$ rpki-client -vvf rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/4409B8649D1011F0B28FB758C4F9AE02.roa File: 4409B8649D1011F0B28FB758C4F9AE02.roa (raw, json) Hash identifier: pg4ZOtHk71fFYiWtwRC9KYE71kipcICOVJv+rLCIgqs= Subject key identifier: 80:DC:80:AC:B5:58:5D:C9:07:B9:8E:42:25:C8:46:8F:C7:76:9B:AB Certificate issuer: /CN=A916B18B/serialNumber=FDE36B6E949398E52D95E89D40BDF60B25DB69B9 Certificate serial: 18C3 Authority key identifier: FD:E3:6B:6E:94:93:98:E5:2D:95:E8:9D:40:BD:F6:0B:25:DB:69:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eNrbpSTmOUtleidQL32CyXbabk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/4409B8649D1011F0B28FB758C4F9AE02.roa Signing time: Mon 29 Sep 2025 08:42:44 +0000 ROA not before: Mon 29 Sep 2025 08:42:44 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 153356 IP address blocks: 113.19.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/_eNrbpSTmOUtleidQL32CyXbabk.crl rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/_eNrbpSTmOUtleidQL32CyXbabk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eNrbpSTmOUtleidQL32CyXbabk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6339 (0x18c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B18B, serialNumber=FDE36B6E949398E52D95E89D40BDF60B25DB69B9 Validity Not Before: Sep 29 08:42:44 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68da4683-dc33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:25:e6:39:cf:35:56:00:40:67:3c:56:d5:32: b3:be:82:99:78:af:46:70:5d:a7:fc:22:43:08:a9: d3:69:c5:46:d7:5c:27:02:8c:79:62:d7:7b:ae:81: 31:1f:c6:5d:58:7a:c3:03:9c:a6:41:b7:6e:73:a9: f4:fd:7a:df:59:5e:c0:83:fb:3e:20:9a:67:e1:a0: 1a:72:98:a1:3d:dc:99:eb:8d:05:d2:15:c4:cb:2f: ec:be:d3:14:82:a5:aa:f5:70:78:a9:19:f8:65:45: af:4d:12:7c:2e:b0:7d:c7:e2:04:25:d8:b0:10:3e: b8:48:9b:d3:9b:98:55:98:c9:12:ac:64:2b:45:37: cb:2a:b6:55:31:f2:87:b2:a5:10:21:27:ae:61:bb: fb:7b:3b:2d:55:4a:83:a0:a1:d8:73:45:c9:cb:a6: df:fb:cb:4d:b4:52:83:52:d8:e0:bd:d4:3e:67:f1: 51:f0:b7:1b:2f:ca:72:b5:62:91:50:db:ce:b1:fa: 70:ab:43:aa:3d:29:57:3b:68:95:42:ca:39:9b:48: e8:0d:11:b2:a3:a2:30:4a:81:80:0f:bf:12:b4:98: 7c:47:e2:07:f9:6b:b1:53:8c:f4:2a:2c:d7:ff:21: 0e:14:aa:4e:09:17:be:f2:9f:60:b5:de:33:ab:68: 8d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:DC:80:AC:B5:58:5D:C9:07:B9:8E:42:25:C8:46:8F:C7:76:9B:AB X509v3 Authority Key Identifier: keyid:FD:E3:6B:6E:94:93:98:E5:2D:95:E8:9D:40:BD:F6:0B:25:DB:69:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/_eNrbpSTmOUtleidQL32CyXbabk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eNrbpSTmOUtleidQL32CyXbabk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B18B/628DE502DF2311E797225D2EC4F9AE02/4409B8649D1011F0B28FB758C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.19.118.