:c7:fb:40:16:0a:82:bf:24:61:ef: 1c:9f:d2:36:5d:2d:74:85:cf:31:d4:1a:f7:e9:97: b5:74:94:dd:95:b3:0c:17:f3:ef:15:fe:7d:92:d5: ac:65:a8:22:ec:e9:2f:11:4a:a1:f7:6e:d7:a3:04: 3e:79:68:09:c6:91:57:39:03:7a:e4:0a:92:3b:4e: 10:46:dc:68:df:22:58:f1:ee:ae:ad:b7:17:5c:46: 16:23:89:49:ac:4a:d3:e3:da:27:f2:c2:25:ea:64: 62:f2:34:da:b1:ed:65:0e:15:e3:af:21:d2:e5:18: d5:92:d6:31:b6:2a:24:b0:6a:88:fa:ac:3b:95:3f: 34:b6:d2:b0:79:d5:30:c3:c9:50:b9:8a:d6:e7:d2: 41:a0:a9:e5:40:1b:45:d0:6e:3c:4b:1e:0d:a5:6c: e3:19:a2:a1:08:b4:c3:e1:ff:d5:74:b8:59:26:ed: 53:58:95:17:05:88:8e:e1:cd:63:d2:77:70:9e:3e: da:89:05:f8:19:c1:b9:b1:a6:4d:a1:e6:6c:6a:60: a6:97:9f:a4:43:3c:64:3f:77:57:38:e4:26:fd:8c: 43:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:D6:C7:FD:78:CC:49:D2:AE:67:6E:15:DB:62:8E:3B:36:42:03:A1 X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/82748D8A8D3A11F0833AB01AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.136.0/21 Signature Algorithm: sha256WithRSAEncryption 66:72:bc:e3:7e:09:55:c8:80:0c:99:e9:01:2d:62:57:e1:ec: 11:f1:bd:d2:f4:7d:61:10:cc:bd:58:d5:31:db:d0:21:52:2d: e4:cb:ea:5e:d4:4b:71:5c:f2:a2:ee:71:e6:b2:c8:62:d8:40: 5a:c1:7f:64:db:24:f5:d3:68:e3:79:8d:4a:bb:db:25:d3:71: 36:10:95:53:74:cd:0d:90:37:87:0d:9e:6c:2a:82:1b:7f:a7: ca:35:f2:63:ff:0b:c6:0f:04:2d:0d:90:bf:fb:bb:dc:29:63: 26:e0:6c:74:8f:88:af:ef:13:a1:e0:b4:7c:09:2f:d9:2b:c0: 1e:8f:f7:7d:c8:df:a0:43:4f:fa:65:29:ee:89:1b:89:b6:e7: 82:53:e2:ef:8a:6e:fc:a1:15:88:b5:ab:77:46:68:be:48:cc: 0d:ce:40:0e:99:25:52:dd:0d:7c:f4:be:6d:15:e1:ba:85:41: 9b:02:e5:b8:ef:8c:f1:b4:1a:cc:98:c4:4e:a7:47:a6:68:7d: 1a:fb:17:7d:92:0f:d5:7d:a1:a0:66:25:2f:2e:f7:4c:8f:20: e9:2d:2d:e3:c6:c0:18:40:76:c3:88:fa:69:01:ca:44:b1:b7: 99:be:f3:0d:7f:4b:ab:c2:af:b9:7f:43:c1:7c:b3:ba:a6:3d: da:c8:13:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwOTA5MDUxMTQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmYjcxNS1kNjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlutYEfbHtkjap/IkQd1DkxQg3SOlrWV1/8aMpDI5vHDkC8f7QBYKgr8kYe8c n9I2XS10hc8x1Br36Ze1dJTdlbMMF/PvFf59ktWsZagi7OkvEUqh927XowQ+eWgJ xpFXOQN65AqSO04QRtxo3yJY8e6urbcXXEYWI4lJrErT49on8sIl6mRi8jTase1l DhXjryHS5RjVktYxtioksGqI+qw7lT80ttKwedUww8lQuYrW59JBoKnlQBtF0G48 Sx4NpWzjGaKhCLTD4f/VdLhZJu1TWJUXBYiO4c1j0ndwnj7aiQX4GcG5saZNoeZs amCml5+kQzxkP3dXOOQm/YxD4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCvWx/14 zEnSrmduFdtijjs2QgOhMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMTkvMTBDN0YwQUExNDBGMTFFRjhBNEE3MDE2QzRGOUFFMDIvODI3NDhEOEE4 RDNBMTFGMDgzM0FCMDFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLBIgwDQYJKoZIhvcNAQELBQADggEBAGZyvON+CVXIgAyZ 6QEtYlfh7BHxvdL0fWEQzL1Y1THb0CFSLeTL6l7US3Fc8qLuceayyGLYQFrBf2Tb JPXTaON5jUq72yXTcTYQlVN0zQ2QN4cNnmwqght/p8o18mP/C8YPBC0NkL/7u9wp YybgbHSPiK/vE6HgtHwJL9krwB6P933I36BDT/plKe6JG4m254JT4u+KbvyhFYi1 q3dGaL5IzA3OQA6ZJVLdDXz0vm0V4bqFQZsC5bjvjPG0GsyYxE6nR6ZofRr7F32S D9V9oaBmJS8u90yPIOktLePGwBhAdsOI+mkBykSxt5m+8w1/S6vCr7l/Q8F8s7qm PdrIE+E= -----END CERTIFICATE-----Generated at Wed Nov 5 18:14:04 2025 by rpki-client