$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/195AEC4287CF11F09EDBA229C4F9AE02.roa File: 195AEC4287CF11F09EDBA229C4F9AE02.roa (raw, json) Hash identifier: pOLY0PYhynw66mmFO8/JSImgDG/U0QyM40bUtgs0DkI= Subject key identifier: F9:E9:F5:62:83:77:54:F2:FA:D3:42:8F:1C:31:20:40:7F:04:A1:16 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1D31 Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/195AEC4287CF11F09EDBA229C4F9AE02.roa Signing time: Tue 04 Nov 2025 15:00:27 +0000 ROA not before: Tue 04 Nov 2025 15:00:27 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 133502 IP address blocks: 119.73.0.0/22 maxlen: 24 119.73.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7473 (0x1d31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Nov 4 15:00:27 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a150b-9ba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:12:00:42:9b:2f:9b:ba:86:aa:81:f2:a8:de: 5d:f2:cd:46:96:ba:32:5a:1d:76:10:84:c9:cf:22: fd:f4:cb:5c:6a:c6:91:3e:02:ca:6a:87:73:00:2c: f1:db:5e:fa:1c:0e:23:c1:18:ee:95:a4:70:23:ce: 8f:e4:0f:ad:64:98:f4:3d:ab:52:50:ef:84:03:fd: 65:f1:f4:07:13:de:a9:95:ed:7a:35:58:52:b1:d4: ff:1b:18:74:22:a5:b3:c5:a8:13:37:32:6f:14:2a: 2b:7d:4f:67:9a:04:57:75:a1:52:dc:50:93:59:ba: 33:55:f9:6a:88:4c:21:dc:c3:ff:4b:63:8b:77:36: e3:7f:10:47:2c:3a:ae:52:7a:20:d9:eb:9d:64:0d: 58:58:67:a6:37:eb:b9:13:e6:61:f5:c6:c9:39:f5: af:3e:1a:54:3f:2d:5e:48:c3:7f:55:be:4c:76:42: 40:8b:2d:2d:4a:7c:c1:a0:ce:e8:34:52:31:73:c4: cd:dc:db:38:26:3e:a2:52:40:fe:d9:0b:b7:df:a5: 0f:a9:90:5f:92:43:3f:76:18:03:a5:a6:59:2f:79: 2b:25:10:0f:8d:f7:f8:ae:4c:75:56:4e:98:b0:c9: 80:b1:48:71:e7:51:da:e3:99:14:bf:39:31:aa:20: 51:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:E9:F5:62:83:77:54:F2:FA:D3:42:8F:1C:31:20:40:7F:04:A1:16 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/195AEC4287CF11F09EDBA229C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.73.0.0/22 119.73.59.0/24 Signature Algorithm: sha256WithRSAEncryption b0:47:14:b1:db:d7:f0:33:92:8c:38:18:c8:f0:bb:b0:b8:ea: f2:a0:3a:7b:a6:5d:e3:8e:9d:83:9b:d0:00:12:c9:c5:06:49: eb:4b:a2:3e:25:e8:3f:7d:68:bf:30:a2:5a:16:f7:04:8c:7e: d3:d2:8c:61:16:ee:41:62:78:d3:fa:87:65:13:7c:6e:7c:94: 79:06:a8:33:55:8e:7a:a3:a0:0b:ac:51:46:05:07:a9:50:31: c5:ef:13:7c:67:b8:7f:cd:d8:53:32:4a:1e:a3:57:2e:0b:7b: fd:cf:d1:c9:03:6c:38:92:9a:e4:d1:a8:f8:ec:91:eb:7f:c1: 70:42:67:ee:c5:9d:a6:7d:ac:92:bc:9b:d2:a6:a2:01:10:a7: 58:61:58:ec:eb:cf:06:16:25:32:90:2e:e4:96:8f:7d:c7:b2: a9:ec:e7:c9:12:bb:34:33:26:2d:eb:cd:4e:45:47:c6:b1:c0: 9e:4e:cf:ec:a8:c8:0e:ec:b9:e4:71:71:dd:61:bc:81:bd:a7: ca:92:6f:4d:b2:58:71:3c:12:4b:f3:89:a0:49:a2:27:06:0a: a2:ba:1a:a9:6e:be:bf:c9:bd:04:6d:e7:2e:0d:12:a4:86:87: ee:7b:8f:b2:f1:30:3c:4e:4f:bf:bb:70:26:a2:dd:8d:e2:fa: d3:23:c5:25 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUxMTA0MTUwMDI3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhMTUwYi05YmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhIAQpsvm7qGqoHyqN5d8s1GlroyWh12EITJzyL99MtcasaRPgLKaodzACzx 2176HA4jwRjulaRwI86P5A+tZJj0PatSUO+EA/1l8fQHE96ple16NVhSsdT/Gxh0 IqWzxagTNzJvFCorfU9nmgRXdaFS3FCTWbozVflqiEwh3MP/S2OLdzbjfxBHLDqu Unog2eudZA1YWGemN+u5E+Zh9cbJOfWvPhpUPy1eSMN/Vb5MdkJAiy0tSnzBoM7o NFIxc8TN3Ns4Jj6iUkD+2Qu336UPqZBfkkM/dhgDpaZZL3krJRAPjff4rkx1Vk6Y sMmAsUhx51Ha45kUvzkxqiBRbwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPnp9WKD d1Ty+tNCjxwxIEB/BKEWMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvMTk1QUVDNDI4 N0NGMTFGMDlFREJBMjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJ3SQADBAB3STswDQYJKoZIhvcNAQELBQADggEBALBHFLHb 1/Azkow4GMjwu7C46vKgOnumXeOOnYOb0AASycUGSetLoj4l6D99aL8woloW9wSM ftPSjGEW7kFieNP6h2UTfG58lHkGqDNVjnqjoAusUUYFB6lQMcXvE3xnuH/N2FMy Sh6jVy4Le/3P0ckDbDiSmuTRqPjsket/wXBCZ+7FnaZ9rJK8m9KmogEQp1hhWOzr zwYWJTKQLuSWj33Hsqns58kSuzQzJi3rzU5FR8axwJ5Oz+yoyA7sueRxcd1hvIG9 p8qSb02yWHE8EkvziaBJoicGCqK6Gqluvr/JvQRt5y4NEqSGh+57j7LxMDxOT7+7 cCai3Y3i+tMjxSU= -----END CERTIFICATE-----Generated at Wed Nov 5 12:08:59 2025 by rpki-client