$ rpki-client -vvf rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/3317EBC2B68611F0BC9B1221C4F9AE02.roa File: 3317EBC2B68611F0BC9B1221C4F9AE02.roa (raw, json) Hash identifier: QaG7hFyUa++2CozFj5Q36xlh1YQYBvCOe5CqGAdapx8= Subject key identifier: 1D:8F:8B:3C:10:1C:1B:7B:FF:7D:3F:A4:83:9E:F3:2C:72:72:DC:95 Certificate issuer: /CN=A914CFBF/serialNumber=78EC0F0E494F228EAA4383D6C60DEB1C362A5051 Certificate serial: 8D Authority key identifier: 78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/3317EBC2B68611F0BC9B1221C4F9AE02.roa Signing time: Fri 31 Oct 2025 18:19:55 +0000 ROA not before: Fri 31 Oct 2025 18:19:55 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 131471 IP address blocks: 163.61.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 141 (0x8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CFBF, serialNumber=78EC0F0E494F228EAA4383D6C60DEB1C362A5051 Validity Not Before: Oct 31 18:19:55 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6904fdcb-75ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8d:0e:a8:b6:39:0e:41:99:25:13:5b:28:53: 4e:a0:af:35:4c:77:51:90:48:fd:1a:75:6e:86:f9: c4:59:5c:b5:81:30:8d:97:d4:f9:b2:13:be:4f:b1: ce:46:13:98:24:cd:13:25:f7:99:14:9c:36:7b:d9: 8f:9e:56:57:a2:f2:fb:88:2f:85:73:7b:23:c0:04: 65:24:23:a5:50:9b:2a:2f:a0:41:71:09:9d:91:94: 37:e2:4f:c3:93:77:fa:ed:ef:65:f2:09:65:b5:7a: 42:b6:57:e6:f2:e7:6d:2a:d0:1a:30:2b:d0:06:51: 57:13:9e:c8:30:05:b6:76:a8:28:86:aa:c0:76:9b: 72:fe:bd:e9:8a:b6:3b:d5:54:a6:66:12:99:26:56: 00:88:7d:a0:7c:ac:fe:5d:b2:58:0d:72:1b:46:9e: 21:86:f9:5f:52:e1:64:ab:71:e3:76:0b:92:0d:5c: b9:96:d7:b0:b6:9b:c2:33:c7:3d:8e:30:5b:41:20: 48:52:df:47:32:0d:0e:70:c4:26:82:89:a6:45:d6: b6:95:8b:d1:c5:eb:cf:7f:7b:e0:9c:4b:87:3e:12: 81:26:ca:82:9f:b2:5a:30:b8:da:7a:1c:7e:5a:87: 86:78:8b:3c:a5:57:9a:bb:72:1d:ef:28:37:68:33: 01:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8F:8B:3C:10:1C:1B:7B:FF:7D:3F:A4:83:9E:F3:2C:72:72:DC:95 X509v3 Authority Key Identifier: keyid:78:EC:0F:0E:49:4F:22:8E:AA:43:83:D6:C6:0D:EB:1C:36:2A:50:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/eOwPDklPIo6qQ4PWxg3rHDYqUFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eOwPDklPIo6qQ4PWxg3rHDYqUFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CFBF/32761038ED1211EF9B2D495CC4F9AE02/3317EBC2B68611F0BC9B1221C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.129.