$ rpki-client -vvf rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/A9D92784B0CA11E59BE6876FC4F9AE02.roa File: A9D92784B0CA11E59BE6876FC4F9AE02.roa (raw, json) Hash identifier: IhLv/pNjKD3PinOrK86Sl1K1DLr48lFEyVWbMF9DO7E= Subject key identifier: 64:2D:64:E7:0C:07:64:C2:8A:F2:50:2A:D9:3A:4F:C0:9F:2C:E2:46 Certificate issuer: /CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Certificate serial: 3569 Authority key identifier: 96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/A9D92784B0CA11E59BE6876FC4F9AE02.roa Signing time: Fri 24 Oct 2025 14:30:27 +0000 ROA not before: Fri 24 Oct 2025 14:30:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55531 IP address blocks: 118.179.150.0/24 maxlen: 24 118.179.217.0/24 maxlen: 24 118.179.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:26:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13673 (0x3569) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EFDE, serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Validity Not Before: Oct 24 14:30:27 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68fb8d83-4ede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:33:ed:d2:6d:13:77:22:88:57:d1:88:f1:90: 7a:33:81:ef:5f:13:9d:5f:1f:c4:22:99:f7:b7:f8: a1:da:90:6e:cc:86:a1:3d:8e:b9:ab:dc:eb:f5:14: 01:e9:08:06:fa:0f:98:e8:6e:4f:77:e8:4b:a5:a2: cf:b1:e3:bc:02:a4:f8:68:35:54:17:88:af:ae:65: 04:61:3a:05:44:56:86:46:4b:b5:9b:c4:7e:b8:db: ba:45:1c:4e:44:bb:a3:f1:67:74:1f:58:4a:24:86: ba:02:7d:d1:71:3e:c2:fc:0b:39:5e:5f:5a:df:9b: ac:6a:a6:bc:e4:57:80:bc:a4:13:53:66:9c:34:4d: 23:ad:a2:ca:af:90:46:9e:7d:ca:3a:f9:cd:35:48: a1:d0:5c:6a:2b:ff:6a:8e:0c:27:01:6d:97:54:93: 2f:39:15:c3:ec:b6:e8:28:48:a6:41:76:ef:76:21: ad:bb:59:f3:bd:41:1f:f7:21:5a:ad:c6:23:a7:67: 23:16:ad:bc:92:24:13:ff:02:ce:a3:b2:71:eb:df: 52:f0:49:c7:0e:66:45:cc:62:df:60:25:28:41:e7: 26:a8:e0:d2:d3:46:95:06:c0:4d:ec:ef:51:03:e1: 84:5a:2b:97:d0:36:05:75:ae:48:4a:97:fe:37:d9: 78:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:2D:64:E7:0C:07:64:C2:8A:F2:50:2A:D9:3A:4F:C0:9F:2C:E2:46 X509v3 Authority Key Identifier: keyid:96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/A9D92784B0CA11E59BE6876FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.179.150.0/24 118.179.217.0-118.179.218.255 Signature Algorithm: sha256WithRSAEncryption c2:a4:97:be:a1:d8:c6:3a:62:de:f6:85:3c:17:3a:f6:f4:3d: 7d:c5:96:84:f6:ea:91:fa:0e:22:32:43:a0:94:00:d4:19:18: 40:2a:b1:31:75:af:91:03:71:04:6a:90:4d:76:69:54:9d:a4: 75:91:dc:70:70:ca:a3:c0:67:65:78:7c:96:32:0e:a9:0e:4e: d5:7a:82:7f:1d:1c:d3:e5:58:ac:a1:40:6f:b4:2e:29:df:d0: 87:d5:e1:cc:a5:44:80:8c:07:f3:6d:37:32:90:93:b6:e9:3e: f4:44:b1:3b:29:9f:1f:20:0f:6c:cd:b4:7b:aa:53:40:c8:20: 53:3f:65:3e:aa:e2:af:91:f3:0c:2a:ec:21:d1:ee:42:08:64: 8b:ba:3a:06:36:e1:fa:2f:f2:97:68:02:07:a3:45:01:ec:93: 3e:4f:c8:b0:42:2e:90:4c:5b:7f:98:ff:67:59:d8:76:1c:cb: 80:50:fd:a8:ec:d8:bc:1e:99:c6:9c:1b:92:07:da:ee:b5:7d: b2:65:0f:93:10:94:3f:16:77:de:a3:35:a1:b4:ac:72:2e:de: 51:fc:84:65:be:04:45:0b:fa:28:ff:71:5b:2b:8c:a3:33:18: 37:e5:59:e1:86:c2:14:e9:2d:92:6b:56:cb:25:a6:57:dc:0a: 78:42:a9:0f -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGREUxMTAvBgNVBAUTKDk2NjlDRDVCM0Q4NzM1ODE1QTY1RDY1OUYyNzQxQjQz RTY0NzMyQjIwHhcNMjUxMDI0MTQzMDI3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZiOGQ4My00ZWRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zPt0m0TdyKIV9GI8ZB6M4HvXxOdXx/EIpn3t/ih2pBuzIahPY65q9zr9RQB 6QgG+g+Y6G5Pd+hLpaLPseO8AqT4aDVUF4ivrmUEYToFRFaGRku1m8R+uNu6RRxO RLuj8Wd0H1hKJIa6An3RcT7C/As5Xl9a35usaqa85FeAvKQTU2acNE0jraLKr5BG nn3KOvnNNUih0FxqK/9qjgwnAW2XVJMvORXD7LboKEimQXbvdiGtu1nzvUEf9yFa rcYjp2cjFq28kiQT/wLOo7Jx699S8EnHDmZFzGLfYCUoQecmqODS00aVBsBN7O9R A+GEWiuX0DYFda5ISpf+N9l4tQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFGQtZOcM B2TCivJQKtk6T8CfLOJGMB8GA1UdIwQYMBaAFJZpzVs9hzWBWmXWWfJ0G0PmRzKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUZERS9DQzQ1RUNBODFE ODQxMUUyOTU2RDAzREIwOEIwMkNEMi9sbW5OV3oySE5ZRmFaZFpaOG5RYlEtWkhN ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xtbk5XejJITllGYVpkWlo4blFiUS1aSE1ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGREUvQ0M0NUVDQTgxRDg0MTFFMjk1NkQwM0RCMDhCMDJDRDIvQTlEOTI3ODRC MENBMTFFNTlCRTY4NzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAB2s5YwDAMEAHaz2QMEAHaz2jANBgkqhkiG9w0BAQsFAAOC AQEAwqSXvqHYxjpi3vaFPBc69vQ9fcWWhPbqkfoOIjJDoJQA1BkYQCqxMXWvkQNx BGqQTXZpVJ2kdZHccHDKo8BnZXh8ljIOqQ5O1XqCfx0c0+VYrKFAb7QuKd/Qh9Xh zKVEgIwH8203MpCTtuk+9ESxOymfHyAPbM20e6pTQMggUz9lPqrir5HzDCrsIdHu Qghki7o6Bjbh+i/yl2gCB6NFAeyTPk/IsEIukExbf5j/Z1nYdhzLgFD9qOzYvB6Z xpwbkgfa7rV9smUPkxCUPxZ33qM1obSsci7eUfyEZb4ERQv6KP9xWyuMozMYN+VZ 4YbCFOktkmtWyyWmV9wKeEKpDw== -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:39 2025 by rpki-client