$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/4FAE4CDC7C2711EDA3A0B816C4F9AE02.roa File: 4FAE4CDC7C2711EDA3A0B816C4F9AE02.roa (raw, json) Hash identifier: GIddXA9sYUEfN5WLsupKecM8a75FJ27s2s/7v+F4VUU= Subject key identifier: 63:50:51:71:B4:3E:53:9B:40:46:71:22:39:92:A4:2F:BE:F9:63:14 Certificate issuer: /CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Certificate serial: 0812 Authority key identifier: 3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/4FAE4CDC7C2711EDA3A0B816C4F9AE02.roa Signing time: Sun 02 Nov 2025 21:11:11 +0000 ROA not before: Sun 02 Nov 2025 21:11:11 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134428 IP address blocks: 43.225.56.0/24 maxlen: 24 43.225.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2066 (0x812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F18, serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Validity Not Before: Nov 2 21:11:11 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6907c8ef-bf10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:cf:7f:75:5b:2c:dc:db:74:32:fb:0c:96:a6: e9:9d:7a:3b:fd:59:3e:92:29:a8:22:b6:67:0b:c8: 07:0f:c1:05:16:82:b2:b7:e3:a6:a3:fc:6f:46:b2: 5f:3e:a8:cb:a9:f6:66:ae:e1:6d:8b:03:9d:95:d0: 20:62:aa:9f:5c:25:07:96:c5:2e:45:50:26:e2:de: e8:a5:33:ab:11:e8:81:ef:c2:05:11:ce:3c:7e:53: 55:7b:e0:bc:6a:07:69:69:64:aa:b5:66:3d:41:ac: 32:f6:f9:5e:d4:f1:38:94:f2:f7:2d:17:e7:a1:65: e4:c2:b4:a9:4d:18:ac:36:39:1a:69:60:81:4b:27: c5:70:93:87:95:ca:57:4e:fe:40:8b:6c:1b:5a:fb: 3b:71:d4:5f:fe:20:5d:b0:24:f8:18:ea:92:ae:d5: c7:f7:13:fc:97:de:6a:8d:93:ad:f1:d3:14:0a:da: 5f:8b:6d:ea:6c:04:0a:19:ce:96:8f:84:20:de:d6: d2:87:97:da:96:fe:e7:84:49:16:60:eb:d9:ef:75: 64:05:41:e3:fa:53:00:d2:38:62:38:2d:56:da:cf: fd:8e:bc:b8:27:a9:fa:2c:a4:45:a8:47:47:2e:39: 13:98:ca:c2:26:8d:82:ad:7b:88:59:16:97:c0:48: d2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:50:51:71:B4:3E:53:9B:40:46:71:22:39:92:A4:2F:BE:F9:63:14 X509v3 Authority Key Identifier: keyid:3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/4FAE4CDC7C2711EDA3A0B816C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.56.0/23 Signature Algorithm: sha256WithRSAEncryption 33:cd:9e:e2:16:e8:6a:d8:9a:da:28:2c:3c:62:e5:60:87:e6: a4:ab:d4:20:9f:53:63:8a:19:db:f4:f7:da:cc:f4:31:89:da: c1:d3:73:c7:34:52:66:a2:9d:72:8b:b8:f2:43:c3:94:1f:4d: a2:74:01:fb:c1:40:57:08:00:fc:56:a4:2c:62:52:cd:85:f7: 0e:bc:79:25:31:84:14:82:43:ef:9c:ed:75:86:3e:3a:f8:8b: 95:a1:a7:bb:fa:07:0c:59:b5:5d:99:ba:09:d1:a0:5a:43:61: d5:75:7b:85:87:8a:bb:73:3f:58:ab:2a:db:59:41:95:a2:31: a7:dd:77:15:dd:87:37:db:ca:05:c5:79:a6:c7:69:ba:48:f1: 2e:9b:cc:3a:60:2a:38:dd:6c:11:cd:99:47:4b:c2:d7:cc:a3: c0:60:c9:ba:b5:b5:f2:89:d7:9f:97:2e:03:f4:96:b1:6c:0d: c6:9f:45:1a:47:88:71:6d:61:c0:b0:63:4e:30:c0:b8:9a:c9: 0e:91:54:a2:8f:e8:9e:88:a2:c1:23:24:34:93:ab:92:a9:89: 8a:11:57:1f:c1:1d:d7:32:32:63:d7:c6:f7:ff:99:df:b7:f8: 26:79:e5:56:5e:73:15:b4:bc:ac:ae:11:87:6e:26:0b:5c:ba: 1e:14:2b:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGMTgxMTAvBgNVBAUTKDNDOEIyQkRCQ0IxNTVFMkQyRkVDRDQ1RDA2MkZCMzY5 OUYwMzQzMjAwHhcNMjUxMTAyMjExMTExWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YzhlZi1iZjEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtc9/dVss3Nt0MvsMlqbpnXo7/Vk+kimoIrZnC8gHD8EFFoKyt+Omo/xvRrJf PqjLqfZmruFtiwOdldAgYqqfXCUHlsUuRVAm4t7opTOrEeiB78IFEc48flNVe+C8 agdpaWSqtWY9Qawy9vle1PE4lPL3LRfnoWXkwrSpTRisNjkaaWCBSyfFcJOHlcpX Tv5Ai2wbWvs7cdRf/iBdsCT4GOqSrtXH9xP8l95qjZOt8dMUCtpfi23qbAQKGc6W j4Qg3tbSh5falv7nhEkWYOvZ73VkBUHj+lMA0jhiOC1W2s/9jry4J6n6LKRFqEdH LjkTmMrCJo2CrXuIWRaXwEjS2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGNQUXG0 PlObQEZxIjmSpC+++WMUMB8GA1UdIwQYMBaAFDyLK9vLFV4tL+zUXQYvs2mfA0Mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUYxOC9BMzg0MjkxQzBB QTAxMUVCODczMzM4ODJDNEY5QUUwMi9QSXNyMjhzVlhpMHY3TlJkQmktemFaOERR eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BJc3IyOHNWWGkwdjdOUmRCaS16YVo4RFF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGMTgvQTM4NDI5MUMwQUEwMTFFQjg3MzMzODgyQzRGOUFFMDIvNEZBRTRDREM3 QzI3MTFFREEzQTBCODE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr4TgwDQYJKoZIhvcNAQELBQADggEBADPNnuIW6GrYmtoo LDxi5WCH5qSr1CCfU2OKGdv099rM9DGJ2sHTc8c0UmainXKLuPJDw5QfTaJ0AfvB QFcIAPxWpCxiUs2F9w68eSUxhBSCQ++c7XWGPjr4i5Whp7v6BwxZtV2ZugnRoFpD YdV1e4WHirtzP1irKttZQZWiMafddxXdhzfbygXFeabHabpI8S6bzDpgKjjdbBHN mUdLwtfMo8Bgybq1tfKJ15+XLgP0lrFsDcafRRpHiHFtYcCwY04wwLiayQ6RVKKP 6J6IosEjJDSTq5KpiYoRVx/BHdcyMmPXxvf/md+3+CZ55VZecxW0vKyuEYduJgtc uh4UK90= -----END CERTIFICATE-----Generated at Wed Nov 5 10:09:51 2025 by rpki-client