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:63:2f:2d:d2:75:e1:82:bd:43:93:e9:3a:26:c5:d6:7d:05: e0:56:3b:60:24:81:ab:e0:2d:44:b2:c5:91:37:f8:2d:a1:9d: 4e:cd:84:2f:0c:72:a2:06:a8:38:5d:f5:6b:ea:db:c5:b4:f1: 9c:5a:fc:b2:55:58:01:81:7c:59:fb:d3:89:c8:a9:b5:37:14: bd:9b:84:d2:64:9e:08:a1:eb:64:fd:ca:b9:d1:5f:80:96:69: cd:8d:a4:37:db:de:ba:45:8a:f4:b2:e4:88:52:d0:f8:77:b4: b5:4e:6e:1b:b6:b5:1d:5a:aa:e5:d3:84:72:97:ab:3a:65:f8: 1a:2a:79:0c:67:a9:4a:63:6b:6e:73:e7:37:f1:d9:96:5d:20: ad:48:71:80:fc:08:a3:42:f6:bd:94:02:7c:7d:dd:71:e7:ba: 7b:63:3a:fc:e1:fd:a2:2b:f7:a2:a9:f3:73:05:d6:af:d4:fe: f7:a8:08:17:31:61:d1:21:83:8f:26:c9:98:24:a0:12:1c:2f: cc:de:af:37:71:de:08:cf:c0:2b:8a:17:50:af:1a:0b:a7:38: 5d:99:ac:68:62:60:62:3a:49:28:5b:80:1f:85:73:2e:a4:c2: dc:37:3a:dd:04:12:84:d6:f6:1e:1e:75:4c:da:09:11:7c:7b: 70:16:bd:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENGQkYxMTAvBgNVBAUTKDc4RUMwRjBFNDk0RjIyOEVBQTQzODNENkM2MERFQjFD MzYyQTUwNTEwHhcNMjUxMDMxMTgxOTU1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0ZmRjYi03NWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArY0OqLY5DkGZJRNbKFNOoK81THdRkEj9GnVuhvnEWVy1gTCNl9T5shO+T7HO RhOYJM0TJfeZFJw2e9mPnlZXovL7iC+Fc3sjwARlJCOlUJsqL6BBcQmdkZQ34k/D k3f67e9l8glltXpCtlfm8udtKtAaMCvQBlFXE57IMAW2dqgohqrAdpty/r3pirY7 1VSmZhKZJlYAiH2gfKz+XbJYDXIbRp4hhvlfUuFkq3HjdguSDVy5ltewtpvCM8c9 jjBbQSBIUt9HMg0OcMQmgommRda2lYvRxevPf3vgnEuHPhKBJsqCn7JaMLjaehx+ WoeGeIs8pVeau3Id7yg3aDMBhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB2PizwQ HBt7/30/pIOe8yxyctyVMB8GA1UdIwQYMBaAFHjsDw5JTyKOqkOD1sYN6xw2KlBR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0ZCRi8zMjc2MTAzOEVE MTIxMUVGOUIyRDQ5NUNDNEY5QUUwMi9lT3dQRGtsUElvNnFRNFBXeGczckhEWXFV RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VPd1BEa2xQSW82cVE0UFd4ZzNySERZcVVGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENGQkYvMzI3NjEwMzhFRDEyMTFFRjlCMkQ0OTVDQzRGOUFFMDIvMzMxN0VCQzJC Njg2MTFGMEJDOUIxMjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACjPYEwDQYJKoZIhvcNAQELBQADggEBAB1jLy3SdeGCvUOT 6TomxdZ9BeBWO2AkgavgLUSyxZE3+C2hnU7NhC8McqIGqDhd9Wvq28W08Zxa/LJV WAGBfFn704nIqbU3FL2bhNJkngih62T9yrnRX4CWac2NpDfb3rpFivSy5IhS0Ph3 tLVObhu2tR1aquXThHKXqzpl+BoqeQxnqUpja25z5zfx2ZZdIK1IcYD8CKNC9r2U Anx93XHnuntjOvzh/aIr96Kp83MF1q/U/veoCBcxYdEhg48myZgkoBIcL8zerzdx 3gjPwCuKF1CvGgunOF2ZrGhiYGI6SShbgB+Fcy6kwtw3Ot0EEoTW9h4edUzaCRF8 e3AWvWs= -----END CERTIFICATE-----Generated at Wed Nov 5 04:59:43 2025 by rpki-client