$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa File: 5EF938889E9E11EE80C94682C4F9AE02.roa (raw, json) Hash identifier: OT5YWlqkItHLi5bPmLASPXyr8A+gmfi7s/RtTm3IX1Y= Subject key identifier: 31:EF:B1:91:57:0C:94:B2:6C:01:7D:67:79:E8:E0:17:13:95:DE:4F Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: 019C Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa Signing time: Thu 23 Oct 2025 05:19:04 +0000 ROA not before: Thu 23 Oct 2025 05:19:04 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 5650 IP address blocks: 43.239.250.0/24 maxlen: 24 114.31.208.0/22 maxlen: 22 2404:3600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE, serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Oct 23 05:19:04 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f9bac7-19ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d8:a8:91:46:5b:e7:f3:48:cf:b9:eb:84:ef: 71:7f:5a:ca:24:cf:86:de:96:cf:ca:f7:eb:b3:63: ae:c5:90:dc:a6:99:93:d4:9f:d3:8f:ac:2a:f6:be: 76:48:da:b9:da:61:45:3c:99:21:2d:a4:d9:06:15: da:e1:67:4d:7c:59:51:51:ea:74:ab:97:a7:0f:43: d3:26:27:e3:ca:5b:0c:90:dd:28:fc:31:a0:3f:77: 6e:65:9f:f9:6e:ab:92:3f:77:f7:f0:79:e9:62:9a: 23:ce:b8:bd:3d:50:af:95:65:35:5d:87:29:65:89: 5f:7a:81:e6:cb:c1:d5:83:ac:b7:b2:36:67:b8:88: 2b:28:2c:07:c6:b3:07:e6:ff:52:b9:f9:ff:43:2f: 17:61:05:b4:1f:2a:64:47:42:11:b1:e6:d3:19:c8: 52:ee:84:08:8a:0b:dd:56:4f:29:9c:1d:77:8e:36: 5b:fe:1e:a0:0c:92:39:a5:c2:16:e3:81:4f:5a:9e: 21:76:a0:5e:fd:d0:0c:2c:8b:33:00:f4:26:e3:05: 3a:83:ba:40:06:b8:6a:14:fc:14:cd:45:a9:4e:5f: 36:c7:b9:29:68:0f:04:0f:aa:78:00:65:0c:20:83: 73:b8:3b:b5:0e:1c:47:7a:56:d0:e1:5d:08:c3:3d: 8b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:EF:B1:91:57:0C:94:B2:6C:01:7D:67:79:E8:E0:17:13:95:DE:4F X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 114.31.208.0/22 IPv6: 2404:3600::/32 Signature Algorithm: sha256WithRSAEncryption 6f:18:90:09:4c:b6:43:d9:92:4c:93:b9:59:f5:c8:0b:ba:18: df:67:ba:33:57:7b:d8:46:ed:15:78:70:0a:7e:23:dc:d0:24: 00:95:24:f3:db:8f:04:43:51:d0:13:29:ac:61:8e:28:cb:0d: 20:3c:e3:d4:1c:a3:72:68:53:04:12:8c:35:01:67:cd:41:e2: 21:d6:69:e6:93:b8:bd:76:0e:29:d9:c2:e5:a3:09:cf:f9:31: ec:09:07:5d:cb:44:9f:ce:fc:36:f6:a7:82:1d:e8:45:bb:48: ba:b3:bc:3f:2f:1f:f0:4a:9a:a3:15:ed:08:98:da:ca:7f:f6: 02:ea:c8:3f:ff:3f:8f:fc:1c:bd:da:ad:fe:e8:d8:59:13:f3: f0:ca:b9:21:ce:81:a5:45:8a:23:bc:14:d9:95:8c:7e:b2:de: d3:2e:9f:23:90:e6:0a:0d:99:e2:aa:6a:03:82:9d:3d:54:2c: f2:ac:a0:ea:e4:57:5f:13:ff:de:09:78:97:2c:4f:68:78:e1: 1d:2b:69:8c:0a:15:03:8f:50:e7:3c:d0:44:9b:8c:5e:ee:fd: 39:dc:f3:f4:4c:1a:d9:02:f6:5e:ae:a4:30:ec:6b:f5:53:7b: f1:2d:d1:ce:93:89:d0:d7:a9:0c:15:f8:e0:d4:ca:e8:e9:32: 97:93:94:87 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCQ0UxMTAvBgNVBAUTKDMwMDc0MkU0QUQ1NDdBRTQ5REQ4MkM4MkY3RUNFQjA5 NUI5MDJBMjAwHhcNMjUxMDIzMDUxOTA0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5YmFjNy0xOWFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1diokUZb5/NIz7nrhO9xf1rKJM+G3pbPyvfrs2OuxZDcppmT1J/Tj6wq9r52 SNq52mFFPJkhLaTZBhXa4WdNfFlRUep0q5enD0PTJifjylsMkN0o/DGgP3duZZ/5 bquSP3f38HnpYpojzri9PVCvlWU1XYcpZYlfeoHmy8HVg6y3sjZnuIgrKCwHxrMH 5v9Sufn/Qy8XYQW0HypkR0IRsebTGchS7oQIigvdVk8pnB13jjZb/h6gDJI5pcIW 44FPWp4hdqBe/dAMLIszAPQm4wU6g7pABrhqFPwUzUWpTl82x7kpaA8ED6p4AGUM IINzuDu1DhxHelbQ4V0Iwz2LiwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDHvsZFX DJSybAF9Z3no4BcTld5PMB8GA1UdIwQYMBaAFDAHQuStVHrkndgsgvfs6wlbkCog MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJDRS85MDA5OUM0MDU3 REQxMUVFQkFGRkU0MkRDNEY5QUUwMi9NQWRDNUsxVWV1U2QyQ3lDOS16ckNWdVFL aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCQ0UvOTAwOTlDNDA1N0REMTFFRUJBRkZFNDJEQzRGOUFFMDIvNUVGOTM4ODg5 RTlFMTFFRTgwQzk0NjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAAr7/oDBAJyH9AwDQQCAAIwBwMFACQENgAwDQYJKoZIhvcN AQELBQADggEBAG8YkAlMtkPZkkyTuVn1yAu6GN9nujNXe9hG7RV4cAp+I9zQJACV JPPbjwRDUdATKaxhjijLDSA849Qco3JoUwQSjDUBZ81B4iHWaeaTuL12DinZwuWj Cc/5MewJB13LRJ/O/Db2p4Id6EW7SLqzvD8vH/BKmqMV7QiY2sp/9gLqyD//P4/8 HL3arf7o2FkT8/DKuSHOgaVFiiO8FNmVjH6y3tMunyOQ5goNmeKqagOCnT1ULPKs oOrkV18T/94JeJcsT2h44R0raYwKFQOPUOc80ESbjF7u/Tnc8/RMGtkC9l6upDDs a/VTe/Et0c6TidDXqQwV+ODUyujpMpeTlIc= -----END CERTIFICATE-----Generated at Tue Nov 4 22:21:08 2025 by rpki-client