$ rpki-client -vvf rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/284E9E9E1D5611EB891ADC6CC4F9AE02.roa File: 284E9E9E1D5611EB891ADC6CC4F9AE02.roa (raw, json) Hash identifier: NCqMqwIpI4KCw7V6V+LHlzb+BzZa7gOeav4mNQAltOI= Subject key identifier: C4:82:24:C4:FF:05:3E:CC:FA:95:02:89:93:AF:41:F1:F8:D3:D9:23 Certificate issuer: /CN=A9119DCB/serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Certificate serial: 07A9 Authority key identifier: 17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/284E9E9E1D5611EB891ADC6CC4F9AE02.roa Signing time: Fri 06 Jun 2025 21:40:59 +0000 ROA not before: Fri 06 Jun 2025 21:40:59 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 10228 IP address blocks: 202.43.216.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1961 (0x7a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119DCB, serialNumber=1723DCB41A04268A587AACE8CFD9DAE5F9F51DF7 Validity Not Before: Jun 6 21:40:59 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6843606b-53bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:04:b7:58:0c:f9:5b:79:77:dc:f7:cc:7e:7e: 89:11:93:92:9e:76:e6:14:cb:e4:f8:61:4e:01:7b: 97:74:3f:6f:28:46:e1:ae:b1:a7:d6:ac:05:6a:56: 71:71:bd:8f:31:85:7a:96:ed:92:1b:0c:5e:ed:6b: 12:a1:50:7c:2e:b2:89:00:f9:e9:0c:67:93:c7:2e: 81:6e:46:65:67:4f:20:d4:18:41:8b:c5:c6:50:cd: 48:8c:63:90:46:4d:f9:5c:6f:fb:60:76:e1:61:42: 7d:9b:c2:40:fe:cd:1b:9a:7c:00:01:fe:d7:9c:d1: 8b:95:c1:f2:05:01:99:cc:a5:cb:4c:89:f2:42:64: 9c:c0:93:87:e5:0b:53:1a:13:9f:4c:4e:91:67:30: 52:2e:54:48:42:d8:77:32:28:46:44:0d:d1:1c:e4: 8c:54:1d:64:f6:4d:61:7e:48:4c:00:7c:eb:8c:6c: 55:fc:04:82:c7:49:b7:e2:bb:95:72:8f:f7:24:9a: 4e:e2:35:fd:03:a7:a3:35:b6:d1:bc:77:ce:e6:4a: d3:58:94:7b:ba:d7:23:63:4f:51:38:04:7c:ad:0d: 81:68:69:74:8d:e9:96:c1:5e:ec:c4:b3:5d:c9:eb: 03:be:26:89:cc:55:11:39:99:7c:ff:15:7f:3c:72: 23:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:82:24:C4:FF:05:3E:CC:FA:95:02:89:93:AF:41:F1:F8:D3:D9:23 X509v3 Authority Key Identifier: keyid:17:23:DC:B4:1A:04:26:8A:58:7A:AC:E8:CF:D9:DA:E5:F9:F5:1D:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/FyPctBoEJopYeqzoz9na5fn1Hfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FyPctBoEJopYeqzoz9na5fn1Hfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119DCB/E4C0F56C187F11EBAE29692EC4F9AE02/284E9E9E1D5611EB891ADC6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.216.0/23 Signature Algorithm: sha256WithRSAEncryption