$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/F3643AD6089C11F09BB44535C4F9AE02.roa File: F3643AD6089C11F09BB44535C4F9AE02.roa (raw, json) Hash identifier: /nLaGI3z1xCPylElkOX2xhje5D3mGsOohSwIv2xzDUQ= Subject key identifier: 8F:83:53:26:D7:6D:FD:6D:EF:5C:B9:39:88:D0:09:B7:D3:81:D9:E1 Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 08EB Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/F3643AD6089C11F09BB44535C4F9AE02.roa Signing time: Tue 04 Nov 2025 21:40:33 +0000 ROA not before: Tue 04 Nov 2025 21:40:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 18115 IP address blocks: 126.209.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:40:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2283 (0x8eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA, serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Nov 4 21:40:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690a72d1-d40b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:eb:9f:cc:da:ea:d7:7f:9d:7f:b1:6e:35:30: 49:5f:52:35:fd:60:ee:31:df:d3:4f:d0:b9:1d:73: a2:57:95:66:5d:82:47:07:4c:cb:0b:92:da:f2:03: 4b:0b:e7:9b:65:b2:3f:a4:21:15:de:63:40:ac:4c: ca:49:05:84:18:ca:ff:e0:45:bb:0f:31:df:63:15: b8:51:d7:ff:15:35:42:1d:eb:f3:92:0d:a8:c1:1b: 5b:34:27:69:2b:5e:56:3e:fc:67:0a:38:99:65:f7: e7:04:18:e2:39:ca:07:b0:70:ba:1c:c9:aa:50:fa: 8f:6a:8a:12:ed:51:6c:72:bf:50:49:6a:eb:6c:2a: 4f:de:96:ee:c7:1d:e8:14:f4:fb:ee:ab:f3:3c:19: e8:3e:d9:96:25:55:67:6b:23:95:9b:70:6f:b3:cc: 93:50:4b:c0:5d:9a:18:07:7b:83:0c:f4:6f:74:f1: 05:6d:3a:2d:77:71:c7:5c:7f:c4:d3:d4:ca:8b:f0: 2f:a5:e5:8b:ca:ab:5d:16:2f:b0:70:71:e1:1c:29: c7:0e:00:ac:91:66:71:43:25:ea:5a:c7:73:3a:61: 1b:2b:27:6c:57:e8:cd:03:3c:e5:88:eb:64:45:5c: f0:ec:2c:be:bb:b7:53:8e:83:cf:04:ac:9a:bc:b6: 92:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:83:53:26:D7:6D:FD:6D:EF:5C:B9:39:88:D0:09:B7:D3:81:D9:E1 X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/F3643AD6089C11F09BB44535C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 126.209.42.0/23 Signature Algorithm: sha256WithRSAEncryption 76:24:02:ca:dc:ab:2a:be:a8:40:46:12:b7:5b:ed:ad:34:62: 30:29:c2:36:7a:be:60:4e:8f:bb:c5:6f:6f:32:6e:83:19:59: 21:29:98:33:17:9b:8f:bc:ac:54:6f:f8:2b:80:f3:aa:73:43: f4:43:f4:3d:78:45:8d:0b:f8:51:53:08:9d:02:e7:71:fd:c2: 32:d7:7d:7f:65:8e:e6:ce:f6:6d:6f:8a:5b:c9:b2:72:00:c6: 35:d6:bb:40:3d:58:04:9d:67:97:97:42:93:88:c4:c8:f9:36: 13:a5:c4:44:06:25:e0:a5:9d:ec:6c:62:0c:e1:e6:b0:40:17: a8:27:9a:36:47:91:05:b2:1f:44:a1:20:6a:83:c4:ac:32:14: 69:23:d3:09:1c:e2:d5:a5:b1:65:25:43:c1:d7:ae:5b:51:2d: b9:8f:1d:c1:16:cc:e8:b0:4c:61:5a:e0:7d:90:8b:f4:8e:45: 5a:58:f5:80:46:0c:87:c9:4b:45:c3:55:7c:64:93:3f:90:aa: 5f:c4:21:6e:15:cf:48:c6:0c:c3:96:3c:0f:0f:39:3a:63:4d: 3b:71:d5:e6:90:8e:f4:47:f3:46:19:c7:71:c9:ea:52:66:c9: 75:7d:cf:a9:5b:39:e3:43:a1:59:32:0f:1f:24:ec:50:e5:16: 81:9c:61:c2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjUxMTA0MjE0MDMzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNzJkMS1kNDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eufzNrq13+df7FuNTBJX1I1/WDuMd/TT9C5HXOiV5VmXYJHB0zLC5La8gNL C+ebZbI/pCEV3mNArEzKSQWEGMr/4EW7DzHfYxW4Udf/FTVCHevzkg2owRtbNCdp K15WPvxnCjiZZffnBBjiOcoHsHC6HMmqUPqPaooS7VFscr9QSWrrbCpP3pbuxx3o FPT77qvzPBnoPtmWJVVnayOVm3Bvs8yTUEvAXZoYB3uDDPRvdPEFbTotd3HHXH/E 09TKi/AvpeWLyqtdFi+wcHHhHCnHDgCskWZxQyXqWsdzOmEbKydsV+jNAzzliOtk RVzw7Cy+u7dTjoPPBKyavLaSkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI+DUybX bf1t71y5OYjQCbfTgdnhMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvRjM2NDNBRDYw ODlDMTFGMDlCQjQ0NTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF+0SowDQYJKoZIhvcNAQELBQADggEBAHYkAsrcqyq+qEBG Erdb7a00YjApwjZ6vmBOj7vFb28yboMZWSEpmDMXm4+8rFRv+CuA86pzQ/RD9D14 RY0L+FFTCJ0C53H9wjLXfX9ljubO9m1vilvJsnIAxjXWu0A9WASdZ5eXQpOIxMj5 NhOlxEQGJeClnexsYgzh5rBAF6gnmjZHkQWyH0ShIGqDxKwyFGkj0wkc4tWlsWUl Q8HXrltRLbmPHcEWzOiwTGFa4H2Qi/SORVpY9YBGDIfJS0XDVXxkkz+Qql/EIW4V z0jGDMOWPA8POTpjTTtx1eaQjvRH80YZx3HJ6lJmyXV9z6lbOeNDoVkyDx8k7FDl FoGcYcI= -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:12 2025 by rpki-client