$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/8DFE2984EAD811ECA1ED8915C4F9AE02.roa File: 8DFE2984EAD811ECA1ED8915C4F9AE02.roa (raw, json) Hash identifier: bVOSER1nz+Nqxke0I5JF7QpaXaB+v1ZvyVVn2hKZsmI= Subject key identifier: F7:29:85:AD:EB:29:BD:90:F1:B5:E4:3E:D2:D3:87:03:06:54:F0:47 Certificate issuer: /CN=A9197FBC/serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Certificate serial: 34E9 Authority key identifier: 53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/8DFE2984EAD811ECA1ED8915C4F9AE02.roa Signing time: Fri 24 Oct 2025 15:00:46 +0000 ROA not before: Fri 24 Oct 2025 15:00:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38211 IP address blocks: 203.135.176.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:49:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13545 (0x34e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FBC, serialNumber=5337DCB6A91B41D5211A44C216A963ABACC7E2B0 Validity Not Before: Oct 24 15:00:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68fb949d-7e75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2d:47:9d:fa:d5:fe:8d:bb:9c:0a:cc:58:ca: 44:d1:5d:31:40:fa:bc:8c:eb:4a:d9:77:4c:2b:90: aa:e8:31:06:5f:1c:98:d0:8e:5a:12:50:e9:cc:3b: f5:90:b6:4c:ec:d8:a3:39:e0:74:f0:23:d8:ca:a5: 78:d0:80:e7:78:4c:49:2c:ba:55:cf:a2:e2:85:ec: 9c:a9:2d:3e:e7:7a:d2:0f:2b:1f:ac:aa:43:a6:f9: c2:77:39:8d:5e:f8:dd:88:1d:cd:54:27:fa:b7:18: 60:1b:ce:83:f8:59:57:a8:3a:05:0c:56:e3:fd:1a: eb:97:3e:3b:37:71:6d:5b:94:2b:09:1d:32:b0:27: 6c:8e:45:6a:e6:0a:a5:50:c9:5e:c2:1e:30:a9:e6: e2:12:56:f2:57:6f:42:ae:59:bb:34:3c:02:06:7f: 2e:9b:78:a4:f8:f7:7e:96:06:79:65:4c:0e:eb:bb: 3c:52:f0:57:47:22:ee:ad:58:ac:ec:51:e8:6b:f6: 2a:eb:17:38:40:e6:41:a5:09:01:3b:10:9d:bc:89: e7:39:46:32:13:06:61:c6:7c:4f:6b:e6:f0:ff:29: 74:26:f4:f6:20:12:0c:90:62:c2:c8:af:77:1c:4d: 96:62:ef:d1:dd:c3:b5:f8:51:e1:24:b9:aa:43:a6: e0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:29:85:AD:EB:29:BD:90:F1:B5:E4:3E:D2:D3:87:03:06:54:F0:47 X509v3 Authority Key Identifier: keyid:53:37:DC:B6:A9:1B:41:D5:21:1A:44:C2:16:A9:63:AB:AC:C7:E2:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/UzfctqkbQdUhGkTCFqljq6zH4rA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UzfctqkbQdUhGkTCFqljq6zH4rA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FBC/373083801D9311E28ABE9EF608B02CD2/8DFE2984EAD811ECA1ED8915C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.135.176.0/21 Signature