$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B57F14B86A8D11EB82AF1144C4F9AE02.roa File: B57F14B86A8D11EB82AF1144C4F9AE02.roa (raw, json) Hash identifier: 16YSTY2fnFs4eLLfhffiWxoVMVf5CI9XbA8xhp2Kh5I= Subject key identifier: 93:70:AF:47:62:89:F8:2E:93:41:F1:B4:67:1B:7E:27:BF:E9:A1:2F Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 07A1 Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B57F14B86A8D11EB82AF1144C4F9AE02.roa Signing time: Thu 30 Oct 2025 22:12:10 +0000 ROA not before: Thu 30 Oct 2025 22:12:10 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9381 IP address blocks: 58.64.128.0/17 maxlen: 24 59.188.0.0/16 maxlen: 24 103.84.32.0/22 maxlen: 24 113.10.128.0/17 maxlen: 24 123.1.128.0/17 maxlen: 24 192.188.82.0/23 maxlen: 24 202.4.162.0/23 maxlen: 24 203.98.128.0/18 maxlen: 24 203.176.192.0/18 maxlen: 24 210.209.64.0/18 maxlen: 24 210.245.128.0/17 maxlen: 24 2401:4a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F, serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 30 22:12:10 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6903e2ba-5b14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e1:99:98:15:a1:51:eb:29:4f:3e:d5:99:be: 0b:53:6c:c8:35:2b:6f:49:bc:a0:fc:d3:ea:9d:ce: f1:c1:29:aa:43:2d:f3:26:a4:22:de:1e:a6:f2:54: ce:07:81:3a:81:7d:fe:27:49:6b:91:4b:59:e7:1c: 52:53:a7:e1:a8:f5:53:63:2a:2a:77:e4:16:2b:ff: af:ce:45:be:ea:55:31:8c:9c:54:61:b2:67:15:83: 23:9f:98:ed:45:61:3f:28:c8:8a:55:d5:12:df:b4: 80:cc:b8:33:61:e5:32:93:5e:20:0d:04:9f:77:a1: fb:b7:68:ea:ed:a8:3f:17:4b:a4:8b:45:9e:b3:44: 35:74:bb:ef:c5:49:f4:12:cf:11:84:89:3b:3b:d7: a2:60:cb:6b:aa:80:ce:96:67:e0:30:6f:68:21:a3: 4c:90:6c:dd:bc:b6:59:0f:92:23:97:e0:d1:20:47: 97:5f:27:05:8b:3c:35:b0:b9:b6:e3:83:db:33:5a: 26:30:e9:ac:b8:60:56:3f:18:ae:12:72:8e:7d:93: c9:0b:3f:69:a7:e9:af:2d:d5:54:d8:cd:d5:72:92: 80:d8:a1:a0:31:cd:85:09:2b:dc:1f:d3:9a:e6:7c: 91:39:84:6a:f2:6b:6e:3e:32:d0:81:e5:8f:06:1d: bf:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:70:AF:47:62:89:F8:2E:93:41:F1:B4:67:1B:7E:27:BF:E9:A1:2F X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/B57F14B86A8D11EB82AF1144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.64.128.0/17 59.188.0.0/16 103.84.32.0/22 113.10.128.0/17 123.1.128.0/17 192.188.82.0/23 202.4.162.0/23 203.98.128.0/18 203.176.192.0/18 210.209.64.0/18 210.245.128.0/17 IPv6: 2401:4a00::/32 Signature Algorithm: sha256WithRSAEncryption 59:7b:2d:3a:f2:26:b6:3f:c8:26:61:46:d9:36:12:e7:49:32: a3:b0:ba:5c:30:d2:70:9f:f8:24:48:48:ff:98:01:3f:62:a3: 53:d5:9f:0a:6f:dd:8c:dc:4a:bc:6d:b1:ae:40:99:7c:9e:e4: 8b:5f:2d:2b:63:46:07:50:96:fc:f6:f6:cf:bf:ad:c8:e9:cc: ad:21:fd:74:f0:4d:eb:00:ac:43:98:0d:94:1c:bc:ae:32:b8: b6:b5:c0:8e:b1:c5:f0:71:ed:02:14:a1:a5:5b:6b:6e:1d:fb: ef:e1:3f:d2:24:fa:77:f4:22:cd:f0:dd:60:fe:3a:63:15:4c: fd:1f:63:85:56:be:10:c5:ad:1c:25:dd:de:50:ce:52:84:6b: 67:c7:65:b3:be:88:06:8b:59:53:01:27:13:f8:4b:a7:48:35: 05:5e:3b:18:ea:89:77:af:08:f4:2d:0f:0e:fd:7a:fd:73:9e: ac:f9:62:83:29:e1:97:aa:9d:a7:e7:bc:d9:50:fb:ab:38:90: af:c0:8b:56:94:84:1c:7e:81:fc:fa:fa:dd:c3:ad:a2:05:24: e3:9c:de:08:a5:f5:32:5a:fd:71:c2:9c:16:36:9e:0d:95:da: f6:b6:f8:08:08:ee:c7:ea:40:26:d2:8d:de:00:7b:f4:9b:05: 9a:dd:72:6b -----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjUxMDMwMjIxMjEwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzZTJiYS01YjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuGZmBWhUespTz7Vmb4LU2zINStvSbyg/NPqnc7xwSmqQy3zJqQi3h6m8lTO B4E6gX3+J0lrkUtZ5xxSU6fhqPVTYyoqd+QWK/+vzkW+6lUxjJxUYbJnFYMjn5jt RWE/KMiKVdUS37SAzLgzYeUyk14gDQSfd6H7t2jq7ag/F0uki0Wes0Q1dLvvxUn0 Es8RhIk7O9eiYMtrqoDOlmfgMG9oIaNMkGzdvLZZD5Ijl+DRIEeXXycFizw1sLm2 44PbM1omMOmsuGBWPxiuEnKOfZPJCz9pp+mvLdVU2M3VcpKA2KGgMc2FCSvcH9Oa 5nyROYRq8mtuPjLQgeWPBh2/IQIDAQABo4IC3zCCAtswHQYDVR0OBBYEFJNwr0di ifguk0HxtGcbfie/6aEvMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvQjU3RjE0Qjg2 QThEMTFFQjgyQUYxMTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwaQYIKwYBBQUHAQcBAf8E WjBYMEcEAgABMEEDBAc6QIADAwA7vAMEAmdUIAMEB3EKgAMEB3sBgAMEAcC8UgME AcoEogMEBstigAMEBsuwwAMEBtLRQAMEB9L1gDANBAIAAjAHAwUAJAFKADANBgkq hkiG9w0BAQsFAAOCAQEAWXstOvImtj/IJmFG2TYS50kyo7C6XDDScJ/4JEhI/5gB P2KjU9WfCm/djNxKvG2xrkCZfJ7ki18tK2NGB1CW/Pb2z7+tyOnMrSH9dPBN6wCs Q5gNlBy8rjK4trXAjrHF8HHtAhShpVtrbh377+E/0iT6d/QizfDdYP46YxVM/R9j hVa+EMWtHCXd3lDOUoRrZ8dls76IBotZUwEnE/hLp0g1BV47GOqJd68I9C0PDv16 /XOerPligynhl6qdp+e82VD7qziQr8CLVpSEHH6B/Pr63cOtogUk45zeCKX1Mlr9 ccKcFjaeDZXa9rb4CAjux+pAJtKN3gB79JsFmt1yaw== -----END CERTIFICATE-----Generated at Wed Nov 5 20:05:52 2025 by rpki-client