$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/DE7018487BA711EF91F1C185C4F9AE02.roa File: DE7018487BA711EF91F1C185C4F9AE02.roa (raw, json) Hash identifier: ZAkZWxi9iVmr7wQCEzSoCxNK0Au02yJMhUs1rCvTa90= Subject key identifier: F0:12:74:7F:30:E0:68:FE:0E:38:0D:DC:40:68:76:4B:A0:93:EB:E2 Certificate issuer: /CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Certificate serial: 0813 Authority key identifier: 3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/DE7018487BA711EF91F1C185C4F9AE02.roa Signing time: Sun 02 Nov 2025 21:11:12 +0000 ROA not before: Sun 02 Nov 2025 21:11:12 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 150803 IP address blocks: 43.225.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2067 (0x813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F18, serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Validity Not Before: Nov 2 21:11:12 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6907c8f0-d52c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8f:eb:d9:72:62:53:2f:d4:84:5e:73:5c:48: b7:ff:24:10:c8:cc:ed:26:9f:13:f1:3f:e2:9a:39: 61:10:43:fd:48:a6:77:a3:73:41:8f:1d:6b:0d:9e: 6a:ed:a0:81:cc:62:5e:07:b4:ab:b5:66:8b:a0:03: 2f:77:da:ac:66:a7:3d:94:fc:60:41:84:1c:3e:75: f6:e1:5a:9b:3a:da:6f:76:a0:8b:b5:d7:2c:60:c1: df:48:44:8e:0f:cb:69:ed:7e:13:39:d0:2b:35:d7: 3a:d7:10:a5:d9:f3:14:01:44:cc:b6:31:7d:d4:3a: 03:c8:f3:3e:38:ef:72:38:d7:be:9c:a0:10:4c:ae: 2b:5c:ad:c6:73:37:b0:6e:60:f4:b8:8f:8c:22:43: 9c:86:da:ce:cb:d2:61:fa:57:1b:cd:38:71:e0:cd: 39:5f:f7:16:f4:f8:0b:04:c2:46:d4:0a:8d:d0:23: 99:eb:f6:9c:8e:89:60:7f:84:0f:7f:38:92:7c:79: ec:87:ef:73:a8:d3:b9:89:8b:6f:b9:fb:6d:21:19: 4b:6e:f9:bc:3c:74:7e:62:92:98:c6:d8:c8:8d:b4: 41:dd:69:41:6b:89:48:3e:ab:97:70:1e:da:9a:05: 93:f1:59:bb:51:e1:80:c3:ee:8d:09:d5:64:bd:5f: c9:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:12:74:7F:30:E0:68:FE:0E:38:0D:DC:40:68:76:4B:A0:93:EB:E2 X509v3 Authority Key Identifier: keyid:3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/DE7018487BA711EF91F1C185C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.56.0/23 Signature Algorithm: sha256WithRSAEncryption 24:b9:a2:a7:8a:78:55:d2:ef:53:ff:2b:9a:60:4f:a9:d7:cf: 85:11:82:b3:94:06:12:98:f2:22:4a:c0:30:b6:ae:ee:61:b0: 96:7c:82:f2:95:e0:6c:46:da:9a:1e:7c:9a:ab:86:a2:dc:2a: af:9f:11:11:75:b7:ca:15:93:03:72:f1:49:e6:0d:a4:fc:f9: a5:8f:b8:77:db:ec:dd:da:67:18:af:ab:56:f5:27:f0:ef:2b: 20:bf:8a:cc:be:44:72:b3:4d:38:6d:5c:d7:09:6c:35:d8:77: 06:bc:48:50:5d:f1:ff:c7:7c:a8:91:0d:fc:2a:58:37:e3:a0: 0f:ce:e9:e0:1e:76:c7:75:94:9b:40:d7:06:7c:57:83:30:6c: 8f:72:1c:f9:ab:00:19:6b:28:36:52:c3:0a:ad:61:e7:73:36: 34:97:de:05:a9:85:b6:f2:55:95:7e:df:3d:14:4d:54:8d:74: ca:0f:f6:98:58:a4:33:5f:5c:fd:de:e3:5a:86:f9:b5:74:1f: 8b:4a:1f:69:da:46:da:c7:b4:26:27:7c:f5:1f:6d:61:65:b7: 5c:df:11:8a:e3:f9:b8:29:26:06:14:a5:4a:9f:3e:e4:fc:2a: 43:e0:45:65:64:b0:37:4e:81:b0:15:57:2c:55:b3:ed:14:7e: 33:36:a6:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCBMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGMTgxMTAvBgNVBAUTKDNDOEIyQkRCQ0IxNTVFMkQyRkVDRDQ1RDA2MkZCMzY5 OUYwMzQzMjAwHhcNMjUxMTAyMjExMTEyWhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3YzhmMC1kNTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyY/r2XJiUy/UhF5zXEi3/yQQyMztJp8T8T/imjlhEEP9SKZ3o3NBjx1rDZ5q 7aCBzGJeB7SrtWaLoAMvd9qsZqc9lPxgQYQcPnX24VqbOtpvdqCLtdcsYMHfSESO D8tp7X4TOdArNdc61xCl2fMUAUTMtjF91DoDyPM+OO9yONe+nKAQTK4rXK3Gczew bmD0uI+MIkOchtrOy9Jh+lcbzThx4M05X/cW9PgLBMJG1AqN0COZ6/acjolgf4QP fziSfHnsh+9zqNO5iYtvufttIRlLbvm8PHR+YpKYxtjIjbRB3WlBa4lIPquXcB7a mgWT8Vm7UeGAw+6NCdVkvV/JSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPASdH8w 4Gj+DjgN3EBodkugk+viMB8GA1UdIwQYMBaAFDyLK9vLFV4tL+zUXQYvs2mfA0Mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUYxOC9BMzg0MjkxQzBB QTAxMUVCODczMzM4ODJDNEY5QUUwMi9QSXNyMjhzVlhpMHY3TlJkQmktemFaOERR eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BJc3IyOHNWWGkwdjdOUmRCaS16YVo4RFF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGMTgvQTM4NDI5MUMwQUEwMTFFQjg3MzMzODgyQzRGOUFFMDIvREU3MDE4NDg3 QkE3MTFFRjkxRjFDMTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr4TgwDQYJKoZIhvcNAQELBQADggEBACS5oqeKeFXS71P/ K5pgT6nXz4URgrOUBhKY8iJKwDC2ru5hsJZ8gvKV4GxG2poefJqrhqLcKq+fERF1 t8oVkwNy8UnmDaT8+aWPuHfb7N3aZxivq1b1J/DvKyC/isy+RHKzTThtXNcJbDXY dwa8SFBd8f/HfKiRDfwqWDfjoA/O6eAedsd1lJtA1wZ8V4MwbI9yHPmrABlrKDZS wwqtYedzNjSX3gWphbbyVZV+3z0UTVSNdMoP9phYpDNfXP3e41qG+bV0H4tKH2na RtrHtCYnfPUfbWFlt1zfEYrj+bgpJgYUpUqfPuT8KkPgRWVksDdOgbAVVyxVs+0U fjM2pm8= -----END CERTIFICATE-----Generated at Wed Nov 5 13:06:18 2025 by rpki-client