$ rpki-client -vvf rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/CCD092AE4E6411EF92C0EC3AC4F9AE02.roa File: CCD092AE4E6411EF92C0EC3AC4F9AE02.roa (raw, json) Hash identifier: nZuM2ubXC1l5NKfMUi8/1WxtFNha0sL4E6iO4pxzxgc= Subject key identifier: 2F:65:0B:CA:34:0D:51:39:D8:69:A0:B2:B4:33:27:C5:1B:85:7C:A9 Certificate issuer: /CN=A917A84A/serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Certificate serial: 1D81 Authority key identifier: 8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/CCD092AE4E6411EF92C0EC3AC4F9AE02.roa Signing time: Wed 24 Sep 2025 16:34:36 +0000 ROA not before: Wed 24 Sep 2025 16:34:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 140900 IP address blocks: 111.119.167.0/24 maxlen: 24 118.103.228.0/24 maxlen: 24 118.103.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:29:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7553 (0x1d81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A84A, serialNumber=8A1A10EB8FBA45C2152CA8956F432F9A8139603A Validity Not Before: Sep 24 16:34:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d41d9c-81c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:65:76:28:01:99:3a:86:23:25:8f:58:4e:90: 05:5f:ec:03:a6:de:70:d4:54:d3:3f:50:56:4e:a2: 19:05:b6:7d:dd:e1:a8:42:38:43:1a:fd:e1:98:a2: cf:91:04:52:64:a3:75:a2:58:1e:29:c5:26:ae:1c: e8:7e:a3:06:fd:66:9e:e9:f6:a0:bd:a0:82:33:f1: d2:d2:79:29:4a:bb:61:9a:89:52:0b:76:24:b4:6c: 22:7e:cf:52:d5:95:c0:70:4e:e7:5f:2e:8e:9e:6d: 0b:10:98:fd:5a:74:4f:39:6c:72:77:4d:1c:38:21: 23:d0:6b:94:92:3a:ba:38:9c:c4:d0:c0:d5:2a:85: 3e:87:bd:c3:69:c3:9f:d3:77:6f:58:00:1f:2e:e7: f5:25:ea:bd:67:a6:a9:d6:4f:60:62:4e:78:14:7b: 09:a9:44:c3:da:e7:04:53:18:2b:91:f1:06:97:7d: 38:26:9e:d5:e8:8d:a8:e0:f9:a6:23:c3:9d:d6:1f: 50:7b:a6:27:ce:19:5c:40:b0:45:20:63:9a:6d:b6: 36:fd:f2:a9:f6:1e:d7:9d:d2:52:5f:e1:55:3c:59: 85:cc:46:39:fd:b2:bf:73:fa:c6:eb:22:4f:05:a8: 72:8b:31:fe:09:a3:e9:10:4c:e3:83:9c:ff:34:3f: 3e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:65:0B:CA:34:0D:51:39:D8:69:A0:B2:B4:33:27:C5:1B:85:7C:A9 X509v3 Authority Key Identifier: keyid:8A:1A:10:EB:8F:BA:45:C2:15:2C:A8:95:6F:43:2F:9A:81:39:60:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/ihoQ64-6RcIVLKiVb0MvmoE5YDo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ihoQ64-6RcIVLKiVb0MvmoE5YDo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A84A/1805191AE1EF11E69D36501BC4F9AE02/CCD092AE4E6411EF92C0EC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.119.167.0/24 118.103.228.