Algorithm: sha256WithRSAEncryption 41:b5:83:d6:77:e0:b9:a6:dc:52:3a:2e:0d:1f:c1:bd:8e:89: 18:d7:13:0e:ae:3b:2a:74:60:dd:54:f1:e6:92:e1:b5:82:4d: 12:0f:8e:35:1d:dd:6f:3a:af:3f:5b:33:d2:5c:bd:b5:43:ab: fe:c2:85:0a:16:56:48:e9:0b:b5:eb:df:97:18:73:60:d7:50: 5d:57:de:88:69:94:3d:7d:53:43:22:25:91:2b:5e:2c:1e:9a: cd:f8:83:04:f3:2a:4b:3f:89:83:b3:d5:fc:01:09:ee:f6:53: b3:0e:9b:2d:82:f0:06:7e:80:ef:0e:46:03:ca:98:68:a0:23: f3:48:51:95:1f:0a:b8:d3:7b:90:47:ed:30:74:84:72:8b:ab: 8d:3f:7c:29:ec:23:e6:84:45:a4:a7:f3:13:d1:f8:93:e5:82: d3:fd:15:88:6c:2f:f2:50:4d:d4:10:a2:79:68:6f:2a:ab:eb: 32:4e:23:38:b9:c6:5f:a8:ba:36:cb:5b:43:3f:70:5a:c8:60: 6d:90:02:9a:b7:d1:ea:61:92:9f:fe:a8:69:2a:61:b7:dd:73: f8:be:b7:6a:8a:46:35:55:87:55:0f:b4:ae:5c:cc:65:cc:61: fd:08:66:1b:0f:16:9c:9d:05:c1:05:90:87:c9:e2:1d:9c:d7: ff:71:e9:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGQkMxMTAvBgNVBAUTKDUzMzdEQ0I2QTkxQjQxRDUyMTFBNDRDMjE2QTk2M0FC QUNDN0UyQjAwHhcNMjUxMDI0MTUwMDQ2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZiOTQ5ZC03ZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArC1HnfrV/o27nArMWMpE0V0xQPq8jOtK2XdMK5Cq6DEGXxyY0I5aElDpzDv1 kLZM7NijOeB08CPYyqV40IDneExJLLpVz6LiheycqS0+53rSDysfrKpDpvnCdzmN XvjdiB3NVCf6txhgG86D+FlXqDoFDFbj/Rrrlz47N3FtW5QrCR0ysCdsjkVq5gql UMlewh4wqebiElbyV29Crlm7NDwCBn8um3ik+Pd+lgZ5ZUwO67s8UvBXRyLurVis 7FHoa/Yq6xc4QOZBpQkBOxCdvInnOUYyEwZhxnxPa+bw/yl0JvT2IBIMkGLCyK93 HE2WYu/R3cO1+FHhJLmqQ6bg5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPcpha3r Kb2Q8bXkPtLThwMGVPBHMB8GA1UdIwQYMBaAFFM33LapG0HVIRpEwhapY6usx+Kw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZCQy8zNzMwODM4MDFE OTMxMUUyOEFCRTlFRjYwOEIwMkNEMi9VemZjdHFrYlFkVWhHa1RDRnFsanE2ekg0 ckEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V6ZmN0cWtiUWRVaEdrVENGcWxqcTZ6SDRyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdGQkMvMzczMDgzODAxRDkzMTFFMjhBQkU5RUY2MDhCMDJDRDIvOERGRTI5ODRF QUQ4MTFFQ0ExRUQ4OTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLh7AwDQYJKoZIhvcNAQELBQADggEBAEG1g9Z34Lmm3FI6 Lg0fwb2OiRjXEw6uOyp0YN1U8eaS4bWCTRIPjjUd3W86rz9bM9JcvbVDq/7ChQoW VkjpC7Xr35cYc2DXUF1X3ohplD19U0MiJZErXiwems34gwTzKks/iYOz1fwBCe72 U7MOmy2C8AZ+gO8ORgPKmGigI/NIUZUfCrjTe5BH7TB0hHKLq40/fCnsI+aERaSn 8xPR+JPlgtP9FYhsL/JQTdQQonlobyqr6zJOIzi5xl+oujbLW0M/cFrIYG2QApq3 0ephkp/+qGkqYbfdc/i+t2qKRjVVh1UPtK5czGXMYf0IZhsPFpydBcEFkIfJ4h2c 1/9x6ZI= -----END CERTIFICATE-----Generated at Wed Nov 5 15:03:40 2025 by rpki-client