$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/4A9E5F88B39811F0B469A781C4F9AE02.roa File: 4A9E5F88B39811F0B469A781C4F9AE02.roa (raw, json) Hash identifier: 6LirHFk+TWxJZ5BgbYxYv1gHhV9DJGKmYiA9tNeeW70= Subject key identifier: 1B:81:9A:75:65:52:13:A9:0D:FA:CD:05:7A:AB:90:56:5E:92:1D:D8 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3ADD Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/4A9E5F88B39811F0B469A781C4F9AE02.roa Signing time: Mon 03 Nov 2025 01:15:17 +0000 ROA not before: Mon 03 Nov 2025 01:15:17 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153997 IP address blocks: 45.120.67.0/24 maxlen: 24 121.0.96.0/24 maxlen: 24 121.0.111.0/24 maxlen: 24 203.210.26.0/24 maxlen: 24 210.87.202.0/24 maxlen: 24 210.87.220.0/24 maxlen: 24 210.87.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15069 (0x3add) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Nov 3 01:15:17 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69080224-c19b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:de:44:2e:db:3c:df:3d:79:81:85:cc:65:06: ea:c0:13:fa:0f:d0:be:6e:42:ed:b2:85:b2:a1:55: eb:87:29:d0:db:a7:fb:ee:c8:d7:ec:6b:7b:89:03: 80:20:78:b1:dd:94:b5:40:7a:0e:cc:e9:b6:25:57: f9:60:36:8d:11:86:8a:3d:9f:a4:c5:63:ff:30:4e: df:6b:e2:77:fe:b9:c2:59:37:29:3b:5a:5e:1c:9f: 2b:a8:72:01:4c:7e:07:3c:6f:26:e8:18:b5:04:ac: 54:9a:73:62:5b:6d:9d:a9:18:10:4a:4a:dc:da:a8: 8c:96:5d:ab:9a:66:47:9d:ae:e7:1e:89:c1:51:ce: e8:fb:7a:0d:dc:d9:5c:d9:01:60:32:d0:39:71:a3: 7c:ab:dd:ab:f3:73:92:09:a3:93:64:30:00:34:81: 6b:c0:0a:47:5c:24:ca:86:56:84:43:7e:54:83:fa: cb:71:84:2e:6a:0c:1e:37:fb:4d:a4:28:be:aa:fe: d6:47:51:79:25:4f:e5:33:30:8d:15:a0:d4:34:50: 97:49:d1:47:6a:dd:ec:83:d8:62:ff:22:51:7a:4f: 4a:a7:ac:ef:2e:e7:1e:c5:c3:a1:3c:53:e8:e3:2e: bb:85:33:98:a5:25:7a:6c:0f:a2:56:e1:b6:75:14: d8:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:81:9A:75:65:52:13:A9:0D:FA:CD:05:7A:AB:90:56:5E:92:1D:D8 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/4A9E5F88B39811F0B469A781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.67.0/24 121.0.96.0/24 121.0.111.0/24 203.210.26.0/24 210.87.202.0/24 210.87.220.0/23 Signature Algorithm: sha256WithRSAEncryption 15:44:61:be:12:c5:03:68:eb:2b:9e:48:df:77:e3:16:3c:92: 47:ef:92:b5:17:1d:86:8d:9d:a4:10:1d:b7:4d:b9:5e:a2:6d: 5c:68:0b:3c:48:3b:97:8c:0f:05:70:f6:b5:7f:81:bf:2e:74: e2:b1:82:c0:86:75:a3:ca:bf:f2:2a:8e:2a:28:13:74:89:5d: 57:50:7c:ab:00:e9:95:bc:67:76:26:e6:bc:42:52:71:cb:85: 60:1b:b7:a0:46:a7:0e:ef:40:3a:2c:23:1a:d4:18:33:ce:8e: 97:9e:af:69:02:3a:d9:63:ef:47:39:c7:0f:4e:f1:b7:78:3f: 95:55:ae:d3:bb:47:6e:17:38:f0:f5:96:3d:63:60:3b:96:ee: fa:b6:27:a0:f3:e6:59:4b:2f:10:56:fb:7f:ce:fd:d2:72:64: 47:12:3d:ea:63:4b:85:e2:76:c9:52:02:3c:a4:d9:57:1a:c4: 19:b0:a0:f5:8e:11:46:2b:8b:33:90:ea:38:74:e5:c1:16:c2: 7c:c5:eb:d1:cc:cd:fd:94:93:17:63:a4:a5:50:e9:e7:e9:f0: bb:f2:3e:3d:fe:e4:bc:cb:cc:2f:fe:03:38:fe:37:f9:33:cc: e7:d9:e2:b2:9e:4d:0f:d8:ef:29:b9:aa:1c:bf:70:7a:88:89: 06:ed:f0:31 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICOt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUxMTAzMDExNTE3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MDIyNC1jMTliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqd5ELts83z15gYXMZQbqwBP6D9C+bkLtsoWyoVXrhynQ26f77sjX7Gt7iQOA IHix3ZS1QHoOzOm2JVf5YDaNEYaKPZ+kxWP/ME7fa+J3/rnCWTcpO1peHJ8rqHIB TH4HPG8m6Bi1BKxUmnNiW22dqRgQSkrc2qiMll2rmmZHna7nHonBUc7o+3oN3Nlc 2QFgMtA5caN8q92r83OSCaOTZDAANIFrwApHXCTKhlaEQ35Ug/rLcYQuagweN/tN pCi+qv7WR1F5JU/lMzCNFaDUNFCXSdFHat3sg9hi/yJRek9Kp6zvLucexcOhPFPo 4y67hTOYpSV6bA+iVuG2dRTYNQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFBuBmnVl UhOpDfrNBXqrkFZekh3YMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNEE5RTVGODhC Mzk4MTFGMEI0NjlBNzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAAteEMDBAB5AGADBAB5AG8DBADL0hoDBADSV8oDBAHSV9ww DQYJKoZIhvcNAQELBQADggEBABVEYb4SxQNo6yueSN934xY8kkfvkrUXHYaNnaQQ HbdNuV6ibVxoCzxIO5eMDwVw9rV/gb8udOKxgsCGdaPKv/IqjiooE3SJXVdQfKsA 6ZW8Z3Ym5rxCUnHLhWAbt6BGpw7vQDosIxrUGDPOjpeer2kCOtlj70c5xw9O8bd4 P5VVrtO7R24XOPD1lj1jYDuW7vq2J6Dz5llLLxBW+3/O/dJyZEcSPepjS4XidslS Ajyk2VcaxBmwoPWOEUYrizOQ6jh05cEWwnzF69HMzf2UkxdjpKVQ6efp8LvyPj3+ 5LzLzC/+Azj+N/kzzOfZ4rKeTQ/Y7ym5qhy/cHqIiQbt8DE= -----END CERTIFICATE-----Generated at Wed Nov 5 00:09:40 2025 by rpki-client