$ rpki-client -vvf rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa File: 1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa (raw, json) Hash identifier: YJSyg7QmXDp0BYbgvJF4Ri7C1eahVBb5r1mM5QY6K6M= Subject key identifier: 0F:C2:B9:F0:FF:40:8F:4C:B1:B5:A5:24:0B:DE:A5:CA:DF:78:3D:13 Certificate issuer: /CN=A913900D/serialNumber=C603786D55A904124E7592EED2899EF578921100 Certificate serial: 7DA8 Authority key identifier: C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa Signing time: Tue 02 Sep 2025 17:36:20 +0000 ROA not before: Tue 02 Sep 2025 17:36:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 18117 IP address blocks: 118.127.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:29:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32168 (0x7da8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913900D, serialNumber=C603786D55A904124E7592EED2899EF578921100 Validity Not Before: Sep 2 17:36:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b72b14-13bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:63:a6:e8:89:6e:5c:36:11:f6:25:ff:a3:7c: ac:61:d2:1a:e9:e8:ea:a2:76:08:19:6d:e3:1e:83: bc:8b:9d:4b:21:68:a8:a7:89:15:49:6f:dd:9d:48: 6e:7e:39:bb:b2:8f:00:e1:50:0c:0a:a2:4d:07:3a: 24:3c:b8:40:2d:b4:03:e8:e1:62:d8:e5:e7:07:6d: f9:65:12:8b:de:ea:71:53:62:5b:1b:86:ce:37:22: e0:e1:b6:9d:69:2e:66:42:37:54:c4:0f:b8:e9:71: 94:56:af:ea:3a:64:90:5b:1e:61:8f:25:c4:5c:b3: 76:7a:16:c4:5f:77:0b:6b:c8:c5:1a:70:33:06:17: 1c:98:d9:22:2c:d2:f6:27:12:8d:22:ba:4b:37:1a: bb:9d:a0:7c:66:83:fc:68:0a:a9:49:1f:7e:95:5f: 67:8c:6c:cd:6f:b2:47:c8:9c:e9:fd:d6:57:05:2f: 5d:1b:6a:e0:38:fe:25:95:29:46:ad:1b:3f:1b:37: 75:a0:04:55:2c:be:2f:a4:6d:c5:1f:d3:58:eb:4e: c5:68:0f:97:4e:a5:1b:55:40:13:d9:46:1d:33:46: fb:b9:82:64:4b:fb:56:4d:98:f2:51:c5:42:e7:81: 0e:52:16:b6:e8:2a:03:0f:15:74:65:ff:4d:f0:5a: 24:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C2:B9:F0:FF:40:8F:4C:B1:B5:A5:24:0B:DE:A5:CA:DF:78:3D:13 X509v3 Authority Key Identifier: keyid:C6:03:78:6D:55:A9:04:12:4E:75:92:EE:D2:89:9E:F5:78:92:11:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/xgN4bVWpBBJOdZLu0ome9XiSEQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xgN4bVWpBBJOdZLu0ome9XiSEQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913900D/FCDCD3A0AC9D11E892CDAD0DC4F9AE02/1ACCB31CCA2011EEAAE0BC1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.127.64.0/19 Signature Algorithm: sha256WithRSAEncryption 16:df:8f:82:42:b0:ca:df:e0:47:b9:c0:8e:9e:d9:35:a2:cc: a1:4d:5d:df:64:bb:d0:6f:e9:d3:a0:17:94:2a:c3:95:dc:99: 2c:6a:f2:fe:57:cb:30:44:8c:32:65:c7:ce:3d:af:60:38:40: 12:ee:a3:3a:49:5e:a9:a9:ed:50:90:c6:64:f9:83:fe:c0:81: 58:2d:ac:e0:c7:d4:95:62:b7:c5:b8:1d:c0:1b:93:0f:cc:d1: a6:1b:97:54:c9:e2:d4:93:1b:4b:58:dc:bf:b5:86:0c:a9:18: e0:cb:59:5a:cd:5d:75:0a:ca:2d:f1:b1:66:c5:08:e0:bd:6f: 82:75:c2:55:d7:bf:3e:4e:d0:18:87:b9:c5:c5:4e:71:99:03: af:92:4b:77:2b:98:b5:12:9a:e1:65:f1:fc:e7:70:7b:ba:2a: 01:99:55:28:b6:10:29:20:66:e8:f0:57:66:eb:cf:d2:e3:80: 61:7c:01:96:7f:33:f2:a1:66:f5:81:da:13:0e:43:35:17:0a: 2f:21:aa:66:ec:93:f4:e1:be:f8:bb:a2:ca:03:50:4d:91:2e: a9:c9:b1:97:11:80:9a:65:7b:05:15:9e:7f:c2:7c:3c:e2:7d: 63:47:0b:f9:9c:8a:ae:73:c9:77:0d:18:cc:8a:33:a6:6e:83: e4:82:60:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICfagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkwMEQxMTAvBgNVBAUTKEM2MDM3ODZENTVBOTA0MTI0RTc1OTJFRUQyODk5RUY1 Nzg5MjExMDAwHhcNMjUwOTAyMTczNjIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MmIxNC0xM2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGOm6IluXDYR9iX/o3ysYdIa6ejqonYIGW3jHoO8i51LIWiop4kVSW/dnUhu fjm7so8A4VAMCqJNBzokPLhALbQD6OFi2OXnB235ZRKL3upxU2JbG4bONyLg4bad aS5mQjdUxA+46XGUVq/qOmSQWx5hjyXEXLN2ehbEX3cLa8jFGnAzBhccmNkiLNL2 JxKNIrpLNxq7naB8ZoP8aAqpSR9+lV9njGzNb7JHyJzp/dZXBS9dG2rgOP4llSlG rRs/Gzd1oARVLL4vpG3FH9NY607FaA+XTqUbVUAT2UYdM0b7uYJkS/tWTZjyUcVC 54EOUha26CoDDxV0Zf9N8Fok9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFA/CufD/ QI9MsbWlJAvepcrfeD0TMB8GA1UdIwQYMBaAFMYDeG1VqQQSTnWS7tKJnvV4khEA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTAwRC9GQ0RDRDNBMEFD OUQxMUU4OTJDREFEMERDNEY5QUUwMi94Z040YlZXcEJCSk9kWkx1MG9tZTlYaVNF UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hnTjRiVldwQkJKT2RaTHUwb21lOVhpU0VRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkwMEQvRkNEQ0QzQTBBQzlEMTFFODkyQ0RBRDBEQzRGOUFFMDIvMUFDQ0IzMUND QTIwMTFFRUFBRTBCQzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAV2f0AwDQYJKoZIhvcNAQELBQADggEBABbfj4JCsMrf4Ee5 wI6e2TWizKFNXd9ku9Bv6dOgF5Qqw5XcmSxq8v5XyzBEjDJlx849r2A4QBLuozpJ Xqmp7VCQxmT5g/7AgVgtrODH1JVit8W4HcAbkw/M0aYbl1TJ4tSTG0tY3L+1hgyp GODLWVrNXXUKyi3xsWbFCOC9b4J1wlXXvz5O0BiHucXFTnGZA6+SS3crmLUSmuFl 8fzncHu6KgGZVSi2ECkgZujwV2brz9LjgGF8AZZ/M/KhZvWB2hMOQzUXCi8hqmbs k/Thvvi7osoDUE2RLqnJsZcRgJplewUVnn/CfDzifWNHC/mciq5zyXcNGMyKM6Zu g+SCYE0= -----END CERTIFICATE-----Generated at Mon Oct 20 13:57:46 2025 by rpki-client