$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B34D07906A8D11EB82AF1144C4F9AE02.roa File: B34D07906A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: QXMJ/jQUAiv47lj1Bpig1n8sU68IQku+vQs4DkbFezU= Subject key identifier: 94:AE:B2:CF:E6:DB:B4:B0:7E:A8:94:EA:7A:93:CC:B0:8B:B9:99:50 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 079C Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B34D07906A8D11EB82AF1144C4F9AE02.roa Signing time: Thu 30 Oct 2025 22:12:06 +0000 ROA not before: Thu 30 Oct 2025 22:12:06 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 17444 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1948 (0x79c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 30 22:12:06 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6903e2b5-95a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:13:04:8b:8f:d8:2d:35:fd:c9:46:c9:b5:16: c0:b3:e5:fd:81:dd:4e:9e:fc:b1:67:0b:f9:75:96: c7:a5:be:98:2e:72:de:55:01:51:d0:c8:37:e1:e9: 33:3e:3a:0f:db:4b:1f:ec:b7:64:9a:5c:6c:8f:30: 15:94:58:4d:d6:60:1f:ef:c7:7f:53:53:a7:af:fb: 42:f6:13:de:1f:d4:d5:a7:57:47:a1:31:ed:64:95: 63:e5:08:e2:bf:6b:95:be:e1:5b:3a:d4:d5:2f:3f: 96:17:e6:27:3f:3b:61:e3:b5:98:40:54:58:1b:f0: 7d:aa:8b:62:6d:6a:ed:e1:41:84:ab:7f:ef:5f:0c: 57:1d:9a:d4:3c:3e:82:6d:c2:a6:be:eb:65:55:ff: 41:ff:40:e2:02:40:d3:eb:15:e9:34:43:41:1a:50: a8:00:da:fc:80:ff:94:7c:94:59:08:fe:bc:50:43: 02:95:1b:da:8d:13:b2:89:b7:89:3b:a5:51:81:94: e1:7e:78:64:6f:79:fd:e7:04:64:72:e6:23:95:26: cf:b0:88:f7:62:d2:91:7e:9f:f9:8f:b7:a2:de:30: cd:43:a9:01:41:bc:28:06:db:22:3e:34:91:bf:94: 3b:1f:4d:1e:43:c8:9c:7d:b1:c5:49:36:01:fa:50: e8:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:AE:B2:CF:E6:DB:B4:B0:7E:A8:94:EA:7A:93:CC:B0:8B:B9:99:50 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B34D07906A8D11EB82AF1144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 52:7c:8e:76:21:aa:c8:75:26:5c:48:d3:7f:cf:8b:69:58:37: 09:f0:c6:6b:22:91:39:ea:4f:03:93:6e:fa:b9:0f:28:d2:79: 0c:a8:43:2b:3c:ed:b4:45:cd:ab:c6:2d:bd:62:e7:13:76:83: 53:5a:19:78:6b:86:6d:a0:25:c3:04:ec:78:c8:65:0d:25:3f: fa:ef:83:14:0e:0d:90:be:80:75:4a:11:e8:17:35:fe:11:ca: c9:f3:fa:be:de:96:89:ad:21:95:2c:09:b4:0d:0a:72:50:d4: 4b:d3:7b:f4:23:56:82:d9:70:9d:e3:54:8d:66:88:55:86:ba: 59:c7:86:8f:93:8c:da:85:5c:76:f5:f0:65:2b:0a:d4:ab:f7: 65:19:ef:18:8b:1c:dc:ca:80:1a:85:93:b3:fd:92:8c:27:09: 83:75:10:18:54:8e:d9:9f:57:ea:b0:aa:47:f0:f0:85:81:b1: d4:01:d0:ab:64:b6:02:9c:aa:80:16:00:05:19:27:94:f2:e3: c6:5a:85:89:98:5e:11:43:09:a7:58:84:41:40:b9:97:fe:c9: 75:db:27:c2:59:58:9d:d2:30:37:53:46:31:ea:4b:b9:70:2a: fd:07:22:59:60:d4:42:55:4d:07:dd:53:51:21:59:9f:11:ba: 0c:f7:f1:60 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICB5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUxMDMwMjIxMjA2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzZTJiNS05NWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArRMEi4/YLTX9yUbJtRbAs+X9gd1OnvyxZwv5dZbHpb6YLnLeVQFR0Mg34ekz PjoP20sf7LdkmlxsjzAVlFhN1mAf78d/U1Onr/tC9hPeH9TVp1dHoTHtZJVj5Qji v2uVvuFbOtTVLz+WF+YnPzth47WYQFRYG/B9qotibWrt4UGEq3/vXwxXHZrUPD6C bcKmvutlVf9B/0DiAkDT6xXpNENBGlCoANr8gP+UfJRZCP68UEMClRvajROyibeJ O6VRgZThfnhkb3n95wRkcuYjlSbPsIj3YtKRfp/5j7ei3jDNQ6kBQbwoBtsiPjSR v5Q7H00eQ8icfbHFSTYB+lDo5QIDAQABo4IC3zCCAtswHQYDVR0OBBYEFJSuss/m 27SwfqiU6nqTzLCLuZlQMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjM0RDA3OTA2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMEcEAgABMEEDBAc6QIADAwA7vAMEAmdUIAMEB3EKgAMEB3sBgAMEAcC8UgME AcoEogMEBstigAMEBsuwwAMEBtLRQAMEB9L1gDANBAIAAjAHAwUAJAFKADANBgkq hkiG9w0BAQsFAAOCAQEAUnyOdiGqyHUmXEjTf8+LaVg3CfDGayKROepPA5Nu+rkP KNJ5DKhDKzzttEXNq8YtvWLnE3aDU1oZeGuGbaAlwwTseMhlDSU/+u+DFA4NkL6A dUoR6Bc1/hHKyfP6vt6Wia0hlSwJtA0KclDUS9N79CNWgtlwneNUjWaIVYa6WceG j5OM2oVcdvXwZSsK1Kv3ZRnvGIsc3MqAGoWTs/2SjCcJg3UQGFSO2Z9X6rCqR/Dw hYGx1AHQq2S2ApyqgBYABRknlPLjxlqFiZheEUMJp1iEQUC5l/7JddsnwllYndIw N1NGMepLuXAq/QciWWDUQlVNB91TUSFZnxG6DPfxYA== -----END CERTIFICATE-----Generated at Wed Nov 5 18:44:53 2025 by rpki-client