$ rpki-client -vvf rpki.apnic.net/member_repository/A9131CF4/3EA638C8B71111F0A5C28073C4F9AE02/4B2379BEB71911F0AAA11D51C4F9AE02.roa File: 4B2379BEB71911F0AAA11D51C4F9AE02.roa (raw, json) Hash identifier: OoO6vzm9QTl7W0T8BGLxXokhNtIDZhUlXaWvn3KwZew= Subject key identifier: 9F:54:73:0D:98:91:1C:C3:BC:0C:7C:1B:88:3A:8F:E3:58:BB:F4:6B Certificate issuer: /CN=A9131CF4/serialNumber=69ECF0E2A1ED8F05CC278B3E13F662ED0B35488C Certificate serial: 04 Authority key identifier: 69:EC:F0:E2:A1:ED:8F:05:CC:27:8B:3E:13:F6:62:ED:0B:35:48:8C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aezw4qHtjwXMJ4s-E_Zi7Qs1SIw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131CF4/3EA638C8B71111F0A5C28073C4F9AE02/4B2379BEB71911F0AAA11D51C4F9AE02.roa Signing time: Sat 01 Nov 2025 11:52:51 +0000 ROA not before: Sat 01 Nov 2025 11:52:51 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 149049 IP address blocks: 138.252.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131CF4/3EA638C8B71111F0A5C28073C4F9AE02/aezw4qHtjwXMJ4s-E_Zi7Qs1SIw.crl rsync://rpki.apnic.net/member_repository/A9131CF4/3EA638C8B71111F0A5C28073C4F9AE02/aezw4qHtjwXMJ4s-E_Zi7Qs1SIw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aezw4qHtjwXMJ4s-E_Zi7Qs1SIw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:09:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131CF4, serialNumber=69ECF0E2A1ED8F05CC278B3E13F662ED0B35488C Validity Not Before: Nov 1 11:52:51 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6905f493-7917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:33:a5:75:f9:6c:5d:31:c5:cb:7a:11:e3:62: 7b:b3:f3:72:ea:f8:19:45:64:dc:35:0a:d7:1e:12: 0c:9f:db:36:ed:63:db:2d:e3:5f:d2:3d:d7:fb:b5: 2d:26:ff:2d:f1:34:ed:a5:eb:8d:b5:4d:1b:ec:ea: c8:8e:6a:30:d7:eb:cb:d9:da:a3:be:b5:46:a3:c2: d1:5b:bd:6b:89:a1:91:22:3f:49:5e:ea:83:ca:32: 16:14:79:fb:a1:50:63:92:15:6d:c5:c9:c2:fd:b5: 58:da:20:fe:d0:76:7c:03:eb:d0:04:86:2d:84:d4: 89:d9:f6:d5:ae:48:22:bb:64:3e:fe:a8:4a:99:b1: 50:97:c1:d3:4d:67:b3:22:2a:40:41:48:2f:a0:03: 64:28:dc:ed:7a:24:9c:05:c6:bb:b8:67:4c:e8:6b: 6a:27:67:54:78:2f:b4:91:12:47:de:e9:3b:47:37: bb:95:01:ee:a3:5f:3e:1a:9c:4d:e1:90:5a:28:bd: e8:91:c1:f6:7e:7f:53:7a:64:7f:dd:ad:02:2f:ab: c1:ab:15:c9:25:22:2b:a2:af:4e:47:ea:cd:47:64: d9:8d:35:e5:87:02:43:88:e7:23:4e:c0:cd:41:74: 34:7d:39:0d:ec:7c:3d:a7:65:3a:b0:86:22:ad:6c: 37:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:54:73:0D:98:91:1C:C3:BC:0C:7C:1B:88:3A:8F:E3:58:BB:F4:6B X509v3 Authority Key Identifier: