$ rpki-client -vvf rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/AF27640226FA11F0B0383240C4F9AE02.roa File: AF27640226FA11F0B0383240C4F9AE02.roa (raw, json) Hash identifier: 1i0d6pr2ELd59qaQmu9345pITiiNAhlVL8hxc+i1TcY= Subject key identifier: F0:4B:E4:85:EF:D8:CF:AB:94:C8:B1:4D:DD:55:E7:9A:AD:7D:E0:E1 Certificate issuer: /CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Certificate serial: CA Authority key identifier: CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/AF27640226FA11F0B0383240C4F9AE02.roa Signing time: Sat 03 May 2025 05:42:11 +0000 ROA not before: Sat 03 May 2025 05:42:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55914 IP address blocks: 202.129.255.0/24 maxlen: 24 203.12.174.0/24 maxlen: 24 203.12.175.0/24 maxlen: 24 203.191.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169C00, serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Validity Not Before: May 3 05:42:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6815acb3-44db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:67:b8:a4:9f:f1:88:0d:6f:81:17:dc:5b:92: 14:77:ec:59:c8:56:84:c2:d9:80:6b:0b:cb:ea:4d: 97:c1:bf:6b:ee:00:c6:d2:64:34:3b:f2:bb:8c:90: b2:de:8b:5a:1f:c6:db:c8:6b:33:aa:c7:fc:6c:64: dc:c5:7a:cb:b3:93:c9:c3:ff:03:aa:5f:f4:42:3f: 70:2c:a3:3c:1b:ec:f4:e4:c9:21:28:16:e2:10:a5: 45:47:e9:e3:98:47:66:cd:27:47:fc:ae:1d:1f:7f: 0a:02:62:54:ca:59:85:44:29:36:57:29:b1:4e:11: 99:33:61:d7:13:a3:8b:f5:82:58:fd:34:6f:0b:ef: f5:3d:fa:24:e0:26:1f:b1:05:25:e6:0e:7a:03:ae: 45:f2:3b:5b:09:ae:ed:1f:3a:c5:55:cb:78:fa:9d: bd:b8:05:54:07:b9:4e:7a:15:fa:7a:49:28:2f:05: 28:f6:02:89:54:dc:0b:a0:88:5a:0a:26:23:a2:eb: 3b:0c:fb:7f:23:37:98:15:1d:f6:96:f8:95:52:4a: 85:89:75:67:8a:14:02:a1:df:4b:c5:ee:73:86:9f: f6:f5:d8:78:65:e2:a1:3d:9e:0e:79:ad:2e:56:9b: 1c:89:a0:10:3c:47:39:58:44:49:6f:25:f0:e4:31: f5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:4B:E4:85:EF:D8:CF:AB:94:C8:B1:4D:DD:55:E7:9A:AD:7D:E0:E1 X509v3 Authority Key Identifier: keyid:CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/AF27640226FA11F0B0383240C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.129.255.0/24 203.12.174.0/23 203.191.6.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:89:b2:cf:9e:4b:0c:60:8b:ed:34:3c:5d:cb:ab:be:e9:9a: 66:13:5c:08:e6:07:0b:ad:82:a2:81:c6:ae:1b:06:20:3d:f4: 4c:fd:26:62:04:72:19:0a:0d:5b:a0:48:e0:7a:9f:df:fb:eb: 6e:20:ab:27:cc:9e:a6:ff:49:29:2a:e4:ef:c6:13:1f:9a:fc: c8:c2:b2:7b:a8:05:fa:92:9f:29:8a:2e:43:72:a7:82:c7:90: 02:2a:26:b6:ac:17:43:35:be:e8:11:aa:fb:30:2d:48:c8:31: b1:13:5a:ab:f1:48:bf:83:39:58:76:e0:ce:6f:9c:bd:e2:61: 4e:29:23:ff:11:2c:27:43:19:2a:5c:e7:45:d0:10:01:b7:49: 73:7a:21:91:ac:2d:43:d7:70:bd:50:f3:44:0d:6f:e5:83:8a: 8b:b9:d9:a3:ae:70:92:9a:72:98:19:3e:4e:1b:7b:11:50:f4: 5b:63:c6:9e:49:45:4e:ef:72:2e:3c:02:d1:80:cd:cd:0a:48: 34:66:05:1d:88:6d:19:af:c3:6f:31:84:27:bb:dd:20:0d:a3: 8f:89:e4:42:56:62:6c:91:b2:fd:62:f3:90:54:42:e4:9a:d6: 37:4f:0b:9a:3d:48:e1:45:aa:e6:c3:fd:3f:d8:d6:fe:a9:63: d3:c2:26:df -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlDMDAxMTAvBgNVBAUTKENCNjZFMDM1RTJGMDc4NThGNEY3M0I0NzhEQ0Q4NUE2 MzZBNDI1MEEwHhcNMjUwNTAzMDU0MjExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1YWNiMy00NGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGe4pJ/xiA1vgRfcW5IUd+xZyFaEwtmAawvL6k2Xwb9r7gDG0mQ0O/K7jJCy 3otaH8bbyGszqsf8bGTcxXrLs5PJw/8Dql/0Qj9wLKM8G+z05MkhKBbiEKVFR+nj mEdmzSdH/K4dH38KAmJUylmFRCk2VymxThGZM2HXE6OL9YJY/TRvC+/1Pfok4CYf sQUl5g56A65F8jtbCa7tHzrFVct4+p29uAVUB7lOehX6ekkoLwUo9gKJVNwLoIha CiYjous7DPt/IzeYFR32lviVUkqFiXVnihQCod9Lxe5zhp/29dh4ZeKhPZ4Oea0u VpsciaAQPEc5WERJbyXw5DH1owIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPBL5IXv 2M+rlMixTd1V55qtfeDhMB8GA1UdIwQYMBaAFMtm4DXi8HhY9Pc7R43NhaY2pCUK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUMwMC8xQzMxRUFGMDFC QzAxMUVGQkI2ODhENUVDNEY5QUUwMi95MmJnTmVMd2VGajA5enRIamMyRnBqYWtK UW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kyYmdOZUx3ZUZqMDl6dEhqYzJGcGpha0pRby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlDMDAvMUMzMUVBRjAxQkMwMTFFRkJCNjg4RDVFQzRGOUFFMDIvQUYyNzY0MDIy NkZBMTFGMEIwMzgzMjQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKgf8DBAHLDK4DBADLvwYwDQYJKoZIhvcNAQELBQADggEB AF6Jss+eSwxgi+00PF3Lq77pmmYTXAjmBwutgqKBxq4bBiA99Ez9JmIEchkKDVug SOB6n9/7624gqyfMnqb/SSkq5O/GEx+a/MjCsnuoBfqSnymKLkNyp4LHkAIqJras F0M1vugRqvswLUjIMbETWqvxSL+DOVh24M5vnL3iYU4pI/8RLCdDGSpc50XQEAG3 SXN6IZGsLUPXcL1Q80QNb+WDiou52aOucJKacpgZPk4bexFQ9Ftjxp5JRU7vci48 AtGAzc0KSDRmBR2IbRmvw28xhCe73SANo4+J5EJWYmyRsv1i85BUQuSa1jdPC5o9 SOFFqubD/T/Y1v6pY9PCJt8= -----END CERTIFICATE-----Generated at Tue Nov 4 22:27:38 2025 by rpki-client