$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/48E219C209C311EEA9D88A34C4F9AE02.roa File: 48E219C209C311EEA9D88A34C4F9AE02.roa (raw, json) Hash identifier: SfxwUXkZ6scs6b9stvrkH0M3EDnjNSsIuRA3moh8vhQ= Subject key identifier: 94:FA:58:D2:A2:72:6D:83:B5:06:36:E5:9A:75:7F:5F:2E:95:EF:DE Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D45 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/48E219C209C311EEA9D88A34C4F9AE02.roa Signing time: Sun 02 Nov 2025 19:08:04 +0000 ROA not before: Sun 02 Nov 2025 19:08:04 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 23736 IP address blocks: 58.139.240.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3397 (0xd45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 2 19:08:04 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6907ac14-35c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:02:ab:6e:21:0e:4a:1a:27:27:59:58:b6:1d: df:5b:0d:16:ae:bd:96:de:43:eb:cb:27:1d:bf:a9: 08:bc:7c:11:31:45:42:54:02:cd:57:d4:4b:e7:0d: ae:7d:2e:fa:0e:39:2d:f8:62:76:ec:97:0f:8f:a9: 5d:7c:47:d6:d6:7d:ee:8d:0e:f3:95:18:ba:98:66: 1d:c2:da:a3:be:89:df:06:16:ca:1f:f1:18:1d:15: 3a:9f:ca:5b:68:8d:d1:a0:03:01:1c:68:d4:be:6f: 15:c0:52:59:7e:08:52:e9:9b:01:b7:2b:b1:cb:99: a7:43:16:db:87:0b:86:03:68:e9:80:28:74:32:f2: d4:b6:50:2b:65:2f:e1:38:83:87:f4:c6:bf:bb:64: 5f:73:46:2e:b4:34:9b:80:7c:b8:2b:d4:fd:6f:c2: 4a:50:17:e3:9f:c4:a0:5c:d1:0f:c0:05:f8:c7:39: 64:a7:5f:4a:83:8b:4f:af:ca:fb:83:91:d4:68:20: a6:09:c5:c4:86:1b:38:b1:e1:a7:05:c8:5a:2d:0c: d7:f1:99:83:35:36:c9:f8:bd:5e:a2:03:32:48:38: 0f:d7:55:3f:49:bb:9a:8f:f0:f6:7e:bb:dd:83:c3: e3:be:95:32:16:9e:3e:73:0d:60:78:8b:7f:c3:ec: ee:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:FA:58:D2:A2:72:6D:83:B5:06:36:E5:9A:75:7F:5F:2E:95:EF:DE X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/48E219C209C311EEA9D88A34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.139.240.0/20 Signature Algorithm: sha256WithRSAEncryption 76:be:19:8c:23:7d:1a:c0:69:a6:de:27:52:29:f3:e3:19:a1: 70:29:95:5d:d4:57:15:77:ab:f4:fe:06:25:4e:71:6b:86:99: cf:62:7a:58:d3:b0:5e:4d:40:61:7a:ee:4c:fe:9b:13:51:ea: 69:af:42:14:7c:6f:a4:48:59:4b:d9:38:0c:d3:d6:98:77:4d: 4d:49:e1:23:2a:76:7e:58:f8:90:5b:20:29:b1:75:fb:71:d9: 62:5d:8b:68:27:74:38:82:11:fb:3d:a7:c0:5c:7a:49:44:fa: 53:78:88:f8:d0:81:f4:5f:ea:e0:4f:e9:de:23:92:85:8b:b0: 48:bf:f7:4b:a0:11:d7:77:87:8c:45:4a:7f:52:d3:3f:4f:e0: c0:a5:8a:cc:1e:3c:ba:db:9c:d2:e8:d2:8a:a6:c8:9b:46:47: 3b:ca:3c:85:0c:b7:04:e4:55:c1:de:38:49:52:52:63:d0:68: 4c:8e:a2:75:04:60:2f:40:1a:63:1b:56:3a:9d:68:0b:dc:b9: 82:9c:6c:cd:1e:2b:77:ab:10:6c:23:89:d6:53:a8:af:ad:5e: 32:d9:b3:d0:bd:3e:20:6e:f8:14:38:a3:ec:7a:36:8d:7c:af: 7e:e3:43:d9:5d:5e:0e:e1:b2:53:94:0f:b6:ee:af:b3:3a:90: 6a:cc:b0:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTAyMTkwODA0WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YWMxNC0zNWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2QKrbiEOShonJ1lYth3fWw0Wrr2W3kPryycdv6kIvHwRMUVCVALNV9RL5w2u fS76Djkt+GJ27JcPj6ldfEfW1n3ujQ7zlRi6mGYdwtqjvonfBhbKH/EYHRU6n8pb aI3RoAMBHGjUvm8VwFJZfghS6ZsBtyuxy5mnQxbbhwuGA2jpgCh0MvLUtlArZS/h OIOH9Ma/u2Rfc0YutDSbgHy4K9T9b8JKUBfjn8SgXNEPwAX4xzlkp19Kg4tPr8r7 g5HUaCCmCcXEhhs4seGnBchaLQzX8ZmDNTbJ+L1eogMySDgP11U/Sbuaj/D2frvd g8PjvpUyFp4+cw1geIt/w+zuOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJT6WNKi cm2DtQY25Zp1f18ule/eMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvNDhFMjE5QzIw OUMzMTFFRUE5RDg4QTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAQ6i/AwDQYJKoZIhvcNAQELBQADggEBAHa+GYwjfRrAaabe J1Ip8+MZoXAplV3UVxV3q/T+BiVOcWuGmc9ieljTsF5NQGF67kz+mxNR6mmvQhR8 b6RIWUvZOAzT1ph3TU1J4SMqdn5Y+JBbICmxdftx2WJdi2gndDiCEfs9p8BceklE +lN4iPjQgfRf6uBP6d4jkoWLsEi/90ugEdd3h4xFSn9S0z9P4MCliswePLrbnNLo 0oqmyJtGRzvKPIUMtwTkVcHeOElSUmPQaEyOonUEYC9AGmMbVjqdaAvcuYKcbM0e K3erEGwjidZTqK+tXjLZs9C9PiBu+BQ4o+x6No18r37jQ9ldXg7hslOUD7bur7M6 kGrMsOM= -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:50 2025 by rpki-client