$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8BF60AF817DC11EE959DE671C4F9AE02.roa File: 8BF60AF817DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: LVCceArjrNx9uJHc32TrQrfuXNf5yNmqL+LVGTZ/kcg= Subject key identifier: 20:86:09:33:98:5E:64:1A:B9:92:4B:63:68:70:65:39:4F:A2:76:17 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D51 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8BF60AF817DC11EE959DE671C4F9AE02.roa Signing time: Sun 02 Nov 2025 19:08:16 +0000 ROA not before: Sun 02 Nov 2025 19:08:16 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 65001 IP address blocks: 202.188.30.0/24 maxlen: 24 202.188.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3409 (0xd51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 2 19:08:16 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6907ac20-b8c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e8:5b:76:a9:dc:c4:ab:81:8c:4d:1e:5e:8d: ac:16:7c:33:01:0d:43:39:7f:65:d5:7b:5d:b5:17: 65:59:ae:2f:19:cc:a5:ef:5b:cb:45:3a:5a:85:c7: bf:04:80:39:14:c4:f1:bf:e8:d9:dc:ce:fa:0f:3a: 05:4d:d6:88:19:3c:e1:b0:db:d6:e6:67:18:c6:13: d0:21:1b:34:7a:de:55:27:52:f4:df:d3:9e:85:e1: a8:80:e5:70:6a:6d:af:b3:ab:ed:fd:48:a8:a7:51: c7:29:1d:c4:31:9a:01:e9:38:a4:65:4c:c6:e3:11: 72:05:7b:f4:52:4e:f8:8c:9a:38:dd:29:64:b2:e7: e2:19:b9:9b:9c:cb:4c:a8:ca:c9:2c:7e:82:36:bc: bc:21:96:49:a2:af:57:bb:a3:57:f0:70:8b:b6:99: 79:0c:26:63:64:6d:52:99:3c:0a:92:d0:70:d4:be: 6e:57:80:d1:8f:0e:0b:0b:a9:bb:3d:79:15:ee:61: c8:77:3a:a9:79:1f:4c:f4:9d:f2:d5:61:df:0c:32: a4:dc:3d:79:72:cc:22:af:79:3a:2d:23:7d:f3:ac: 9a:d8:3b:05:25:eb:11:b3:24:b2:14:a2:4e:51:2d: 42:87:2d:3f:93:2c:d0:de:79:0d:f2:57:38:08:3c: 8e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:86:09:33:98:5E:64:1A:B9:92:4B:63:68:70:65:39:4F:A2:76:17 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8BF60AF817DC11EE959DE671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.188.30.0/24 202.188.245.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:90:84:ce:79:56:e1:78:87:6c:6e:a5:13:79:45:b9:42:df: ce:cb:f0:e3:81:fc:ab:ef:7d:b3:e5:ee:00:2d:42:4a:e7:0a: 83:43:70:61:8b:3f:27:29:94:5b:70:77:0f:05:b9:96:01:d2: b4:27:70:07:35:d3:fb:e7:49:b6:39:a0:69:dd:72:17:eb:ee: 78:4d:82:ce:4d:58:3f:6c:e3:51:07:d3:11:c4:7c:9c:76:45: 6c:88:a4:60:ce:00:f9:19:70:f0:d9:8d:d5:58:30:a7:e6:e5: 1a:14:38:47:ed:5a:e7:06:9c:55:44:00:a1:78:29:11:97:6e: 12:08:92:05:4a:71:d1:54:43:3a:14:53:47:96:ef:ff:19:2e: 1e:ba:e7:80:cb:64:8a:dc:5f:de:e0:e7:8e:20:0c:00:c5:68: ec:23:92:3c:74:d5:68:bc:bf:3e:bb:f3:37:9d:f6:92:65:ab: 56:a5:fc:d8:a7:00:50:bf:af:ee:0c:b1:e7:55:de:f6:c7:43: 09:1a:b7:dd:f2:0a:fa:c8:07:c5:37:ce:01:69:2b:b1:d1:98: 71:65:cb:1d:b9:c8:b1:ca:5d:bc:04:af:e9:ad:d9:e3:e3:fc: dc:f8:66:a5:71:ad:21:16:20:6b:c7:9f:00:99:1f:d1:ff:e7: aa:1b:f6:12 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTAyMTkwODE2WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YWMyMC1iOGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+hbdqncxKuBjE0eXo2sFnwzAQ1DOX9l1XtdtRdlWa4vGcyl71vLRTpahce/ BIA5FMTxv+jZ3M76DzoFTdaIGTzhsNvW5mcYxhPQIRs0et5VJ1L039OeheGogOVw am2vs6vt/Uiop1HHKR3EMZoB6TikZUzG4xFyBXv0Uk74jJo43SlksufiGbmbnMtM qMrJLH6CNry8IZZJoq9Xu6NX8HCLtpl5DCZjZG1SmTwKktBw1L5uV4DRjw4LC6m7 PXkV7mHIdzqpeR9M9J3y1WHfDDKk3D15cswir3k6LSN986ya2DsFJesRsySyFKJO US1Chy0/kyzQ3nkN8lc4CDyOUwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCCGCTOY XmQauZJLY2hwZTlPonYXMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEJGNjBBRjgx N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKvB4DBADKvPUwDQYJKoZIhvcNAQELBQADggEBABuQhM55 VuF4h2xupRN5RblC387L8OOB/KvvfbPl7gAtQkrnCoNDcGGLPycplFtwdw8FuZYB 0rQncAc10/vnSbY5oGndchfr7nhNgs5NWD9s41EH0xHEfJx2RWyIpGDOAPkZcPDZ jdVYMKfm5RoUOEftWucGnFVEAKF4KRGXbhIIkgVKcdFUQzoUU0eW7/8ZLh6654DL ZIrcX97g544gDADFaOwjkjx01Wi8vz678zed9pJlq1al/NinAFC/r+4MsedV3vbH Qwkat93yCvrIB8U3zgFpK7HRmHFlyx25yLHKXbwEr+mt2ePj/Nz4ZqVxrSEWIGvH nwCZH9H/56ob9hI= -----END CERTIFICATE-----Generated at Wed Nov 5 05:17:30 2025 by rpki-client