$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/E206DF40E79011E699B81D0FC4F9AE02.roa File: E206DF40E79011E699B81D0FC4F9AE02.roa (raw, json) Hash identifier: DJ64IBDlDU/a8eJ5izylG8R4FJJjLaqWZZpyQhY6Hi8= Subject key identifier: BC:07:A9:C8:DB:AE:47:CF:D7:72:3E:47:A7:72:24:8A:70:EA:DE:D1 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1D3C Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/E206DF40E79011E699B81D0FC4F9AE02.roa Signing time: Tue 04 Nov 2025 15:00:37 +0000 ROA not before: Tue 04 Nov 2025 15:00:37 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 9387 IP address blocks: 119.73.14.0/24 maxlen: 24 119.73.15.0/24 maxlen: 24 119.73.32.0/24 maxlen: 24 119.73.33.0/24 maxlen: 24 119.73.34.0/24 maxlen: 24 119.73.35.0/24 maxlen: 24 119.73.36.0/24 maxlen: 24 119.73.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7484 (0x1d3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Nov 4 15:00:37 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a1515-fb12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c0:6f:31:5f:72:3d:92:2c:1b:bf:d8:7d:4d: 53:5b:0e:0c:0b:b4:54:32:01:f1:57:94:eb:fa:99: 88:a7:82:de:09:7c:d1:b0:17:00:66:29:7c:0e:b9: 20:ee:54:23:5f:26:35:bb:98:2e:0a:d8:fe:f4:73: ce:6f:d7:32:b3:8a:c7:27:ea:7e:ba:eb:d0:ab:55: 6d:c0:55:16:8b:2f:64:1e:66:0f:48:19:6c:3c:c4: 69:b1:3a:6f:08:cd:b5:70:de:e6:01:eb:eb:71:ca: 59:30:e8:94:91:82:71:ec:a3:2d:de:a9:41:01:62: 91:12:53:eb:32:03:b2:0c:fe:92:e3:ed:31:57:89: b8:7d:77:35:3f:e6:e6:6c:6d:3a:d7:01:31:f6:79: 8f:10:90:82:b2:b2:f0:fc:32:73:05:38:de:01:bb: 57:e5:10:fa:9d:11:9c:7f:92:43:bd:1f:7c:1d:00: 41:d1:05:4d:6c:c3:4c:cf:4d:00:11:14:bf:0f:7f: 81:05:7e:f3:38:3c:83:2e:03:1b:06:4e:3d:7d:bf: b4:53:cb:23:9e:f8:9c:5e:a7:70:72:93:cd:e6:e1: 21:0c:27:b4:01:a5:50:ab:bc:6d:af:33:4c:ea:94: cb:c5:ae:b2:d2:cc:c0:b1:0d:d2:ce:bb:ee:cb:6b: 0c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:07:A9:C8:DB:AE:47:CF:D7:72:3E:47:A7:72:24:8A:70:EA:DE:D1 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/E206DF40E79011E699B81D0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.73.14.0/23 119.73.32.0-119.73.37.255 Signature Algorithm: sha256WithRSAEncryption 1c:99:81:4f:eb:f1:fd:bb:56:ee:fb:8a:c6:3a:4a:0a:e2:a3: b1:5e:6c:51:69:8d:80:da:3a:2d:75:c4:dd:2f:c6:f2:2f:cf: 99:f9:27:bc:08:cd:77:c4:bd:9b:f5:1c:bf:d9:4d:50:93:97: 7f:d5:3e:5d:60:a8:c5:3b:76:7b:e2:a5:77:aa:4d:06:e5:1b: d8:de:cc:27:a0:8c:b8:20:9c:c5:2d:fc:2e:86:be:c3:f1:70: d1:b1:77:68:f4:30:9f:7c:cf:d1:07:17:d5:41:d9:b7:42:ac: 2e:32:35:6b:18:57:e7:ff:d8:d8:55:c7:31:27:2c:a5:66:46: 49:f6:1e:04:f0:0e:80:6f:82:13:3c:a0:c4:56:6e:6a:65:ad: 08:6f:c0:7b:bf:17:24:45:7f:32:12:e2:5f:80:21:31:7d:ea: ed:85:c0:a9:6b:a1:72:30:21:cc:19:76:8e:60:20:93:1e:ff: ef:d1:fd:71:19:29:52:db:83:71:50:db:d5:12:88:fa:1e:38: c9:9b:b8:87:fa:06:0e:dd:f8:93:66:5a:06:80:49:a0:6b:ee: 3b:58:32:74:b3:74:3f:d3:16:96:08:37:7f:a8:86:ed:c3:38: fb:79:26:1b:c8:0c:2c:08:52:9f:8a:c7:a2:23:5e:d2:51:1b: 65:d0:9d:04 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICHTwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUxMTA0MTUwMDM3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhMTUxNS1mYjEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsBvMV9yPZIsG7/YfU1TWw4MC7RUMgHxV5Tr+pmIp4LeCXzRsBcAZil8Drkg 7lQjXyY1u5guCtj+9HPOb9cys4rHJ+p+uuvQq1VtwFUWiy9kHmYPSBlsPMRpsTpv CM21cN7mAevrccpZMOiUkYJx7KMt3qlBAWKRElPrMgOyDP6S4+0xV4m4fXc1P+bm bG061wEx9nmPEJCCsrLw/DJzBTjeAbtX5RD6nRGcf5JDvR98HQBB0QVNbMNMz00A ERS/D3+BBX7zODyDLgMbBk49fb+0U8sjnvicXqdwcpPN5uEhDCe0AaVQq7xtrzNM 6pTLxa6y0szAsQ3Szrvuy2sMyQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFLwHqcjb rkfP13I+R6dyJIpw6t7RMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvRTIwNkRGNDBF NzkwMTFFNjk5QjgxRDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAF3SQ4wDAMEBXdJIAMEAXdJJDANBgkqhkiG9w0BAQsFAAOC AQEAHJmBT+vx/btW7vuKxjpKCuKjsV5sUWmNgNo6LXXE3S/G8i/PmfknvAjNd8S9 m/Ucv9lNUJOXf9U+XWCoxTt2e+Kld6pNBuUb2N7MJ6CMuCCcxS38Loa+w/Fw0bF3 aPQwn3zP0QcX1UHZt0KsLjI1axhX5//Y2FXHMScspWZGSfYeBPAOgG+CEzygxFZu amWtCG/Ae78XJEV/MhLiX4AhMX3q7YXAqWuhcjAhzBl2jmAgkx7/79H9cRkpUtuD cVDb1RKI+h44yZu4h/oGDt34k2ZaBoBJoGvuO1gydLN0P9MWlgg3f6iG7cM4+3km G8gMLAhSn4rHoiNe0lEbZdCdBA== -----END CERTIFICATE-----Generated at Wed Nov 5 12:22:29 2025 by rpki-client