$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1AB7C58C57E411EEB143C80EC4F9AE02.roa File: 1AB7C58C57E411EEB143C80EC4F9AE02.roa (raw, json) Hash identifier: 0E5ZrcTf7DXMuz4aUd6Z4uT4t0ULuFOlqB89yxtXkyQ= Subject key identifier: 14:F6:80:C6:3D:14:07:2F:5D:66:DB:C7:CC:58:75:16:A9:D7:38:FF Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: 0198 Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1AB7C58C57E411EEB143C80EC4F9AE02.roa Signing time: Thu 23 Oct 2025 05:19:00 +0000 ROA not before: Thu 23 Oct 2025 05:19:00 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 1239 IP address blocks: 43.239.250.0/24 maxlen: 24 114.31.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 408 (0x198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE, serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Oct 23 05:19:00 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f9bac4-f00c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a8:5c:5d:08:3b:ad:ae:38:5a:45:0e:9b:b1: be:1c:e8:2a:08:f0:a3:2f:8c:f3:2f:36:60:6e:f7: 5f:5f:21:16:b2:2a:83:25:a0:41:36:92:2c:e4:41: 35:a0:12:db:e3:1b:6c:70:11:ea:c2:80:16:57:70: 50:ec:80:13:f4:d3:da:8f:bf:4c:57:3a:5e:1d:46: df:44:b9:23:9d:e8:7a:34:ad:a1:9e:a7:c0:f9:bb: 8d:87:a6:f1:4e:7a:d0:33:ee:fd:32:fb:a0:64:ee: 2d:00:7e:6b:7f:46:e3:7a:30:c9:7e:f3:35:90:9c: 57:5c:66:d4:68:73:1c:3f:db:7e:d1:6f:62:61:f4: 4c:ab:f2:f5:98:85:05:64:95:ba:fd:35:35:6e:cc: 99:9b:e8:02:f2:d4:b4:e2:3d:9c:dc:03:15:5e:5d: 42:1b:64:cf:2a:12:06:9e:9e:2e:a6:0d:f2:e8:6d: f0:72:1d:08:9e:c4:d0:be:5f:18:5a:3a:db:df:f6: 43:f0:dc:6e:9e:a8:df:a6:11:d0:89:06:05:5d:ed: 77:14:9e:cc:5d:11:af:5a:37:73:68:ca:c8:eb:2c: f9:61:2d:1c:a8:cc:72:8d:4d:a6:a1:39:0a:d9:2d: 38:96:fb:11:17:1c:3b:ba:48:8a:48:61:5b:8d:ee: b0:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F6:80:C6:3D:14:07:2F:5D:66:DB:C7:CC:58:75:16:A9:D7:38:FF X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1AB7C58C57E411EEB143C80EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 114.31.208.0/22 Signature Algorithm: sha256WithRSAEncryption 86:8f:60:37:a9:18:68:25:3d:43:82:2c:a2:91:bf:de:5b:e6: c7:63:39:b1:f4:09:f0:d5:9d:a3:e8:a0:b9:b0:74:fc:14:e1: 41:25:ab:7a:30:5f:c9:0e:c1:fe:76:aa:5d:31:55:92:75:de: b1:16:d6:ee:26:31:5d:28:e9:2f:25:94:0c:47:e9:98:e8:23: 9b:6b:4b:19:bc:90:c4:34:e0:c2:7e:72:19:2e:60:13:65:25: 7f:e6:59:31:1e:0b:93:7f:64:6c:7e:28:c9:6e:46:a9:50:d4: 89:d3:e4:7c:90:a3:db:89:0d:7f:c0:cd:7f:56:de:ce:f8:34: c9:28:5f:e0:0e:f7:b8:c6:d9:b4:f1:eb:2e:69:4a:f4:d0:18: dc:72:f8:48:6b:1b:20:77:1d:d3:f4:da:ac:01:03:00:d4:8d: b0:f2:a4:68:62:f9:56:a9:5a:27:23:44:dd:61:65:b6:00:e8: 34:d3:da:23:7b:19:8b:27:c8:41:fd:1a:4a:37:c6:f2:2f:9b: 35:47:1b:bd:26:48:18:48:b7:47:7b:0c:4f:f9:c8:54:2a:58: 2f:8c:cf:01:70:92:cf:c5:e8:d6:68:55:fe:4a:e2:78:2f:bc: 73:94:dd:3f:f5:e9:44:3e:89:53:82:8b:44:16:4b:fc:60:7d: 83:b2:09:ec -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAZgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCQ0UxMTAvBgNVBAUTKDMwMDc0MkU0QUQ1NDdBRTQ5REQ4MkM4MkY3RUNFQjA5 NUI5MDJBMjAwHhcNMjUxMDIzMDUxOTAwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5YmFjNC1mMDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6hcXQg7ra44WkUOm7G+HOgqCPCjL4zzLzZgbvdfXyEWsiqDJaBBNpIs5EE1 oBLb4xtscBHqwoAWV3BQ7IAT9NPaj79MVzpeHUbfRLkjneh6NK2hnqfA+buNh6bx TnrQM+79MvugZO4tAH5rf0bjejDJfvM1kJxXXGbUaHMcP9t+0W9iYfRMq/L1mIUF ZJW6/TU1bsyZm+gC8tS04j2c3AMVXl1CG2TPKhIGnp4upg3y6G3wch0InsTQvl8Y Wjrb3/ZD8NxunqjfphHQiQYFXe13FJ7MXRGvWjdzaMrI6yz5YS0cqMxyjU2moTkK 2S04lvsRFxw7ukiKSGFbje6wEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBT2gMY9 FAcvXWbbx8xYdRap1zj/MB8GA1UdIwQYMBaAFDAHQuStVHrkndgsgvfs6wlbkCog MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJDRS85MDA5OUM0MDU3 REQxMUVFQkFGRkU0MkRDNEY5QUUwMi9NQWRDNUsxVWV1U2QyQ3lDOS16ckNWdVFL aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCQ0UvOTAwOTlDNDA1N0REMTFFRUJBRkZFNDJEQzRGOUFFMDIvMUFCN0M1OEM1 N0U0MTFFRUIxNDNDODBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr7/oDBAJyH9AwDQYJKoZIhvcNAQELBQADggEBAIaPYDep GGglPUOCLKKRv95b5sdjObH0CfDVnaPooLmwdPwU4UElq3owX8kOwf52ql0xVZJ1 3rEW1u4mMV0o6S8llAxH6ZjoI5trSxm8kMQ04MJ+chkuYBNlJX/mWTEeC5N/ZGx+ KMluRqlQ1InT5HyQo9uJDX/AzX9W3s74NMkoX+AO97jG2bTx6y5pSvTQGNxy+Ehr GyB3HdP02qwBAwDUjbDypGhi+VapWicjRN1hZbYA6DTT2iN7GYsnyEH9Gko3xvIv mzVHG70mSBhIt0d7DE/5yFQqWC+MzwFwks/F6NZoVf5K4ngvvHOU3T/16UQ+iVOC i0QWS/xgfYOyCew= -----END CERTIFICATE-----Generated at Tue Nov 4 17:00:00 2025 by rpki-client