$ rpki-client -vvf rpki.apnic.net/member_repository/A918969C/9A8FB54E826C11F0B93A0E7BC4F9AE02/33B40FB8826D11F095A2E27BC4F9AE02.roa File: 33B40FB8826D11F095A2E27BC4F9AE02.roa (raw, json) Hash identifier: xv17VJj9Z62Ap1eQ6wyQIWX3LAvgQ0GTCnvzjSZOamo= Subject key identifier: 7A:90:8D:5C:41:56:5B:71:8A:8F:43:2C:B8:7D:2C:D4:65:6C:43:A0 Certificate issuer: /CN=A918969C/serialNumber=66AB4EB9629D26F97E248A8C32445873B7E3C0F8 Certificate serial: 04 Authority key identifier: 66:AB:4E:B9:62:9D:26:F9:7E:24:8A:8C:32:44:58:73:B7:E3:C0:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZqtOuWKdJvl-JIqMMkRYc7fjwPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918969C/9A8FB54E826C11F0B93A0E7BC4F9AE02/33B40FB8826D11F095A2E27BC4F9AE02.roa Signing time: Tue 26 Aug 2025 11:09:58 +0000 ROA not before: Tue 26 Aug 2025 11:09:58 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 14618 IP address blocks: 112.121.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918969C/9A8FB54E826C11F0B93A0E7BC4F9AE02/ZqtOuWKdJvl-JIqMMkRYc7fjwPg.crl rsync://rpki.apnic.net/member_repository/A918969C/9A8FB54E826C11F0B93A0E7BC4F9AE02/ZqtOuWKdJvl-JIqMMkRYc7fjwPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZqtOuWKdJvl-JIqMMkRYc7fjwPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918969C, serialNumber=66AB4EB9629D26F97E248A8C32445873B7E3C0F8 Validity Not Before: Aug 26 11:09:58 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68ad9606-1183 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:08:51:35:7c:9e:83:96:80:aa:43:79:21:e7: 9f:a9:1c:96:42:6a:e4:42:d5:69:91:a1:a5:8f:96: af:68:c2:a3:f4:72:87:34:bf:b7:85:13:13:f8:54: 5e:1b:a5:23:49:47:64:8d:40:c8:fa:73:dc:bf:22: 8f:44:58:51:0a:f9:b1:c0:6a:d8:99:8b:20:e2:41: 40:fd:34:a5:71:8c:31:cb:59:a3:6e:d0:90:8c:6d: fa:ed:0f:2f:ba:99:af:ae:4a:5b:7f:ab:13:fe:8a: c8:42:48:30:7b:e4:49:e5:2c:80:de:c0:50:fe:eb: df:a9:a6:c3:cb:e7:97:40:0e:d1:c2:79:bd:57:e9: 27:84:3f:a3:9e:ef:bf:9e:9a:f3:c7:4a:3f:c2:f6: e5:24:aa:48:7d:70:c7:6a:15:ad:ef:bd:25:ca:49: 6f:5e:e5:a9:ca:06:22:8a:61:6d:4f:c5:4c:78:10: 40:7d:63:29:c3:17:df:84:bf:ca:7a:f4:04:5b:b9: ff:75:96:f1:5a:09:c8:f1:f2:25:0a:f9:56:23:92: 15:d2:dd:3c:c3:8f:5f:83:c6:36:e4:9a:de:60:bd: 9a:8d:21:bc:ab:4b:b0:7e:0f:c2:7c:6e:4b:f7:21: 3c:3c:b1:50:9e:8c:35:bf:7a:8a:88:8a:d3:5c:ed: 0a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:90:8D:5C:41:56:5B:71:8A:8F:43:2C:B8:7D:2C:D4:65:6C:43:A0 X509v3 Authority Key Identifier: keyid:66:AB:4E:B9:62:9D:26:F9:7E:24:8A:8C:32:44:58:73:B7:E3:C0:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918969C/9A8FB54E826C11F0B93A0E7BC4F9AE02/ZqtOuWKdJvl-JIqMMkRYc7fjwPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZqtOuWKdJvl-JIqMMkRYc7fjwPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918969C/9A8FB54E826C11F0B93A0E7BC4F9AE02/33B40FB8826D11F095A2E27BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.121.47.0/24 