$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/35BE363E668F11EBA738AF61C4F9AE02.roa File: 35BE363E668F11EBA738AF61C4F9AE02.roa (raw, json) Hash identifier: GcUaymkPtkuB9knKnQU1h04sFVKLXXAddmnuYc97Q5c= Subject key identifier: D9:0F:0C:AC:B9:C2:A8:32:65:3F:E6:34:28:06:1A:16:36:2F:AC:E7 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 079E Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/35BE363E668F11EBA738AF61C4F9AE02.roa Signing time: Thu 30 Oct 2025 22:12:07 +0000 ROA not before: Thu 30 Oct 2025 22:12:07 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 45474 IP address blocks: 123.1.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1950 (0x79e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 30 22:12:07 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6903e2b7-4740 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:74:2d:6e:a3:84:d8:d4:13:8a:22:f2:ff:2f: 3d:62:cc:f5:00:4e:f2:6e:43:e7:17:25:d7:79:4a: 1d:02:c6:90:c9:b5:50:2f:0d:cf:1c:26:aa:ae:e1: b8:48:13:88:29:92:cf:5d:d9:c6:01:67:1a:de:1a: 65:64:d1:d6:fd:9f:09:5c:26:2a:44:74:f8:44:d8: 57:01:11:63:a9:5d:47:d0:7c:64:da:fb:73:40:c1: 58:c3:f7:84:72:17:0a:ea:0d:89:db:91:0f:e7:0a: 3f:31:ad:8e:04:6d:9c:bf:d3:bf:6e:39:3c:33:df: 85:3f:0c:d2:03:af:2b:42:8a:b3:04:84:35:07:09: c3:2e:1b:49:99:aa:97:04:7f:e1:97:64:62:af:98: 47:02:1a:23:23:89:ef:e2:02:9e:a8:8b:e0:31:1c: f9:1c:ba:05:2d:2c:bd:b9:d6:0f:22:48:a2:99:bb: b5:98:25:79:24:68:7a:cc:f5:9f:0d:c4:4b:6d:69: 24:eb:2b:4a:8f:f6:ea:df:eb:a4:30:57:aa:cb:39: 8a:63:05:30:3b:4c:26:0a:c6:98:d4:25:f4:11:41: 92:4e:c2:87:69:84:69:5e:35:ed:d8:1d:94:2b:c1: dc:f1:44:a6:fb:1f:81:91:8b:fa:e3:e3:44:f6:65: fd:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:0F:0C:AC:B9:C2:A8:32:65:3F:E6:34:28:06:1A:16:36:2F:AC:E7 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/35BE363E668F11EBA738AF61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.1.207.0/24 Signature Algorithm: sha256WithRSAEncryption 80:82:75:b7:15:43:72:94:87:05:4b:fb:b0:95:b6:80:ba:1a: b4:3d:ac:64:56:b8:83:91:04:b0:3b:ac:47:f3:49:8c:17:17: 01:55:fd:27:4e:69:4c:57:aa:26:fc:bf:84:3c:8e:00:99:d3: 0e:a6:88:cc:8a:3f:d4:f3:6c:5a:4b:eb:b8:86:5b:d2:7e:ea: 05:84:9e:58:30:18:c5:ff:69:a3:30:0b:85:e4:ca:fd:47:f2: 80:64:96:37:87:6d:0e:2a:13:0d:74:18:94:56:3c:e5:51:d0: d1:24:ba:45:5d:89:7a:8e:92:58:5b:41:5b:d4:63:73:c0:ca: 5a:f2:ea:a5:f8:d2:e6:cd:c0:05:78:7d:62:8e:fb:0b:33:57: 3a:da:ce:74:89:9c:76:63:a0:cf:36:5e:f8:80:b4:fa:1a:f8: 44:8d:57:db:33:5e:8f:24:6f:a2:6c:8b:f7:68:57:a6:77:3f: 22:e2:3a:ed:55:cf:e4:97:7d:4f:7d:78:2a:52:a7:5f:30:17: 0a:16:3a:6c:66:2f:3c:da:c2:d2:fd:55:2f:42:1d:93:8b:70: 31:6e:31:9f:0d:f6:ca:74:5a:32:12:fe:4c:c1:42:cc:86:dd: 03:a4:e2:a7:29:30:77:91:76:5d:85:ee:a5:8a:e5:f0:c4:14: 51:e5:fa:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUxMDMwMjIxMjA3WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzZTJiNy00NzQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxnQtbqOE2NQTiiLy/y89Ysz1AE7ybkPnFyXXeUodAsaQybVQLw3PHCaqruG4 SBOIKZLPXdnGAWca3hplZNHW/Z8JXCYqRHT4RNhXARFjqV1H0Hxk2vtzQMFYw/eE chcK6g2J25EP5wo/Ma2OBG2cv9O/bjk8M9+FPwzSA68rQoqzBIQ1BwnDLhtJmaqX BH/hl2Rir5hHAhojI4nv4gKeqIvgMRz5HLoFLSy9udYPIkiimbu1mCV5JGh6zPWf DcRLbWkk6ytKj/bq3+ukMFeqyzmKYwUwO0wmCsaY1CX0EUGSTsKHaYRpXjXt2B2U K8Hc8USm+x+BkYv64+NE9mX9vwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNkPDKy5 wqgyZT/mNCgGGhY2L6znMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvMzVCRTM2M0U2 NjhGMTFFQkE3MzhBRjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7Ac8wDQYJKoZIhvcNAQELBQADggEBAICCdbcVQ3KUhwVL +7CVtoC6GrQ9rGRWuIORBLA7rEfzSYwXFwFV/SdOaUxXqib8v4Q8jgCZ0w6miMyK P9TzbFpL67iGW9J+6gWEnlgwGMX/aaMwC4Xkyv1H8oBkljeHbQ4qEw10GJRWPOVR 0NEkukVdiXqOklhbQVvUY3PAylry6qX40ubNwAV4fWKO+wszVzraznSJnHZjoM82 XviAtPoa+ESNV9szXo8kb6Jsi/doV6Z3PyLiOu1Vz+SXfU99eCpSp18wFwoWOmxm LzzawtL9VS9CHZOLcDFuMZ8N9sp0WjIS/kzBQsyG3QOk4qcpMHeRdl2F7qWK5fDE FFHl+jM= -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:48 2025 by rpki-client