$ rpki-client -vvf rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/BC38A630AFB511F0912BFF37C4F9AE02.roa File: BC38A630AFB511F0912BFF37C4F9AE02.roa (raw, json) Hash identifier: oPBgnVvNsWUsWyM6MTNBUeG3AJr025Hszcims1Fy1pQ= Subject key identifier: 10:17:03:B1:C3:22:71:5C:43:89:BD:77:89:88:E5:21:F0:3A:22:DB Certificate issuer: /CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Certificate serial: 0872 Authority key identifier: 96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/BC38A630AFB511F0912BFF37C4F9AE02.roa Signing time: Thu 23 Oct 2025 02:12:33 +0000 ROA not before: Thu 23 Oct 2025 02:12:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 202736 IP address blocks: 43.225.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2162 (0x872) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912176D, serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Validity Not Before: Oct 23 02:12:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f98f11-1a4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:06:d0:c2:c9:81:ee:25:e6:e4:7c:7f:d4:a0: 3c:83:a9:75:53:82:3c:78:3d:34:46:96:7c:c4:57: 5d:60:01:d2:ba:8d:e1:ab:11:42:58:e7:00:a0:ec: 13:79:fa:2e:cd:55:8d:fc:c3:5e:4a:b8:36:ee:fe: d9:5d:7b:cb:cc:fd:7b:fb:14:40:9d:27:f8:f9:ca: 31:63:4b:16:8b:77:1f:62:5f:de:06:b4:10:81:ba: 71:35:cf:d7:e0:33:d6:78:d3:71:b2:38:a3:89:ef: b8:4a:92:7e:2f:6b:1e:1e:ee:2b:23:0c:6e:75:4d: 7b:ac:c5:37:46:71:f0:4c:57:c4:65:1c:33:fa:cb: 35:2b:2e:40:35:17:10:9b:0f:7d:12:32:a4:f0:63: 99:8c:4d:04:8b:c9:7a:53:af:cd:53:ca:3f:d3:50: 28:b7:69:69:91:a6:fe:f1:40:97:78:78:7e:f9:54: d9:25:93:1e:6a:ea:39:3f:6e:d8:b2:77:a2:9e:3d: a6:1e:a7:bb:68:1d:6a:61:3b:98:60:8a:f1:f0:d1: b5:94:f8:f1:58:c6:3c:9d:14:49:cc:e2:f2:e3:7a: 21:e1:fc:fd:3d:65:3b:c7:d0:0a:71:6e:0c:89:0e: 9f:8e:76:c3:4b:da:1e:d1:36:f8:2c:2f:93:70:96: 58:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:17:03:B1:C3:22:71:5C:43:89:BD:77:89:88:E5:21:F0:3A:22:DB X509v3 Authority Key Identifier: keyid:96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/BC38A630AFB511F0912BFF37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.37.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:25:c1:1e:8d:4c:f8:24:6f:73:60:ad:02:67:aa:19:54:60: 44:65:46:12:98:20:59:db:bf:a0:7f:43:75:9a:e9:4c:26:c8: f7:c5:5c:03:e8:c4:09:31:2f:fc:62:2f:16:a1:e5:d6:73:a0: d2:f7:77:4b:2b:3f:d1:d6:9d:39:65:40:7c:2f:38:ad:73:25: b2:ae:0e:b4:e9:1f:57:3c:b4:b1:bb:77:03:98:7d:11:53:bc: 70:74:fd:91:f5:fb:a4:db:ca:d3:f6:a8:66:44:70:60:28:9e: a0:36:ef:43:08:9f:90:f3:7d:16:ba:d2:37:a5:3c:70:18:45: d1:54:b4:46:9b:e0:c5:2f:ea:f1:19:79:90:4c:f0:36:1a:0b: db:5e:e2:e4:44:ce:68:60:53:9b:22:0a:ea:5c:36:75:d7:1d: e4:05:61:7d:d6:79:ea:fa:ed:21:5e:b6:6a:a7:ca:06:11:3c: 94:f1:d1:8e:de:11:2a:5d:f5:e0:cb:3a:18:42:db:89:06:e0: 02:f8:3f:a1:42:59:00:84:5d:d4:c0:27:eb:1a:82:94:4b:26: ff:f6:76:29:f9:fc:28:d6:b1:e6:dc:eb:17:ba:ec:bb:ae:2f: 02:f2:60:04:af:ad:02:42:c7:f9:a4:46:24:86:e6:c1:c6:67: 79:a8:7b:ae -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCHIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE3NkQxMTAvBgNVBAUTKDk2RjQyRTE5RjY5RDU5NkEwMzE4OTIxNTkwQTE3REQ1 MzIzM0U1OTUwHhcNMjUxMDIzMDIxMjMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5OGYxMS0xYTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwbQwsmB7iXm5Hx/1KA8g6l1U4I8eD00RpZ8xFddYAHSuo3hqxFCWOcAoOwT efouzVWN/MNeSrg27v7ZXXvLzP17+xRAnSf4+coxY0sWi3cfYl/eBrQQgbpxNc/X 4DPWeNNxsjijie+4SpJ+L2seHu4rIwxudU17rMU3RnHwTFfEZRwz+ss1Ky5ANRcQ mw99EjKk8GOZjE0Ei8l6U6/NU8o/01Aot2lpkab+8UCXeHh++VTZJZMeauo5P27Y sneinj2mHqe7aB1qYTuYYIrx8NG1lPjxWMY8nRRJzOLy43oh4fz9PWU7x9AKcW4M iQ6fjnbDS9oe0Tb4LC+TcJZYYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBAXA7HD InFcQ4m9d4mI5SHwOiLbMB8GA1UdIwQYMBaAFJb0Lhn2nVlqAxiSFZChfdUyM+WV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTc2RC85M0QxN0NEMDA2 QTAxMUVCQjQwOTA4NTlDNEY5QUUwMi9sdlF1R2ZhZFdXb0RHSklWa0tGOTFUSXo1 WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2UXVHZmFkV1dvREdKSVZrS0Y5MVRJejVaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE3NkQvOTNEMTdDRDAwNkEwMTFFQkI0MDkwODU5QzRGOUFFMDIvQkMzOEE2MzBB RkI1MTFGMDkxMkJGRjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr4SUwDQYJKoZIhvcNAQELBQADggEBAA0lwR6NTPgkb3Ng rQJnqhlUYERlRhKYIFnbv6B/Q3Wa6UwmyPfFXAPoxAkxL/xiLxah5dZzoNL3d0sr P9HWnTllQHwvOK1zJbKuDrTpH1c8tLG7dwOYfRFTvHB0/ZH1+6TbytP2qGZEcGAo nqA270MIn5DzfRa60jelPHAYRdFUtEab4MUv6vEZeZBM8DYaC9te4uREzmhgU5si CupcNnXXHeQFYX3Weer67SFetmqnygYRPJTx0Y7eESpd9eDLOhhC24kG4AL4P6FC WQCEXdTAJ+sagpRLJv/2din5/CjWsebc6xe67LuuLwLyYASvrQJCx/mkRiSG5sHG Z3moe64= -----END CERTIFICATE-----Generated at Tue Nov 4 08:32:17 2025 by rpki-client