$ rpki-client -vvf rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/DDEF7534AC6C11EBB6B1E17DC4F9AE02.roa File: DDEF7534AC6C11EBB6B1E17DC4F9AE02.roa (raw, json) Hash identifier: OBNzTX6aR4jmrgmRDfzbRnwCFSG478b3wNooMI8zuUE= Subject key identifier: 98:6F:BF:0C:A5:1D:78:8D:E9:00:4A:63:BF:C8:E3:72:AB:25:2C:81 Certificate issuer: /CN=A9110009/serialNumber=787D29540E588237E85D1607960008291189FA22 Certificate serial: 0630 Authority key identifier: 78:7D:29:54:0E:58:82:37:E8:5D:16:07:96:00:08:29:11:89:FA:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/DDEF7534AC6C11EBB6B1E17DC4F9AE02.roa Signing time: Sat 06 Sep 2025 23:03:45 +0000 ROA not before: Sat 06 Sep 2025 23:03:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4764 IP address blocks: 203.30.24.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.crl rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:15:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1584 (0x630) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110009, serialNumber=787D29540E588237E85D1607960008291189FA22 Validity Not Before: Sep 6 23:03:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68bcbdd1-b802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:27:ca:c5:34:27:bb:a7:fd:39:93:2d:3b:c5: 64:48:88:9b:5f:e8:b8:ab:56:58:4e:3a:f2:4c:73: d2:4b:1e:f5:fd:03:50:95:8c:2a:36:78:31:63:6c: 8f:60:97:10:2a:e3:8a:54:62:a1:91:d1:7b:c1:24: b6:b1:89:b3:44:1e:de:dd:95:06:97:98:7e:3c:81: 34:bd:99:3b:b7:f4:83:9b:16:c6:50:24:3c:6e:74: c2:55:7f:0b:52:f2:48:fe:4c:1d:cd:8e:44:4a:d7: 2e:c6:ab:26:75:90:1a:86:50:21:55:92:e1:51:f9: 6b:89:8b:80:67:6c:e7:ae:71:5a:28:cb:7f:1b:ff: 7b:f1:f3:37:db:b4:93:0a:d0:14:94:20:82:1f:fc: 50:c6:41:ad:ba:fa:d8:bb:c5:04:c3:3c:82:6c:7f: 79:7b:a4:15:22:a1:09:58:f9:1b:14:e4:ac:1b:69: ad:8a:ed:32:d7:e0:bb:2c:9b:f7:a6:fb:03:e8:7a: 29:f0:df:40:e2:bb:94:29:ea:8a:cf:8f:10:4a:4c: ce:84:b4:20:03:61:4e:99:86:ff:cb:62:a1:de:76: 3d:23:6c:23:c8:a5:78:a6:c8:f9:8d:85:e6:a7:d2: 31:14:dd:91:a1:63:d6:a0:4e:52:2e:80:95:c7:98: 5a:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6F:BF:0C:A5:1D:78:8D:E9:00:4A:63:BF:C8:E3:72:AB:25:2C:81 X509v3 Authority Key Identifier: keyid:78:7D:29:54:0E:58:82:37:E8:5D:16:07:96:00:08:29:11:89:FA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eH0pVA5YgjfoXRYHlgAIKRGJ-iI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110009/CC810120AC6A11EBA54AF87AC4F9AE02/DDEF7534AC6C11EBB6B1E17DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.30.24.