$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa File: 1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa (raw, json) Hash identifier: 5FCghaTHfjGe3056E9DhPQUiNt12XMkuoaYKrbjkSQ8= Subject key identifier: BE:18:3B:43:80:5B:6A:40:A8:D8:7F:EC:9C:26:9D:61:CA:45:EF:C5 Certificate issuer: /CN=A911CA78/serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Certificate serial: 01D0 Authority key identifier: 3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa Signing time: Sun 02 Nov 2025 19:08:23 +0000 ROA not before: Sun 02 Nov 2025 19:08:23 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4788 IP address blocks: 147.158.0.0/16 maxlen: 16 147.158.0.0/17 maxlen: 17 147.158.0.0/18 maxlen: 18 147.158.128.0/19 maxlen: 19 147.158.160.0/19 maxlen: 19 147.158.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:05:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=3E7232048DCBD2C69BAB225B8A42216046C18B25 Validity Not Before: Nov 2 19:08:23 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6907ac27-dfcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:49:84:dd:c8:b4:13:05:fb:ab:08:80:07:3f: da:f2:f9:cc:c6:8d:0d:f1:30:1a:c7:bc:e0:10:ec: ee:f3:1a:9c:7d:93:61:c8:65:2a:fb:e2:75:2a:e0: 22:ef:34:fb:46:97:35:20:5e:6a:dc:b2:ac:1c:43: 27:45:0d:50:ee:14:46:25:10:a9:e0:3a:31:43:ca: a5:8a:c4:13:75:b9:2c:e3:1e:61:64:6c:d3:d1:5d: 6a:c0:fe:08:76:16:01:df:31:58:ee:e8:40:38:1a: 77:a5:87:c0:64:05:1e:5d:0a:32:d5:30:e5:5e:46: 88:38:e5:da:54:df:ed:16:f2:9f:58:d3:5b:23:54: ed:27:bf:e9:1f:ae:6f:08:7e:42:6f:ec:ea:11:b7: dd:01:9a:fb:4c:02:74:5e:17:50:d3:69:ef:26:53: 27:12:ed:3f:27:8f:47:5e:88:f6:f8:49:a3:b2:48: 68:dc:13:0a:d4:53:48:84:e6:74:34:7c:eb:64:fb: 85:79:c6:22:da:9c:10:bb:86:ff:f4:74:bc:f4:39: 14:57:ae:ed:83:de:d2:5e:e6:7d:a5:e4:91:49:77: 74:68:aa:c4:75:56:41:6d:f4:d2:d3:f8:ea:99:26: b5:09:4a:3d:97:de:06:55:e6:15:72:94:dd:6f:39: eb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:18:3B:43:80:5B:6A:40:A8:D8:7F:EC:9C:26:9D:61:CA:45:EF:C5 X509v3 Authority Key Identifier: keyid:3E:72:32:04:8D:CB:D2:C6:9B:AB:22:5B:8A:42:21:60:46:C1:8B:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/PnIyBI3L0sabqyJbikIhYEbBiyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PnIyBI3L0sabqyJbikIhYEbBiyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/028F58FE16D911EE9F175315C4F9AE02/1ABB6C4E17DB11EE92B1C26FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.158.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3e:3d:7d:05:0e:d2:d5:0c:33:77:d8:1d:96:b9:5c:72:3e:2a: 90:55:85:e5:d2:00:7b:cc:b6:93:17:bd:3e:f0:db:cc:61:16: ed:16:59:e5:13:75:a1:3c:78:eb:1b:2e:61:d4:4d:9e:b0:ee: 06:e6:c2:85:d0:2f:a8:b6:61:1b:89:b3:b5:57:48:42:8c:9e: fd:bf:04:43:e1:a3:56:41:78:54:1e:8b:fb:ff:94:bd:f5:3e: 99:71:0b:4d:94:a6:7c:17:08:18:aa:0e:a9:a6:3d:c2:39:4c: f4:05:b6:73:72:4f:f2:03:5e:0e:80:bc:d2:d3:fd:60:e7:20: 6b:8c:9c:29:bb:20:b4:d0:90:b9:2f:c0:eb:c9:eb:82:e8:46: 7d:8f:86:7e:cb:91:45:ea:0b:13:59:31:f0:95:21:74:a8:96: 0d:a9:c0:51:7b:c0:89:6e:b1:b4:fc:2a:ae:5b:55:99:12:da: 60:90:64:65:5d:14:5d:7b:cb:da:c1:14:73:ed:a1:64:4f:50: a8:25:4c:37:73:1b:79:e3:9e:69:9f:21:86:ee:e6:cb:e9:d0: 2e:5e:55:d3:03:8d:55:b3:74:07:2e:ee:d8:ca:bd:2a:cc:2f: f5:8f:5d:5d:24:93:94:b8:66:c7:e9:89:c1:fb:74:cd:59:a9: 74:d0:a1:2c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDNFNzIzMjA0OERDQkQyQzY5QkFCMjI1QjhBNDIyMTYw NDZDMThCMjUwHhcNMjUxMTAyMTkwODIzWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YWMyNy1kZmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0mE3ci0EwX7qwiABz/a8vnMxo0N8TAax7zgEOzu8xqcfZNhyGUq++J1KuAi 7zT7Rpc1IF5q3LKsHEMnRQ1Q7hRGJRCp4DoxQ8qlisQTdbks4x5hZGzT0V1qwP4I dhYB3zFY7uhAOBp3pYfAZAUeXQoy1TDlXkaIOOXaVN/tFvKfWNNbI1TtJ7/pH65v CH5Cb+zqEbfdAZr7TAJ0XhdQ02nvJlMnEu0/J49HXoj2+Emjskho3BMK1FNIhOZ0 NHzrZPuFecYi2pwQu4b/9HS89DkUV67tg97SXuZ9peSRSXd0aKrEdVZBbfTS0/jq mSa1CUo9l94GVeYVcpTdbznrBwIDAQABo4IClDCCApAwHQYDVR0OBBYEFL4YO0OA W2pAqNh/7JwmnWHKRe/FMB8GA1UdIwQYMBaAFD5yMgSNy9LGm6siW4pCIWBGwYsl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC8wMjhGNThGRTE2 RDkxMUVFOUYxNzUzMTVDNEY5QUUwMi9Qbkl5QkkzTDBzYWJxeUpiaWtJaFlFYkJp eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1BuSXlCSTNMMHNhYnF5SmJpa0loWUViQml5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvMDI4RjU4RkUxNkQ5MTFFRTlGMTc1MzE1QzRGOUFFMDIvMUFCQjZDNEUx N0RCMTFFRTkyQjFDMjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCTnjANBgkqhkiG9w0BAQsFAAOCAQEAPj19BQ7S1Qwzd9gd lrlccj4qkFWF5dIAe8y2kxe9PvDbzGEW7RZZ5RN1oTx46xsuYdRNnrDuBubChdAv qLZhG4mztVdIQoye/b8EQ+GjVkF4VB6L+/+UvfU+mXELTZSmfBcIGKoOqaY9wjlM 9AW2c3JP8gNeDoC80tP9YOcga4ycKbsgtNCQuS/A68nrguhGfY+GfsuRReoLE1kx 8JUhdKiWDanAUXvAiW6xtPwqrltVmRLaYJBkZV0UXXvL2sEUc+2hZE9QqCVMN3Mb eeOeaZ8hhu7my+nQLl5V0wONVbN0By7u2Mq9Kswv9Y9dXSSTlLhmx+mJwft0zVmp dNChLA== -----END CERTIFICATE-----Generated at Wed Nov 5 07:51:37 2025 by rpki-client