$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/66891B80943011EA8988B883C4F9AE02.roa File: 66891B80943011EA8988B883C4F9AE02.roa (raw, json) Hash identifier: JYoC4fW3kRGP8Ar/zZX8AIqfFYSLxK+uB/Z4GhIiHiU= Subject key identifier: 25:15:AD:CB:83:CE:6A:51:3B:0F:BE:AD:C2:9F:5B:1E:51:B4:5E:A6 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1D38 Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/66891B80943011EA8988B883C4F9AE02.roa Signing time: Tue 04 Nov 2025 15:00:33 +0000 ROA not before: Tue 04 Nov 2025 15:00:33 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 38713 IP address blocks: 119.73.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7480 (0x1d38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Nov 4 15:00:33 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a1511-b5c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0c:42:8e:17:b8:eb:f9:29:18:e8:e3:73:14: 69:70:72:0a:19:d7:1a:9a:55:fa:2a:e9:80:25:74: 09:87:b0:a2:2f:a4:34:4f:1c:34:0c:6c:d1:18:91: ac:c5:9c:7c:85:ec:42:df:65:63:b3:5e:c4:53:d9: 40:a2:28:49:14:9e:b6:d4:19:a7:59:93:c2:40:8b: a0:d1:86:cc:76:e3:2c:68:97:d7:68:d1:83:0d:e1: 3f:2b:85:a9:b2:c0:c1:79:04:74:e4:79:d9:28:ae: ac:cd:97:f5:f6:b3:54:aa:f2:ed:20:ac:b3:6f:4c: ea:19:9e:dc:49:5c:c9:ef:9a:de:65:65:ba:80:39: 03:5d:b8:b2:59:75:86:22:6e:f1:d7:e5:3b:bc:9d: b1:a0:89:21:31:ad:30:5e:68:0f:ea:b3:0e:1c:05: be:88:5c:71:7c:5e:96:87:d6:7e:3e:d8:28:e5:9f: 1a:ac:99:49:b6:7b:1e:e4:fc:c9:0b:bf:c9:a4:20: e9:14:80:db:a9:fa:b3:e7:70:bd:9c:ae:ee:5d:42: ce:27:35:01:ce:fb:09:b1:1a:a3:57:ce:4d:4e:fe: 96:3c:b2:53:5f:e6:6f:1a:78:5e:cf:35:a6:fd:9a: b0:8a:01:9f:86:77:c2:65:9b:91:85:d3:f8:4b:90: 36:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:15:AD:CB:83:CE:6A:51:3B:0F:BE:AD:C2:9F:5B:1E:51:B4:5E:A6 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/66891B80943011EA8988B883C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.73.30.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:6a:11:03:48:13:bd:14:40:16:57:b8:0b:a9:3b:fd:0e:b3: 48:72:71:5a:61:82:36:fd:65:bf:53:e8:f0:fc:f1:6e:77:2b: 71:97:fb:74:e7:e4:1e:89:3d:d7:fe:25:c4:cd:bc:06:4b:f8: 23:1b:c6:1f:c6:59:db:2a:8a:63:0c:04:87:5e:54:64:1f:89: a3:4f:ec:b5:73:5a:21:e0:79:91:1f:4f:6a:25:d8:0f:13:b0: ef:cd:c9:0b:f3:cf:47:a2:45:52:bd:9b:ce:10:f0:f2:37:ba: f8:d8:f5:af:d2:2f:64:31:40:20:b9:28:67:da:69:55:c1:f6: 80:0f:4c:ac:dc:cf:d4:78:50:46:ac:61:be:d1:20:eb:45:ea: 4e:71:37:0f:ca:d2:a5:af:09:ba:72:b8:be:b4:17:b4:1f:51: 5e:58:f3:60:a9:92:3b:35:ae:45:2a:0f:4e:db:71:c4:f8:bc: 49:7f:74:b6:2d:d2:ed:e5:24:cd:fb:c3:99:60:22:ab:1c:7b: e3:ba:d1:d7:14:ae:5d:3d:f8:dd:81:40:f5:1a:b0:11:d3:ae: 3a:45:b2:0b:8c:b0:18:8b:f9:d8:22:a1:b1:31:be:59:17:49: 9e:6d:3d:fa:88:cd:a6:1c:0e:3f:9b:9a:3a:41:91:74:a0:87: f5:36:ad:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUxMTA0MTUwMDMzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhMTUxMS1iNWM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwxCjhe46/kpGOjjcxRpcHIKGdcamlX6KumAJXQJh7CiL6Q0Txw0DGzRGJGs xZx8hexC32Vjs17EU9lAoihJFJ621BmnWZPCQIug0YbMduMsaJfXaNGDDeE/K4Wp ssDBeQR05HnZKK6szZf19rNUqvLtIKyzb0zqGZ7cSVzJ75reZWW6gDkDXbiyWXWG Im7x1+U7vJ2xoIkhMa0wXmgP6rMOHAW+iFxxfF6Wh9Z+Ptgo5Z8arJlJtnse5PzJ C7/JpCDpFIDbqfqz53C9nK7uXULOJzUBzvsJsRqjV85NTv6WPLJTX+ZvGnhezzWm /ZqwigGfhnfCZZuRhdP4S5A22wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCUVrcuD zmpROw++rcKfWx5RtF6mMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvNjY4OTFCODA5 NDMwMTFFQTg5ODhCODgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3SR4wDQYJKoZIhvcNAQELBQADggEBAE9qEQNIE70UQBZX uAupO/0Os0hycVphgjb9Zb9T6PD88W53K3GX+3Tn5B6JPdf+JcTNvAZL+CMbxh/G WdsqimMMBIdeVGQfiaNP7LVzWiHgeZEfT2ol2A8TsO/NyQvzz0eiRVK9m84Q8PI3 uvjY9a/SL2QxQCC5KGfaaVXB9oAPTKzcz9R4UEasYb7RIOtF6k5xNw/K0qWvCbpy uL60F7QfUV5Y82Cpkjs1rkUqD07bccT4vEl/dLYt0u3lJM37w5lgIqsce+O60dcU rl09+N2BQPUasBHTrjpFsguMsBiL+dgiobExvlkXSZ5tPfqIzaYcDj+bmjpBkXSg h/U2rR4= -----END CERTIFICATE-----Generated at Wed Nov 5 12:27:45 2025 by rpki-client