$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa File: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (raw, json) Hash identifier: IJCEqByUe86RyI1SEW/vBF87Iilsn4UICW7iY+WvY8E= Subject key identifier: D0:3A:7D:09:3F:FE:72:F5:9A:12:1E:DC:09:FA:06:62:5B:4A:65:3C Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1D3B Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa Signing time: Tue 04 Nov 2025 15:00:36 +0000 ROA not before: Tue 04 Nov 2025 15:00:36 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 58470 IP address blocks: 119.30.105.0/24 maxlen: 24 119.30.116.0/22 maxlen: 24 119.73.59.0/24 maxlen: 24 2401::/36 maxlen: 36 2401:0:6f00::/40 maxlen: 40 2401:0:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7483 (0x1d3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Nov 4 15:00:36 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a1514-3cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:83:60:14:3a:03:88:4c:e7:41:6a:44:c0:6c: 30:94:59:11:ce:f8:72:46:82:e7:a1:e1:af:0e:c2: fc:5e:85:31:fb:1d:ff:b3:23:89:0a:2c:66:8d:6a: 1a:6d:76:0a:0f:99:01:e2:b7:b0:59:aa:f6:d2:c3: 12:c3:e7:ff:79:07:89:cc:66:90:8c:8b:a9:77:34: 9a:67:c2:36:3d:21:49:e0:4f:ac:4b:e1:45:3c:0b: f4:fa:3c:27:ae:82:da:65:1b:c2:9e:a0:f9:bb:21: a1:ce:b3:78:95:02:38:f5:f6:6b:e3:51:aa:d7:62: e1:55:8a:1f:b4:77:78:69:0c:b5:28:5a:40:74:01: ea:3f:01:dd:ad:fd:2b:4c:90:fa:ef:f9:e7:04:77: d3:7e:06:6b:59:60:ed:ec:6e:c7:1f:b8:05:6b:44: 37:17:bf:32:5b:23:bb:58:15:21:a8:e7:1b:44:b3: a9:49:d5:a2:3a:f5:9e:df:e3:5a:ee:f9:e9:4e:8e: 44:76:bb:af:84:41:e4:de:90:3f:ad:15:77:ff:a6: 28:18:1f:83:61:75:ab:9b:d9:c7:a6:31:94:8c:55: ac:eb:4a:3d:9d:d1:f4:a5:ff:7b:81:7d:65:2a:7c: 9c:d5:af:0b:12:ef:43:e1:98:2e:a0:95:c7:f6:81: 35:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:3A:7D:09:3F:FE:72:F5:9A:12:1E:DC:09:FA:06:62:5B:4A:65:3C X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.30.105.0/24 119.30.116.0/22 119.73.59.0/24 IPv6: 2401::/36 2401:0:6f00::/40 2401:0:c000::/40 Signature Algorithm: sha256WithRSAEncryption b4:6c:67:89:ad:00:ab:61:9b:7a:c1:1d:95:b1:be:be:f3:e1: b4:30:d2:cb:f3:15:8c:46:05:0e:7e:23:c8:1e:a0:d6:4a:69: ac:36:be:a1:a0:ab:13:a6:ba:f4:70:3d:0f:a4:64:2e:31:64: fd:76:3c:af:d3:ce:32:77:70:30:d7:ad:88:94:b0:1c:1e:5f: 1c:6e:83:73:66:9a:bf:e4:56:af:73:d0:a6:1e:b2:ce:4e:4b: 8a:a4:f9:e4:50:75:dd:51:e7:aa:c4:a6:92:9f:17:49:31:1d: ce:9b:76:59:9a:71:f5:c2:24:c2:2c:4b:5a:59:46:d6:95:1a: 74:23:58:74:c1:38:31:a5:b9:bd:af:03:2f:bd:0e:fd:db:53: 24:f3:f1:ce:bd:87:fa:1b:2d:0f:b2:be:1f:b6:f0:81:5f:12: 72:69:af:de:b7:b0:c4:68:53:c3:4f:21:72:0c:0f:d4:ab:c3: ef:e4:04:14:4d:32:eb:2a:75:f9:ac:bd:4e:5c:1b:fe:dd:52: d5:5d:9d:c9:89:9b:f5:ea:93:19:3e:9d:d2:be:6d:ac:4b:52: a1:e8:50:ac:c4:80:68:df:3d:6a:09:85:f9:91:1c:52:fc:9c: 75:b2:cd:df:0b:5a:ae:4b:b0:60:c0:1f:4f:39:59:fd:69:b9: 3e:f1:5a:80 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICHTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUxMTA0MTUwMDM2WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhMTUxNC0zY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4NgFDoDiEznQWpEwGwwlFkRzvhyRoLnoeGvDsL8XoUx+x3/syOJCixmjWoa bXYKD5kB4rewWar20sMSw+f/eQeJzGaQjIupdzSaZ8I2PSFJ4E+sS+FFPAv0+jwn roLaZRvCnqD5uyGhzrN4lQI49fZr41Gq12LhVYoftHd4aQy1KFpAdAHqPwHdrf0r TJD67/nnBHfTfgZrWWDt7G7HH7gFa0Q3F78yWyO7WBUhqOcbRLOpSdWiOvWe3+Na 7vnpTo5EdruvhEHk3pA/rRV3/6YoGB+DYXWrm9nHpjGUjFWs60o9ndH0pf97gX1l Knyc1a8LEu9D4ZguoJXH9oE1/QIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFNA6fQk/ /nL1mhIe3An6BmJbSmU8MB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvNzc3RjVDRUU4 QUE2MTFFQTk0QkMwRDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MBgEAgABMBIDBAB3HmkDBAJ3HnQDBAB3STswHgQCAAIwGAMGBCQBAAAAAwYA JAEAAG8DBgAkAQAAwDANBgkqhkiG9w0BAQsFAAOCAQEAtGxnia0Aq2GbesEdlbG+ vvPhtDDSy/MVjEYFDn4jyB6g1kpprDa+oaCrE6a69HA9D6RkLjFk/XY8r9POMndw MNetiJSwHB5fHG6Dc2aav+RWr3PQph6yzk5LiqT55FB13VHnqsSmkp8XSTEdzpt2 WZpx9cIkwixLWllG1pUadCNYdME4MaW5va8DL70O/dtTJPPxzr2H+hstD7K+H7bw gV8Scmmv3rewxGhTw08hcgwP1KvD7+QEFE0y6yp1+ay9Tlwb/t1S1V2dyYmb9eqT GT6d0r5trEtSoehQrMSAaN89agmF+ZEcUvycdbLN3wtarkuwYMAfTzlZ/Wm5PvFa gA== -----END CERTIFICATE-----Generated at Wed Nov 5 21:33:20 2025 by rpki-client