$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/678847C6535F11EE9BC85F83C4F9AE02.roa File: 678847C6535F11EE9BC85F83C4F9AE02.roa (raw, json) Hash identifier: tQ4cyb3heb45htZx1h245p6eBfZ/hq4FrcBUNHIJiPo= Subject key identifier: 28:96:05:E2:81:21:6D:45:75:78:14:91:F8:1D:90:3D:3D:14:75:A9 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D4D Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/678847C6535F11EE9BC85F83C4F9AE02.roa Signing time: Sun 02 Nov 2025 19:08:12 +0000 ROA not before: Sun 02 Nov 2025 19:08:12 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 4202202256 IP address blocks: 202.75.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3405 (0xd4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 2 19:08:12 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6907ac1c-affb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:94:94:7e:c7:34:0f:5e:83:b9:60:02:f6:7c: 64:c1:d0:b2:96:c8:6c:fe:87:25:ef:37:37:30:e1: e6:d6:61:f0:14:dd:ed:23:b6:c8:47:b6:09:e5:e0: fe:2a:95:88:07:a5:0e:d5:48:a7:34:94:a2:91:60: 08:0d:d0:40:f1:ec:9b:a8:b2:3d:df:90:45:1d:c3: a1:f9:8e:5d:a6:3a:c8:fe:a5:28:3a:eb:19:08:aa: 9a:7c:2d:96:14:f1:a7:27:19:6f:81:7f:6a:fa:9a: d2:b3:c7:fb:46:aa:16:11:c8:af:bc:b3:53:81:a6: b6:4f:85:86:38:35:d1:70:29:85:ff:d6:7e:12:89: 49:bc:12:4f:e8:53:08:20:2c:85:5c:d5:44:1d:03: c8:cc:87:11:99:43:72:e0:19:36:18:c1:bc:63:01: f7:e8:51:25:84:f6:00:21:cd:3e:c6:dc:5f:b9:d5: 1d:13:da:d9:cf:18:6d:d5:e0:d2:8a:c5:4a:d8:5a: 63:32:e5:88:37:3a:c0:f1:16:57:78:ec:3f:0d:23: fb:0c:ee:b8:7d:f3:27:09:1e:43:1c:73:30:be:a0: ce:10:e1:18:74:bf:d3:12:26:b4:ea:e8:03:ac:58: cf:18:52:65:f2:be:1b:2c:5d:32:57:20:ce:88:79: c7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:96:05:E2:81:21:6D:45:75:78:14:91:F8:1D:90:3D:3D:14:75:A9 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/678847C6535F11EE9BC85F83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.75.45.0/24 Signature Algorithm: sha256WithRSAEncryption a6:15:94:f3:66:92:a9:c2:83:ba:3a:21:35:36:10:72:ad:ac: 1f:5a:b0:9d:ed:e6:64:38:ce:6e:c4:cf:7d:53:49:76:39:b5: a3:72:09:bd:06:74:d0:4b:2c:8f:59:89:83:e4:ab:82:7a:67: f3:05:06:c6:11:1d:17:e1:f0:6d:6c:6a:e2:8f:c2:bb:c4:a7: 70:9c:ef:8c:80:45:9f:0f:36:40:aa:c8:0a:0d:c1:f6:dd:59: 6b:04:c3:92:21:97:a3:ba:b3:5c:4a:c2:4e:d5:df:44:7f:43: 54:97:57:8e:6e:12:7c:a6:45:d3:88:2d:91:36:93:dd:50:de: 2a:99:a5:2d:c8:6b:c7:f8:1a:71:1b:ee:25:d5:76:16:d5:92: 74:24:bf:a2:c8:6b:4a:e1:62:e6:37:b4:20:2a:00:c2:b9:c9: a9:94:c0:24:ab:83:68:72:02:bf:1b:8e:cc:5b:6b:78:1c:54: 10:a8:4b:18:8a:dd:47:57:c0:60:f2:d3:e7:14:a0:41:2b:12: 55:8f:3a:16:ba:d9:89:7e:f6:28:e1:09:bb:46:4c:3b:1d:bd: b2:77:8a:d2:3b:24:77:a7:5b:6d:1b:70:9d:3c:3e:ad:a5:73: 14:8b:4f:ea:e0:91:03:40:65:b7:99:b7:57:50:e7:f8:38:c8: b5:13:b6:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTAyMTkwODEyWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YWMxYy1hZmZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2JSUfsc0D16DuWAC9nxkwdCylshs/ocl7zc3MOHm1mHwFN3tI7bIR7YJ5eD+ KpWIB6UO1UinNJSikWAIDdBA8eybqLI935BFHcOh+Y5dpjrI/qUoOusZCKqafC2W FPGnJxlvgX9q+prSs8f7RqoWEcivvLNTgaa2T4WGODXRcCmF/9Z+EolJvBJP6FMI ICyFXNVEHQPIzIcRmUNy4Bk2GMG8YwH36FElhPYAIc0+xtxfudUdE9rZzxht1eDS isVK2FpjMuWINzrA8RZXeOw/DSP7DO64ffMnCR5DHHMwvqDOEOEYdL/TEia06ugD rFjPGFJl8r4bLF0yVyDOiHnHSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCiWBeKB IW1FdXgUkfgdkD09FHWpMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvNjc4ODQ3QzY1 MzVGMTFFRTlCQzg1RjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKSy0wDQYJKoZIhvcNAQELBQADggEBAKYVlPNmkqnCg7o6 ITU2EHKtrB9asJ3t5mQ4zm7Ez31TSXY5taNyCb0GdNBLLI9ZiYPkq4J6Z/MFBsYR HRfh8G1sauKPwrvEp3Cc74yARZ8PNkCqyAoNwfbdWWsEw5Ihl6O6s1xKwk7V30R/ Q1SXV45uEnymRdOILZE2k91Q3iqZpS3Ia8f4GnEb7iXVdhbVknQkv6LIa0rhYuY3 tCAqAMK5yamUwCSrg2hyAr8bjsxba3gcVBCoSxiK3UdXwGDy0+cUoEErElWPOha6 2Yl+9ijhCbtGTDsdvbJ3itI7JHenW20bcJ08Pq2lcxSLT+rgkQNAZbeZt1dQ5/g4 yLUTtrs= -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:52 2025 by rpki-client