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:d0:f2:38:24:92:ea:55:76:3e:eb:70:d6:0f:2b:7f:8c:22: 16:62:1e:e4:9f:05:dd:97:f7:8b:43:71:97:e0:3c:d3:d6:07: 92:4d:5d:28:f8:6b:4d:9b:42:1a:82:32:0d:a8:c9:b2:2a:91: 79:b7:28:79:33:e2:4c:b8:30:d9:f7:65:45:c4:ce:a5:fe:bc: c3:c0:f3:0e:57:33:96:44:f0:c1:7c:c8:43:47:48:36:db:72: 3f:1f:9a:a7:e7:7c:61:60:5e:55:9d:fb:8a:d1:73:b3:48:92: 2a:82:a3:49:39:bb:0c:54:38:c1:11:df:1d:0a:15:12:80:82: 83:3e:d0:15:c6:3e:c7:6d:e4:3d:12:47:09:31:aa:41:37:38: e3:89:5f:90:76:40:10:28:a5:0d:49:e5:64:c4:3b:3e:43:be: c7:88:5b:03:37:92:bb:b7:66:40:e6:5d:28:83:e0:32:ec:97: 5e:8f:76:06:52:01:34:aa:92:49:51:59:f3:b4:52:48:95:e9: c6:e1:a7:b8:3f:df:2f:8a:2f:71:1a:b6:79:9f:b5:b3:f0:35: f0:5d:15:b6:44:7d:0a:c6:70:61:39:51:22:c6:89:70:2d:73: 36:16:a5:b8:2e:71:13:d7:4f:2f:fb:9f:84:09:c7:88:22:57: 62:4d:fb:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTAwMDkxMTAvBgNVBAUTKDc4N0QyOTU0MEU1ODgyMzdFODVEMTYwNzk2MDAwODI5 MTE4OUZBMjIwHhcNMjUwOTA2MjMwMzQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJjYmRkMS1iODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6SfKxTQnu6f9OZMtO8VkSIibX+i4q1ZYTjryTHPSSx71/QNQlYwqNngxY2yP YJcQKuOKVGKhkdF7wSS2sYmzRB7e3ZUGl5h+PIE0vZk7t/SDmxbGUCQ8bnTCVX8L UvJI/kwdzY5EStcuxqsmdZAahlAhVZLhUflriYuAZ2znrnFaKMt/G/978fM327ST CtAUlCCCH/xQxkGtuvrYu8UEwzyCbH95e6QVIqEJWPkbFOSsG2mtiu0y1+C7LJv3 pvsD6Hop8N9A4ruUKeqKz48QSkzOhLQgA2FOmYb/y2Kh3nY9I2wjyKV4psj5jYXm p9IxFN2RoWPWoE5SLoCVx5haQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJhvvwyl HXiN6QBKY7/I43KrJSyBMB8GA1UdIwQYMBaAFHh9KVQOWII36F0WB5YACCkRifoi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDAwOS9DQzgxMDEyMEFD NkExMUVCQTU0QUY4N0FDNEY5QUUwMi9lSDBwVkE1WWdqZm9YUllIbGdBSUtSR0ot aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VIMHBWQTVZZ2pmb1hSWUhsZ0FJS1JHSi1pSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTAwMDkvQ0M4MTAxMjBBQzZBMTFFQkE1NEFGODdBQzRGOUFFMDIvRERFRjc1MzRB QzZDMTFFQkI2QjFFMTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHhgwDQYJKoZIhvcNAQELBQADggEBAB3Q8jgkkupVdj7r cNYPK3+MIhZiHuSfBd2X94tDcZfgPNPWB5JNXSj4a02bQhqCMg2oybIqkXm3KHkz 4ky4MNn3ZUXEzqX+vMPA8w5XM5ZE8MF8yENHSDbbcj8fmqfnfGFgXlWd+4rRc7NI kiqCo0k5uwxUOMER3x0KFRKAgoM+0BXGPsdt5D0SRwkxqkE3OOOJX5B2QBAopQ1J 5WTEOz5DvseIWwM3kru3ZkDmXSiD4DLsl16PdgZSATSqkklRWfO0UkiV6cbhp7g/ 3y+KL3EatnmftbPwNfBdFbZEfQrGcGE5USLGiXAtczYWpbgucRPXTy/7n4QJx4gi V2JN+2g= -----END CERTIFICATE-----Generated at Mon Oct 20 04:49:57 2025 by rpki-client