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:b0:78:89:9a:ff:a6:44:2d:2a:7b:e0:07:ae:6a:ce:dd:7e: b8:f9:56:56:3a:e5:fe:c3:dd:aa:83:0d:80:01:18:a0:4d:76: ff:83:ec:07:52:e5:e1:b4:3d:b7:be:40:9f:e7:65:79:dc:08: c6:97:48:11:8a:99:9c:72:56:f3:08:20:30:a9:cb:cb:6a:c2: 8b:bb:4b:4b:f5:74:66:02:e2:3a:69:de:05:4f:f3:9a:4e:cc: eb:3c:77:cf:d8:ee:0c:90:99:eb:6c:27:ba:6e:13:44:98:13: 81:11:17:b5:b5:66:bd:2d:71:ec:29:ff:9c:19:19:38:67:72: 6e:c7:5e:54:73:c3:8b:f8:e9:f7:26:a9:c4:55:6d:ae:ca:19: 1e:ed:cc:f7:d0:93:ff:3e:c6:70:11:23:86:39:52:c8:0f:71: d1:db:18:f3:ef:e9:c8:8a:3d:69:fc:47:f9:e6:0c:80:1a:f2: b7:e2:ed:6c:03:fb:97:08:cb:d1:4d:07:4b:bb:d9:30:ca:b0: 11:92:45:38:2a:b5:6c:da:97:ad:25:93:f4:f7:e2:95:55:f5: ed:2c:97:6d:40:34:a8:96:7f:b1:6b:c0:b4:1e:72:2c:9d:92: ad:40:8f:3f:c6:2e:33:df:4a:36:2d:68:ec:95:ff:93:29:9c: 10:eb:5e:75 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E4NEExMTAvBgNVBAUTKDhBMUExMEVCOEZCQTQ1QzIxNTJDQTg5NTZGNDMyRjlB ODEzOTYwM0EwHhcNMjUwOTI0MTYzNDM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0MWQ5Yy04MWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtGV2KAGZOoYjJY9YTpAFX+wDpt5w1FTTP1BWTqIZBbZ93eGoQjhDGv3hmKLP kQRSZKN1olgeKcUmrhzofqMG/Wae6fagvaCCM/HS0nkpSrthmolSC3YktGwifs9S 1ZXAcE7nXy6Onm0LEJj9WnRPOWxyd00cOCEj0GuUkjq6OJzE0MDVKoU+h73DacOf 03dvWAAfLuf1Jeq9Z6ap1k9gYk54FHsJqUTD2ucEUxgrkfEGl304Jp7V6I2o4Pmm I8Od1h9Qe6YnzhlcQLBFIGOabbY2/fKp9h7XndJSX+FVPFmFzEY5/bK/c/rG6yJP BahyizH+CaPpEEzjg5z/ND8+0wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFC9lC8o0 DVE52GmgsrQzJ8UbhXypMB8GA1UdIwQYMBaAFIoaEOuPukXCFSyolW9DL5qBOWA6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTg0QS8xODA1MTkxQUUx RUYxMUU2OUQzNjUwMUJDNEY5QUUwMi9paG9RNjQtNlJjSVZMS2lWYjBNdm1vRTVZ RG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lob1E2NC02UmNJVkxLaVZiME12bW9FNVlEby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E4NEEvMTgwNTE5MUFFMUVGMTFFNjlEMzY1MDFCQzRGOUFFMDIvQ0NEMDkyQUU0 RTY0MTFFRjkyQzBFQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABvd6cDBAF2Z+QwDQYJKoZIhvcNAQELBQADggEBAAyweIma /6ZELSp74Aeuas7dfrj5VlY65f7D3aqDDYABGKBNdv+D7AdS5eG0Pbe+QJ/nZXnc CMaXSBGKmZxyVvMIIDCpy8tqwou7S0v1dGYC4jpp3gVP85pOzOs8d8/Y7gyQmets J7puE0SYE4ERF7W1Zr0tcewp/5wZGThncm7HXlRzw4v46fcmqcRVba7KGR7tzPfQ k/8+xnARI4Y5UsgPcdHbGPPv6ciKPWn8R/nmDIAa8rfi7WwD+5cIy9FNB0u72TDK sBGSRTgqtWzal60lk/T34pVV9e0sl21ANKiWf7FrwLQeciydkq1Ajz/GLjPfSjYt aOyV/5MpnBDrXnU= -----END CERTIFICATE-----Generated at Mon Oct 20 15:24:20 2025 by rpki-client