keyid:69:EC:F0:E2:A1:ED:8F:05:CC:27:8B:3E:13:F6:62:ED:0B:35:48:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131CF4/3EA638C8B71111F0A5C28073C4F9AE02/aezw4qHtjwXMJ4s-E_Zi7Qs1SIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/aezw4qHtjwXMJ4s-E_Zi7Qs1SIw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131CF4/3EA638C8B71111F0A5C28073C4F9AE02/4B2379BEB71911F0AAA11D51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.58.0/24 Signature Algorithm: sha256WithRSAEncryption 48:4a:eb:1f:f7:71:78:61:d4:ae:3f:f1:46:68:23:f1:c6:4d: d6:f6:48:49:8e:e1:88:14:3f:61:e1:2a:72:28:03:b5:92:cb: bb:2c:f0:08:18:dc:5d:97:af:ba:8f:c1:d3:95:db:ee:a4:60: 38:51:2f:6c:4b:0a:32:46:50:f5:81:b0:02:1c:b6:ac:4a:19: e1:7e:39:91:49:1b:94:14:a9:7c:cd:33:b9:9b:17:74:31:74: 9e:7a:f1:2f:b6:a3:75:9d:64:ff:f7:dd:ff:0b:81:40:08:52: ba:c9:6d:a3:c6:41:a5:93:2f:ee:99:35:04:c2:67:2f:14:be: 92:a8:52:c1:94:22:e1:60:51:43:06:38:15:09:19:ba:eb:16: d8:81:33:65:74:7b:29:4b:f8:f1:eb:3e:a9:e6:eb:ac:0b:7e: a8:ca:80:bb:88:9f:83:5b:2e:d8:75:67:eb:69:68:21:f0:cf: b3:0a:91:be:0d:00:b9:ba:8e:f4:df:94:75:cd:0d:e9:21:93: 54:a8:e1:3d:39:90:57:58:d7:fb:3d:6a:d0:96:ae:35:8d:76: a5:c1:cf:f7:d0:f7:2b:5f:9d:2a:69:18:13:d6:9b:66:f1:cb: 33:9c:80:6a:19:bf:ef:59:09:13:12:5b:83:37:3a:4e:2a:11: 34:23:e9:00 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz MUNGNDExMC8GA1UEBRMoNjlFQ0YwRTJBMUVEOEYwNUNDMjc4QjNFMTNGNjYyRUQw QjM1NDg4QzAeFw0yNTExMDExMTUyNTFaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDVmNDkzLTc5MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzM6V1+WxdMcXLehHjYnuz83Lq+BlFZNw1CtceEgyf2zbtY9st41/SPdf7tS0m /y3xNO2l6421TRvs6siOajDX68vZ2qO+tUajwtFbvWuJoZEiP0le6oPKMhYUefuh UGOSFW3FycL9tVjaIP7QdnwD69AEhi2E1InZ9tWuSCK7ZD7+qEqZsVCXwdNNZ7Mi KkBBSC+gA2Qo3O16JJwFxru4Z0zoa2onZ1R4L7SREkfe6TtHN7uVAe6jXz4anE3h kFooveiRwfZ+f1N6ZH/drQIvq8GrFcklIiuir05H6s1HZNmNNeWHAkOI5yNOwM1B dDR9OQ3sfD2nZTqwhiKtbDeFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUn1RzDZiR HMO8DHwbiDqP41i79GswHwYDVR0jBBgwFoAUaezw4qHtjwXMJ4s+E/Zi7Qs1SIww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMxQ0Y0LzNFQTYzOEM4Qjcx MTExRjBBNUMyODA3M0M0RjlBRTAyL2Flenc0cUh0andYTUo0cy1FX1ppN1FzMVNJ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvYWV6dzRxSHRqd1hNSjRzLUVfWmk3UXMxU0l3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUNGNC8zRUE2MzhDOEI3MTExMUYwQTVDMjgwNzNDNEY5QUUwMi80QjIzNzlCRUI3 MTkxMUYwQUFBMTFENTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIr8OjANBgkqhkiG9w0BAQsFAAOCAQEASErrH/dxeGHUrj/x Rmgj8cZN1vZISY7hiBQ/YeEqcigDtZLLuyzwCBjcXZevuo/B05Xb7qRgOFEvbEsK MkZQ9YGwAhy2rEoZ4X45kUkblBSpfM0zuZsXdDF0nnrxL7ajdZ1k//fd/wuBQAhS uslto8ZBpZMv7pk1BMJnLxS+kqhSwZQi4WBRQwY4FQkZuusW2IEzZXR7KUv48es+ qebrrAt+qMqAu4ifg1su2HVn62loIfDPswqRvg0AubqO9N+Udc0N6SGTVKjhPTmQ V1jX+z1q0JauNY12pcHP99D3K1+dKmkYE9abZvHLM5yAahm/71kJExJbgzc6TioR NCPpAA== -----END CERTIFICATE-----Generated at Wed Nov 5 09:38:55 2025 by rpki-client