$ rpki-client -vvf rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/1E121F0E4E3111EFB88CF076C4F9AE02.roa File: 1E121F0E4E3111EFB88CF076C4F9AE02.roa (raw, json) Hash identifier: Bn478uLMn4OakQqoDBH/lvI3JDH9R/ce+WPtlw3F7PM= Subject key identifier: 8E:10:24:DF:FA:09:67:34:BF:60:42:8C:39:3C:AF:7D:31:1E:C4:C1 Certificate issuer: /CN=A911678C/serialNumber=93879B00E4B7FBC01260707B76D5D120F45B535B Certificate serial: 01AD Authority key identifier: 93:87:9B:00:E4:B7:FB:C0:12:60:70:7B:76:D5:D1:20:F4:5B:53:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k4ebAOS3-8ASYHB7dtXRIPRbU1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/1E121F0E4E3111EFB88CF076C4F9AE02.roa Signing time: Thu 23 Oct 2025 05:18:49 +0000 ROA not before: Thu 23 Oct 2025 05:18:49 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 152112 IP address blocks: 2401:3620:2300::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/k4ebAOS3-8ASYHB7dtXRIPRbU1s.crl rsync://rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/k4ebAOS3-8ASYHB7dtXRIPRbU1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k4ebAOS3-8ASYHB7dtXRIPRbU1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:35:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911678C, serialNumber=93879B00E4B7FBC01260707B76D5D120F45B535B Validity Not Before: Oct 23 05:18:49 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f9bab9-8f4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0e:75:f8:a6:d6:d0:0d:e8:81:b2:9e:cc:25: 8a:b8:98:5d:6e:c7:24:61:b4:83:2b:38:90:59:31: 55:2f:d3:6f:50:16:7a:da:50:09:c1:22:94:d1:79: eb:75:a5:79:7d:5d:23:41:be:54:a8:9c:ee:91:dc: 31:c3:f3:f8:32:5f:44:0d:93:13:26:58:e4:c9:ba: 16:a3:8a:2d:9c:1e:b8:e0:ba:22:17:8c:72:c7:68: dd:27:02:d7:60:53:31:eb:61:fc:29:83:bb:e3:73: 77:7a:aa:00:6a:6d:48:82:46:08:b0:bc:10:90:d2: f3:6f:76:a8:8c:c1:fb:56:6c:79:28:05:a6:c3:51: b5:79:c2:45:09:0d:12:aa:1a:eb:26:91:1c:3e:90: 14:d3:e4:92:0b:ca:a0:5d:d7:98:e9:d4:07:1a:73: cb:b2:3a:57:ef:6b:e6:e9:c3:af:88:b9:34:97:b8: 25:e6:f7:0a:78:6e:ca:67:32:28:7d:84:10:02:fe: 62:fd:2d:f9:4e:8a:16:ea:b4:4d:eb:f6:be:44:62: 6e:ce:96:84:a2:f5:b8:f6:64:c0:b7:5d:ec:a3:47: 61:26:40:d1:82:07:2d:f6:c5:e4:f2:2e:1d:a0:ce: 3d:57:ab:09:e2:fd:0f:47:25:f0:81:41:bf:dc:05: 01:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:10:24:DF:FA:09:67:34:BF:60:42:8C:39:3C:AF:7D:31:1E:C4:C1 X509v3 Authority Key Identifier: keyid:93:87:9B:00:E4:B7:FB:C0:12:60:70:7B:76:D5:D1:20:F4:5B:53:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/k4ebAOS3-8ASYHB7dtXRIPRbU1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k4ebAOS3-8ASYHB7dtXRIPRbU1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911678C/282315D0520011EEAA866B69C4F9AE02/1E121F0E4E3111EFB88CF076C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:3620:2300::/44 