$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7E08719E390311EF9DD1A882C4F9AE02.roa File: 7E08719E390311EF9DD1A882C4F9AE02.roa (raw, json) Hash identifier: 5Mvy92G8mRS3CTQLDDmTnthjwJqei5x2L9QEw+wkDv8= Subject key identifier: 41:86:52:AC:53:D0:8C:E6:38:5C:38:DC:68:A8:5B:C0:DC:BD:15:74 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 083E Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7E08719E390311EF9DD1A882C4F9AE02.roa Signing time: Wed 08 Oct 2025 22:53:59 +0000 ROA not before: Wed 08 Oct 2025 22:53:59 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 131646 IP address blocks: 43.229.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2110 (0x83e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 8 22:53:59 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e6eb87-4ea7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ee:d9:79:a1:af:29:0c:13:56:fd:fb:44:54: 1f:2e:c9:f2:8e:a2:10:a0:c6:9f:b7:3c:83:76:c2: 07:04:ce:d7:c4:69:63:0c:7a:7e:f2:85:bf:02:9c: dd:66:b5:86:3b:bd:f1:de:82:f8:09:20:50:97:0b: 6c:a9:53:ca:fd:5d:61:da:d5:eb:40:da:1d:03:30: 7b:01:6c:3e:51:5f:d3:4d:ea:4c:e6:15:7c:2e:93: 71:95:6e:06:f3:ec:2d:ae:ff:29:55:85:f5:09:16: 3f:a1:b7:fb:0c:b1:fa:c4:05:96:1a:b1:c1:d5:8a: fa:b4:20:3f:ee:8f:8d:22:3c:49:bc:3a:09:3c:60: 40:ff:bc:d7:e6:5d:66:1c:93:eb:5d:1f:b7:1c:a3: 90:90:b6:d3:62:77:c4:50:57:0b:8a:3c:1f:5a:11: 20:06:41:dc:23:31:6b:8c:70:32:f4:f1:e1:07:08: bb:63:42:b7:97:5d:8f:36:6c:4c:08:4b:e2:ec:74: 26:69:a5:37:fe:33:71:cc:a7:19:83:b1:a6:35:f4: e6:aa:72:67:66:38:e7:ab:94:69:cd:a2:74:eb:ad: 0f:55:5e:08:ff:fb:c2:5f:d3:71:41:00:7c:af:b6: 88:12:47:f6:09:7f:2d:97:0f:40:88:a2:1c:d1:ed: 9f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:86:52:AC:53:D0:8C:E6:38:5C:38:DC:68:A8:5B:C0:DC:BD:15:74 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7E08719E390311EF9DD1A882C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.155.0/24 Signature Algorithm: sha256WithRSAEncryption 33:bd:67:9e:1b:e3:af:0f:ac:c3:97:41:19:69:90:cc:8c:96: 48:39:a1:21:62:09:d7:bb:12:52:a8:92:de:d7:0d:1a:71:5d: 19:bf:f5:8c:95:4c:66:85:2a:d4:14:04:f4:97:29:b2:5c:c8: 6e:0a:e0:44:31:fe:28:13:cd:b3:e4:4c:a0:65:44:b1:1d:fb: 9e:a8:6a:7b:dd:43:4c:40:6b:a4:15:b5:b0:26:19:88:d1:4c: b2:73:99:50:a3:4f:ef:3d:11:2d:0d:bf:7d:83:94:b9:d6:23: 4c:f2:02:ec:63:f5:0f:0d:38:12:80:d5:b3:6a:da:cf:b5:a2: b7:09:46:13:83:22:0e:90:7b:62:50:03:3b:80:7a:af:36:fc: 35:05:cb:e3:be:c0:3f:7b:40:e1:1c:3a:50:39:a4:16:58:27: 4a:bc:58:d3:81:43:b6:19:fb:f4:5c:dc:49:0e:c8:d1:0f:d9: 08:96:fa:e8:4c:0a:a1:3d:08:8f:77:59:4f:b3:f1:c1:d9:4e: 0c:4f:58:1f:3c:51:4d:50:11:a0:8d:b7:2d:31:b1:08:2a:07: 54:37:fb:83:e4:dd:58:84:a2:4a:15:2e:40:6b:e5:fb:00:55: 59:50:c0:3c:97:d2:53:c0:26:6f:60:d8:4e:6a:27:a8:32:f6: b3:3a:74:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCD4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMDA4MjI1MzU5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZWI4Ny00ZWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4O7ZeaGvKQwTVv37RFQfLsnyjqIQoMaftzyDdsIHBM7XxGljDHp+8oW/Apzd ZrWGO73x3oL4CSBQlwtsqVPK/V1h2tXrQNodAzB7AWw+UV/TTepM5hV8LpNxlW4G 8+wtrv8pVYX1CRY/obf7DLH6xAWWGrHB1Yr6tCA/7o+NIjxJvDoJPGBA/7zX5l1m HJPrXR+3HKOQkLbTYnfEUFcLijwfWhEgBkHcIzFrjHAy9PHhBwi7Y0K3l12PNmxM CEvi7HQmaaU3/jNxzKcZg7GmNfTmqnJnZjjnq5RpzaJ0660PVV4I//vCX9NxQQB8 r7aIEkf2CX8tlw9AiKIc0e2fKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEGGUqxT 0IzmOFw43GioW8DcvRV0MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvN0UwODcxOUUz OTAzMTFFRjlERDFBODgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5ZswDQYJKoZIhvcNAQELBQADggEBADO9Z54b468PrMOX QRlpkMyMlkg5oSFiCde7ElKokt7XDRpxXRm/9YyVTGaFKtQUBPSXKbJcyG4K4EQx /igTzbPkTKBlRLEd+56oanvdQ0xAa6QVtbAmGYjRTLJzmVCjT+89ES0Nv32DlLnW I0zyAuxj9Q8NOBKA1bNq2s+1orcJRhODIg6Qe2JQAzuAeq82/DUFy+O+wD97QOEc OlA5pBZYJ0q8WNOBQ7YZ+/Rc3EkOyNEP2QiW+uhMCqE9CI93WU+z8cHZTgxPWB88 UU1QEaCNty0xsQgqB1Q3+4Pk3ViEokoVLkBr5fsAVVlQwDyX0lPAJm9g2E5qJ6gy 9rM6dN0= -----END CERTIFICATE-----Generated at Tue Oct 21 14:52:15 2025 by rpki-client