$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/54582BFCB64611F0A1920927C4F9AE02.roa File: 54582BFCB64611F0A1920927C4F9AE02.roa (raw, json) Hash identifier: HgtUwUJ/Vyz8QDW0ytbFSI4t89Z3WqTayxlOmkwhcHU= Subject key identifier: 6D:37:E3:47:9F:1E:BB:F4:86:E2:44:4D:E9:40:D1:0F:9E:D9:90:28 Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 39D5 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/54582BFCB64611F0A1920927C4F9AE02.roa Signing time: Fri 31 Oct 2025 10:42:43 +0000 ROA not before: Fri 31 Oct 2025 10:42:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149419 IP address blocks: 111.88.170.0/24 maxlen: 24 111.88.171.0/24 maxlen: 24 111.88.239.0/24 maxlen: 24 115.186.117.0/24 maxlen: 24 115.186.118.0/24 maxlen: 24 115.186.119.0/24 maxlen: 24 115.186.120.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:33:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14805 (0x39d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Oct 31 10:42:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=690492a3-4c9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3c:c1:8f:87:89:50:78:a6:c9:62:c0:b4:61: 95:96:d2:b9:2b:6b:69:f7:2e:4a:8f:aa:48:7f:b2: 4b:bb:82:3a:ac:b5:ed:d8:9f:ee:71:03:a5:ab:9a: 82:99:f9:d5:4f:37:4e:fd:db:17:8a:ef:9d:e5:14: f9:aa:c9:b8:b7:6a:92:16:6e:bf:12:60:d0:2e:05: 69:8a:da:61:5a:44:58:27:90:04:5e:f0:39:35:f9: aa:e5:08:42:16:80:da:7f:aa:6c:63:b4:45:fa:da: cc:96:05:20:22:d1:12:f1:54:b3:f5:ce:ad:05:86: ef:f5:f9:2d:21:80:78:74:80:ce:43:b7:00:6d:19: 5f:22:a3:3e:31:7d:0f:84:89:ad:6b:b6:73:9c:e0: 33:91:ed:63:9f:b2:9b:a1:d3:9f:c3:bc:72:87:4e: 64:b5:15:f5:8f:b4:87:56:63:8b:12:63:05:d6:aa: 45:f1:cc:a7:54:96:6d:52:1d:ab:6e:93:25:2d:12: 35:29:4b:6d:e7:de:3d:21:7f:6d:27:54:58:6b:64: e3:81:0a:bc:e0:ff:0f:d2:de:eb:92:f8:6a:72:0f: 98:95:06:bf:9a:c3:58:ed:57:21:58:83:e7:46:dd: 6c:cc:b7:2e:72:d2:57:e0:af:50:29:8c:e0:fc:f4: d1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:37:E3:47:9F:1E:BB:F4:86:E2:44:4D:E9:40:D1:0F:9E:D9:90:28 X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/54582BFCB64611F0A1920927C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.88.170.0/23 111.88.239.0/24 115.186.117.0-115.186.120.255 Signature Algorithm: sha256WithRSAEncryption 03:58:76:2c:37:88:bc:c0:fe:23:72:5a:51:ce:ce:e6:d0:41: 9d:b9:af:36:38:31:50:22:07:ad:4e:cd:dc:6a:04:8a:3a:b6: 63:96:ca:4c:82:12:d5:98:5c:e5:89:ba:ac:3a:26:1f:d4:cd: 71:35:28:f2:ca:3d:f8:a8:23:20:e1:a6:9d:85:e0:42:49:79: ba:4a:6b:dc:69:15:36:87:2c:d9:64:e2:5e:9f:02:23:10:7f: 93:2d:00:ce:12:27:56:d3:23:8b:49:57:01:32:0a:ce:95:8f: 0a:7a:b1:6b:42:1c:1b:09:ea:c6:96:c5:8c:a9:e5:77:66:08: 1f:aa:41:de:90:44:e0:23:db:18:fd:97:1f:85:a5:90:d0:79: b6:fc:32:a4:7f:79:d5:6a:0e:fa:5e:5d:b4:0b:de:c2:b7:bd: ab:d1:a8:95:6c:3d:9f:d0:b7:95:df:63:26:d1:88:ff:18:d2: 77:1c:e4:1c:89:d7:88:61:45:d3:f4:ea:47:d5:11:e5:d1:21: de:ee:8f:7e:fc:da:c5:4f:ea:69:fb:4c:7a:e1:69:6f:1c:f5: d8:c6:5c:6b:5e:79:77:29:6a:01:9f:b2:68:15:77:19:39:a6: 76:c9:4d:25:df:e8:eb:ee:6b:31:4d:ba:43:eb:91:96:2f:fb: e9:81:0f:bd -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICOdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjUxMDMxMTA0MjQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0OTJhMy00YzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmzzBj4eJUHimyWLAtGGVltK5K2tp9y5Kj6pIf7JLu4I6rLXt2J/ucQOlq5qC mfnVTzdO/dsXiu+d5RT5qsm4t2qSFm6/EmDQLgVpitphWkRYJ5AEXvA5Nfmq5QhC FoDaf6psY7RF+trMlgUgItES8VSz9c6tBYbv9fktIYB4dIDOQ7cAbRlfIqM+MX0P hImta7ZznOAzke1jn7KbodOfw7xyh05ktRX1j7SHVmOLEmMF1qpF8cynVJZtUh2r bpMlLRI1KUtt5949IX9tJ1RYa2TjgQq84P8P0t7rkvhqcg+YlQa/msNY7VchWIPn Rt1szLcuctJX4K9QKYzg/PTRnQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFG0340ef Hrv0huJETelA0Q+e2ZAoMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvNTQ1ODJCRkNC NjQ2MTFGMEExOTIwOTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAFvWKoDBABvWO8wDAMEAHO6dQMEAHO6eDANBgkqhkiG9w0B AQsFAAOCAQEAA1h2LDeIvMD+I3JaUc7O5tBBnbmvNjgxUCIHrU7N3GoEijq2Y5bK TIIS1Zhc5Ym6rDomH9TNcTUo8so9+KgjIOGmnYXgQkl5ukpr3GkVNocs2WTiXp8C IxB/ky0AzhInVtMji0lXATIKzpWPCnqxa0IcGwnqxpbFjKnld2YIH6pB3pBE4CPb GP2XH4WlkNB5tvwypH951WoO+l5dtAvewre9q9GolWw9n9C3ld9jJtGI/xjSdxzk HInXiGFF0/TqR9UR5dEh3u6PfvzaxU/qaftMeuFpbxz12MZca155dylqAZ+yaBV3 GTmmdslNJd/o6+5rMU26Q+uRli/76YEPvQ== -----END CERTIFICATE-----Generated at Wed Nov 5 14:01:51 2025 by rpki-client