Signature Algorithm: sha256WithRSAEncryption 51:8a:f3:5a:3b:af:b7:ee:1b:db:97:09:96:18:db:34:99:87: b5:60:7c:d2:88:3a:15:ee:bd:9f:c2:75:2c:6f:4b:dd:89:c6: 2e:8c:4d:4c:4a:05:0c:b0:05:4a:15:2f:ac:43:c7:18:b1:3d: f0:c3:c4:9b:45:e6:ac:5c:73:62:66:7a:90:6b:de:53:45:78: a3:d7:69:52:4c:b6:2a:49:c4:42:97:43:93:91:de:1e:67:e1: 56:37:b3:f8:ac:91:af:c5:55:a0:0b:c2:ca:0d:9a:0c:0d:ad: 5d:5c:0a:30:40:95:8f:b8:62:03:be:3e:b9:cf:8f:40:d5:5d: 37:fc:0e:71:62:e4:84:60:9b:3e:ca:a8:59:2a:32:99:6b:f0: c4:9b:0a:d7:de:67:a6:55:69:63:0e:cd:15:c2:8b:31:0a:7c: 23:81:ba:26:67:a9:52:e1:6b:b0:d2:ca:69:d9:5d:2d:84:73: 2b:1f:46:07:62:da:60:ee:23:45:b9:6c:13:f9:05:5d:4d:15: 0c:d2:0a:37:b0:de:a3:22:52:08:a5:5e:b7:11:a2:41:48:f1: 8f:27:2d:e9:66:8d:db:41:9c:50:5f:46:25:e2:cd:3e:5c:e5: 0a:f0:08:94:97:14:50:a1:49:92:75:c7:85:03:8d:cc:d3:17: 09:48:be:eb -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY3OEMxMTAvBgNVBAUTKDkzODc5QjAwRTRCN0ZCQzAxMjYwNzA3Qjc2RDVEMTIw RjQ1QjUzNUIwHhcNMjUxMDIzMDUxODQ5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5YmFiOS04ZjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQ51+KbW0A3ogbKezCWKuJhdbsckYbSDKziQWTFVL9NvUBZ62lAJwSKU0Xnr daV5fV0jQb5UqJzukdwxw/P4Ml9EDZMTJljkyboWo4otnB644LoiF4xyx2jdJwLX YFMx62H8KYO743N3eqoAam1IgkYIsLwQkNLzb3aojMH7Vmx5KAWmw1G1ecJFCQ0S qhrrJpEcPpAU0+SSC8qgXdeY6dQHGnPLsjpX72vm6cOviLk0l7gl5vcKeG7KZzIo fYQQAv5i/S35TooW6rRN6/a+RGJuzpaEovW49mTAt13so0dhJkDRggct9sXk8i4d oM49V6sJ4v0PRyXwgUG/3AUBbwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFI4QJN/6 CWc0v2BCjDk8r30xHsTBMB8GA1UdIwQYMBaAFJOHmwDkt/vAEmBwe3bV0SD0W1Nb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjc4Qy8yODIzMTVEMDUy MDAxMUVFQUE4NjZCNjlDNEY5QUUwMi9rNGViQU9TMy04QVNZSEI3ZHRYUklQUmJV MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s0ZWJBT1MzLThBU1lIQjdkdFhSSVBSYlUxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY3OEMvMjgyMzE1RDA1MjAwMTFFRUFBODY2QjY5QzRGOUFFMDIvMUUxMjFGMEU0 RTMxMTFFRkI4OENGMDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkATYgIwAwDQYJKoZIhvcNAQELBQADggEBAFGK81o7r7fu G9uXCZYY2zSZh7VgfNKIOhXuvZ/CdSxvS92Jxi6MTUxKBQywBUoVL6xDxxixPfDD xJtF5qxcc2JmepBr3lNFeKPXaVJMtipJxEKXQ5OR3h5n4VY3s/iska/FVaALwsoN mgwNrV1cCjBAlY+4YgO+PrnPj0DVXTf8DnFi5IRgmz7KqFkqMplr8MSbCtfeZ6ZV aWMOzRXCizEKfCOBuiZnqVLha7DSymnZXS2EcysfRgdi2mDuI0W5bBP5BV1NFQzS Cjew3qMiUgilXrcRokFI8Y8nLelmjdtBnFBfRiXizT5c5QrwCJSXFFChSZJ1x4UD jczTFwlIvus= -----END CERTIFICATE-----Generated at Wed Nov 5 12:24:39 2025 by rpki-client