$ rpki-client -vvf rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/B34D1A26F6C811EEBC4BE00BC4F9AE02.roa File: B34D1A26F6C811EEBC4BE00BC4F9AE02.roa (raw, json) Hash identifier: P40/jJ7W+/O+PiJ/8mhL5CI3A7Dxo/gaXDncIVQuKdo= Subject key identifier: C5:68:9B:5A:2E:3C:A1:85:79:D5:94:C4:BF:06:5D:37:54:13:48:71 Certificate issuer: /CN=A91864A7/serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Certificate serial: 01FE Authority key identifier: FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/B34D1A26F6C811EEBC4BE00BC4F9AE02.roa Signing time: Mon 27 Oct 2025 04:46:25 +0000 ROA not before: Mon 27 Oct 2025 04:46:25 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 19905 IP address blocks: 119.15.0.0/22 maxlen: 24 119.15.4.0/22 maxlen: 24 119.15.8.0/24 maxlen: 24 119.15.9.0/24 maxlen: 24 119.15.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:33:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 510 (0x1fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91864A7, serialNumber=FF42B3436044954696FFE08B0EE1975C6C5B8D6D Validity Not Before: Oct 27 04:46:25 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68fef921-c6e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e0:4f:07:4a:b5:79:2f:b3:f0:20:ef:10:10: 6a:50:f2:07:59:66:c4:06:3f:a5:29:cb:4e:1a:f8: e5:02:15:8a:17:97:12:2e:db:d3:20:87:58:3c:94: c4:43:29:4d:43:63:8a:2a:e6:b0:53:a6:1b:b9:6e: b0:56:3a:dd:a9:64:35:de:9c:76:d6:e3:5b:87:7e: d0:1f:c8:29:11:c6:4f:5f:b2:df:4d:60:56:df:d6: d3:37:c8:e3:09:ec:f5:57:d1:10:c6:a8:1c:b3:73: 97:75:08:b4:82:91:e1:60:ef:21:fa:9a:fa:52:88: 67:2c:33:62:72:09:b2:19:09:1e:f3:9f:78:26:f7: 8c:0a:04:f8:62:18:ec:3d:35:ff:9d:15:2e:33:dc: c7:dc:8a:5b:d1:13:5f:11:00:4a:92:67:d0:da:1a: 42:fd:f6:3d:d6:cf:ba:f1:9f:ef:58:93:05:5e:df: 71:17:a0:d3:59:a5:e9:17:8f:0b:20:54:08:1f:07: e0:1b:ef:12:f3:eb:1d:9b:40:eb:e2:15:6e:b3:2c: 8c:55:c4:ac:9c:89:2c:78:35:e6:de:11:2a:55:9b: a0:6c:31:5a:a7:b3:88:a5:51:39:a6:10:2d:d1:73: 7b:cd:6d:48:64:af:ac:85:8d:14:5b:9d:d1:ef:57: 37:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:68:9B:5A:2E:3C:A1:85:79:D5:94:C4:BF:06:5D:37:54:13:48:71 X509v3 Authority Key Identifier: keyid:FF:42:B3:43:60:44:95:46:96:FF:E0:8B:0E:E1:97:5C:6C:5B:8D:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/_0KzQ2BElUaW_-CLDuGXXGxbjW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0KzQ2BElUaW_-CLDuGXXGxbjW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91864A7/C8055FD6C92511ED80936149C4F9AE02/B34D1A26F6C811EEBC4BE00BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.15.0.0-119.15.9.255 