$ rpki-client -vvf rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/08B79AD09C4111F0A9483031C4F9AE02.roa File: 08B79AD09C4111F0A9483031C4F9AE02.roa (raw, json) Hash identifier: pfN97xtI/DeRbJop2c9X92MygEUcxnLoB0XTR1dIrkw= Subject key identifier: 3B:9C:12:28:1E:7B:C9:82:25:02:10:FF:41:A3:3B:3C:15:98:A5:FF Certificate issuer: /CN=A9135D1F/serialNumber=0CAB68E069083A4388E8FC69758F045962FD01AF Certificate serial: 25 Authority key identifier: 0C:AB:68:E0:69:08:3A:43:88:E8:FC:69:75:8F:04:59:62:FD:01:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/08B79AD09C4111F0A9483031C4F9AE02.roa Signing time: Mon 27 Oct 2025 22:30:09 +0000 ROA not before: Mon 27 Oct 2025 22:30:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17728 IP address blocks: 203.28.195.0/24 maxlen: 24 203.32.55.0/24 maxlen: 24 203.34.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.crl rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:03:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135D1F, serialNumber=0CAB68E069083A4388E8FC69758F045962FD01AF Validity Not Before: Oct 27 22:30:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68fff271-8c0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b5:b9:0d:d7:14:48:34:7b:f2:92:e0:60:07: f6:b4:f8:27:cb:ea:81:16:87:93:02:05:09:28:c7: e7:d7:e2:a7:85:18:1d:1a:c7:ad:d7:d5:cb:de:41: d8:e7:d4:f4:58:49:09:7d:13:b5:ab:7e:62:65:ee: 97:d3:86:47:1f:57:9e:46:f3:91:cc:16:b9:3e:d6: ad:25:10:b9:2f:e2:9e:12:02:45:aa:de:62:84:56: 75:6b:cc:c3:bf:f8:ee:ff:53:a5:ff:6c:94:15:d5: f9:5a:c6:8f:6c:2e:e2:89:6c:e9:9d:8a:11:1a:07: b3:18:0a:fc:29:ef:93:11:c9:d6:9e:be:50:09:a1: 2e:6c:6a:48:3e:24:86:69:50:6a:0d:88:af:7b:8d: 10:f8:04:7b:19:ba:5e:16:73:64:08:e8:5d:26:9e: e0:89:67:0a:80:26:ab:cc:3a:e1:2e:fd:46:f7:72: 1b:67:e1:83:fb:88:7e:5b:86:2d:67:15:0e:14:e0: 77:72:80:d6:69:8d:f9:5d:4a:26:cb:4f:27:ba:2f: 65:b1:c8:49:ad:b3:ef:af:5d:b3:78:12:51:b6:c6: ab:8f:c4:26:39:6a:51:83:19:5a:bf:e1:e7:86:bf: b7:e0:1f:0b:aa:ab:27:a5:c8:d5:3c:24:31:d6:6f: 1b:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:9C:12:28:1E:7B:C9:82:25:02:10:FF:41:A3:3B:3C:15:98:A5:FF X509v3 Authority Key Identifier: keyid:0C:AB:68:E0:69:08:3A:43:88:E8:FC:69:75:8F:04:59:62:FD:01:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/DKto4GkIOkOI6PxpdY8EWWL9Aa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKto4GkIOkOI6PxpdY8EWWL9Aa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135D1F/AD2021A4977411F080BF1E64C4F9AE02/08B79AD09C4111F0A9483031C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.195.0/24 203.32.55.0/24 203.34.190.