$ rpki-client -vvf rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/DD1D106AB55611F0ABCE9254C4F9AE02.roa File: DD1D106AB55611F0ABCE9254C4F9AE02.roa (raw, json) Hash identifier: 9CTSG5q3PX2OXWTpXZsoG6zDo7ZTPSPW6mdCdigUYiQ= Subject key identifier: FD:45:C6:A2:4D:59:70:CF:84:B1:13:C6:40:AC:48:A1:20:AF:79:E7 Certificate issuer: /CN=A919EFEE/serialNumber=3142A1A861D9A44A9327F06619FEC8A6A962B423 Certificate serial: 0B Authority key identifier: 31:42:A1:A8:61:D9:A4:4A:93:27:F0:66:19:FE:C8:A6:A9:62:B4:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MUKhqGHZpEqTJ_BmGf7IpqlitCM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/DD1D106AB55611F0ABCE9254C4F9AE02.roa Signing time: Thu 30 Oct 2025 06:08:33 +0000 ROA not before: Thu 30 Oct 2025 06:08:33 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 133135 IP address blocks: 202.176.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/MUKhqGHZpEqTJ_BmGf7IpqlitCM.crl rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/MUKhqGHZpEqTJ_BmGf7IpqlitCM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MUKhqGHZpEqTJ_BmGf7IpqlitCM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EFEE, serialNumber=3142A1A861D9A44A9327F06619FEC8A6A962B423 Validity Not Before: Oct 30 06:08:33 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=690300e1-197f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d1:c9:c1:55:ba:d5:14:04:ac:4f:66:30:cd: 21:18:ba:c7:6e:43:bf:a9:a8:b6:ea:11:e4:0e:73: a7:d7:a2:6a:16:aa:2a:06:95:d7:31:08:c9:98:06: d7:9d:d8:42:59:03:07:ee:4d:b2:30:51:67:08:30: 64:b9:a2:66:f2:5f:7c:8c:b0:e9:e3:e2:17:83:5f: aa:99:9e:ee:5b:3e:08:d3:03:af:f7:7f:8c:56:93: 53:3b:64:a5:12:26:11:97:de:24:b0:78:c7:ac:88: ab:30:c8:4f:a4:83:e0:bb:31:15:aa:9e:59:f1:3e: e0:6a:c4:58:f1:90:50:8d:37:e2:d3:67:98:a0:bb: e3:da:b6:fa:b1:f9:1d:41:4d:1a:c9:e6:ae:87:b1: c8:ac:33:17:21:e5:0a:af:90:0c:cb:07:40:e7:87: 1b:5e:50:6e:8e:e0:66:31:23:1e:7a:99:f9:c5:f6: de:86:83:26:c6:d8:ef:a7:9a:d0:6d:c9:e1:c2:9e: 60:b0:7c:1c:ec:d0:21:5c:3b:01:af:a8:29:ce:84: 28:90:cb:18:70:ed:4b:c6:a1:45:ac:03:10:c8:da: f3:7c:f0:b4:63:52:a0:70:e9:c0:c2:02:4c:31:60: 15:19:73:86:da:a6:a8:bb:f4:8d:09:f6:e2:82:dc: 6e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:45:C6:A2:4D:59:70:CF:84:B1:13:C6:40:AC:48:A1:20:AF:79:E7 X509v3 Authority Key Identifier: keyid:31:42:A1:A8:61:D9:A4:4A:93:27:F0:66:19:FE:C8:A6:A9:62:B4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/MUKhqGHZpEqTJ_BmGf7IpqlitCM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MUKhqGHZpEqTJ_BmGf7IpqlitCM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EFEE/0F9E91F8B3D111F086C22D5AC4F9AE02/DD1D106AB55611F0ABCE9254C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.176.7.0/24 