$ rpki-client -vvf rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/46DE5C7875DD11ED86945E46C4F9AE02.roa File: 46DE5C7875DD11ED86945E46C4F9AE02.roa (raw, json) Hash identifier: HvJRtP/1M+AejuhqdGaCDBK61eDiFrYobniM96LvHvI= Subject key identifier: D0:02:8E:4B:12:B9:1B:E7:43:85:56:37:AB:2B:9A:DE:19:DF:03:8C Certificate issuer: /CN=A9111B00/serialNumber=BBD2E9D913C645C8A05192474CFFA896BB9A4EA6 Certificate serial: 0214 Authority key identifier: BB:D2:E9:D9:13:C6:45:C8:A0:51:92:47:4C:FF:A8:96:BB:9A:4E:A6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/u9Lp2RPGRcigUZJHTP-olruaTqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/46DE5C7875DD11ED86945E46C4F9AE02.roa Signing time: Fri 03 Oct 2025 02:28:29 +0000 ROA not before: Fri 03 Oct 2025 02:28:29 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 38066 IP address blocks: 141.243.8.0/23 maxlen: 24 141.243.20.0/23 maxlen: 24 141.243.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.crl rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/u9Lp2RPGRcigUZJHTP-olruaTqY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111B00, serialNumber=BBD2E9D913C645C8A05192474CFFA896BB9A4EA6 Validity Not Before: Oct 3 02:28:29 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68df34cc-efc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c1:09:8f:75:a1:d9:38:4a:f7:7b:01:90:47: 41:61:e7:81:f6:0c:08:66:7c:6a:67:bc:2e:77:7c: ea:5c:aa:a5:be:7a:17:d5:66:2d:31:1b:ab:9e:c5: ee:d1:ba:1f:98:94:19:ed:c3:a2:17:cf:a3:ff:f6: c3:3e:4f:f1:61:34:71:c1:b3:02:5a:7c:31:7b:4b: d0:61:92:7d:1d:83:22:0e:8b:31:c2:5c:7d:ac:91: 91:43:e9:06:28:78:53:b6:95:b3:e7:13:10:d6:3a: 85:1f:ed:1b:af:d3:be:e1:61:c8:54:f9:ef:8e:37: 3a:40:7f:7e:72:c7:b5:a4:98:f5:e4:46:a7:2f:79: bc:3e:ed:aa:ac:93:cf:e3:a9:1a:11:c6:76:17:11: a1:ae:d6:3a:df:93:d1:84:46:6b:8d:7f:a2:d6:51: be:58:44:9d:75:c1:e1:36:12:f8:e6:d8:84:91:3c: 31:b3:5d:a4:6c:4a:74:20:3b:3d:5d:ba:cd:de:40: 2b:1e:1b:55:0e:c0:a3:55:6a:a0:47:85:6e:9a:39: 53:1a:92:45:8a:71:60:4a:07:e9:b4:7c:b5:d9:dd: 5d:c8:06:e4:00:d4:7d:82:94:08:99:60:d7:79:75: 19:5d:60:01:cc:0a:10:e5:0d:4e:74:d0:85:5a:74: 79:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:02:8E:4B:12:B9:1B:E7:43:85:56:37:AB:2B:9A:DE:19:DF:03:8C X509v3 Authority Key Identifier: keyid:BB:D2:E9:D9:13:C6:45:C8:A0:51:92:47:4C:FF:A8:96:BB:9A:4E:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/u9Lp2RPGRcigUZJHTP-olruaTqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/u9Lp2RPGRcigUZJHTP-olruaTqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111B00/13CA519275D911EDAB59C442C4F9AE02/46DE5C7875DD11ED86945E46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.243.8.0/23 141.243.20.0/23 141.243.32.