$ rpki-client -vvf rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/1F5CD892C35111EE9D744F36C4F9AE02.roa File: 1F5CD892C35111EE9D744F36C4F9AE02.roa (raw, json) Hash identifier: 1gkTF4crGWzpTEQnLV3friPjpJHknrP6i19dnfTKZhs= Subject key identifier: 3F:BC:2A:FF:09:C2:0C:E4:2F:03:F2:00:1D:0D:91:4B:77:D2:55:1A Certificate issuer: /CN=A911C5B0/serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Certificate serial: 350F Authority key identifier: 7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/1F5CD892C35111EE9D744F36C4F9AE02.roa Signing time: Wed 30 Jul 2025 14:50:21 +0000 ROA not before: Wed 30 Jul 2025 14:50:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 7485 IP address blocks: 210.246.198.0/24 maxlen: 24 210.246.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 14:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13583 (0x350f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C5B0, serialNumber=7A961769549E0AAD0A9BF9925683BAEF733A2F1A Validity Not Before: Jul 30 14:50:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688a312d-eb4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:bd:62:ee:c1:8a:4d:59:a6:5d:30:5d:28:a6: 90:ad:ea:88:3d:a7:21:00:7f:17:0d:c0:50:3d:77: c3:e2:4a:c1:d4:4a:37:8a:ed:6f:2e:08:83:bb:84: f2:f2:55:0f:c5:73:bd:29:52:4d:1c:af:7a:aa:76: 5c:fe:64:d7:e8:3e:db:ea:8e:57:fd:ab:ce:c2:a5: 1c:f0:53:5b:fd:11:05:d0:41:e4:39:b5:cf:fd:b2: 6a:17:db:d5:07:01:b2:73:73:71:a8:34:2b:d8:59: 06:3c:39:3c:eb:4e:db:59:e8:f1:c1:e2:21:00:36: 57:19:c6:ba:92:12:7e:0e:35:04:96:d6:0c:56:16: 28:af:36:7e:fc:ba:a3:1a:37:d3:a5:e6:69:59:3b: 6e:ec:86:0d:ee:4f:a2:8a:e4:d3:28:db:b2:27:17: 18:e4:9a:00:06:c8:60:97:ae:c6:68:8e:56:ab:90: 6e:be:33:bb:5b:be:4b:0e:1a:82:1b:74:d0:b6:a7: c9:f6:9c:6a:e8:7a:87:26:e4:4d:30:1f:39:5f:3a: e5:55:88:49:0d:cd:23:71:4e:07:04:be:8f:2c:2c: e2:d5:a2:6b:03:99:b6:b0:70:25:28:0b:59:aa:65: 11:32:6b:ad:f6:1e:10:c0:10:1d:e2:72:f1:52:76: 35:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BC:2A:FF:09:C2:0C:E4:2F:03:F2:00:1D:0D:91:4B:77:D2:55:1A X509v3 Authority Key Identifier: keyid:7A:96:17:69:54:9E:0A:AD:0A:9B:F9:92:56:83:BA:EF:73:3A:2F:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/epYXaVSeCq0Km_mSVoO673M6Lxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/epYXaVSeCq0Km_mSVoO673M6Lxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C5B0/40C8D5A61D8311E2823A5FD808B02CD2/1F5CD892C35111EE9D744F36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.246.198.0/23 