$ rpki-client -vvf rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/FC35CE340A4711F0809C3032C4F9AE02.roa File: FC35CE340A4711F0809C3032C4F9AE02.roa (raw, json) Hash identifier: U5oQvcg4w4KLcI7rzHf7QE3coC6CkJg5TgXKnBGDWvE= Subject key identifier: 4C:9A:4C:56:9E:5B:7C:D7:6E:9B:2C:98:20:39:99:F8:B5:B2:F3:48 Certificate issuer: /CN=A9142DA4/serialNumber=BB4C9665E75F9E19DAD46F8B609D3444FB68ED47 Certificate serial: 03A3 Authority key identifier: BB:4C:96:65:E7:5F:9E:19:DA:D4:6F:8B:60:9D:34:44:FB:68:ED:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0yWZedfnhna1G-LYJ00RPto7Uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/FC35CE340A4711F0809C3032C4F9AE02.roa Signing time: Sat 13 Sep 2025 01:07:07 +0000 ROA not before: Sat 13 Sep 2025 01:07:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55872 IP address blocks: 115.187.96.0/19 maxlen: 19 118.82.128.0/17 maxlen: 17 118.82.128.0/18 maxlen: 18 118.82.136.0/21 maxlen: 21 118.82.144.0/20 maxlen: 20 118.82.160.0/20 maxlen: 20 118.82.176.0/21 maxlen: 21 118.82.184.0/22 maxlen: 22 118.82.188.0/23 maxlen: 23 118.82.192.0/18 maxlen: 18 118.82.192.0/21 maxlen: 21 118.82.200.0/21 maxlen: 21 118.82.208.0/21 maxlen: 21 118.82.216.0/21 maxlen: 21 118.82.232.0/21 maxlen: 21 118.82.240.0/21 maxlen: 21 119.235.32.0/21 maxlen: 21 202.65.162.0/23 maxlen: 23 202.65.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/u0yWZedfnhna1G-LYJ00RPto7Uc.crl rsync://rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/u0yWZedfnhna1G-LYJ00RPto7Uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0yWZedfnhna1G-LYJ00RPto7Uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:47:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 931 (0x3a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142DA4, serialNumber=BB4C9665E75F9E19DAD46F8B609D3444FB68ED47 Validity Not Before: Sep 13 01:07:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68c4c3ba-2a9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6f:68:7a:73:e0:31:a1:8f:d0:ba:07:9e:e4: 89:42:9e:7b:3a:ad:d1:f3:d1:ce:9f:67:5b:13:bc: 0e:93:99:a3:64:53:26:7c:5a:b6:32:7c:dd:18:50: f7:69:0b:5c:ad:4d:d5:3f:91:fe:77:bc:36:f5:94: 45:21:43:2c:5c:c9:1d:e6:2e:d9:76:20:d5:10:6c: 90:81:8c:73:fe:0e:d8:3c:20:d4:9b:b9:a7:0e:00: 4a:82:52:a0:2a:20:d3:53:ad:12:69:59:6e:50:ab: 2b:a2:de:fd:e9:70:26:3f:bf:d2:5a:12:6b:89:fb: 44:a1:14:a6:40:91:80:5b:98:58:51:45:ae:59:c8: be:9b:c2:68:26:05:7f:74:70:f1:5e:c2:fa:b0:8e: c1:ae:e9:e1:ea:94:d3:e8:5c:51:e6:20:78:0e:f7: ad:5d:a2:97:33:c1:07:85:83:31:e4:d3:5e:6f:7a: e8:54:44:a7:38:9c:85:a7:df:c0:44:1b:47:c3:a1: 51:52:53:1b:e2:fa:c9:df:ff:03:b5:9e:1d:67:e7: a1:ea:ce:44:e8:6b:f3:c1:90:1b:96:bd:7a:3e:7e: 9d:c7:0f:96:d2:81:82:6d:c4:d4:be:9c:c7:ba:f8: ff:bf:8f:7e:53:aa:72:0c:1f:51:3f:20:8d:d7:f1: 0f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:9A:4C:56:9E:5B:7C:D7:6E:9B:2C:98:20:39:99:F8:B5:B2:F3:48 X509v3 Authority Key Identifier: keyid:BB:4C:96:65:E7:5F:9E:19:DA:D4:6F:8B:60:9D:34:44:FB:68:ED:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/u0yWZedfnhna1G-LYJ00RPto7Uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u0yWZedfnhna1G-LYJ00RPto7Uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142DA4/8AD49F7EBAE811ECA82F141CC4F9AE02/FC35CE340A4711F0809C3032C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.187.96.0/19 118.82.128.0/17 119.235.32.0/21 202.65.162.0-202.65.167.255 Signature Algorithm: sha256WithRSAEncryption bf:86:31:72:1c:b4:dc:32:95:8c:ec:83:cf:9c:42:6e:97:76: 56:0c:64:ba:65:87:bf:aa:41:d6:c4:bb:37:05:5a:65:54:15: fd:fe:10:8c:ba:ed:ec:5b:4b:9a:83:7f:79:b9:58:0a:b0:f9: 64:76:62:ad:8c:d4:6c:75:0c:1e:72:63:f8:17:88:ef:21:6d: c0:3f:76:9f:27:f5:63:84:c2:5c:72:0c:cd:07:79:a8:0b:f2: 9f:4c:39:5a:f8:0f:fd:88:a9:9f:fb:2a:ac:31:39:d6:3d:dd: 32:87:d4:30:2b:67:3a:6a:93:f9:4e:53:2f:f4:c7:4f:59:0d: 67:27:46:71:9b:63:51:05:77:bc:74:86:41:3d:3c:d7:d5:06: d2:85:8c:cb:18:df:b4:45:45:cf:f8:89:49:72:dc:da:f0:9d: f5:9a:f3:72:95:68:ba:ee:f7:dd:a2:a4:0f:37:9b:2a:98:7a: 4f:a5:f4:38:e1:ed:cf:61:f9:4c:b9:4a:7f:5d:89:0f:db:d3: ff:b6:b7:21:1e:20:39:7c:68:be:17:ad:5d:07:75:75:37:bb: 14:22:48:f8:73:f1:36:2e:94:ec:36:cf:2e:6b:fd:2e:7f:62: 9a:5a:cc:23:61:1c:d6:5b:39:5f:29:2d:f7:61:0d:3c:c8:db: d1:7f:1c:3a -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICA6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJEQTQxMTAvBgNVBAUTKEJCNEM5NjY1RTc1RjlFMTlEQUQ0NkY4QjYwOUQzNDQ0 RkI2OEVENDcwHhcNMjUwOTEzMDEwNzA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0YzNiYS0yYTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxG9oenPgMaGP0LoHnuSJQp57Oq3R89HOn2dbE7wOk5mjZFMmfFq2MnzdGFD3 aQtcrU3VP5H+d7w29ZRFIUMsXMkd5i7ZdiDVEGyQgYxz/g7YPCDUm7mnDgBKglKg KiDTU60SaVluUKsrot796XAmP7/SWhJriftEoRSmQJGAW5hYUUWuWci+m8JoJgV/ dHDxXsL6sI7Brunh6pTT6FxR5iB4DvetXaKXM8EHhYMx5NNeb3roVESnOJyFp9/A RBtHw6FRUlMb4vrJ3/8DtZ4dZ+eh6s5E6GvzwZAblr16Pn6dxw+W0oGCbcTUvpzH uvj/v49+U6pyDB9RPyCN1/EPRQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFEyaTFae W3zXbpssmCA5mfi1svNIMB8GA1UdIwQYMBaAFLtMlmXnX54Z2tRvi2CdNET7aO1H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkRBNC84QUQ0OUY3RUJB RTgxMUVDQTgyRjE0MUNDNEY5QUUwMi91MHlXWmVkZm5obmExRy1MWUowMFJQdG83 VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UweVdaZWRmbmhuYTFHLUxZSjAwUlB0bzdVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJEQTQvOEFENDlGN0VCQUU4MTFFQ0E4MkYxNDFDQzRGOUFFMDIvRkMzNUNFMzQw QTQ3MTFGMDgwOUMzMDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAVzu2ADBAd2UoADBAN36yAwDAMEAcpBogMEA8pBoDANBgkq hkiG9w0BAQsFAAOCAQEAv4Yxchy03DKVjOyDz5xCbpd2VgxkumWHv6pB1sS7NwVa ZVQV/f4QjLrt7FtLmoN/eblYCrD5ZHZirYzUbHUMHnJj+BeI7yFtwD92nyf1Y4TC XHIMzQd5qAvyn0w5WvgP/Yipn/sqrDE51j3dMofUMCtnOmqT+U5TL/THT1kNZydG cZtjUQV3vHSGQT0819UG0oWMyxjftEVFz/iJSXLc2vCd9ZrzcpVouu733aKkDzeb Kph6T6X0OOHtz2H5TLlKf12JD9vT/7a3IR4gOXxovhetXQd1dTe7FCJI+HPxNi6U 7DbPLmv9Ln9imlrMI2Ec1ls5Xykt92ENPMjb0X8cOg== -----END CERTIFICATE-----Generated at Mon Oct 20 21:10:08 2025 by rpki-client