$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/757D79F84A8611F08884C659C4F9AE02.roa File: 757D79F84A8611F08884C659C4F9AE02.roa (raw, json) Hash identifier: F1EBgEiUdYzV2e+yWXrqhHhe+wUROhuQQWSgIujXFuM= Subject key identifier: 3A:61:BF:33:F1:BF:03:F2:4F:A3:92:4A:0E:53:8D:6A:1B:61:74:1B Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 0857 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/757D79F84A8611F08884C659C4F9AE02.roa Signing time: Wed 08 Oct 2025 22:54:21 +0000 ROA not before: Wed 08 Oct 2025 22:54:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9304 IP address blocks: 43.252.209.0/24 maxlen: 24 103.234.54.0/24 maxlen: 24 150.107.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2135 (0x857) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 8 22:54:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e6eb9d-1a60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:80:8d:0e:df:b1:a6:f8:e6:51:38:a8:4c:cd: 14:1d:73:46:1d:5c:66:e1:11:1c:45:74:96:ea:a4: c7:59:64:bd:fd:96:7f:cc:5a:ac:14:34:5a:5c:9b: 45:e5:bb:f6:4e:ea:1f:6c:7e:88:a0:d7:65:42:bd: 4d:06:8f:24:bb:df:1d:04:d5:31:ad:f1:af:fc:d6: 9b:a7:84:2b:73:66:49:25:b9:03:d6:13:13:4e:5c: cd:53:4e:ba:64:7b:10:e3:da:c7:e4:f5:2b:92:6b: be:fd:f8:be:49:cc:58:71:ff:4a:5e:75:c6:15:07: 09:7e:c3:34:a8:82:3f:d1:14:cb:c9:62:61:0c:66: ed:64:e7:da:ea:57:f8:72:97:a5:86:ac:e6:d6:d4: b4:a8:df:48:8f:23:7d:34:ea:ca:62:2e:3e:21:19: e4:60:a1:2f:98:13:03:b3:e2:3a:40:ac:aa:06:00: e2:83:99:d7:12:ea:b5:6b:a2:72:99:80:72:9d:b8: 70:19:f5:57:c7:1e:b1:6e:97:20:84:ce:5f:5b:5d: 26:f1:a5:eb:07:af:3a:30:c1:3b:82:e6:1c:88:dc: 6f:9c:5a:9e:03:43:83:f4:4b:4e:d8:fa:e6:be:4f: 0a:2f:fd:f6:f3:19:4d:2d:18:91:a6:d8:ea:87:8f: 4f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:61:BF:33:F1:BF:03:F2:4F:A3:92:4A:0E:53:8D:6A:1B:61:74:1B X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/757D79F84A8611F08884C659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.209.0/24 103.234.54.0/24 150.107.2.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:59:12:6a:95:1f:95:25:b1:e1:cb:f5:7c:fb:67:f9:07:ed: 97:b6:82:92:35:22:7b:a5:fe:2d:cd:6c:55:e9:a5:8a:8f:46: c2:32:95:9f:e6:ec:9c:85:95:94:63:b8:d1:51:62:3d:a2:05: 84:ce:55:79:d1:f0:86:58:dd:f0:a8:6f:c1:a0:90:2f:f0:4e: 25:78:0c:63:67:d8:6d:b4:c7:c1:2b:b7:9c:83:69:2a:87:07: f6:a7:51:19:d1:81:e6:5e:58:b0:7e:67:19:88:23:74:ec:a6: cb:48:f4:3a:ef:d5:98:88:a9:35:62:da:21:8b:49:89:15:26: 60:58:4a:97:a8:12:ed:84:cb:f8:07:bf:3d:20:98:40:40:da: 8c:4a:29:ce:b3:d0:d7:2b:4d:b5:11:a0:80:9d:bf:7b:41:fe: e1:7d:00:7a:d5:ee:1a:d3:28:44:cf:ab:97:c6:3f:6b:e2:50: e0:9d:26:91:78:bb:7a:11:aa:b1:f5:29:cf:e5:30:61:13:e9: e0:16:8a:e3:9a:d2:30:04:40:b5:b6:1e:f8:a3:8a:79:50:03: c3:9f:01:d8:45:72:74:fd:cb:95:02:d8:2d:9c:3e:99:d6:ee: 8d:da:44:c3:48:e1:1c:d1:1a:92:ec:5f:e5:be:99:14:48:2e: dc:8b:28:6d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCFcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUxMDA4MjI1NDIxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZWI5ZC0xYTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoCNDt+xpvjmUTioTM0UHXNGHVxm4REcRXSW6qTHWWS9/ZZ/zFqsFDRaXJtF 5bv2TuofbH6IoNdlQr1NBo8ku98dBNUxrfGv/Nabp4Qrc2ZJJbkD1hMTTlzNU066 ZHsQ49rH5PUrkmu+/fi+ScxYcf9KXnXGFQcJfsM0qII/0RTLyWJhDGbtZOfa6lf4 cpelhqzm1tS0qN9IjyN9NOrKYi4+IRnkYKEvmBMDs+I6QKyqBgDig5nXEuq1a6Jy mYBynbhwGfVXxx6xbpcghM5fW10m8aXrB686MME7guYciNxvnFqeA0OD9EtO2Prm vk8KL/328xlNLRiRptjqh49PswIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFDphvzPx vwPyT6OSSg5TjWobYXQbMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNzU3RDc5Rjg0 QTg2MTFGMDg4ODRDNjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr/NEDBABn6jYDBACWawIwDQYJKoZIhvcNAQELBQADggEB AJtZEmqVH5UlseHL9Xz7Z/kH7Ze2gpI1Inul/i3NbFXppYqPRsIylZ/m7JyFlZRj uNFRYj2iBYTOVXnR8IZY3fCob8GgkC/wTiV4DGNn2G20x8Ert5yDaSqHB/anURnR geZeWLB+ZxmII3TspstI9Drv1ZiIqTVi2iGLSYkVJmBYSpeoEu2Ey/gHvz0gmEBA 2oxKKc6z0NcrTbURoICdv3tB/uF9AHrV7hrTKETPq5fGP2viUOCdJpF4u3oRqrH1 Kc/lMGET6eAWiuOa0jAEQLW2HvijinlQA8OfAdhFcnT9y5UC2C2cPpnW7o3aRMNI 4RzRGpLsX+W+mRRILtyLKG0= -----END CERTIFICATE-----Generated at Mon Oct 20 13:41:07 2025 by rpki-client