$ rpki-client -vvf rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/D9624ED082FD11F088ACD36DC4F9AE02.roa File: D9624ED082FD11F088ACD36DC4F9AE02.roa (raw, json) Hash identifier: NrJHBRqQxYOPdzAqys1Jg3BONQuPBEcjFnMs2wyt5rM= Subject key identifier: 82:B4:70:34:A0:26:3A:1E:05:A6:3E:48:E7:73:89:7C:D2:75:5B:87 Certificate issuer: /CN=A9176E5A/serialNumber=B1524FBE465FE4FB99FE611DFC040F510C1168FE Certificate serial: 24 Authority key identifier: B1:52:4F:BE:46:5F:E4:FB:99:FE:61:1D:FC:04:0F:51:0C:11:68:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/D9624ED082FD11F088ACD36DC4F9AE02.roa Signing time: Fri 31 Oct 2025 07:51:56 +0000 ROA not before: Fri 31 Oct 2025 07:51:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.14.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.crl rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36 (0x24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176E5A, serialNumber=B1524FBE465FE4FB99FE611DFC040F510C1168FE Validity Not Before: Oct 31 07:51:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69046a9c-fc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:da:01:e8:6a:de:a3:f7:db:b3:50:a4:e8:ba: c2:f9:dd:8c:05:b6:f3:e1:1d:69:3a:56:9a:3a:10: 27:de:3d:6a:74:c9:2d:ae:7e:45:b5:64:14:d7:b8: 37:8d:17:dc:37:44:7f:0a:ba:2f:2f:b5:02:0b:ae: ad:6f:8e:16:c7:6b:96:a4:c9:c2:f2:2e:a6:8d:e9: 07:cc:81:e5:db:df:5c:3d:a1:54:57:7b:de:06:38: a6:55:64:a7:1f:d6:37:d7:a6:4a:cb:c2:62:cc:2f: ad:92:7d:3b:a4:99:57:63:5c:71:31:7b:1c:24:16: 12:e7:a4:59:2d:de:7a:5c:b9:7b:8a:57:24:39:46: 5d:70:76:76:7e:2e:60:5f:cd:b7:19:ed:52:66:e2: e6:f5:39:83:f0:e5:2d:a3:d6:8d:8c:e3:7a:96:04: 10:c2:45:58:8e:40:bd:81:02:9c:fc:73:8d:bc:9e: 4f:4d:61:ab:d2:e9:bc:42:34:4e:c8:bb:01:f4:18: a1:94:97:53:59:98:1e:38:d5:bb:5c:ae:c6:58:8e: 49:44:36:a8:94:99:7d:85:2f:0a:bc:70:85:50:cf: ab:9d:cb:9d:00:db:eb:71:fd:d5:a8:c4:e3:ec:b5: 2c:6c:26:04:e4:0e:6f:bf:07:ac:8e:8b:aa:c3:70: d7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:B4:70:34:A0:26:3A:1E:05:A6:3E:48:E7:73:89:7C:D2:75:5B:87 X509v3 Authority Key Identifier: keyid:B1:52:4F:BE:46:5F:E4:FB:99:FE:61:1D:FC:04:0F:51:0C:11:68:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/D9624ED082FD11F088ACD36DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.14.116.0/23 Signature Algorithm: sha256WithRSAEncryption 67:04:3c:1e:44:37:6e:02:19:07:4b:f7:f9:10:07:b9:c3:0b: