$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/69A02F92B69011F0AFB90732C4F9AE02.roa File: 69A02F92B69011F0AFB90732C4F9AE02.roa (raw, json) Hash identifier: sMRcWxChssn3H6D5qaChgdxh5gtjwzzrdc1dGQbN5+A= Subject key identifier: B1:3A:84:1B:3B:D2:25:95:06:CF:C5:C4:07:2E:5E:B2:DC:90:80:73 Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 04FF Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/69A02F92B69011F0AFB90732C4F9AE02.roa Signing time: Mon 03 Nov 2025 00:44:53 +0000 ROA not before: Mon 03 Nov 2025 00:44:53 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 22773 IP address blocks: 113.20.48.0/22 maxlen: 22 113.20.52.0/22 maxlen: 22 223.29.128.0/22 maxlen: 22 223.29.136.0/22 maxlen: 22 223.29.140.0/22 maxlen: 22 223.29.144.0/22 maxlen: 22 223.29.148.0/22 maxlen: 22 223.29.152.0/22 maxlen: 22 223.29.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:44:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73, serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Nov 3 00:44:53 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6907fb05-f451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bf:ff:4d:bc:16:9e:6f:0f:31:fc:32:b6:78: 44:a6:cd:89:f9:9b:cc:05:88:29:83:e5:e7:1c:03: 92:6b:a3:46:01:cc:d3:b8:bc:0c:75:9e:62:b5:a1: 01:49:20:b7:e0:d4:1b:d5:d1:a1:82:1c:16:2e:de: 32:81:ad:c6:54:37:5c:57:90:c7:4b:36:f0:9f:b5: 66:68:41:7a:31:7f:9b:9d:58:d0:83:13:d3:c5:9c: 85:d0:73:c4:78:f4:23:c4:54:50:0a:2e:b0:3c:3f: 9d:83:42:8a:18:11:c9:92:06:e1:d5:3e:3e:6b:80: 61:c7:8b:fe:35:cc:a7:05:fa:09:b0:e4:8f:11:a3: 73:2f:67:5a:6c:45:80:b9:dc:38:3e:89:d4:be:a8: a4:35:eb:22:51:8d:2b:84:5d:57:43:b1:0b:6b:41: a5:92:f3:9e:ea:54:8e:5d:b4:c3:d5:16:ee:4f:ff: 47:f0:a2:2e:b4:45:43:1f:b0:55:28:0b:44:11:9b: 5d:56:c5:3c:fa:ad:72:7a:bb:c3:3d:0c:52:1c:ad: b8:24:d9:ea:eb:32:ef:c1:0a:35:cd:f3:26:78:26: 70:5d:f2:69:c5:73:60:55:0e:f0:78:15:a6:0d:69: ac:49:a7:57:97:d4:d6:fa:c3:52:d3:bf:f7:e4:a8: fc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:3A:84:1B:3B:D2:25:95:06:CF:C5:C4:07:2E:5E:B2:DC:90:80:73 X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/69A02F92B69011F0AFB90732C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.48.0/21 223.29.128.0/22 223.29.136.0-223.29.159.255 Signature Algorithm: sha256WithRSAEncryption 4a:ea:5a:70:9c:be:df:a5:93:b3:3f:1e:08:8a:7b:c6:e6:33: 1a:8c:fa:2c:b2:7c:78:97:24:f1:e7:dc:35:0b:a4:11:a1:df: 0e:87:58:a3:ed:79:56:03:cd:cd:5d:d2:0a:b2:3d:6e:d7:f8: 83:c3:b8:45:ec:01:08:08:ec:ed:07:0a:ce:f3:39:9d:e9:e0: 38:b3:5b:b6:29:61:61:e5:fa:f7:01:96:3e:e2:a1:06:7a:f1: ab:ba:36:c6:cf:95:92:07:65:2b:54:2a:57:76:4f:6e:96:b1: 85:19:ea:ba:50:cf:2a:ae:87:b0:e3:4a:37:a5:ed:8d:d0:45: a0:44:09:20:03:e1:b1:96:64:63:cb:27:59:45:b9:a5:03:be: 85:48:7d:21:38:50:9b:99:06:28:66:5f:b2:72:5e:fd:d9:b7: 37:31:58:3e:11:85:b2:f5:5e:1a:97:c0:f0:1c:b6:65:64:a3: 5f:d2:b7:67:c7:03:7b:50:aa:0d:d6:d5:67:69:29:c1:56:bd: d3:8c:63:95:da:b4:f7:3c:9f:d8:85:ea:f6:85:a7:5c:a2:69: 9d:cb:63:0e:e3:74:31:57:b8:35:b9:8f:35:52:3b:2f:80:b3: 91:c6:e8:ad:89:08:1d:83:69:e3:8f:06:d2:87:5d:c1:58:e3: 18:dd:2e:a7 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjUxMTAzMDA0NDUzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3ZmIwNS1mNDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7//TbwWnm8PMfwytnhEps2J+ZvMBYgpg+XnHAOSa6NGAczTuLwMdZ5itaEB SSC34NQb1dGhghwWLt4yga3GVDdcV5DHSzbwn7VmaEF6MX+bnVjQgxPTxZyF0HPE ePQjxFRQCi6wPD+dg0KKGBHJkgbh1T4+a4Bhx4v+NcynBfoJsOSPEaNzL2dabEWA udw4PonUvqikNesiUY0rhF1XQ7ELa0GlkvOe6lSOXbTD1RbuT/9H8KIutEVDH7BV KAtEEZtdVsU8+q1yervDPQxSHK24JNnq6zLvwQo1zfMmeCZwXfJpxXNgVQ7weBWm DWmsSadXl9TW+sNS07/35Kj8bQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFLE6hBs7 0iWVBs/FxAcuXrLckIBzMB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvNjlBMDJGOTJC NjkwMTFGMEFGQjkwNzMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBANxFDADBALfHYAwDAMEA98diAMEBd8dgDANBgkqhkiG9w0B AQsFAAOCAQEASupacJy+36WTsz8eCIp7xuYzGoz6LLJ8eJck8efcNQukEaHfDodY o+15VgPNzV3SCrI9btf4g8O4RewBCAjs7QcKzvM5nengOLNbtilhYeX69wGWPuKh Bnrxq7o2xs+VkgdlK1QqV3ZPbpaxhRnqulDPKq6HsONKN6XtjdBFoEQJIAPhsZZk Y8snWUW5pQO+hUh9IThQm5kGKGZfsnJe/dm3NzFYPhGFsvVeGpfA8By2ZWSjX9K3 Z8cDe1CqDdbVZ2kpwVa904xjldq09zyf2IXq9oWnXKJpnctjDuN0MVe4NbmPNVI7 L4CzkcborYkIHYNp448G0oddwVjjGN0upw== -----END CERTIFICATE-----Generated at Mon Nov 3 17:12:24 2025 by rpki-client