b2:cc:cf:12:05:92:00:94:b8:51:73:b4:0b:7e:9e:94:92:1a: d2:43:97:2a:83:5c:5c:59:de:68:58:b2:b3:52:f7:a9:95:d4: 87:6b:5f:39:bc:c4:6d:fa:5c:9d:21:5f:1c:46:a4:c7:e6:12: 21:12:e6:4e:85:8b:b0:b1:98:47:ca:b2:8c:a0:45:30:3f:30: 3d:8b:c0:c4:29:98:8c:5a:17:eb:9e:71:96:cf:d4:95:8d:cb: 54:d2:f9:2a:57:ab:3e:c7:d2:13:b0:5e:3d:29:ed:e6:5f:16: de:d7:e5:6d:28:0e:14:61:b0:10:ef:cc:90:37:b3:de:c4:6e: 6a:5e:41:ae:62:38:4d:ab:49:aa:f5:d4:22:ba:7e:1e:9c:0a: 59:41:a8:b0:cd:1e:c1:66:00:69:4d:6b:81:a8:ad:0c:6c:98: 3e:2c:0e:1f:6a:70:7d:32:ff:fc:3e:7a:c4:7a:0f:19:95:3e: e1:73:ee:c1:f6:f3:6f:ca:b3:dc:a5:db:36:ce:df:94:1b:02: 0a:67:e0:e5:32:5b:18:11:c2:78:f6:40:e8:df:19:40:38:40: 1f:c6:97:99:29:00:50:c5:f2:26:6b:0b:4f:a3:45:b1:29:03: 18:db:15:5c:6c:79:7e:be:95:dc:1a:04:72:00:93:28:ef:6b: 32:7e:b1:9a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB6kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlEQ0IxMTAvBgNVBAUTKDE3MjNEQ0I0MUEwNDI2OEE1ODdBQUNFOENGRDlEQUU1 RjlGNTFERjcwHhcNMjUwNjA2MjE0MDU5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzNjA2Yi01M2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArAS3WAz5W3l33PfMfn6JEZOSnnbmFMvk+GFOAXuXdD9vKEbhrrGn1qwFalZx cb2PMYV6lu2SGwxe7WsSoVB8LrKJAPnpDGeTxy6BbkZlZ08g1BhBi8XGUM1IjGOQ Rk35XG/7YHbhYUJ9m8JA/s0bmnwAAf7XnNGLlcHyBQGZzKXLTInyQmScwJOH5QtT GhOfTE6RZzBSLlRIQth3MihGRA3RHOSMVB1k9k1hfkhMAHzrjGxV/ASCx0m34ruV co/3JJpO4jX9A6ejNbbRvHfO5krTWJR7utcjY09ROAR8rQ2BaGl0jemWwV7sxLNd yesDviaJzFUROZl8/xV/PHIj8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMSCJMT/ BT7M+pUCiZOvQfH409kjMB8GA1UdIwQYMBaAFBcj3LQaBCaKWHqs6M/Z2uX59R33 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOURDQi9FNEMwRjU2QzE4 N0YxMUVCQUUyOTY5MkVDNEY5QUUwMi9GeVBjdEJvRUpvcFllcXpvejluYTVmbjFI ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z5UGN0Qm9FSm9wWWVxem96OW5hNWZuMUhmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlEQ0IvRTRDMEY1NkMxODdGMTFFQkFFMjk2OTJFQzRGOUFFMDIvMjg0RTlFOUUx RDU2MTFFQjg5MUFEQzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKK9gwDQYJKoZIhvcNAQELBQADggEBALLMzxIFkgCUuFFz tAt+npSSGtJDlyqDXFxZ3mhYsrNS96mV1IdrXzm8xG36XJ0hXxxGpMfmEiES5k6F i7CxmEfKsoygRTA/MD2LwMQpmIxaF+uecZbP1JWNy1TS+SpXqz7H0hOwXj0p7eZf Ft7X5W0oDhRhsBDvzJA3s97EbmpeQa5iOE2rSar11CK6fh6cCllBqLDNHsFmAGlN a4GorQxsmD4sDh9qcH0y//w+esR6DxmVPuFz7sH282/Ks9yl2zbO35QbAgpn4OUy WxgRwnj2QOjfGUA4QB/Gl5kpAFDF8iZrC0+jRbEpAxjbFVxseX6+ldwaBHIAkyjv azJ+sZo= -----END CERTIFICATE-----Generated at Wed Nov 5 04:26:06 2025 by rpki-client