Signature Algorithm: sha256WithRSAEncryption 42:19:cf:8f:d4:fe:98:c8:b8:63:46:5e:95:9d:8c:4d:4f:0c: 39:44:48:9d:de:af:32:c9:c3:f0:16:48:bc:02:35:76:5d:ff: 55:f4:1a:15:ae:04:4f:72:d1:db:5f:a3:5a:74:7d:26:01:ec: ca:31:0b:83:c9:0c:52:44:2e:cc:fd:29:70:9b:9d:d1:b4:7c: 90:f2:fd:7b:0c:56:8d:65:ed:d4:79:3f:f2:6a:25:d5:8f:7b: 88:d0:1c:70:78:d9:01:a3:45:0f:d6:67:4f:ca:fa:fb:53:52: 98:9f:f3:73:14:8f:cb:da:b2:10:15:60:8c:a9:9f:ce:91:97: 98:38:3c:6f:25:88:05:4b:e8:02:af:c7:da:15:95:0d:26:34: 1d:d0:da:9b:d0:2a:e1:2d:c6:bc:7f:36:54:83:a6:3d:04:a8: e6:5b:8b:e1:dd:fa:dc:10:07:1e:69:f6:0c:97:00:75:ec:27: e5:f0:c6:9d:2a:83:96:74:11:47:af:4a:fb:16:a4:20:ae:48: 5d:c0:5b:a9:14:e9:bf:13:cb:2e:ad:c4:4d:15:02:1f:8c:44: 2f:c7:48:f5:05:76:dc:8e:f4:b0:d5:06:5f:aa:02:d3:42:2b: 33:dc:c4:fe:92:ba:72:f4:c4:94:2f:00:e2:16:9f:4d:bb:03: 77:8d:97:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OTY5QzExMC8GA1UEBRMoNjZBQjRFQjk2MjlEMjZGOTdFMjQ4QThDMzI0NDU4NzNC N0UzQzBGODAeFw0yNTA4MjYxMTA5NThaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YWQ5NjA2LTExODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQCFE1fJ6DloCqQ3kh55+pHJZCauRC1WmRoaWPlq9owqP0coc0v7eFExP4VF4b pSNJR2SNQMj6c9y/Io9EWFEK+bHAatiZiyDiQUD9NKVxjDHLWaNu0JCMbfrtDy+6 ma+uSlt/qxP+ishCSDB75EnlLIDewFD+69+ppsPL55dADtHCeb1X6SeEP6Oe77+e mvPHSj/C9uUkqkh9cMdqFa3vvSXKSW9e5anKBiKKYW1PxUx4EEB9YynDF9+Ev8p6 9ARbuf91lvFaCcjx8iUK+VYjkhXS3TzDj1+Dxjbkmt5gvZqNIbyrS7B+D8J8bkv3 ITw8sVCejDW/eoqIitNc7Qp7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUepCNXEFW W3GKj0MsuH0s1GVsQ6AwHwYDVR0jBBgwFoAUZqtOuWKdJvl+JIqMMkRYc7fjwPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg5NjlDLzlBOEZCNTRFODI2 QzExRjBCOTNBMEU3QkM0RjlBRTAyL1pxdE91V0tkSnZsLUpJcU1Na1JZYzdmandQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWnF0T3VXS2RKdmwtSklxTU1rUlljN2Zqd1BnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTY5Qy85QThGQjU0RTgyNkMxMUYwQjkzQTBFN0JDNEY5QUUwMi8zM0I0MEZCODgy NkQxMUYwOTVBMkUyN0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAHB5LzANBgkqhkiG9w0BAQsFAAOCAQEAQhnPj9T+mMi4Y0Ze lZ2MTU8MOURInd6vMsnD8BZIvAI1dl3/VfQaFa4ET3LR21+jWnR9JgHsyjELg8kM UkQuzP0pcJud0bR8kPL9ewxWjWXt1Hk/8mol1Y97iNAccHjZAaNFD9ZnT8r6+1NS mJ/zcxSPy9qyEBVgjKmfzpGXmDg8byWIBUvoAq/H2hWVDSY0HdDam9Aq4S3GvH82 VIOmPQSo5luL4d363BAHHmn2DJcAdewn5fDGnSqDlnQRR69K+xakIK5IXcBbqRTp vxPLLq3ETRUCH4xEL8dI9QV23I70sNUGX6oC00IrM9zE/pK6cvTElC8A4hafTbsD d42XTA== -----END CERTIFICATE-----Generated at Wed Nov 5 12:28:59 2025 by rpki-client