$ rpki-client -vvf rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/1A7891D4FA3011E9BF5A291EC4F9AE02.roa File: 1A7891D4FA3011E9BF5A291EC4F9AE02.roa (raw, json) Hash identifier: JORxewwx6epIIvoPj1HNMB15dSN3/on46q8DR6+zkdE= Subject key identifier: 6A:4E:DA:6A:EF:00:8F:9A:3F:04:B6:24:78:07:64:99:F3:81:6A:1A Certificate issuer: /CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Certificate serial: 3565 Authority key identifier: 96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/1A7891D4FA3011E9BF5A291EC4F9AE02.roa Signing time: Fri 24 Oct 2025 14:30:23 +0000 ROA not before: Fri 24 Oct 2025 14:30:23 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 132846 IP address blocks: 118.179.144.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13669 (0x3565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EFDE, serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Validity Not Before: Oct 24 14:30:23 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68fb8d7f-638f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bf:38:46:49:0f:ab:8a:e1:10:4e:49:8f:3c: fb:42:34:e0:f8:55:f5:24:dc:64:57:bb:04:eb:29: c3:5e:ed:50:6c:cd:1d:82:87:61:89:c1:b4:d6:eb: 45:b8:1e:8b:5b:d7:45:e8:ca:62:5b:af:e2:b7:8c: b3:81:a7:e1:a4:d4:c5:7a:a7:5c:c5:40:5c:52:7a: 7c:28:60:11:ed:90:1b:77:7e:00:ab:60:1c:86:9c: 03:80:b1:dc:f9:2e:1a:4f:36:6f:4d:e0:33:a3:89: 31:53:77:65:12:12:c9:90:7e:11:d0:ad:af:32:83: 71:02:db:cf:e7:95:3b:ee:b4:8c:f2:d2:7f:a5:51: c9:4a:a5:ca:ad:92:18:ad:3b:78:b6:85:f2:46:fe: 1e:99:22:f6:6d:7f:d4:0f:81:06:c4:16:81:ec:24: ec:8f:b0:d8:bd:c3:36:db:90:36:3a:af:21:51:d0: bf:74:29:b6:e8:94:33:5c:5b:a0:82:33:9f:af:fd: 86:69:74:f2:3c:92:45:5f:c4:ec:5d:e4:1f:36:4f: f9:8d:36:da:3b:af:9e:60:75:64:c2:d3:6e:8b:60: 3d:63:30:67:ca:d9:f5:80:c8:4e:5e:f2:d1:1f:8d: 93:95:b0:6e:ef:c4:0d:8d:4d:47:62:6c:38:94:d1: 96:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:4E:DA:6A:EF:00:8F:9A:3F:04:B6:24:78:07:64:99:F3:81:6A:1A X509v3 Authority Key Identifier: keyid:96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/1A7891D4FA3011E9BF5A291EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.179.144.0/23 Signature Algorithm: sha256WithRSAEncryption 87:1e:6e:4d:25:07:6c:dc:f4:5f:9f:d5:fc:2e:b2:8a:99:7f: 43:ff:df:26:5b:9a:61:98:cd:ad:7d:5d:59:77:c3:c9:9e:f3: 82:e6:84:e7:ea:86:cd:ba:97:c9:11:5f:76:2e:30:3f:8c:65: fa:e4:f1:74:e1:ec:47:a9:3e:a8:46:b7:59:59:b6:31:18:e3: 5f:c7:99:fb:eb:49:ba:b2:c7:48:d8:9f:81:7f:88:56:fc:7d: d1:27:12:a6:73:23:a6:0c:c2:76:a3:ca:44:cb:4f:10:8f:bf: 82:4d:b9:f6:0a:7d:96:e8:b6:68:05:73:a5:63:06:06:f7:91: bf:9f:06:7c:8e:ba:21:33:d4:e6:8a:33:91:24:4e:a7:82:a2: b4:11:dd:04:bd:1b:f4:25:b0:77:d9:7b:2b:7f:68:51:9b:1a: 17:a6:d5:88:6a:f2:c3:48:19:bd:00:cf:d8:55:ac:8d:ae:a5: 7a:14:27:b8:74:ea:83:65:a9:b9:53:be:24:fe:a4:eb:1e:cf: e8:7f:a7:59:b6:ef:9d:0d:75:48:94:2b:da:79:e2:17:e2:41: 06:11:9b:a8:fd:c2:fb:02:d1:26:02:79:fb:33:3e:1c:f3:0c: 8e:79:ff:8b:ff:10:ed:e5:3b:aa:16:d9:ba:e7:e8:3b:97:b3: fe:d6:32:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGREUxMTAvBgNVBAUTKDk2NjlDRDVCM0Q4NzM1ODE1QTY1RDY1OUYyNzQxQjQz RTY0NzMyQjIwHhcNMjUxMDI0MTQzMDIzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZiOGQ3Zi02MzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsr84RkkPq4rhEE5Jjzz7QjTg+FX1JNxkV7sE6ynDXu1QbM0dgodhicG01utF uB6LW9dF6MpiW6/it4yzgafhpNTFeqdcxUBcUnp8KGAR7ZAbd34Aq2AchpwDgLHc +S4aTzZvTeAzo4kxU3dlEhLJkH4R0K2vMoNxAtvP55U77rSM8tJ/pVHJSqXKrZIY rTt4toXyRv4emSL2bX/UD4EGxBaB7CTsj7DYvcM225A2Oq8hUdC/dCm26JQzXFug gjOfr/2GaXTyPJJFX8TsXeQfNk/5jTbaO6+eYHVkwtNui2A9YzBnytn1gMhOXvLR H42TlbBu78QNjU1HYmw4lNGWhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGpO2mrv AI+aPwS2JHgHZJnzgWoaMB8GA1UdIwQYMBaAFJZpzVs9hzWBWmXWWfJ0G0PmRzKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUZERS9DQzQ1RUNBODFE ODQxMUUyOTU2RDAzREIwOEIwMkNEMi9sbW5OV3oySE5ZRmFaZFpaOG5RYlEtWkhN ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xtbk5XejJITllGYVpkWlo4blFiUS1aSE1ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGREUvQ0M0NUVDQTgxRDg0MTFFMjk1NkQwM0RCMDhCMDJDRDIvMUE3ODkxRDRG QTMwMTFFOUJGNUEyOTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF2s5AwDQYJKoZIhvcNAQELBQADggEBAIcebk0lB2zc9F+f 1fwusoqZf0P/3yZbmmGYza19XVl3w8me84LmhOfqhs26l8kRX3YuMD+MZfrk8XTh 7EepPqhGt1lZtjEY41/HmfvrSbqyx0jYn4F/iFb8fdEnEqZzI6YMwnajykTLTxCP v4JNufYKfZbotmgFc6VjBgb3kb+fBnyOuiEz1OaKM5EkTqeCorQR3QS9G/QlsHfZ eyt/aFGbGhem1Yhq8sNIGb0Az9hVrI2upXoUJ7h06oNlqblTviT+pOsez+h/p1m2 750NdUiUK9p54hfiQQYRm6j9wvsC0SYCefszPhzzDI55/4v/EO3lO6oW2brn6DuX s/7WMgQ= -----END CERTIFICATE-----Generated at Wed Nov 5 10:27:57 2025 by rpki-client