$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/671FF9F6943011EA8988B883C4F9AE02.roa File: 671FF9F6943011EA8988B883C4F9AE02.roa (raw, json) Hash identifier: /30QQO8T+zbAoJVEVmt2p73HEAnpD/qZnVwPXTZxOz4= Subject key identifier: C8:43:94:B2:72:1F:89:A6:35:68:83:00:F5:0E:1A:B2:C1:57:C2:73 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1D39 Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/671FF9F6943011EA8988B883C4F9AE02.roa Signing time: Tue 04 Nov 2025 15:00:34 +0000 ROA not before: Tue 04 Nov 2025 15:00:34 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 45669 IP address blocks: 119.30.116.0/22 maxlen: 24 119.73.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7481 (0x1d39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Nov 4 15:00:34 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a1512-da0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:71:f7:1a:b6:c6:04:30:b9:09:86:f1:1c:ff: 8e:ac:67:b1:01:c8:3b:b4:9a:9b:c1:2c:f6:16:38: 3f:80:b0:59:87:99:04:b1:12:fb:b4:a3:5c:a8:2b: 17:2d:31:40:20:32:82:d9:dc:85:98:75:21:2f:d2: d3:3d:7f:d4:72:19:54:1a:c8:12:98:57:c6:36:f1: 32:d6:23:fd:c9:0d:5c:1d:aa:a3:33:2f:f7:9d:79: 7e:7e:ea:1e:71:0e:8e:f4:cb:ae:55:aa:33:04:ad: 50:ce:b4:e7:5f:99:59:54:5e:5e:18:7e:03:9e:8d: b9:e0:6a:b2:b7:49:1c:3f:d4:2b:04:a9:65:d5:40: 50:d3:cf:1c:42:28:4e:90:04:e9:5c:4b:69:13:53: 2f:36:2e:44:69:39:9f:42:1f:e3:60:d1:43:3b:6f: 17:86:18:34:0a:d3:7b:2f:b6:fc:ad:b4:f8:ef:b0: 9e:0b:4b:7b:68:e2:d3:35:bd:d0:d8:54:7c:a5:a1: 8c:00:79:53:e6:25:32:ae:2e:62:e3:a9:e7:f6:53: 9d:f3:84:64:38:4e:46:08:ba:be:0c:82:8f:ce:2e: cb:47:6d:fa:e7:63:34:c9:6a:da:7a:5d:09:7a:ae: c2:c9:ac:50:1d:3e:1c:ed:93:a4:1c:d8:ed:93:a6: aa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:43:94:B2:72:1F:89:A6:35:68:83:00:F5:0E:1A:B2:C1:57:C2:73 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/671FF9F6943011EA8988B883C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.30.116.0/22 119.73.65.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:37:48:7d:24:60:b8:96:70:0a:8f:2d:7f:f8:a6:2f:58:46: 0b:72:5f:19:21:ce:c5:ac:9e:cf:da:6b:f0:67:a5:7c:4e:2e: b3:46:10:1c:9e:96:68:dd:82:97:e0:20:f5:a5:7e:52:e5:05: 07:96:18:8b:c9:09:37:3b:82:62:6d:e2:1e:c5:3c:f1:a7:2c: 91:c6:07:e9:cd:19:39:22:b1:6d:fa:42:4b:16:7f:c5:fe:d1: 66:ff:3a:2e:3a:7f:50:7f:87:29:93:87:5e:dd:75:6c:75:3b: a3:4d:90:25:cb:3e:e8:22:27:85:5e:9c:1f:61:20:dc:50:22: 2c:7e:07:3c:3a:b2:34:a8:f0:f6:72:b6:4d:27:6a:e5:16:19: 20:99:5f:11:7c:48:47:9c:ee:4c:76:ed:6d:71:47:c0:40:79: 04:25:e1:8e:bf:e7:d7:2b:bb:f8:cb:c8:30:22:a9:af:43:f4: 5e:34:46:a2:44:f8:d5:27:a6:0f:25:e9:c1:0f:16:6f:0a:32: 57:a6:00:c4:e4:b6:04:6d:2a:db:2e:68:c2:41:2b:da:8f:29: 98:44:c7:90:5c:88:60:73:28:03:eb:08:c5:3f:5e:44:f5:c6: 21:cf:b0:a7:8f:f3:fc:04:1e:b0:bf:cb:08:b0:30:57:39:d8: b5:23:ff:c0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHTkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUxMTA0MTUwMDM0WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhMTUxMi1kYTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XH3GrbGBDC5CYbxHP+OrGexAcg7tJqbwSz2Fjg/gLBZh5kEsRL7tKNcqCsX LTFAIDKC2dyFmHUhL9LTPX/UchlUGsgSmFfGNvEy1iP9yQ1cHaqjMy/3nXl+fuoe cQ6O9MuuVaozBK1QzrTnX5lZVF5eGH4Dno254Gqyt0kcP9QrBKll1UBQ088cQihO kATpXEtpE1MvNi5EaTmfQh/jYNFDO28Xhhg0CtN7L7b8rbT477CeC0t7aOLTNb3Q 2FR8paGMAHlT5iUyri5i46nn9lOd84RkOE5GCLq+DIKPzi7LR23652M0yWrael0J eq7CyaxQHT4c7ZOkHNjtk6aqxQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMhDlLJy H4mmNWiDAPUOGrLBV8JzMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvNjcxRkY5RjY5 NDMwMTFFQTg5ODhCODgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJ3HnQDBAB3SUEwDQYJKoZIhvcNAQELBQADggEBAHw3SH0k YLiWcAqPLX/4pi9YRgtyXxkhzsWsns/aa/BnpXxOLrNGEByelmjdgpfgIPWlflLl BQeWGIvJCTc7gmJt4h7FPPGnLJHGB+nNGTkisW36QksWf8X+0Wb/Oi46f1B/hymT h17ddWx1O6NNkCXLPugiJ4VenB9hINxQIix+Bzw6sjSo8PZytk0nauUWGSCZXxF8 SEec7kx27W1xR8BAeQQl4Y6/59cru/jLyDAiqa9D9F40RqJE+NUnpg8l6cEPFm8K MlemAMTktgRtKtsuaMJBK9qPKZhEx5BciGBzKAPrCMU/XkT1xiHPsKeP8/wEHrC/ ywiwMFc52LUj/8A= -----END CERTIFICATE-----Generated at Wed Nov 5 12:21:00 2025 by rpki-client