119.15.13.0/24 Signature Algorithm: sha256WithRSAEncryption 12:a6:3c:a7:e1:39:f6:84:c7:9b:ac:b5:48:c3:d9:b5:3e:d1: d1:de:90:b7:92:ea:b5:7a:b5:7d:c1:21:7b:37:24:e7:e0:7c: eb:62:1b:2b:01:c2:93:e8:0b:e3:36:93:c1:c4:e5:91:bb:6a: f2:5c:c1:94:58:af:6b:0b:70:1e:17:3e:08:2f:0d:12:5b:9b: 4a:09:22:87:32:ed:2c:1f:56:48:84:3b:5b:b1:61:38:ed:7b: 7f:78:c5:9f:65:e3:ec:00:cb:81:f9:f4:c5:75:94:22:15:25: cb:e4:7d:3d:d1:fe:19:b3:5c:02:12:33:73:63:bb:43:00:14: d0:de:6c:3c:a9:4b:6e:b8:9e:fc:aa:40:12:32:fb:71:da:bb: 07:96:ee:74:cf:9b:88:de:47:7e:42:38:2f:c3:b1:64:44:9d: 0d:cb:ff:b1:05:bb:77:a1:2d:33:24:d9:85:12:fe:1c:de:28: c5:6c:f7:50:96:04:20:c8:ce:ad:73:40:b0:50:d0:5c:4b:da: 61:17:8d:c2:a0:2b:4c:2c:4a:59:e5:95:ed:b9:c0:bf:5b:9a: 7c:44:99:2d:85:d0:07:af:ba:d8:f0:85:b4:06:ae:22:32:4d: 1f:9b:18:30:f2:a9:38:74:b3:a1:df:37:ae:d3:0a:9f:84:56: 2d:a5:19:4a -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICAf4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY0QTcxMTAvBgNVBAUTKEZGNDJCMzQzNjA0NDk1NDY5NkZGRTA4QjBFRTE5NzVD NkM1QjhENkQwHhcNMjUxMDI3MDQ0NjI1WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZlZjkyMS1jNmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+BPB0q1eS+z8CDvEBBqUPIHWWbEBj+lKctOGvjlAhWKF5cSLtvTIIdYPJTE QylNQ2OKKuawU6YbuW6wVjrdqWQ13px21uNbh37QH8gpEcZPX7LfTWBW39bTN8jj Cez1V9EQxqgcs3OXdQi0gpHhYO8h+pr6UohnLDNicgmyGQke8594JveMCgT4Yhjs PTX/nRUuM9zH3Ipb0RNfEQBKkmfQ2hpC/fY91s+68Z/vWJMFXt9xF6DTWaXpF48L IFQIHwfgG+8S8+sdm0Dr4hVusyyMVcSsnIkseDXm3hEqVZugbDFap7OIpVE5phAt 0XN7zW1IZK+shY0UW53R71c33wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMVom1ou PKGFedWUxL8GXTdUE0hxMB8GA1UdIwQYMBaAFP9Cs0NgRJVGlv/giw7hl1xsW41t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjRBNy9DODA1NUZENkM5 MjUxMUVEODA5MzYxNDlDNEY5QUUwMi9fMEt6UTJCRWxVYVdfLUNMRHVHWFhHeGJq VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wS3pRMkJFbFVhV18tQ0xEdUdYWEd4YmpXMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY0QTcvQzgwNTVGRDZDOTI1MTFFRDgwOTM2MTQ5QzRGOUFFMDIvQjM0RDFBMjZG NkM4MTFFRUJDNEJFMDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgABMBMwCwMDAHcPAwQBdw8IAwQAdw8NMA0GCSqGSIb3DQEBCwUAA4IB AQASpjyn4Tn2hMebrLVIw9m1PtHR3pC3kuq1erV9wSF7NyTn4HzrYhsrAcKT6Avj NpPBxOWRu2ryXMGUWK9rC3AeFz4ILw0SW5tKCSKHMu0sH1ZIhDtbsWE47Xt/eMWf ZePsAMuB+fTFdZQiFSXL5H090f4Zs1wCEjNzY7tDABTQ3mw8qUtuuJ78qkASMvtx 2rsHlu50z5uI3kd+Qjgvw7FkRJ0Ny/+xBbt3oS0zJNmFEv4c3ijFbPdQlgQgyM6t c0CwUNBcS9phF43CoCtMLEpZ5ZXtucC/W5p8RJkthdAHr7rY8IW0Bq4iMk0fmxgw 8qk4dLOh3zeu0wqfhFYtpRlK -----END CERTIFICATE-----Generated at Tue Nov 4 17:02:01 2025 by rpki-client