$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa File: B46F239C6A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: UrcHb9Zyjjqupasl1c8DJT8gL2zSGyTRtXJj/YwkNr0= Subject key identifier: 52:D7:AE:5F:91:4F:9F:8F:B0:F4:D2:41:DA:A6:CC:FA:A7:83:5A:85 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 079F Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa Signing time: Thu 30 Oct 2025 22:12:09 +0000 ROA not before: Thu 30 Oct 2025 22:12:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9269 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1951 (0x79f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 30 22:12:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6903e2b8-92e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ac:77:2d:74:a2:e8:b0:6a:8e:f9:9a:1d:3f: 97:a8:eb:ce:da:f1:4b:97:11:28:85:83:4d:27:4b: a5:b7:22:ee:38:45:00:31:45:90:40:85:31:e9:82: 13:87:b2:e8:a4:ba:45:54:e5:87:40:81:22:20:80: fa:01:e5:23:a2:3c:1b:9f:74:74:20:9e:66:3d:fa: 4c:cc:44:d6:a4:5e:33:b3:14:1b:ef:aa:9d:32:a5: ea:2f:99:21:10:13:03:7e:76:91:73:15:e3:c5:0a: bf:24:1f:1d:80:43:b6:ae:9c:9e:07:ce:e1:49:9f: 02:49:0a:6c:2a:9c:3d:a0:ad:ed:11:7f:ed:f3:75: 72:98:59:c9:23:57:df:3f:99:1f:1d:dc:32:8a:06: 4e:a9:ab:bb:07:df:ee:72:d9:db:b1:8a:1d:b9:e7: d1:3a:e8:4a:e2:4b:09:12:00:ae:5c:b1:91:0b:66: 3f:6c:f0:4a:f2:75:99:e7:14:7d:14:36:ed:58:dc: 5a:d3:c2:cd:3d:33:dc:10:59:16:8b:67:77:a9:d8: 4b:7c:6a:78:77:1d:dd:1a:16:23:4b:82:8e:76:0c: df:55:18:f9:53:17:4a:ae:87:2e:70:a5:bd:df:cc: 89:54:14:30:c8:59:57:7e:a3:e8:4d:b4:04:e9:d6: a0:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D7:AE:5F:91:4F:9F:8F:B0:F4:D2:41:DA:A6:CC:FA:A7:83:5A:85 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B46F239C6A8D11EB82AF1144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 67:81:64:ef:a0:9a:fb:b7:3f:30:d1:8c:a8:06:3b:26:cf:f0: d7:ea:a3:1d:5c:fd:d7:dd:25:d1:28:49:bd:ca:a0:6c:84:31: 07:df:1d:9a:01:b4:ad:5a:53:8f:e2:83:05:58:57:4d:88:ee: fd:4a:32:84:e6:24:81:74:4b:03:fd:4b:9c:a2:c4:27:71:08: dd:cf:18:91:84:07:0e:ee:f9:ac:d2:84:40:c7:38:b1:d0:f8: a5:37:0b:c4:a0:85:4d:fc:32:e4:95:d4:cd:a8:78:f4:17:8f: fb:cb:f6:df:bd:3a:15:13:ec:27:79:a5:2c:9f:6c:3a:0b:99: 6b:d3:8b:25:38:b9:c3:a1:82:45:2d:5f:7e:1e:23:76:d9:72: 64:fa:72:23:6f:26:9c:bf:03:b7:82:96:13:d4:d8:0a:cb:70: 9a:3f:62:45:fa:95:8e:a8:ee:41:c9:62:a6:0d:6c:53:a9:fd: 9d:0a:6b:a5:e0:01:0e:e5:94:67:e6:78:e3:f7:b4:1d:da:e7: 51:d7:1d:cc:02:aa:c7:89:42:26:85:b8:7b:75:63:31:fa:61: b0:a2:26:b7:43:48:f4:d3:a0:fa:dd:8e:2e:b1:ea:61:dd:51: 56:8a:b9:2e:75:27:21:b6:6a:d5:1a:e9:27:58:e8:5d:8a:96: 77:d0:dc:56 -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICB58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUxMDMwMjIxMjA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzZTJiOC05MmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqx3LXSi6LBqjvmaHT+XqOvO2vFLlxEohYNNJ0ultyLuOEUAMUWQQIUx6YIT h7LopLpFVOWHQIEiIID6AeUjojwbn3R0IJ5mPfpMzETWpF4zsxQb76qdMqXqL5kh EBMDfnaRcxXjxQq/JB8dgEO2rpyeB87hSZ8CSQpsKpw9oK3tEX/t83VymFnJI1ff P5kfHdwyigZOqau7B9/uctnbsYoduefROuhK4ksJEgCuXLGRC2Y/bPBK8nWZ5xR9 FDbtWNxa08LNPTPcEFkWi2d3qdhLfGp4dx3dGhYjS4KOdgzfVRj5UxdKrocucKW9 38yJVBQwyFlXfqPoTbQE6dag6wIDAQABo4IC3zCCAtswHQYDVR0OBBYEFFLXrl+R T5+PsPTSQdqmzPqng1qFMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjQ2RjIzOUM2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMEcEAgABMEEDBAc6QIADAwA7vAMEAmdUIAMEB3EKgAMEB3sBgAMEAcC8UgME AcoEogMEBstigAMEBsuwwAMEBtLRQAMEB9L1gDANBAIAAjAHAwUAJAFKADANBgkq hkiG9w0BAQsFAAOCAQEAZ4Fk76Ca+7c/MNGMqAY7Js/w1+qjHVz9190l0ShJvcqg bIQxB98dmgG0rVpTj+KDBVhXTYju/UoyhOYkgXRLA/1LnKLEJ3EI3c8YkYQHDu75 rNKEQMc4sdD4pTcLxKCFTfwy5JXUzah49BeP+8v23706FRPsJ3mlLJ9sOguZa9OL JTi5w6GCRS1ffh4jdtlyZPpyI28mnL8Dt4KWE9TYCstwmj9iRfqVjqjuQclipg1s U6n9nQprpeABDuWUZ+Z44/e0HdrnUdcdzAKqx4lCJoW4e3VjMfphsKImt0NI9NOg +t2OLrHqYd1RVoq5LnUnIbZq1RrpJ1joXYqWd9DcVg== -----END CERTIFICATE-----Generated at Wed Nov 5 11:44:57 2025 by rpki-client