$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/4F9206BCF83511EF806C6D48C4F9AE02.roa File: 4F9206BCF83511EF806C6D48C4F9AE02.roa (raw, json) Hash identifier: IHRPH+u7VFxrTmFB+qLBi+OAvW2oUN7SaTd3KPzYAYU= Subject key identifier: 14:F9:1D:5F:7A:BA:96:1D:C2:3E:A0:79:6C:7C:18:21:28:8A:EF:C0 Certificate issuer: /CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Certificate serial: 0814 Authority key identifier: 3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/4F9206BCF83511EF806C6D48C4F9AE02.roa Signing time: Sun 02 Nov 2025 21:11:13 +0000 ROA not before: Sun 02 Nov 2025 21:11:13 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 212233 IP address blocks: 43.225.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2068 (0x814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F18, serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Validity Not Before: Nov 2 21:11:13 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6907c8f0-9ed9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:54:2c:12:5a:c5:f2:7e:f2:b7:6e:ad:82:cc: a8:3c:19:3c:0e:55:12:8c:49:84:6d:04:6b:f3:b7: 6c:ad:c8:73:6a:63:f2:92:3f:fb:72:18:1e:81:b7: 71:6d:13:9c:43:c8:c3:c0:38:58:79:31:20:2a:e7: 56:57:8b:bb:f4:7c:f7:e4:f5:87:1e:cc:8b:18:47: 11:60:cc:fb:e0:65:a5:f4:00:d3:7a:8d:5d:81:41: 77:3a:24:74:00:b2:cf:67:8e:f6:85:3e:56:50:6c: 7e:13:49:36:fd:72:34:ff:15:c3:f4:86:08:e7:a4: 2e:de:81:d5:8e:0a:80:59:b6:f4:d0:2d:ee:3f:22: 87:a1:f2:34:10:a2:93:5e:a8:cf:f2:fe:2a:1f:60: a3:45:08:a4:71:09:b3:12:67:cf:f4:d3:59:c7:d2: 21:db:47:fb:e9:b4:a8:22:72:14:3a:b6:75:45:63: 1c:8d:0c:e4:9d:20:7e:a2:ef:fb:b7:7b:a3:ca:62: a5:72:ec:c8:e2:cf:ad:93:a2:2b:c6:41:98:8c:b2: 91:4d:a8:54:b0:35:9c:53:2c:6c:12:c7:7d:c1:0b: 50:eb:df:cc:7d:5d:e7:de:07:eb:f1:15:ca:2d:aa: 2d:bd:9b:59:36:28:2d:a9:4d:7f:e9:32:87:e1:3c: 10:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:F9:1D:5F:7A:BA:96:1D:C2:3E:A0:79:6C:7C:18:21:28:8A:EF:C0 X509v3 Authority Key Identifier: keyid:3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/4F9206BCF83511EF806C6D48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.56.0/23 Signature Algorithm: sha256WithRSAEncryption 38:cb:8c:12:2a:36:be:c0:2f:b4:6e:2f:44:1e:22:56:c3:a4: d2:25:90:47:ed:7b:e0:3c:b0:6e:1e:4b:2d:25:ff:bb:c7:03: 3b:da:ee:38:18:72:fe:7c:f9:49:fc:18:85:73:22:30:3f:46: f0:a1:db:20:44:31:70:db:6c:94:ba:f9:de:6e:67:54:d1:15: 84:b8:69:f7:50:4a:32:c3:58:d7:e0:6f:5d:8f:0a:e3:0d:41: 20:8f:e0:48:23:82:c9:81:6d:71:5b:07:4d:26:ab:57:58:18: 59:fa:fe:de:ba:87:32:a9:f0:d7:0a:46:98:6c:e2:e4:12:10: 35:81:e9:e2:87:c4:fe:db:69:3a:10:8b:7b:db:52:cd:1c:71: 92:62:9d:5e:62:59:8f:19:6b:33:d7:c1:ef:58:92:e0:65:cd: a5:b5:60:e7:26:c5:6d:db:03:81:b9:77:63:ba:54:6e:cc:0c: b6:72:64:3e:f6:f3:3f:a2:b4:af:c7:f6:58:ad:2a:7c:45:80: da:7f:de:15:62:5f:69:73:b7:e4:4c:99:27:36:8d:e6:cf:ea: 58:13:53:45:b9:bd:71:6e:7e:5f:5c:23:9f:f9:5b:48:93:9c: 9d:c8:74:d5:4e:91:bb:18:32:93:a1:4f:f2:e3:f3:27:d9:71: 59:75:47:83 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGMTgxMTAvBgNVBAUTKDNDOEIyQkRCQ0IxNTVFMkQyRkVDRDQ1RDA2MkZCMzY5 OUYwMzQzMjAwHhcNMjUxMTAyMjExMTEzWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YzhmMC05ZWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VQsElrF8n7yt26tgsyoPBk8DlUSjEmEbQRr87dsrchzamPykj/7chgegbdx bROcQ8jDwDhYeTEgKudWV4u79Hz35PWHHsyLGEcRYMz74GWl9ADTeo1dgUF3OiR0 ALLPZ472hT5WUGx+E0k2/XI0/xXD9IYI56Qu3oHVjgqAWbb00C3uPyKHofI0EKKT XqjP8v4qH2CjRQikcQmzEmfP9NNZx9Ih20f76bSoInIUOrZ1RWMcjQzknSB+ou/7 t3ujymKlcuzI4s+tk6IrxkGYjLKRTahUsDWcUyxsEsd9wQtQ69/MfV3n3gfr8RXK LaotvZtZNigtqU1/6TKH4TwQrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBT5HV96 upYdwj6geWx8GCEoiu/AMB8GA1UdIwQYMBaAFDyLK9vLFV4tL+zUXQYvs2mfA0Mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUYxOC9BMzg0MjkxQzBB QTAxMUVCODczMzM4ODJDNEY5QUUwMi9QSXNyMjhzVlhpMHY3TlJkQmktemFaOERR eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BJc3IyOHNWWGkwdjdOUmRCaS16YVo4RFF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGMTgvQTM4NDI5MUMwQUEwMTFFQjg3MzMzODgyQzRGOUFFMDIvNEY5MjA2QkNG ODM1MTFFRjgwNkM2RDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr4TgwDQYJKoZIhvcNAQELBQADggEBADjLjBIqNr7AL7Ru L0QeIlbDpNIlkEfte+A8sG4eSy0l/7vHAzva7jgYcv58+Un8GIVzIjA/RvCh2yBE MXDbbJS6+d5uZ1TRFYS4afdQSjLDWNfgb12PCuMNQSCP4EgjgsmBbXFbB00mq1dY GFn6/t66hzKp8NcKRphs4uQSEDWB6eKHxP7baToQi3vbUs0ccZJinV5iWY8ZazPX we9YkuBlzaW1YOcmxW3bA4G5d2O6VG7MDLZyZD728z+itK/H9litKnxFgNp/3hVi X2lzt+RMmSc2jebP6lgTU0W5vXFufl9cI5/5W0iTnJ3IdNVOkbsYMpOhT/Lj8yfZ cVl1R4M= -----END CERTIFICATE-----Generated at Wed Nov 5 13:08:32 2025 by rpki-client