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:68:93:b3:0e:04:cf:aa:7e:c6:42:11:08:6e:30:f9:92:51: 4c:c0:37:b9:a1:49:ab:ef:a4:3b:d5:da:fb:76:a7:1f:30:c3: 58:c5:c9:34:fa:cc:a2:87:0c:8c:ca:f9:27:ce:a9:d4:4f:b8: 85:80:9f:a7:3c:0b:fa:71:73:c6:a1:fa:63:06:d8:43:d4:dc: 5d:93:ba:36:60:8a:41:a1:62:ef:8f:66:9b:c5:07:05:26:62: f0:1e:31:bc:7d:b8:47:22:df:48:6b:7c:c9:20:b0:27:f5:0d: e0:7d:6f:60:ca:ff:51:dc:41:d8:5f:bb:a6:0f:88:ad:65:29: 0f:3d:85:a3:90:b7:04:01:da:8e:93:d3:5c:a6:8d:d2:ea:00: 47:25:7d:f6:27:f5:8f:7d:a7:3c:0b:f6:a1:f0:eb:21:be:9e: 24:b3:95:0d:80:16:bc:22:5a:2c:d8:b9:23:28:e3:14:d8:53: 6f:e2:3b:4c:56:fd:a6:70:72:cb:b2:71:5f:e2:33:c7:78:4b: 89:bd:fd:76:3d:7d:63:08:33:da:ee:38:ce:6f:4d:8f:df:cb: 15:33:9d:46:7d:fc:e7:09:20:5c:45:69:5c:94:72:f2:c7:bd: 6b:7e:83:c7:f4:24:26:e5:4b:b8:49:5e:03:5c:5c:0c:cf:34: a4:a3:cc:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOEIxMTAvBgNVBAUTKEZERTM2QjZFOTQ5Mzk4RTUyRDk1RTg5RDQwQkRGNjBC MjVEQjY5QjkwHhcNMjUwOTI5MDg0MjQ0WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRhNDY4My1kYzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAziXmOc81VgBAZzxW1TKzvoKZeK9GcF2n/CJDCKnTacVG11wnAox5Ytd7roEx H8ZdWHrDA5ymQbduc6n0/XrfWV7Ag/s+IJpn4aAacpihPdyZ640F0hXEyy/svtMU gqWq9XB4qRn4ZUWvTRJ8LrB9x+IEJdiwED64SJvTm5hVmMkSrGQrRTfLKrZVMfKH sqUQISeuYbv7ezstVUqDoKHYc0XJy6bf+8tNtFKDUtjgvdQ+Z/FR8LcbL8pytWKR UNvOsfpwq0OqPSlXO2iVQso5m0joDRGyo6IwSoGAD78StJh8R+IH+WuxU4z0KizX /yEOFKpOCRe+8p9gtd4zq2iNrQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIDcgKy1 WF3JB7mOQiXIRo/HdpurMB8GA1UdIwQYMBaAFP3ja26Uk5jlLZXonUC99gsl22m5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE4Qi82MjhERTUwMkRG MjMxMUU3OTcyMjVEMkVDNEY5QUUwMi9fZU5yYnBTVG1PVXRsZWlkUUwzMkN5WGJh YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19lTnJicFNUbU9VdGxlaWRRTDMyQ3lYYmFiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIxOEIvNjI4REU1MDJERjIzMTFFNzk3MjI1RDJFQzRGOUFFMDIvNDQwOUI4NjQ5 RDEwMTFGMEIyOEZCNzU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABxE3YwDQYJKoZIhvcNAQELBQADggEBADxok7MOBM+qfsZC EQhuMPmSUUzAN7mhSavvpDvV2vt2px8ww1jFyTT6zKKHDIzK+SfOqdRPuIWAn6c8 C/pxc8ah+mMG2EPU3F2TujZgikGhYu+PZpvFBwUmYvAeMbx9uEci30hrfMkgsCf1 DeB9b2DK/1HcQdhfu6YPiK1lKQ89haOQtwQB2o6T01ymjdLqAEclffYn9Y99pzwL 9qHw6yG+niSzlQ2AFrwiWizYuSMo4xTYU2/iO0xW/aZwcsuycV/iM8d4S4m9/XY9 fWMIM9ruOM5vTY/fyxUznUZ9/OcJIFxFaVyUcvLHvWt+g8f0JCblS7hJXgNcXAzP NKSjzAA= -----END CERTIFICATE-----Generated at Tue Oct 21 02:19:29 2025 by rpki-client