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:0c:4d:6a:f8:58:45:4c:e0:a8:41:44:7c:c8:47:71:91:de: d5:59:f5:9c:a8:28:02:da:42:1a:95:46:7c:ad:4b:8e:d7:5e: b0:66:4d:ae:ec:14:9d:cb:19:0e:12:da:fb:1a:43:a1:fc:97: 25:71:0e:ee:4c:f1:aa:a7:f3:f8:18:9c:f6:7d:53:68:c5:a5: bb:68:d6:1f:b3:22:96:b5:38:1c:82:41:70:62:91:ee:50:99: 46:2b:57:34:f0:ed:61:1b:6d:03:cd:3d:0e:ae:e3:c2:ba:f0: 7d:59:16:db:95:fe:cb:98:57:b5:e2:22:b0:e1:99:a9:d6:a1: 0c:eb:31:47:52:e7:f3:71:e6:4a:c6:30:93:96:c4:de:22:ab: f6:7b:d3:82:a8:4e:74:3b:32:f0:13:12:ef:ee:46:e8:2b:5b: 54:55:62:5d:f3:37:63:02:20:71:ee:11:16:c5:26:3a:92:1a: 61:1e:29:69:c5:6b:a6:95:52:08:93:7b:2d:af:5f:31:c1:a3: 37:9a:89:a0:75:e8:8e:3f:b8:20:78:dd:fd:45:aa:b3:91:2a: 9f:8e:53:9e:73:c5:87:cb:5b:94:10:81:b3:b5:e2:f5:7e:9f: 12:e0:ac:8f:57:51:b0:19:5a:76:e9:02:99:a9:03:73:d1:b7: 13:66:4b:8c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFCMDAxMTAvBgNVBAUTKEJCRDJFOUQ5MTNDNjQ1QzhBMDUxOTI0NzRDRkZBODk2 QkI5QTRFQTYwHhcNMjUxMDAzMDIyODI5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmMzRjYy1lZmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMEJj3Wh2ThK93sBkEdBYeeB9gwIZnxqZ7wud3zqXKqlvnoX1WYtMRurnsXu 0bofmJQZ7cOiF8+j//bDPk/xYTRxwbMCWnwxe0vQYZJ9HYMiDosxwlx9rJGRQ+kG KHhTtpWz5xMQ1jqFH+0br9O+4WHIVPnvjjc6QH9+cse1pJj15EanL3m8Pu2qrJPP 46kaEcZ2FxGhrtY635PRhEZrjX+i1lG+WESddcHhNhL45tiEkTwxs12kbEp0IDs9 XbrN3kArHhtVDsCjVWqgR4VumjlTGpJFinFgSgfptHy12d1dyAbkANR9gpQImWDX eXUZXWABzAoQ5Q1OdNCFWnR5+wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNACjksS uRvnQ4VWN6srmt4Z3wOMMB8GA1UdIwQYMBaAFLvS6dkTxkXIoFGSR0z/qJa7mk6m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUIwMC8xM0NBNTE5Mjc1 RDkxMUVEQUI1OUM0NDJDNEY5QUUwMi91OUxwMlJQR1JjaWdVWkpIVFAtb2xydWFU cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3U5THAyUlBHUmNpZ1VaSkhUUC1vbHJ1YVRxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTFCMDAvMTNDQTUxOTI3NUQ5MTFFREFCNTlDNDQyQzRGOUFFMDIvNDZERTVDNzg3 NUREMTFFRDg2OTQ1RTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAGN8wgDBAGN8xQDBAKN8yAwDQYJKoZIhvcNAQELBQADggEB AC8MTWr4WEVM4KhBRHzIR3GR3tVZ9ZyoKALaQhqVRnytS47XXrBmTa7sFJ3LGQ4S 2vsaQ6H8lyVxDu5M8aqn8/gYnPZ9U2jFpbto1h+zIpa1OByCQXBike5QmUYrVzTw 7WEbbQPNPQ6u48K68H1ZFtuV/suYV7XiIrDhmanWoQzrMUdS5/Nx5krGMJOWxN4i q/Z704KoTnQ7MvATEu/uRugrW1RVYl3zN2MCIHHuERbFJjqSGmEeKWnFa6aVUgiT ey2vXzHBozeaiaB16I4/uCB43f1FqrORKp+OU55zxYfLW5QQgbO14vV+nxLgrI9X UbAZWnbpApmpA3PRtxNmS4w= -----END CERTIFICATE-----Generated at Mon Oct 20 21:45:09 2025 by rpki-client