$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/3AC24DBE801B11F09DAF167CC4F9AE02.roa File: 3AC24DBE801B11F09DAF167CC4F9AE02.roa (raw, json) Hash identifier: Dfltc6qeosruWWs9RYkLtzznrV3gwpnRBtFc/SCx5TA= Subject key identifier: 98:98:D8:D0:10:3D:42:CE:8B:26:90:28:C2:CB:3E:67:71:21:C3:81 Certificate issuer: /CN=A9142DC9/serialNumber=EB4B59335E8321745F776B020CE524CF73991FED Certificate serial: 07 Authority key identifier: EB:4B:59:33:5E:83:21:74:5F:77:6B:02:0C:E5:24:CF:73:99:1F:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60tZM16DIXRfd2sCDOUkz3OZH-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/3AC24DBE801B11F09DAF167CC4F9AE02.roa Signing time: Sat 23 Aug 2025 12:18:09 +0000 ROA not before: Sat 23 Aug 2025 12:18:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138408 IP address blocks: 49.213.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/60tZM16DIXRfd2sCDOUkz3OZH-0.crl rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/60tZM16DIXRfd2sCDOUkz3OZH-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60tZM16DIXRfd2sCDOUkz3OZH-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:40:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DC9, serialNumber=EB4B59335E8321745F776B020CE524CF73991FED Validity Not Before: Aug 23 12:18:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a9b180-0e4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b2:b5:e5:bd:5e:98:d7:0c:44:80:19:c3:f8: d8:9b:b7:10:76:1d:3f:80:29:fa:86:a6:1f:22:2a: d1:50:fc:74:b4:74:25:fd:95:06:35:1c:00:ae:9c: 27:cc:c5:9b:a7:7b:2f:a1:ac:c8:bd:db:a2:0d:f7: c1:70:e1:02:a6:ba:16:f0:8d:27:d9:8d:ba:41:a0: 80:7a:b2:9a:d2:f3:6f:8f:5a:38:ef:bb:18:57:57: c0:f2:b1:4c:d0:de:53:a4:0f:94:f9:3e:d3:5e:7d: 18:75:fa:71:94:96:5a:8c:45:32:f0:be:f4:7b:f4: be:15:ec:5c:9f:a8:58:be:17:43:ff:64:35:00:97: 0e:f1:94:d5:2d:06:3f:f4:94:95:be:cb:c6:b1:e1: 18:57:88:37:8d:a5:2c:ab:8a:d7:9d:09:25:d3:67: 2b:bd:26:7b:c4:ad:32:dd:02:61:3f:5b:a3:95:9a: 88:19:25:04:c9:57:da:9d:cb:ae:d9:0b:7e:1f:d5: 43:95:c2:7b:b9:af:a3:48:2b:a3:4d:1d:05:f3:44: e6:a0:4b:b3:92:f0:a8:10:8a:45:8f:9d:d1:b0:76: 36:69:f1:f4:fa:51:78:9d:4b:da:b8:15:2e:14:00: 95:88:a6:8e:d1:fc:ca:9c:24:ba:83:eb:04:30:bd: 00:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:98:D8:D0:10:3D:42:CE:8B:26:90:28:C2:CB:3E:67:71:21:C3:81 X509v3 Authority Key Identifier: keyid:EB:4B:59:33:5E:83:21:74:5F:77:6B:02:0C:E5:24:CF:73:99:1F:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/60tZM16DIXRfd2sCDOUkz3OZH-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/60tZM16DIXRfd2sCDOUkz3OZH-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DC9/7AF67C747C6111F091D34129C4F9AE02/3AC24DBE801B11F09DAF167CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.213.53.