$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/34C33C4EB91811F08E5A6560C4F9AE02.roa File: 34C33C4EB91811F08E5A6560C4F9AE02.roa (raw, json) Hash identifier: Ctk9vYwNAtImh5XLUtBx0rQW9Xa6ErRO3LnmCaMv+lw= Subject key identifier: 21:AD:AE:25:E4:DC:44:71:6B:F8:4B:03:33:CE:3D:43:E8:83:D2:EB Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3AE0 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/34C33C4EB91811F08E5A6560C4F9AE02.roa Signing time: Tue 04 Nov 2025 00:50:06 +0000 ROA not before: Tue 04 Nov 2025 00:50:06 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152671 IP address blocks: 210.117.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15072 (0x3ae0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Nov 4 00:50:06 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69094dbe-096b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:47:2f:e4:86:a0:f9:9a:92:cf:00:aa:ae:be: 9b:c0:2e:1f:f6:8c:cb:1c:7a:74:20:c7:f7:99:70: 4c:a4:da:19:d7:2d:57:39:9e:c5:40:05:e0:e9:c6: 5d:8c:fd:cf:e0:91:fb:98:7a:e6:c8:44:9a:cc:18: 03:e6:42:24:c1:1c:17:a6:09:80:65:ff:e1:92:1a: fc:62:f1:5c:55:55:9c:c5:ec:46:3a:aa:2b:f1:1d: 8d:c8:4a:e9:8b:a7:bd:6a:4c:04:7f:e0:19:21:84: 0f:78:99:08:e1:7a:a1:2a:90:c4:5c:df:77:35:0d: c7:5e:ac:e4:24:91:fc:01:d5:39:7d:8d:7a:c9:a2: 97:63:26:26:47:83:39:45:a2:ea:30:95:f1:35:49: c4:7b:54:77:a3:a2:3a:d9:a7:59:24:c3:e8:8e:c0: 82:61:36:fe:39:7d:50:82:a6:3f:05:b4:74:ad:09: cc:e2:36:d4:5c:07:5a:74:63:5e:da:72:61:9b:18: 8a:be:d5:18:ed:d0:83:54:e7:0a:4c:2d:6b:e1:20: ed:a0:21:c4:21:b4:5c:23:2a:df:bc:04:f0:d7:58: b4:58:4f:63:aa:0c:d9:37:7c:f6:15:c8:a7:9c:7e: cc:36:17:96:aa:2e:5e:e2:bf:f5:56:d2:6b:7b:82: 63:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:AD:AE:25:E4:DC:44:71:6B:F8:4B:03:33:CE:3D:43:E8:83:D2:EB X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/34C33C4EB91811F08E5A6560C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.117.237.0/24 Signature Algorithm: sha256WithRSAEncryption 79:14:5e:6e:ca:3e:51:22:e2:20:76:13:d1:83:58:ae:43:c4: 8e:3e:2e:7d:ae:20:bf:46:1a:d3:cb:34:a8:c6:07:d3:58:49: a9:a6:18:b1:06:a7:a3:1e:c9:3c:e5:ae:fa:3b:33:8a:d8:f6: 5b:44:64:7e:61:da:19:65:75:ee:5b:b6:0f:58:f0:ca:b5:45: 9f:08:37:76:d6:11:6a:24:47:d8:42:98:cf:14:3c:1c:e5:8f: 2c:da:8e:19:1b:75:8b:d1:5d:70:e5:a1:fb:6e:b3:85:31:9e: 16:71:ff:ac:a8:7e:d6:41:57:f2:0b:90:86:91:14:0d:4b:49: d8:33:d0:fe:01:a8:8b:1e:e8:c8:d9:0f:db:dc:70:80:98:f0: 3f:78:63:27:6f:6f:60:87:c2:0a:cd:de:21:78:fa:0c:3a:7b: 3b:78:39:2b:95:d6:ab:b2:cb:2b:33:43:dc:d9:84:ab:f1:a5: 93:f7:2a:21:a0:70:78:e2:61:d5:dd:80:92:bf:92:fd:ac:0e: 10:43:09:40:67:49:b5:86:85:f3:9e:60:57:e2:a3:ad:b5:15: f7:18:22:b4:7d:92:6c:6e:d6:6c:10:9a:48:89:8f:4f:2c:5e: 5a:e4:95:ec:5e:86:dc:b4:b7:69:07:31:b0:43:35:e1:cf:29: e7:38:af:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUxMTA0MDA1MDA2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA5NGRiZS0wOTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEcv5Iag+ZqSzwCqrr6bwC4f9ozLHHp0IMf3mXBMpNoZ1y1XOZ7FQAXg6cZd jP3P4JH7mHrmyESazBgD5kIkwRwXpgmAZf/hkhr8YvFcVVWcxexGOqor8R2NyErp i6e9akwEf+AZIYQPeJkI4XqhKpDEXN93NQ3HXqzkJJH8AdU5fY16yaKXYyYmR4M5 RaLqMJXxNUnEe1R3o6I62adZJMPojsCCYTb+OX1QgqY/BbR0rQnM4jbUXAdadGNe 2nJhmxiKvtUY7dCDVOcKTC1r4SDtoCHEIbRcIyrfvATw11i0WE9jqgzZN3z2Fcin nH7MNheWqi5e4r/1VtJre4JjNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCGtriXk 3ERxa/hLAzPOPUPog9LrMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvMzRDMzNDNEVC OTE4MTFGMDhFNUE2NTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSde0wDQYJKoZIhvcNAQELBQADggEBAHkUXm7KPlEi4iB2 E9GDWK5DxI4+Ln2uIL9GGtPLNKjGB9NYSammGLEGp6MeyTzlrvo7M4rY9ltEZH5h 2hllde5btg9Y8Mq1RZ8IN3bWEWokR9hCmM8UPBzljyzajhkbdYvRXXDloftus4Ux nhZx/6yoftZBV/ILkIaRFA1LSdgz0P4BqIse6MjZD9vccICY8D94Yydvb2CHwgrN 3iF4+gw6ezt4OSuV1quyyyszQ9zZhKvxpZP3KiGgcHjiYdXdgJK/kv2sDhBDCUBn SbWGhfOeYFfio621FfcYIrR9kmxu1mwQmkiJj08sXlrklexehty0t2kHMbBDNeHP Kec4r0k= -----END CERTIFICATE-----Generated at Wed Nov 5 11:41:31 2025 by rpki-client