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:6a:c9:bf:88:53:cf:57:05:90:18:74:55:a0:81:9f:94:a0: b4:3f:b4:cb:71:a7:5b:7e:1c:5b:22:31:af:56:07:de:2f:22: bb:ec:71:0e:4f:66:8a:cb:d6:9e:38:72:f6:61:d3:9c:4b:df: dc:e3:e4:12:40:0d:42:d6:55:e1:93:9a:36:f0:ac:7e:0f:64: b5:36:eb:e4:7e:63:18:70:f6:db:d7:8c:5d:46:f4:bb:b8:8c: 5b:db:f4:ac:f3:e4:b7:55:54:21:c8:ce:0c:8d:fb:b3:43:f8: 61:33:dc:65:39:ca:b7:3e:ae:69:8f:58:bb:63:a7:15:06:1c: b3:3c:5d:f5:18:23:cb:8f:85:51:52:4d:c1:b4:6b:fa:73:06: 29:a9:69:e2:ad:9a:98:0a:c7:7c:da:f4:5c:0f:88:b7:23:18: 4c:45:8e:af:ea:cd:8e:74:38:0f:b2:0c:57:52:ab:09:ff:39: 78:5a:06:96:4c:53:05:4a:95:06:c5:f3:c4:15:09:e8:fe:8d: a7:33:a5:ce:75:35:a6:9a:c9:59:94:3a:34:49:31:11:d9:5c: 2c:8a:c1:63:f6:8f:34:1d:70:6c:2c:0e:81:fd:21:19:6f:a1: 00:e6:20:f1:00:d5:f5:0e:c4:0b:d4:ff:41:65:cc:43:f5:cb: 06:0a:82:12 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NUQxRjExMC8GA1UEBRMoMENBQjY4RTA2OTA4M0E0Mzg4RThGQzY5NzU4RjA0NTk2 MkZEMDFBRjAeFw0yNTEwMjcyMjMwMDlaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZmZmMjcxLThjMGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBtbkN1xRINHvykuBgB/a0+CfL6oEWh5MCBQkox+fX4qeFGB0ax63X1cveQdjn 1PRYSQl9E7WrfmJl7pfThkcfV55G85HMFrk+1q0lELkv4p4SAkWq3mKEVnVrzMO/ +O7/U6X/bJQV1flaxo9sLuKJbOmdihEaB7MYCvwp75MRydaevlAJoS5sakg+JIZp UGoNiK97jRD4BHsZul4Wc2QI6F0mnuCJZwqAJqvMOuEu/Ub3chtn4YP7iH5bhi1n FQ4U4HdygNZpjfldSibLTye6L2WxyEmts++vXbN4ElG2xquPxCY5alGDGVq/4eeG v7fgHwuqqyelyNU8JDHWbxsVAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUO5wSKB57 yYIlAhD/QaM7PBWYpf8wHwYDVR0jBBgwFoAUDKto4GkIOkOI6PxpdY8EWWL9Aa8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM1RDFGL0FEMjAyMUE0OTc3 NDExRjA4MEJGMUU2NEM0RjlBRTAyL0RLdG80R2tJT2tPSTZQeHBkWThFV1dMOUFh OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREt0bzRHa0lPa09JNlB4cGRZOEVXV0w5QWE4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NUQxRi9BRDIwMjFBNDk3NzQxMUYwODBCRjFFNjRDNEY5QUUwMi8wOEI3OUFEMDlD NDExMUYwQTk0ODMwMzFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAMscwwMEAMsgNwMEAMsivjANBgkqhkiG9w0BAQsFAAOCAQEA OmrJv4hTz1cFkBh0VaCBn5SgtD+0y3GnW34cWyIxr1YH3i8iu+xxDk9misvWnjhy 9mHTnEvf3OPkEkANQtZV4ZOaNvCsfg9ktTbr5H5jGHD229eMXUb0u7iMW9v0rPPk t1VUIcjODI37s0P4YTPcZTnKtz6uaY9Yu2OnFQYcszxd9Rgjy4+FUVJNwbRr+nMG Kalp4q2amArHfNr0XA+ItyMYTEWOr+rNjnQ4D7IMV1KrCf85eFoGlkxTBUqVBsXz xBUJ6P6NpzOlznU1pprJWZQ6NEkxEdlcLIrBY/aPNB1wbCwOgf0hGW+hAOYg8QDV 9Q7EC9T/QWXMQ/XLBgqCEg== -----END CERTIFICATE-----Generated at Wed Nov 5 09:47:50 2025 by rpki-client