$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/C3E2252E205F11EE8117111CC4F9AE02.roa File: C3E2252E205F11EE8117111CC4F9AE02.roa (raw, json) Hash identifier: 5nE372F+0IwqYdLJZogWsDWbHc80At5gKYtw/eBlXZE= Subject key identifier: C6:8A:33:C4:FC:92:46:79:69:79:E7:AC:46:72:B8:24:03:56:A1:40 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0ADE Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/C3E2252E205F11EE8117111CC4F9AE02.roa Signing time: Wed 02 Jul 2025 20:29:44 +0000 ROA not before: Wed 02 Jul 2025 20:29:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 35280 IP address blocks: 203.80.88.0/24 maxlen: 24 203.185.1.0/24 maxlen: 24 203.185.33.0/24 maxlen: 24 203.185.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2782 (0xade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jul 2 20:29:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686596b8-ead4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:73:38:9c:dd:bc:5c:c0:f5:18:c9:b0:b3:46: bc:c9:5a:f4:74:af:cf:4c:a4:a9:05:a1:3d:3d:36: f1:f9:43:59:b6:e1:f3:60:05:2f:c9:2f:54:b6:63: 8c:b9:4d:07:4f:68:6f:7b:04:95:0a:c9:73:c5:83: e6:60:90:fd:ca:ee:66:6c:7f:3c:c7:54:6a:c3:81: 99:16:fa:09:a2:c1:38:60:c8:c2:b3:e8:b6:0c:a1: 3e:06:38:28:a7:58:82:06:2d:28:db:3d:3d:cd:92: 5b:a6:75:ae:ab:4f:73:be:a8:3e:30:06:9b:03:a2: 38:90:16:81:98:25:99:96:23:8b:a5:1e:3d:e4:3e: 77:f3:11:14:8d:2e:72:31:13:10:a1:e5:e4:e8:d2: bb:0c:67:07:1a:0a:46:ce:4b:98:88:e4:4b:95:4a: 7a:7a:b3:58:36:76:70:e3:12:5e:34:11:12:1b:d0: 24:75:a7:95:11:07:03:7d:1e:62:a0:c2:62:20:7e: e2:39:80:38:9c:93:0e:67:f0:d3:a8:f7:7e:c3:08: e7:d1:ee:b9:c7:fc:ee:d0:19:59:58:c6:0d:99:0a: 54:cb:05:71:87:45:55:b7:df:f3:04:26:5c:19:bd: d9:1e:57:ef:61:35:22:b0:d4:8d:4f:c0:a0:48:ba: 3c:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:8A:33:C4:FC:92:46:79:69:79:E7:AC:46:72:B8:24:03:56:A1:40 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/C3E2252E205F11EE8117111CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.80.88.0/24 203.185.1.0/24 203.185.33.0-203.185.35.255 Signature Algorithm: sha256WithRSAEncryption 89:2e:b6:83:d5:cb:8e:17:fb:fe:78:85:88:4a:88:ba:2f:f5: 0d:18:a1:3c:c8:91:a0:b5:9c:2a:33:25:53:7a:0e:7b:f4:c3: 6f:3f:67:51:de:9f:28:fa:f3:e9:35:14:a3:3b:be:ad:31:cd: 9e:cf:9e:4e:6c:91:be:53:4d:4c:6c:c9:b7:70:f1:29:7c:47: 60:e7:a0:08:86:08:c0:2c:1b:2d:6b:eb:84:25:cb:3e:1d:49: ed:0c:1f:ed:84:e2:61:57:70:68:20:4f:38:5b:a7:b5:74:f4: 41:96:13:43:5d:84:7d:50:6b:99:4e:72:81:53:ad:12:05:82: c2:2a:97:66:25:5c:c1:f2:8f:ef:b9:3b:cf:32:16:e8:69:4f: a4:9c:3c:4a:c7:bb:06:c4:ae:0d:99:2e:cf:01:0d:84:48:ec: 5b:a9:c4:07:a5:df:de:34:8d:05:3b:90:e5:ef:dd:f3:70:21: ef:b5:c1:a1:eb:73:41:82:75:e7:19:ce:ea:6b:2c:f1:60:28: 20:91:6a:61:54:06:c6:cc:9d:54:76:4e:7b:e6:33:5d:2f:e8: 09:39:0c:29:98:31:9a:f1:bd:f9:68:82:5a:13:1d:7f:97:c7: 08:45:7e:81:5b:d2:0b:d6:94:d1:8c:63:99:e8:e3:c6:44:53: 6a:08:b4:3f -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUwNzAyMjAyOTQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1OTZiOC1lYWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3M4nN28XMD1GMmws0a8yVr0dK/PTKSpBaE9PTbx+UNZtuHzYAUvyS9UtmOM uU0HT2hvewSVCslzxYPmYJD9yu5mbH88x1Rqw4GZFvoJosE4YMjCs+i2DKE+Bjgo p1iCBi0o2z09zZJbpnWuq09zvqg+MAabA6I4kBaBmCWZliOLpR495D538xEUjS5y MRMQoeXk6NK7DGcHGgpGzkuYiORLlUp6erNYNnZw4xJeNBESG9AkdaeVEQcDfR5i oMJiIH7iOYA4nJMOZ/DTqPd+wwjn0e65x/zu0BlZWMYNmQpUywVxh0VVt9/zBCZc Gb3ZHlfvYTUisNSNT8CgSLo83wIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFMaKM8T8 kkZ5aXnnrEZyuCQDVqFAMB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvNDM3Q0M0MDY4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvQzNFMjI1MkUy MDVGMTFFRTgxMTcxMTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBADLUFgDBADLuQEwDAMEAMu5IQMEAsu5IDANBgkqhkiG9w0B AQsFAAOCAQEAiS62g9XLjhf7/niFiEqIui/1DRihPMiRoLWcKjMlU3oOe/TDbz9n Ud6fKPrz6TUUozu+rTHNns+eTmyRvlNNTGzJt3DxKXxHYOegCIYIwCwbLWvrhCXL Ph1J7Qwf7YTiYVdwaCBPOFuntXT0QZYTQ12EfVBrmU5ygVOtEgWCwiqXZiVcwfKP 77k7zzIW6GlPpJw8Sse7BsSuDZkuzwENhEjsW6nEB6Xf3jSNBTuQ5e/d83Ah77XB oetzQYJ15xnO6mss8WAoIJFqYVQGxsydVHZOe+YzXS/oCTkMKZgxmvG9+WiCWhMd f5fHCEV+gVvSC9aU0YxjmejjxkRTagi0Pw== -----END CERTIFICATE-----Generated at Fri Jul 4 14:59:54 2025 by rpki-client