Signature Algorithm: sha256WithRSAEncryption c3:84:92:2e:31:de:b0:1a:1e:2b:29:70:d5:d0:a0:eb:02:61: 7a:12:ab:73:3b:fc:8b:44:68:9f:6b:d8:ee:30:f2:5e:f8:c7: 33:af:22:be:36:b4:6c:48:68:25:11:4e:95:57:8c:4b:02:35: f5:77:f7:a0:2d:9e:c6:34:12:20:76:bc:33:0b:a5:3b:f3:b6: 2c:11:d2:2b:9b:ec:fa:95:0c:9f:4c:78:69:6b:c3:dc:0c:d1: 90:4b:ff:75:2b:dc:c8:f2:7c:88:85:fb:5f:b5:52:22:45:9d: 62:ca:65:91:56:53:59:00:41:51:ff:2d:95:1b:b5:11:21:86: 41:35:65:c1:f9:ae:bf:36:6e:09:0e:6a:27:82:67:b2:2f:72: cb:5a:02:38:2e:32:a1:0a:e0:21:2a:5b:d3:c7:8c:12:41:cd: 15:77:3d:de:6a:a6:f9:a6:02:eb:70:d1:c1:f1:2b:f3:ec:ac: 34:7b:a7:f3:ca:ce:a8:b1:81:a2:46:af:e3:7f:6b:51:00:4d: 83:f9:95:a9:57:08:d9:a6:c8:8c:87:ca:30:2a:d4:8a:02:0b: a0:32:22:af:ba:83:a1:d6:e3:ba:50:f8:ec:2d:aa:bf:de:63: 9a:3a:9d:56:22:1e:4f:76:4a:11:0e:06:d3:ab:8b:13:c2:5e: be:57:2e:ae -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RUZFRTExMC8GA1UEBRMoMzE0MkExQTg2MUQ5QTQ0QTkzMjdGMDY2MTlGRUM4QTZB OTYyQjQyMzAeFw0yNTEwMzAwNjA4MzNaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDMwMGUxLTE5N2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZ0cnBVbrVFASsT2YwzSEYusduQ7+pqLbqEeQOc6fXomoWqioGldcxCMmYBted 2EJZAwfuTbIwUWcIMGS5ombyX3yMsOnj4heDX6qZnu5bPgjTA6/3f4xWk1M7ZKUS JhGX3iSweMesiKswyE+kg+C7MRWqnlnxPuBqxFjxkFCNN+LTZ5igu+Patvqx+R1B TRrJ5q6HscisMxch5QqvkAzLB0DnhxteUG6O4GYxIx56mfnF9t6GgybG2O+nmtBt yeHCnmCwfBzs0CFcOwGvqCnOhCiQyxhw7UvGoUWsAxDI2vN88LRjUqBw6cDCAkwx YBUZc4bapqi79I0J9uKC3G7dAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/UXGok1Z cM+EsRPGQKxIoSCveecwHwYDVR0jBBgwFoAUMUKhqGHZpEqTJ/BmGf7IpqlitCMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFRkVFLzBGOUU5MUY4QjNE MTExRjA4NkMyMkQ1QUM0RjlBRTAyL01VS2hxR0hacEVxVEpfQm1HZjdJcHFsaXRD TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVVLaHFHSFpwRXFUSl9CbUdmN0lwcWxpdENNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUZFRS8wRjlFOTFGOEIzRDExMUYwODZDMjJENUFDNEY5QUUwMi9ERDFEMTA2QUI1 NTYxMUYwQUJDRTkyNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMqwBzANBgkqhkiG9w0BAQsFAAOCAQEAw4SSLjHesBoeKylw 1dCg6wJhehKrczv8i0Ron2vY7jDyXvjHM68ivja0bEhoJRFOlVeMSwI19Xf3oC2e xjQSIHa8MwulO/O2LBHSK5vs+pUMn0x4aWvD3AzRkEv/dSvcyPJ8iIX7X7VSIkWd YsplkVZTWQBBUf8tlRu1ESGGQTVlwfmuvzZuCQ5qJ4Jnsi9yy1oCOC4yoQrgISpb 08eMEkHNFXc93mqm+aYC63DRwfEr8+ysNHun88rOqLGBokav439rUQBNg/mVqVcI 2abIjIfKMCrUigILoDIir7qDodbjulD47C2qv95jmjqdViIeT3ZKEQ4G06uLE8Je vlcurg== -----END CERTIFICATE-----Generated at Wed Nov 5 18:15:03 2025 by rpki-client