b1:66:86:34:00:06:1c:5b:3e:47:fe:c9:3c:de:5d:03:66:1d: 55:51:60:f8:ae:fc:4c:a4:cc:04:10:35:a2:c0:17:ed:5f:14: b9:04:ec:75:d6:dd:b4:76:63:b9:e7:fb:ac:d0:e3:25:9b:b6: d5:4a:07:40:c5:21:4f:73:e0:84:de:b1:36:1f:a7:b5:f6:2b: 66:2c:b8:00:09:c6:31:01:b4:58:ec:56:fc:5e:50:b6:3e:5f: 94:b9:4f:f2:a0:a9:20:5b:1e:1d:e3:59:a1:f1:5e:7a:e2:1e: a9:63:29:a1:c8:17:14:58:3e:7d:9f:7b:34:7f:c8:37:d3:c5: 3a:bb:58:9c:d9:7a:62:14:12:8e:71:c8:29:97:3e:e7:61:41: f8:4f:a4:a3:a6:90:8b:fd:93:0e:15:eb:ff:a3:55:45:27:5c: 17:fd:77:1b:de:a7:30:19:06:ae:e1:cd:2a:4e:46:f0:ce:f6: f6:36:78:83:a7:74:f7:7c:b0:2f:2e:9f:de:6c:a0:7b:87:71: e8:d6:cc:8b:c3:53:20:32:09:71:50:52:02:7f:66:07:f4:3b: f4:a3:bf:34:1d:e2:2d:45:3f:a7:20:5a:68:84:ca:57:99:10: a5:68:58:0c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkU1QTExMC8GA1UEBRMoQjE1MjRGQkU0NjVGRTRGQjk5RkU2MTFERkMwNDBGNTEw QzExNjhGRTAeFw0yNTEwMzEwNzUxNTZaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDQ2YTljLWZjNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDs2gHoat6j99uzUKTousL53YwFtvPhHWk6Vpo6ECfePWp0yS2ufkW1ZBTXuDeN F9w3RH8Kui8vtQILrq1vjhbHa5akycLyLqaN6QfMgeXb31w9oVRXe94GOKZVZKcf 1jfXpkrLwmLML62SfTukmVdjXHExexwkFhLnpFkt3npcuXuKVyQ5Rl1wdnZ+LmBf zbcZ7VJm4ub1OYPw5S2j1o2M43qWBBDCRViOQL2BApz8c428nk9NYavS6bxCNE7I uwH0GKGUl1NZmB441btcrsZYjklENqiUmX2FLwq8cIVQz6udy50A2+tx/dWoxOPs tSxsJgTkDm+/B6yOi6rDcNf1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgrRwNKAm Oh4Fpj5I53OJfNJ1W4cwHwYDVR0jBBgwFoAUsVJPvkZf5PuZ/mEd/AQPUQwRaP4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2RTVBLzgwMzc5ODM4ODJG RDExRjBBRTBGODc2QUM0RjlBRTAyL3NWSlB2a1pmNVB1Wl9tRWRfQVFQVVF3UmFQ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc1ZKUHZrWmY1UHVaX21FZF9BUVBVUXdSYVA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkU1QS84MDM3OTgzODgyRkQxMUYwQUUwRjg3NkFDNEY5QUUwMi9EOTYyNEVEMDgy RkQxMUYwODhBQ0QzNkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsOdDANBgkqhkiG9w0BAQsFAAOCAQEAZwQ8HkQ3bgIZB0v3 +RAHucMLsWaGNAAGHFs+R/7JPN5dA2YdVVFg+K78TKTMBBA1osAX7V8UuQTsddbd tHZjuef7rNDjJZu21UoHQMUhT3PghN6xNh+ntfYrZiy4AAnGMQG0WOxW/F5Qtj5f lLlP8qCpIFseHeNZofFeeuIeqWMpocgXFFg+fZ97NH/IN9PFOrtYnNl6YhQSjnHI KZc+52FB+E+ko6aQi/2TDhXr/6NVRSdcF/13G96nMBkGruHNKk5G8M729jZ4g6d0 93ywLy6f3myge4dx6NbMi8NTIDIJcVBSAn9mB/Q79KO/NB3iLUU/pyBaaITKV5kQ pWhYDA== -----END CERTIFICATE-----Generated at Tue Nov 4 01:11:58 2025 by rpki-client