$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa File: 0B0485A250B811EBA8A3C670C4F9AE02.roa (raw, json) Hash identifier: Ytc9ndn0dlR+m8jI9GCXZzm6gP/TjFiRbPEGnx2/DEc= Subject key identifier: F7:B0:35:CE:75:BA:C4:59:B7:B5:DE:C5:B8:F1:C6:0D:CA:7B:45:8C Certificate issuer: /CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Certificate serial: 0A82 Authority key identifier: AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa Signing time: Fri 02 May 2025 20:30:43 +0000 ROA not before: Fri 02 May 2025 20:30:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 198949 IP address blocks: 43.251.21.0/24 maxlen: 24 43.251.22.0/23 maxlen: 23 202.155.221.0/24 maxlen: 24 218.253.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:58:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2690 (0xa82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1E, serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Validity Not Before: May 2 20:30:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68152b73-fb0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:90:29:39:97:50:cd:1e:08:7c:7e:11:1b:15: ce:45:fd:2d:a0:53:d2:7d:fd:ae:fc:65:25:89:a0: 36:b2:e7:91:00:ad:49:02:27:84:5f:0b:fb:20:f9: cc:5e:a4:ca:8c:8c:22:56:cc:fc:65:99:4a:09:44: 2f:94:c7:2d:0f:15:a3:de:f7:83:16:55:b1:44:9e: 4d:0b:ac:0c:45:5c:2b:d3:f7:99:18:dd:59:50:3e: 92:d6:2a:8c:92:24:06:b6:c6:11:ac:38:86:6e:a5: bc:62:83:a0:ce:44:5a:37:30:b6:df:51:ee:bc:99: 4f:3c:0a:ee:f5:0f:38:a6:54:2b:b7:ae:14:5c:9b: 86:ab:f5:e1:1e:58:39:2f:3f:03:b0:f4:6f:33:0f: 95:fc:9a:6d:cc:14:8e:3d:90:76:07:c6:db:ca:76: 2d:27:86:e7:6d:5b:da:2e:72:83:6f:46:70:3e:c9: db:7b:51:23:c0:00:65:7e:36:21:2e:c3:d4:91:48: 9b:47:92:6e:49:73:0d:db:f2:33:e0:7a:d9:7c:23: 4c:6b:a5:9f:1d:51:24:ef:3b:60:b2:eb:6b:47:e3: 3f:82:ff:bd:b5:c3:d0:d3:b3:5b:35:25:55:7a:c3: 92:13:e6:03:13:2d:5f:f5:7e:58:f2:ad:58:29:72: d3:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B0:35:CE:75:BA:C4:59:B7:B5:DE:C5:B8:F1:C6:0D:CA:7B:45:8C X509v3 Authority Key Identifier: keyid:AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.21.0-43.251.23.255 202.155.221.0/24 218.253.207.0/24 Signature Algorithm: sha256WithRSAEncryption 69:2c:ef:e1:1c:56:de:65:a0:ba:d5:a4:62:49:72:0e:0b:6c: bb:1b:af:07:20:7d:bc:88:b9:78:d3:ac:1f:88:5c:14:ed:76: 1c:0a:ea:e0:c5:22:b1:90:cb:7f:ce:8d:c0:7b:c8:b8:07:24: 2d:cf:d1:70:34:61:e6:7e:ff:06:6b:13:5e:b6:52:62:63:24: 5f:b4:4f:24:30:ad:fd:72:9e:65:a9:f7:a7:b6:04:0e:78:5f: 88:bb:c9:16:91:08:a5:8b:21:f6:2b:67:ec:da:7a:f8:26:fb: 3c:7a:be:c9:ad:1c:67:2c:03:e3:48:72:97:50:86:3c:af:bc: 04:28:75:62:6f:12:12:c9:ed:bd:c5:92:45:70:89:ba:f3:71: 8e:80:cf:2e:2d:da:e3:04:b8:c3:95:6e:ef:6c:99:05:e4:b9: 22:03:b6:cf:df:e1:61:45:db:1a:d0:f4:28:33:0a:57:60:fe: 7d:f9:f7:9c:1c:6b:ce:63:43:5f:f1:8a:77:db:48:8f:a7:96: b0:96:57:22:08:ac:e3:f7:51:26:64:65:6d:7e:4f:89:7e:d8: 99:e5:b2:1a:af:0b:c0:f1:36:b2:6d:3a:55:c2:21:06:f8:74: 04:7a:73:a6:f8:ef:c8:af:71:20:2e:2a:4b:7b:1e:80:42:de: ed:78:72:47 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCoIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUUxMTAvBgNVBAUTKEFCRDQzNTQ4NjU5Q0JCMjc2RUY4RDM1QjgyMTJGODM4 RThDRUI3NUYwHhcNMjUwNTAyMjAzMDQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MmI3My1mYjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZApOZdQzR4IfH4RGxXORf0toFPSff2u/GUliaA2sueRAK1JAieEXwv7IPnM XqTKjIwiVsz8ZZlKCUQvlMctDxWj3veDFlWxRJ5NC6wMRVwr0/eZGN1ZUD6S1iqM kiQGtsYRrDiGbqW8YoOgzkRaNzC231HuvJlPPAru9Q84plQrt64UXJuGq/XhHlg5 Lz8DsPRvMw+V/JptzBSOPZB2B8bbynYtJ4bnbVvaLnKDb0ZwPsnbe1EjwABlfjYh LsPUkUibR5JuSXMN2/Iz4HrZfCNMa6WfHVEk7ztgsutrR+M/gv+9tcPQ07NbNSVV esOSE+YDEy1f9X5Y8q1YKXLTdwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFPewNc51 usRZt7Xexbjxxg3Ke0WMMB8GA1UdIwQYMBaAFKvUNUhlnLsnbvjTW4IS+Djozrdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRS84OTM2Q0MwNDg4 MzIxMUVBODQ4NjFCNzBDNEY5QUUwMi9xOVExU0dXY3V5ZHUtTk5iZ2hMNE9Pak90 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E5UTFTR1djdXlkdS1OTmJnaEw0T09qT3QxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUUvODkzNkNDMDQ4ODMyMTFFQTg0ODYxQjcwQzRGOUFFMDIvMEIwNDg1QTI1 MEI4MTFFQkE4QTNDNjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEACv7FQMEAyv7EAMEAMqb3QMEANr9zzANBgkqhkiG9w0B AQsFAAOCAQEAaSzv4RxW3mWgutWkYklyDgtsuxuvByB9vIi5eNOsH4hcFO12HArq 4MUisZDLf86NwHvIuAckLc/RcDRh5n7/BmsTXrZSYmMkX7RPJDCt/XKeZan3p7YE DnhfiLvJFpEIpYsh9itn7Np6+Cb7PHq+ya0cZywD40hyl1CGPK+8BCh1Ym8SEsnt vcWSRXCJuvNxjoDPLi3a4wS4w5Vu72yZBeS5IgO2z9/hYUXbGtD0KDMKV2D+ffn3 nBxrzmNDX/GKd9tIj6eWsJZXIgis4/dRJmRlbX5PiX7YmeWyGq8LwPE2sm06VcIh Bvh0BHpzpvjvyK9xIC4qS3segELe7XhyRw== -----END CERTIFICATE-----Generated at Wed Nov 5 13:55:29 2025 by rpki-client