Signature Algorithm: sha256WithRSAEncryption 94:79:92:0f:dc:76:e6:77:5a:8a:11:3e:3a:c0:5b:b7:ea:49: 36:8b:2b:91:c3:99:25:ad:1b:e6:e2:96:c1:04:b4:08:0b:fc: b7:fa:25:a1:32:5b:de:92:5c:75:cd:c0:63:45:5a:fc:bf:d1: 6c:fb:39:21:ac:ee:7a:38:58:04:a0:b3:e9:98:69:55:29:15: f4:66:51:26:ec:00:f8:45:5c:60:4b:48:ab:d9:f0:6d:62:cb: f3:4a:bf:8f:f4:25:2f:7b:52:20:d4:39:27:e8:5c:ab:05:1f: ee:52:7e:d7:90:bc:0a:fa:18:a3:d6:88:66:6e:c7:23:db:5d: fb:5a:01:7d:78:6b:9c:b0:61:4f:74:d9:07:65:98:58:91:53: 1d:f8:6f:32:08:0f:14:71:3e:dc:ee:24:29:b9:a4:58:e3:88: a9:a4:37:cc:b7:5d:64:47:95:c1:33:21:03:eb:25:f4:be:14: 52:0e:38:34:b2:e6:2d:53:6a:66:17:59:f2:44:91:8c:3f:8f: 6a:d8:22:59:ff:c4:7e:61:5e:36:f9:2e:c2:99:89:8d:b7:1f: ca:8c:46:99:48:e1:93:33:c2:55:ed:67:bd:6a:27:0f:d6:a4: 39:ff:90:38:e8:f3:e0:76:38:02:fc:de:13:6c:b9:42:da:a0: a3:5f:1a:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM1QjAxMTAvBgNVBAUTKDdBOTYxNzY5NTQ5RTBBQUQwQTlCRjk5MjU2ODNCQUVG NzMzQTJGMUEwHhcNMjUwNzMwMTQ1MDIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhMzEyZC1lYjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5L1i7sGKTVmmXTBdKKaQreqIPachAH8XDcBQPXfD4krB1Eo3iu1vLgiDu4Ty 8lUPxXO9KVJNHK96qnZc/mTX6D7b6o5X/avOwqUc8FNb/REF0EHkObXP/bJqF9vV BwGyc3NxqDQr2FkGPDk8607bWejxweIhADZXGca6khJ+DjUEltYMVhYorzZ+/Lqj GjfTpeZpWTtu7IYN7k+iiuTTKNuyJxcY5JoABshgl67GaI5Wq5BuvjO7W75LDhqC G3TQtqfJ9pxq6HqHJuRNMB85XzrlVYhJDc0jcU4HBL6PLCzi1aJrA5m2sHAlKAtZ qmURMmut9h4QwBAd4nLxUnY1BwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD+8Kv8J wgzkLwPyAB0NkUt30lUaMB8GA1UdIwQYMBaAFHqWF2lUngqtCpv5klaDuu9zOi8a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzVCMC80MEM4RDVBNjFE ODMxMUUyODIzQTVGRDgwOEIwMkNEMi9lcFlYYVZTZUNxMEttX21TVm9PNjczTTZM eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VwWVhhVlNlQ3EwS21fbVNWb082NzNNNkx4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM1QjAvNDBDOEQ1QTYxRDgzMTFFMjgyM0E1RkQ4MDhCMDJDRDIvMUY1Q0Q4OTJD MzUxMTFFRTlENzQ0RjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHS9sYwDQYJKoZIhvcNAQELBQADggEBAJR5kg/cduZ3WooR PjrAW7fqSTaLK5HDmSWtG+bilsEEtAgL/Lf6JaEyW96SXHXNwGNFWvy/0Wz7OSGs 7no4WASgs+mYaVUpFfRmUSbsAPhFXGBLSKvZ8G1iy/NKv4/0JS97UiDUOSfoXKsF H+5SfteQvAr6GKPWiGZuxyPbXftaAX14a5ywYU902QdlmFiRUx34bzIIDxRxPtzu JCm5pFjjiKmkN8y3XWRHlcEzIQPrJfS+FFIOODSy5i1TamYXWfJEkYw/j2rYIln/ xH5hXjb5LsKZiY23H8qMRplI4ZMzwlXtZ71qJw/WpDn/kDjo8+B2OAL83hNsuULa oKNfGr0= -----END CERTIFICATE-----Generated at Tue Oct 28 16:43:18 2025 by rpki-client