$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/9D5E6AF8600F11EE98AFFB11C4F9AE02.roa File: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (raw, json) Hash identifier: hWA7kF3Oziowk6plagmWWdYlpMzFQ5tSTS/vk5MWxmo= Subject key identifier: 1A:B7:2B:92:E7:86:B2:F3:B3:2B:54:F6:3A:2B:19:EC:87:49:4B:B9 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 019B Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/9D5E6AF8600F11EE98AFFB11C4F9AE02.roa Signing time: Fri 31 Oct 2025 03:47:49 +0000 ROA not before: Fri 31 Oct 2025 03:47:49 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134090 IP address blocks: 148.222.0.0/21 maxlen: 21 148.222.0.0/22 maxlen: 24 148.222.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:38:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 411 (0x19b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Oct 31 03:47:49 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69043165-3a62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:1a:d3:0e:c5:25:63:b4:37:4f:5d:29:82:3b: 0a:da:c1:8b:92:ce:9c:2d:8c:b6:2b:a0:57:66:86: 98:f4:a7:a7:39:83:a4:d1:73:a3:57:39:c4:6c:ed: 57:7b:4f:d9:8d:62:37:ff:c4:98:61:2c:bd:02:c3: 5e:f1:fb:51:42:76:c7:7c:00:84:a8:30:d8:32:84: f4:5b:55:1c:3e:a8:72:28:16:68:ba:26:da:db:b0: 7f:e9:45:6a:d6:4d:07:7c:43:00:84:46:d7:ee:e7: 6e:10:29:f1:62:a0:f2:15:39:33:c6:5f:ab:0e:17: af:10:61:42:2b:2a:a8:ae:b5:b4:50:45:f0:c6:f3: cc:53:b9:31:66:79:79:82:53:a4:b4:dd:32:47:f8: 21:83:51:ec:a1:85:c4:9d:ad:35:ce:fe:3e:bd:1d: 08:be:9a:d1:44:57:b9:b8:e9:c0:06:6a:64:09:48: 27:ea:9e:fc:bc:89:a0:8c:56:fc:bb:a7:b2:04:ab: 3d:16:93:44:26:ca:db:e5:bd:11:04:02:a7:f9:23: 5f:09:fe:02:42:6d:cb:b1:c7:14:75:80:15:8f:68: 5a:72:e5:e5:44:5d:3c:16:95:c2:4e:14:dc:a2:c0: 87:46:07:08:eb:ca:d1:76:73:30:08:fc:f2:3f:ff: 74:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B7:2B:92:E7:86:B2:F3:B3:2B:54:F6:3A:2B:19:EC:87:49:4B:B9 X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/9D5E6AF8600F11EE98AFFB11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.222.0.0/21 Signature Algorithm: sha256WithRSAEncryption 83:fa:aa:5f:b8:8e:d8:34:8c:7c:60:b9:08:22:88:f9:d9:b1: a7:ec:96:f4:77:a6:f6:80:9c:c3:63:70:b4:be:2d:3c:da:78: b3:dc:fc:fb:77:24:8b:d2:41:be:e0:32:49:20:53:b6:73:56: 49:8c:e3:fc:c3:dd:31:0e:8a:92:cb:52:4b:8b:03:d3:30:76: 94:0d:b8:b4:3a:26:7d:a7:f6:a9:05:3e:a9:6a:f6:57:48:99: e4:21:8c:4d:c4:f8:3f:2e:40:6d:50:42:60:7c:40:00:ec:f1: 8a:5f:da:d7:7b:cf:04:fe:4b:34:f4:18:ee:cb:43:05:5d:64: 2d:bc:19:96:dd:c2:3f:b8:c6:10:a5:49:78:a0:6a:16:cd:25: 98:65:f1:1c:82:bb:d1:88:69:6c:ec:64:6f:88:d7:5f:ce:6f: 0b:dc:ee:6e:85:52:fd:f1:95:2b:c4:82:0f:0c:81:ba:88:45: 17:3c:17:9e:d1:fa:9b:56:ad:4d:2f:ea:b0:cc:35:09:9e:03: 2e:b6:a6:60:2d:ff:ef:33:77:ab:64:69:6d:1d:2e:12:a8:62: 4b:5c:4d:63:05:a5:48:ce:70:a0:14:12:d0:c1:88:bf:cb:92: 0e:13:9a:bf:d7:95:fb:cf:13:98:59:b2:72:70:da:4a:3a:55: 91:13:bc:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUxMDMxMDM0NzQ5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0MzE2NS0zYTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtBrTDsUlY7Q3T10pgjsK2sGLks6cLYy2K6BXZoaY9KenOYOk0XOjVznEbO1X e0/ZjWI3/8SYYSy9AsNe8ftRQnbHfACEqDDYMoT0W1UcPqhyKBZouiba27B/6UVq 1k0HfEMAhEbX7uduECnxYqDyFTkzxl+rDhevEGFCKyqorrW0UEXwxvPMU7kxZnl5 glOktN0yR/ghg1HsoYXEna01zv4+vR0IvprRRFe5uOnABmpkCUgn6p78vImgjFb8 u6eyBKs9FpNEJsrb5b0RBAKn+SNfCf4CQm3LsccUdYAVj2hacuXlRF08FpXCThTc osCHRgcI68rRdnMwCPzyP/90jQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBq3K5Ln hrLzsytU9jorGeyHSUu5MB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRDMEQvQTQ3MDc4NUU1NzU0MTFFRTk0MENEOTU0QzRGOUFFMDIvOUQ1RTZBRjg2 MDBGMTFFRTk4QUZGQjExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOU3gAwDQYJKoZIhvcNAQELBQADggEBAIP6ql+4jtg0jHxg uQgiiPnZsafslvR3pvaAnMNjcLS+LTzaeLPc/Pt3JIvSQb7gMkkgU7ZzVkmM4/zD 3TEOipLLUkuLA9MwdpQNuLQ6Jn2n9qkFPqlq9ldImeQhjE3E+D8uQG1QQmB8QADs 8Ypf2td7zwT+SzT0GO7LQwVdZC28GZbdwj+4xhClSXigahbNJZhl8RyCu9GIaWzs ZG+I11/Obwvc7m6FUv3xlSvEgg8MgbqIRRc8F57R+ptWrU0v6rDMNQmeAy62pmAt /+8zd6tkaW0dLhKoYktcTWMFpUjOcKAUEtDBiL/Lkg4Tmr/XlfvPE5hZsnJw2ko6 VZETvN4= -----END CERTIFICATE-----Generated at Wed Nov 5 13:03:19 2025 by rpki-client