$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8F9A2E2817DC11EE959DE671C4F9AE02.roa File: 8F9A2E2817DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: fnkMj+nr5Q7iQNfww9b8AyH+pO8Tw9U80LkD+4bYx0w= Subject key identifier: FF:A2:54:1F:8A:81:51:2B:0B:1B:45:E1:CD:A4:97:A1:28:2F:C2:AB Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0D58 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8F9A2E2817DC11EE959DE671C4F9AE02.roa Signing time: Sun 02 Nov 2025 19:08:21 +0000 ROA not before: Sun 02 Nov 2025 19:08:21 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 65530 IP address blocks: 202.188.95.0/24 maxlen: 24 202.188.100.0/24 maxlen: 24 2001:e68:2001:1::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:05:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3416 (0xd58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 2 19:08:21 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=6907ac25-7087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f9:62:d8:a5:ad:0a:da:6c:42:51:24:0e:49: 0c:c9:ea:57:a4:87:c1:0b:93:70:34:0e:01:52:3e: 92:1d:42:24:c8:06:d7:bb:25:bc:01:59:af:1f:18: 07:59:e8:d5:c8:33:95:00:d8:ba:11:4a:04:df:11: ee:c8:16:2d:cd:44:f5:14:b6:ee:36:7a:10:58:6a: 95:41:cb:b8:fa:d4:b7:b1:9a:29:a0:29:dc:80:d5: cc:1d:8d:df:a2:68:cf:47:bf:d6:7c:15:ef:44:20: cb:05:55:1c:89:5f:9f:57:16:97:71:96:bb:f9:5e: e3:40:10:92:5f:54:17:de:11:25:3d:eb:c3:dd:3a: 63:58:9b:2f:ff:1b:22:c3:8e:90:61:25:30:8d:68: c5:a5:4c:39:68:d5:60:44:02:c7:3f:a1:6c:33:0e: 36:2a:30:b8:67:27:61:0b:42:cf:0d:68:2c:20:61: a4:95:36:3b:ae:a1:cf:e5:a6:90:ad:aa:fd:dd:48: e5:37:20:42:77:c1:3b:b9:75:26:cc:33:5c:d2:3c: 7e:ac:17:9a:73:32:fc:62:4a:3a:cf:e1:74:73:a7: b6:78:12:cc:c8:2a:07:1e:1d:f6:e9:af:a0:e5:46: d5:35:7a:dc:a0:b6:cc:67:f2:2d:e6:0b:1f:ef:4d: 1f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:A2:54:1F:8A:81:51:2B:0B:1B:45:E1:CD:A4:97:A1:28:2F:C2:AB X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8F9A2E2817DC11EE959DE671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.188.95.0/24 202.188.100.0/24 IPv6: 2001:e68:2001:1::/64 Signature Algorithm: sha256WithRSAEncryption 15:54:c1:d9:cb:15:12:2f:d7:4c:c1:87:bb:6d:ae:bb:82:a2: bf:f3:31:93:3f:31:f6:f6:bb:0d:e8:2a:05:b3:7a:42:c0:83: ee:f2:a9:8c:f4:b3:a5:35:00:5d:6a:73:e0:c5:dd:13:c0:fc: 99:4c:e8:af:75:df:a9:d8:15:12:bb:f0:bc:22:11:7e:d0:6b: fe:f4:9a:b0:48:b9:16:49:0b:82:33:79:8e:ee:7b:1d:02:4c: aa:2f:48:a4:14:b1:c2:e5:e3:ec:a5:97:5d:98:79:6d:40:78: 5a:13:dc:12:64:31:3e:05:24:c2:6c:87:3b:09:0b:bc:3e:e6: 34:5e:77:84:bc:cb:dd:92:d5:81:e0:66:54:a3:05:21:c4:e1: 02:9d:cd:3f:00:8c:9c:86:dc:4e:63:5f:d0:db:55:63:d7:86: 51:68:2d:33:78:4d:5d:17:49:88:69:03:94:12:59:3e:90:11: 6f:15:6b:3b:10:7a:6a:62:25:9a:b3:68:0b:47:8a:ee:d4:54: a6:9d:0d:89:9d:09:d0:b9:fc:ba:59:4c:e9:e7:3a:dc:5b:35: 10:30:c5:e7:6b:02:7a:dd:dd:6e:c3:1c:dc:af:27:2d:82:3a: 22:81:d4:45:42:59:7e:0c:ab:1e:8b:87:2a:91:c4:2e:9e:cf: 74:21:84:e2 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICDVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjUxMTAyMTkwODIxWhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YWMyNS03MDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/li2KWtCtpsQlEkDkkMyepXpIfBC5NwNA4BUj6SHUIkyAbXuyW8AVmvHxgH WejVyDOVANi6EUoE3xHuyBYtzUT1FLbuNnoQWGqVQcu4+tS3sZopoCncgNXMHY3f omjPR7/WfBXvRCDLBVUciV+fVxaXcZa7+V7jQBCSX1QX3hElPevD3TpjWJsv/xsi w46QYSUwjWjFpUw5aNVgRALHP6FsMw42KjC4ZydhC0LPDWgsIGGklTY7rqHP5aaQ rar93UjlNyBCd8E7uXUmzDNc0jx+rBeaczL8Yko6z+F0c6e2eBLMyCoHHh326a+g 5UbVNXrcoLbMZ/It5gsf700f9QIDAQABo4ICrjCCAqowHQYDVR0OBBYEFP+iVB+K gVErCxtF4c2kl6EoL8KrMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEY5QTJFMjgx N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBIEAgABMAwDBADKvF8DBADKvGQwEQQCAAIwCwMJACABDmggAQABMA0GCSqG SIb3DQEBCwUAA4IBAQAVVMHZyxUSL9dMwYe7ba67gqK/8zGTPzH29rsN6CoFs3pC wIPu8qmM9LOlNQBdanPgxd0TwPyZTOivdd+p2BUSu/C8IhF+0Gv+9JqwSLkWSQuC M3mO7nsdAkyqL0ikFLHC5ePspZddmHltQHhaE9wSZDE+BSTCbIc7CQu8PuY0XneE vMvdktWB4GZUowUhxOECnc0/AIychtxOY1/Q21Vj14ZRaC0zeE1dF0mIaQOUElk+ kBFvFWs7EHpqYiWas2gLR4ru1FSmnQ2JnQnQufy6WUzp5zrcWzUQMMXnawJ63d1u wxzcryctgjoigdRFQll+DKsei4cqkcQuns90IYTi -----END CERTIFICATE-----Generated at Wed Nov 5 19:49:21 2025 by rpki-client