$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/651E60A6535F11EE9BC85F83C4F9AE02.roa File: 651E60A6535F11EE9BC85F83C4F9AE02.roa (raw, json) Hash identifier: YhNbhFzO7WHU8UmccgfY4hoJ4t2k4JoW/bwFa0YyNSk= Subject key identifier: 3B:B3:7A:76:82:97:D1:C4:5E:E3:37:F0:F9:2D:B8:32:7F:70:AB:CE Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D48 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/651E60A6535F11EE9BC85F83C4F9AE02.roa Signing time: Sun 02 Nov 2025 19:08:07 +0000 ROA not before: Sun 02 Nov 2025 19:08:07 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4202202056 IP address blocks: 112.137.162.0/24 maxlen: 24 119.110.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3400 (0xd48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 2 19:08:07 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6907ac17-73a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a9:f2:c3:44:e7:05:5a:83:38:c0:07:1e:41: 85:07:a8:1e:ab:d1:71:5f:5b:0f:35:a8:2e:96:f4: 39:0d:4f:36:cc:ec:2e:df:89:39:30:64:83:20:a9: 0f:88:9b:6a:98:d0:b4:9c:12:f5:00:9c:1b:8e:4d: eb:e3:24:e6:46:87:ac:cb:e8:74:ec:eb:de:49:24: 0c:33:18:8d:71:21:a2:61:a2:45:10:86:62:f1:6e: 66:cc:d1:18:e7:69:76:fe:eb:e2:c6:e1:3c:5f:03: d5:c9:b5:5c:a4:8b:e4:54:d1:c9:07:cd:d1:2c:90: 6e:40:3b:86:0d:4a:5d:69:8d:8a:98:90:df:77:25: bd:ae:77:6a:a5:01:db:2f:19:dc:7a:e5:9e:b1:57: db:df:f3:98:e9:54:b7:68:22:7f:19:33:6e:8f:b2: 54:c6:ff:e0:da:f5:90:e8:3a:d1:da:40:64:bf:56: 63:89:a7:f1:56:4d:bc:c4:26:e1:be:2c:26:ea:0b: db:39:d8:3b:15:12:0d:cd:95:f6:f4:b0:fb:64:29: 95:69:27:d6:b0:df:60:75:99:33:e0:95:a9:a4:8e: 59:0f:01:c0:40:94:dc:14:58:60:e6:43:7e:a5:9b: d0:44:7a:6f:94:1c:59:cc:00:d0:d8:bb:99:52:6c: 24:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B3:7A:76:82:97:D1:C4:5E:E3:37:F0:F9:2D:B8:32:7F:70:AB:CE X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/651E60A6535F11EE9BC85F83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.137.162.0/24 119.110.108.0/24 Signature Algorithm: sha256WithRSAEncryption 31:a9:08:ef:e9:d4:eb:5f:b4:84:47:38:2c:bf:e2:e5:b3:f1: 62:f4:23:c4:de:5f:0a:7f:5c:93:85:9f:96:6b:8b:75:45:4d: fe:43:9c:ed:1b:b3:8a:bc:1c:84:7f:9c:ec:de:60:67:12:f8: 30:c8:ff:36:52:b2:8a:47:7d:4e:36:92:c9:cf:7a:aa:a9:10: 19:1e:43:1e:85:df:a0:de:84:f2:d9:8a:83:a2:24:17:d9:4a: 82:5b:0d:7c:ab:2c:74:1f:e0:17:00:1b:38:04:eb:2c:f3:5e: 08:d1:72:ff:91:2f:69:70:6b:42:97:48:be:74:87:5a:60:95: c6:64:64:68:37:c3:a7:40:d1:04:15:cc:c6:e0:73:ed:f8:27: 17:b5:1e:03:d6:cc:d3:ff:80:38:74:40:b6:2d:10:34:2f:93: 77:ac:96:a9:84:0e:ba:85:8f:cb:4f:40:58:67:c0:6f:b1:bc: 95:23:98:ae:6a:1c:02:1e:98:8e:c1:11:fa:44:35:9f:32:e0: 8f:81:2d:8b:56:ec:82:54:28:bf:13:52:e1:a1:ef:f0:d7:9b: bd:45:76:fe:8c:e5:44:4e:38:9d:73:64:5b:1b:bc:3f:2c:90: 94:7b:50:ed:8a:c5:39:40:eb:9a:96:1c:8e:07:14:bf:f2:78: 94:36:45:c8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTAyMTkwODA3WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YWMxNy03M2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoanyw0TnBVqDOMAHHkGFB6geq9FxX1sPNagulvQ5DU82zOwu34k5MGSDIKkP iJtqmNC0nBL1AJwbjk3r4yTmRoesy+h07OveSSQMMxiNcSGiYaJFEIZi8W5mzNEY 52l2/uvixuE8XwPVybVcpIvkVNHJB83RLJBuQDuGDUpdaY2KmJDfdyW9rndqpQHb LxnceuWesVfb3/OY6VS3aCJ/GTNuj7JUxv/g2vWQ6DrR2kBkv1ZjiafxVk28xCbh viwm6gvbOdg7FRINzZX29LD7ZCmVaSfWsN9gdZkz4JWppI5ZDwHAQJTcFFhg5kN+ pZvQRHpvlBxZzADQ2LuZUmwkoQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDuzenaC l9HEXuM38PktuDJ/cKvOMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvNjUxRTYwQTY1 MzVGMTFFRTlCQzg1RjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABwiaIDBAB3bmwwDQYJKoZIhvcNAQELBQADggEBADGpCO/p 1OtftIRHOCy/4uWz8WL0I8TeXwp/XJOFn5Zri3VFTf5DnO0bs4q8HIR/nOzeYGcS +DDI/zZSsopHfU42ksnPeqqpEBkeQx6F36DehPLZioOiJBfZSoJbDXyrLHQf4BcA GzgE6yzzXgjRcv+RL2lwa0KXSL50h1pglcZkZGg3w6dA0QQVzMbgc+34Jxe1HgPW zNP/gDh0QLYtEDQvk3eslqmEDrqFj8tPQFhnwG+xvJUjmK5qHAIemI7BEfpENZ8y 4I+BLYtW7IJUKL8TUuGh7/DXm71Fdv6M5UROOJ1zZFsbvD8skJR7UO2KxTlA65qW HI4HFL/yeJQ2Rcg= -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:19 2025 by rpki-client