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:dc:e5:f3:c7:64:7b:94:54:fc:a5:32:b7:e9:4f:09:ff:b0: 53:b0:01:ab:a8:de:a1:06:83:5b:4b:aa:1d:9e:a9:fa:f9:c4: 6c:0a:a7:20:10:20:44:87:c3:8b:33:b9:ee:2d:59:3f:f5:ac: f6:8e:da:3d:15:e1:d3:b7:13:8b:c1:c2:6e:b6:d0:d0:b3:64: 14:f8:a5:de:93:d6:3f:94:35:c0:0b:75:e1:f0:39:97:c9:7b: a5:65:44:a3:e1:46:0b:7e:3e:6f:e6:ea:11:fc:13:72:ed:6e: 24:e9:a6:16:9e:6c:43:5c:fe:12:45:04:50:ca:55:12:c7:f2: 76:b1:0b:dd:64:f6:8b:7b:d4:ff:73:59:94:39:37:75:3e:21: 59:23:b0:13:38:4b:44:2b:16:b2:f0:dd:c0:a0:54:47:2a:e8: ab:c0:b9:db:c3:04:c1:41:56:9c:6c:f2:de:98:75:ac:76:3a: 17:9b:6c:29:cf:78:cb:2f:9a:5d:bd:9a:c0:5f:c6:9a:5c:f2: 87:c1:8a:06:41:cf:35:43:8c:95:03:de:c1:5a:48:0d:9a:fa: 70:a6:2c:0b:bd:41:7a:87:c4:9c:17:85:59:38:36:3a:20:0f: 97:51:02:32:09:20:4f:60:31:56:95:e6:68:81:df:e1:c1:8a: bf:0d:34:e8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MkRDOTExMC8GA1UEBRMoRUI0QjU5MzM1RTgzMjE3NDVGNzc2QjAyMENFNTI0Q0Y3 Mzk5MUZFRDAeFw0yNTA4MjMxMjE4MDlaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTliMTgwLTBlNGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCysrXlvV6Y1wxEgBnD+NibtxB2HT+AKfqGph8iKtFQ/HS0dCX9lQY1HACunCfM xZuney+hrMi926IN98Fw4QKmuhbwjSfZjbpBoIB6sprS82+PWjjvuxhXV8DysUzQ 3lOkD5T5PtNefRh1+nGUllqMRTLwvvR79L4V7FyfqFi+F0P/ZDUAlw7xlNUtBj/0 lJW+y8ax4RhXiDeNpSyritedCSXTZyu9JnvErTLdAmE/W6OVmogZJQTJV9qdy67Z C34f1UOVwnu5r6NIK6NNHQXzROagS7OS8KgQikWPndGwdjZp8fT6UXidS9q4FS4U AJWIpo7R/MqcJLqD6wQwvQCjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmJjY0BA9 Qs6LJpAowss+Z3Ehw4EwHwYDVR0jBBgwFoAU60tZM16DIXRfd2sCDOUkz3OZH+0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyREM5LzdBRjY3Qzc0N0M2 MTExRjA5MUQzNDEyOUM0RjlBRTAyLzYwdFpNMTZESVhSZmQyc0NET1VrejNPWkgt MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNjB0Wk0xNkRJWFJmZDJzQ0RPVWt6M09aSC0wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MkRDOS83QUY2N0M3NDdDNjExMUYwOTFEMzQxMjlDNEY5QUUwMi8zQUMyNERCRTgw MUIxMUYwOURBRjE2N0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEADHVNTANBgkqhkiG9w0BAQsFAAOCAQEAbtzl88dke5RU/KUy t+lPCf+wU7ABq6jeoQaDW0uqHZ6p+vnEbAqnIBAgRIfDizO57i1ZP/Ws9o7aPRXh 07cTi8HCbrbQ0LNkFPil3pPWP5Q1wAt14fA5l8l7pWVEo+FGC34+b+bqEfwTcu1u JOmmFp5sQ1z+EkUEUMpVEsfydrEL3WT2i3vU/3NZlDk3dT4hWSOwEzhLRCsWsvDd wKBURyroq8C528MEwUFWnGzy3ph1rHY6F5tsKc94yy+aXb2awF/Gmlzyh8GKBkHP NUOMlQPewVpIDZr6cKYsC71BeofEnBeFWTg2OiAPl1ECMgkgT2AxVpXmaIHf4cGK vw006A== -----END CERTIFICATE-----Generated at Tue Nov 4 21:46:24 2025 by rpki-client