$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/73D33FA24A8611F08884C659C4F9AE02.roa File: 73D33FA24A8611F08884C659C4F9AE02.roa (raw, json) Hash identifier: o6TrwidKO00UNfXuzel+2emRHvmY5gCcZTOKQTqPke8= Subject key identifier: BB:39:28:44:76:5E:9A:FF:06:64:17:35:A9:FF:E8:75:42:4D:CE:A3 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 084E Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/73D33FA24A8611F08884C659C4F9AE02.roa Signing time: Wed 08 Oct 2025 22:54:14 +0000 ROA not before: Wed 08 Oct 2025 22:54:14 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 197537 IP address blocks: 43.252.209.0/24 maxlen: 24 103.225.196.0/24 maxlen: 24 103.234.54.0/24 maxlen: 24 150.107.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2126 (0x84e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 8 22:54:14 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e6eb95-71f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:10:2d:0b:50:7b:3c:b7:bc:43:d2:0f:1c:a3: cf:6f:97:e1:70:31:36:cf:a2:42:3a:ea:24:24:e5: 0f:66:9f:e6:2d:46:a7:48:e4:25:46:48:10:1f:0b: db:3f:ca:2d:b3:23:10:ab:2d:b9:ee:78:54:6b:7c: 64:72:82:dd:dc:48:e8:0d:8d:22:9c:3c:18:32:ac: 0e:4b:25:9f:ec:65:fe:c1:6f:1e:62:dc:9c:a7:78: 9d:4e:e8:58:fb:74:48:e7:fa:af:d0:59:ed:2f:6b: fd:db:f3:fa:7e:aa:71:26:66:ef:3a:05:47:0b:ac: 79:48:f8:88:ed:e3:6c:70:21:f5:56:56:98:15:17: ad:9f:e1:f9:0d:4d:20:cf:f4:79:f3:d2:9b:e4:dc: 1c:9b:c7:1f:8b:72:f0:bd:e1:61:98:f7:02:17:0f: 0f:7b:19:a7:13:f7:ff:4e:28:a9:b6:dc:bb:0d:d7: b2:6d:89:90:33:26:d3:4b:db:14:30:c2:4d:01:43: ee:1d:7a:c0:2c:e7:f4:d1:9e:84:a4:73:5b:68:32: 15:d7:a6:31:93:c8:64:d5:87:36:db:0c:ac:40:f4: c1:ad:b5:c2:e1:a8:d1:8c:d4:3d:ec:c1:a7:e0:56: b5:b4:43:38:0f:f1:49:f4:82:94:93:97:8d:17:f3: c1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:39:28:44:76:5E:9A:FF:06:64:17:35:A9:FF:E8:75:42:4D:CE:A3 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/73D33FA24A8611F08884C659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.209.0/24 103.225.196.0/24 103.234.54.0/24 150.107.2.0/24 Signature Algorithm: sha256WithRSAEncryption 91:e0:50:3f:35:a5:9a:02:10:41:0c:9b:b6:8f:1a:5f:52:e8: b4:e9:52:2f:bd:78:07:d2:92:85:c9:2b:af:40:bf:74:02:c2: 3a:1e:dd:2b:f1:35:ca:01:91:83:8e:92:08:87:5a:f7:cf:a7: 80:bf:ab:29:94:c7:19:b1:49:71:6b:ee:fd:31:22:cf:cf:8b: ce:d3:26:95:1d:07:f5:b4:c9:df:d9:d6:3a:03:d8:48:50:c5: ca:d8:94:08:ac:74:49:98:db:1c:e8:76:01:a7:3e:c1:79:0f: 17:f0:b3:35:d4:b1:16:aa:4b:97:00:7c:3a:67:f7:07:31:f9: 33:d8:85:49:aa:79:40:31:67:67:a3:91:a0:e0:88:00:16:8a: c9:84:b9:55:44:40:57:95:41:ab:dd:ec:90:65:62:27:9f:22: 2b:c9:d1:3d:62:52:56:e7:c9:2f:ac:6b:2b:a9:46:c3:42:81: e3:98:1b:ce:fc:83:dc:30:76:1d:64:83:61:36:98:ed:44:e8: ad:e8:00:a5:68:ae:e0:5a:c6:cd:e1:65:01:57:98:22:dd:35: f9:2e:e9:01:c4:5a:56:db:73:39:36:63:67:84:a3:23:d8:ec: 76:dd:79:07:e9:ad:60:68:5f:20:9e:52:7d:02:60:c9:35:90: 6d:32:55:9d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMDA4MjI1NDE0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZWI5NS03MWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxAtC1B7PLe8Q9IPHKPPb5fhcDE2z6JCOuokJOUPZp/mLUanSOQlRkgQHwvb P8otsyMQqy257nhUa3xkcoLd3EjoDY0inDwYMqwOSyWf7GX+wW8eYtycp3idTuhY +3RI5/qv0FntL2v92/P6fqpxJmbvOgVHC6x5SPiI7eNscCH1VlaYFRetn+H5DU0g z/R589Kb5Nwcm8cfi3LwveFhmPcCFw8PexmnE/f/Tiiptty7DdeybYmQMybTS9sU MMJNAUPuHXrALOf00Z6EpHNbaDIV16Yxk8hk1Yc22wysQPTBrbXC4ajRjNQ97MGn 4Fa1tEM4D/FJ9IKUk5eNF/PBDwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFLs5KER2 Xpr/BmQXNan/6HVCTc6jMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNzNEMzNGQTI0 QTg2MTFGMDg4ODRDNjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAr/NEDBABn4cQDBABn6jYDBACWawIwDQYJKoZIhvcNAQEL BQADggEBAJHgUD81pZoCEEEMm7aPGl9S6LTpUi+9eAfSkoXJK69Av3QCwjoe3Svx NcoBkYOOkgiHWvfPp4C/qymUxxmxSXFr7v0xIs/Pi87TJpUdB/W0yd/Z1joD2EhQ xcrYlAisdEmY2xzodgGnPsF5DxfwszXUsRaqS5cAfDpn9wcx+TPYhUmqeUAxZ2ej kaDgiAAWismEuVVEQFeVQavd7JBlYiefIivJ0T1iUlbnyS+sayupRsNCgeOYG878 g9wwdh1kg2E2mO1E6K3oAKVoruBaxs3hZQFXmCLdNfku6QHEWlbbczk2Y2eEoyPY 7HbdeQfprWBoXyCeUn0CYMk1kG0yVZ0= -----END CERTIFICATE-----Generated at Mon Oct 20 13:40:39 2025 by rpki-client