$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/C2A410D4ADA011F08E990C1DC4F9AE02.roa File: C2A410D4ADA011F08E990C1DC4F9AE02.roa (raw, json) Hash identifier: ybP8IsFu0DeKSACmjJD6LLFQ1b+PpZBTXbG4HzvhKhU= Subject key identifier: 62:A2:8C:BD:7C:81:F6:03:CB:F3:8A:F0:B1:AC:59:E3:A5:7B:AF:8B Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 09C0 Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/C2A410D4ADA011F08E990C1DC4F9AE02.roa Signing time: Tue 21 Oct 2025 02:54:46 +0000 ROA not before: Tue 21 Oct 2025 02:54:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135377 IP address blocks: 45.253.246.0/24 maxlen: 24 61.29.241.0/24 maxlen: 24 61.29.251.0/24 maxlen: 24 103.216.100.0/24 maxlen: 24 157.119.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:14:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2496 (0x9c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509, serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: Oct 21 02:54:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68f6f5f5-8292 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:b9:66:b8:63:c7:e3:1b:82:8c:72:a5:a6:9d: 1b:49:60:87:77:3a:2d:39:89:52:53:de:fb:7b:a1: 51:8c:33:20:7b:c3:52:89:da:4d:b1:3a:f5:ee:ad: d7:be:36:0a:be:d1:da:8c:50:67:96:58:ef:a3:74: 08:16:20:b7:e0:3e:7f:b6:83:ee:02:cc:a9:cb:d4: 4f:a0:ba:de:52:c8:68:18:26:38:04:ef:64:61:dc: c0:fc:f9:70:18:80:c5:41:1f:fc:3e:1d:aa:73:c4: cc:d4:11:fd:71:c4:9d:a1:cb:d8:e9:19:32:13:26: a2:78:05:e4:cb:f8:aa:64:d6:a0:d8:be:68:cc:bf: 10:10:e2:d7:a9:69:a1:d6:a4:65:bd:6b:43:f7:f0: 87:e0:a6:4b:19:5d:0f:77:a7:7a:54:09:b5:39:02: 02:0a:9d:cc:f6:4b:5d:01:bd:4d:9b:94:c3:59:7b: 43:3d:51:ee:0a:45:30:54:5e:8c:61:31:b6:2b:ec: b5:31:d0:dd:e9:3d:9f:cb:9c:78:98:6e:42:9a:d1: 54:a5:46:06:e3:da:29:e1:fa:98:7a:39:b0:78:de: b6:36:1e:cf:cf:54:17:61:c5:df:c4:e5:23:c6:04: d4:cb:50:b5:2b:c5:07:0b:f1:8f:ba:1a:58:ab:3b: 78:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:A2:8C:BD:7C:81:F6:03:CB:F3:8A:F0:B1:AC:59:E3:A5:7B:AF:8B X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/C2A410D4ADA011F08E990C1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.253.246.0/24 61.29.241.0/24 61.29.251.0/24 103.216.100.0/24 157.119.233.0/24 Signature Algorithm: sha256WithRSAEncryption 15:12:dd:e8:36:77:6b:95:24:af:1d:c4:38:33:c2:c0:d6:df: 86:47:86:53:f1:f0:da:27:87:69:5e:4c:2b:64:a2:12:a1:85: cd:0b:05:aa:fc:0a:d7:2e:56:29:bf:47:bc:a4:42:67:86:a3: 1e:5d:4f:5c:0f:46:03:2a:8f:a9:96:53:66:f7:c7:61:11:60: b4:0f:8d:31:40:bb:d0:ba:7f:ed:f6:aa:61:5e:f2:01:9d:a0: 66:7c:a3:ec:e1:99:ea:82:62:b4:85:e4:89:9f:be:ea:e2:0e: 45:c1:b8:c5:15:df:89:8d:f1:48:00:9e:d0:d0:20:8d:d8:13: 9e:54:b0:1f:a9:ea:93:c3:92:0a:c6:3c:fc:41:70:0c:15:27: cb:36:91:ea:f1:84:cd:a9:9b:4a:1d:c0:00:d4:79:b3:8a:1e: b4:3e:93:38:33:b9:17:a1:4b:6b:1e:b8:c6:eb:b5:7d:4b:b2: 80:9b:02:4a:00:43:a6:ad:18:30:ad:f0:cd:2d:bd:9c:33:ad: f7:f0:32:61:32:e8:5e:5c:95:bc:62:18:c6:a9:8f:51:e3:e1: 6b:53:18:e6:df:57:ca:ea:54:60:a0:0f:18:06:e6:47:f8:2c: ba:27:e7:cb:ea:92:6a:01:1e:b4:b0:31:fc:3f:b7:5d:33:be: f6:d0:bf:f9 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICCcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjUxMDIxMDI1NDQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY2ZjVmNS04MjkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7lmuGPH4xuCjHKlpp0bSWCHdzotOYlSU977e6FRjDMge8NSidpNsTr17q3X vjYKvtHajFBnlljvo3QIFiC34D5/toPuAsypy9RPoLreUshoGCY4BO9kYdzA/Plw GIDFQR/8Ph2qc8TM1BH9ccSdocvY6RkyEyaieAXky/iqZNag2L5ozL8QEOLXqWmh 1qRlvWtD9/CH4KZLGV0Pd6d6VAm1OQICCp3M9ktdAb1Nm5TDWXtDPVHuCkUwVF6M YTG2K+y1MdDd6T2fy5x4mG5CmtFUpUYG49op4fqYejmweN62Nh7Pz1QXYcXfxOUj xgTUy1C1K8UHC/GPuhpYqzt4oQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFGKijL18 gfYDy/OK8LGsWeOle6+LMB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU1MDkvNzlFQTU5MUVBN0JEMTFFQUFBQTYyOTQ4QzRGOUFFMDIvQzJBNDEwRDRB REEwMTFGMDhFOTkwQzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAAt/fYDBAA9HfEDBAA9HfsDBABn2GQDBACdd+kwDQYJKoZI hvcNAQELBQADggEBABUS3eg2d2uVJK8dxDgzwsDW34ZHhlPx8Nonh2leTCtkohKh hc0LBar8CtcuVim/R7ykQmeGox5dT1wPRgMqj6mWU2b3x2ERYLQPjTFAu9C6f+32 qmFe8gGdoGZ8o+zhmeqCYrSF5ImfvuriDkXBuMUV34mN8UgAntDQII3YE55UsB+p 6pPDkgrGPPxBcAwVJ8s2kerxhM2pm0odwADUebOKHrQ+kzgzuRehS2seuMbrtX1L soCbAkoAQ6atGDCt8M0tvZwzrffwMmEy6F5clbxiGMapj1Hj4WtTGObfV8rqVGCg DxgG5kf4LLon58vqkmoBHrSwMfw/t10zvvbQv/k= -----END CERTIFICATE-----Generated at Wed Nov 5 02:14:45 2025 by rpki-client