$ rpki-client -vvf rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/8D3F53F6A15F11F09B632177C4F9AE02.roa File: 8D3F53F6A15F11F09B632177C4F9AE02.roa (raw, json) Hash identifier: fqaNqrT+Qg2pLwuLNri5RTiMJOZQlavEcVcSmaNEBIc= Subject key identifier: EB:7D:69:26:01:B8:E9:E1:1B:81:7F:5F:D2:61:4C:54:F2:0F:29:79 Certificate issuer: /CN=A916CAE6/serialNumber=64CA5426AC7A550BDA1053A01283144E2DCD2BD7 Certificate serial: 11 Authority key identifier: 64:CA:54:26:AC:7A:55:0B:DA:10:53:A0:12:83:14:4E:2D:CD:2B:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/8D3F53F6A15F11F09B632177C4F9AE02.roa Signing time: Tue 28 Oct 2025 20:09:12 +0000 ROA not before: Tue 28 Oct 2025 20:09:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 17995 IP address blocks: 123.253.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.crl rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:05:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CAE6, serialNumber=64CA5426AC7A550BDA1053A01283144E2DCD2BD7 Validity Not Before: Oct 28 20:09:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=690122e8-dcf2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6b:50:08:3f:45:b3:38:95:69:0f:b5:40:d3: a6:e5:33:9b:78:58:d0:61:0d:2e:ac:ad:77:a9:54: 5e:d6:42:3a:13:10:64:ed:1a:2e:f3:94:df:b8:ab: 3e:71:a6:75:00:45:61:e3:53:9c:cd:a1:09:e3:3c: 2f:3d:23:ed:47:e5:de:ae:94:d1:4b:99:49:3a:45: 2a:89:67:6f:56:f8:0a:ee:ef:6f:2f:5d:6b:45:26: 29:ea:2a:7a:74:07:2e:7d:7d:ff:ef:8f:d1:ee:89: 2b:a6:e1:3c:9f:72:ab:ec:e3:31:2f:9e:e9:0d:43: 2f:ca:48:b7:29:fc:76:35:b6:01:78:ca:ee:ab:96: 17:c3:83:be:20:82:04:c0:46:2f:e4:62:f8:78:d3: fe:bb:da:73:69:9d:d8:c5:bd:62:8b:f8:cc:72:1e: 83:66:49:8a:2a:a9:c6:94:c6:ae:d3:5c:10:b7:fd: 2b:34:42:b3:f4:5a:04:be:c4:6e:31:b1:21:80:0e: 8b:7c:be:0f:24:f4:f9:e2:e2:cd:67:bd:ef:22:86: b9:3a:60:93:34:9c:80:9a:c1:d8:c3:47:50:9b:91: 0d:cb:74:fe:52:93:d4:7b:0e:39:af:fd:66:ef:0a: 41:ae:dc:d3:5b:2c:b0:6a:ce:ef:80:c6:f7:1c:64: 27:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:7D:69:26:01:B8:E9:E1:1B:81:7F:5F:D2:61:4C:54:F2:0F:29:79 X509v3 Authority Key Identifier: keyid:64:CA:54:26:AC:7A:55:0B:DA:10:53:A0:12:83:14:4E:2D:CD:2B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZMpUJqx6VQvaEFOgEoMUTi3NK9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CAE6/65D044C4941811EA940FB530C4F9AE02/8D3F53F6A15F11F09B632177C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.4.0/22 Signature Algorithm: sha256WithRSAEncryption 60:db:a9:27:88:f9:83:ad:3e:b5:46:e1:9c:71:d5:5e:95:7f: c2:e9:89:d2:81:3e:bf:e6:dd:f1:5d:ad:2e:85:42:e6:13:7e: 54:8e:3e:01:2a:b0:4b:c2:5a:65:cf:82:f1:14:96:a8:b0:e0: bc:ec:27:38:34:2b:45:95:53:37:84:2f:ac:5d:71:a4:f3:bb: 3d:9d:e8:28:06:1b:f6:62:54:04:b9:b1:a6:6b:e2:10:35:90: 72:3b:92:19:f4:64:18:f5:c3:fa:cf:29:95:70:89:d5:38:81: b8:68:45:92:b4:f0:5b:65:5c:f0:b6:4b:0a:9b:f8:07:ad:ee: ba:3c:41:67:84:28:36:20:a7:cd:77:2c:a7:f7:0c:3d:e7:c2: 34:56:51:84:6e:2f:95:6f:9c:69:8b:0c:92:78:b7:02:42:59: 5f:16:61:b9:81:d7:71:20:fa:3c:94:66:66:50:91:63:35:db: 68:2a:59:a4:5b:73:85:4a:fb:c4:ac:ac:02:0f:fe:bb:ba:ac: 2f:2a:a4:2a:14:cb:e7:fd:97:38:60:af:0b:7c:3a:56:d3:52: f5:47:5e:04:79:6f:de:41:19:96:4c:dd:1d:d4:bd:30:de:60: c2:91:9c:84:06:cd:8b:bf:54:5d:68:63:e8:95:a3:b6:0d:1d: 00:fc:db:02 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 Q0FFNjExMC8GA1UEBRMoNjRDQTU0MjZBQzdBNTUwQkRBMTA1M0EwMTI4MzE0NEUy RENEMkJENzAeFw0yNTEwMjgyMDA5MTJaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDEyMmU4LWRjZjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9a1AIP0WzOJVpD7VA06blM5t4WNBhDS6srXepVF7WQjoTEGTtGi7zlN+4qz5x pnUARWHjU5zNoQnjPC89I+1H5d6ulNFLmUk6RSqJZ29W+Aru728vXWtFJinqKnp0 By59ff/vj9HuiSum4Tyfcqvs4zEvnukNQy/KSLcp/HY1tgF4yu6rlhfDg74gggTA Ri/kYvh40/672nNpndjFvWKL+MxyHoNmSYoqqcaUxq7TXBC3/Ss0QrP0WgS+xG4x sSGADot8vg8k9Pni4s1nve8ihrk6YJM0nICawdjDR1CbkQ3LdP5Sk9R7Djmv/Wbv CkGu3NNbLLBqzu+AxvccZCcVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU631pJgG4 6eEbgX9f0mFMVPIPKXkwHwYDVR0jBBgwFoAUZMpUJqx6VQvaEFOgEoMUTi3NK9cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDQUU2LzY1RDA0NEM0OTQx ODExRUE5NDBGQjUzMEM0RjlBRTAyL1pNcFVKcXg2VlF2YUVGT2dFb01VVGkzTks5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWk1wVUpxeDZWUXZhRUZPZ0VvTVVUaTNOSzljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 Q0FFNi82NUQwNDRDNDk0MTgxMUVBOTQwRkI1MzBDNEY5QUUwMi84RDNGNTNGNkEx NUYxMUYwOUI2MzIxNzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAnv9BDANBgkqhkiG9w0BAQsFAAOCAQEAYNupJ4j5g60+tUbh nHHVXpV/wumJ0oE+v+bd8V2tLoVC5hN+VI4+ASqwS8JaZc+C8RSWqLDgvOwnODQr RZVTN4QvrF1xpPO7PZ3oKAYb9mJUBLmxpmviEDWQcjuSGfRkGPXD+s8plXCJ1TiB uGhFkrTwW2Vc8LZLCpv4B63uujxBZ4QoNiCnzXcsp/cMPefCNFZRhG4vlW+caYsM kni3AkJZXxZhuYHXcSD6PJRmZlCRYzXbaCpZpFtzhUr7xKysAg/+u7qsLyqkKhTL 5/2XOGCvC3w6VtNS9UdeBHlv3kEZlkzdHdS9MN5gwpGchAbNi79UXWhj6JWjtg0d APzbAg== -----END CERTIFICATE-----Generated at Wed Nov 5 09:57:37 2025 by rpki-client