$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/757D79F84A8611F08884C659C4F9AE02.roa File: 757D79F84A8611F08884C659C4F9AE02.roa (raw, json) Hash identifier: 723XHYDyoBJXCZpo9jeRz3e04DkW/NGngxzKchgI3rs= Subject key identifier: F3:C8:D8:29:9C:FD:04:A9:F6:E0:05:56:1B:C0:3A:DE:74:0E:4F:D9 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 07EC Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/757D79F84A8611F08884C659C4F9AE02.roa Signing time: Mon 16 Jun 2025 07:49:40 +0000 ROA not before: Mon 16 Jun 2025 07:49:40 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 9304 IP address blocks: 43.252.209.0/24 maxlen: 24 103.234.54.0/24 maxlen: 24 150.107.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2028 (0x7ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Jun 16 07:49:40 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=684fcc94-6bab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0e:38:e0:92:39:8b:71:a1:ac:0e:66:a0:34: 88:16:0f:24:8c:37:db:35:d1:dc:90:f6:3f:9c:b2: 0f:48:4e:c3:f3:03:d7:4f:9f:23:61:45:40:ab:d5: 92:7d:c6:74:b0:8a:6e:4f:46:71:9a:15:2a:84:0a: ba:e3:4e:3e:fb:5e:16:ed:93:79:31:dd:30:be:19: 78:bd:76:b2:50:53:3d:21:42:0d:ae:a6:9e:16:cc: c3:8a:d1:0c:f2:7c:8b:06:cf:3e:d4:8b:10:34:f1: a4:25:2e:8b:76:01:ab:ac:7f:94:ec:0f:62:c0:f4: dc:9a:66:b3:86:99:43:22:30:73:3e:8f:8b:85:85: f0:03:ef:7e:de:39:cc:02:93:9b:9a:11:65:be:3e: 2c:85:6d:a0:1a:44:84:b2:8a:3d:26:be:12:ed:c9: 6e:fa:2e:af:2f:90:a2:46:7c:8f:3e:77:f9:cb:e0: eb:cf:42:7a:f5:c8:84:f7:c7:3d:06:1e:3f:d9:17: 31:32:ae:4b:94:f0:c4:c7:69:58:44:11:7d:11:f9: e5:67:ab:d4:44:f9:37:00:e0:9c:fb:68:b4:96:38: 3e:c3:ae:b5:92:d6:a9:f0:14:90:6d:92:b9:35:c6: 1f:9e:67:94:e5:c4:7b:5f:b5:c9:9c:30:f9:c2:b4: e6:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:C8:D8:29:9C:FD:04:A9:F6:E0:05:56:1B:C0:3A:DE:74:0E:4F:D9 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/757D79F84A8611F08884C659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.209.0/24 103.234.54.0/24 150.107.2.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:d7:0d:7b:5f:f4:9a:3a:ea:e2:93:e4:38:8a:3d:5b:f0:34: 89:fd:76:60:4c:59:e4:66:10:df:c3:3b:fa:a9:c2:5f:fe:b9: c9:57:b1:1f:3e:7f:7d:99:ad:34:a8:e8:2b:f9:d4:16:71:6a: 92:7c:42:70:7c:41:70:29:2b:66:e9:be:b6:83:0d:22:8e:9f: 3e:47:66:32:79:72:35:b7:95:30:2c:fd:98:e6:50:7e:18:56: a4:a3:6e:e1:8a:3f:1b:4a:b7:69:54:15:93:ae:25:78:6a:90: ac:76:ad:60:e6:fb:c2:d7:ec:59:29:28:cf:c0:07:1f:72:01: ab:5a:a5:c8:31:b9:b3:7a:69:40:ce:ae:ab:b0:09:2f:3c:07: 86:99:09:80:5c:5e:8a:23:20:36:c2:14:5e:1f:dd:21:9c:b6: 4a:f8:d4:52:1a:0b:c0:1e:af:de:84:94:c1:ab:64:54:a6:5e: 92:31:bd:7f:8a:ae:c9:3e:55:88:ff:70:6b:63:e5:8e:c0:3b: 5d:2f:9c:a0:68:26:d8:b0:3b:86:eb:cd:04:8a:73:4b:4e:1c: 34:c7:6b:ae:91:be:f5:b1:8c:be:ce:72:cf:3f:34:b8:e8:26: fb:37:57:bc:3c:ed:41:d7:a0:72:49:ae:e4:9c:90:cc:08:9e: c2:36:99:38 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNjE2MDc0OTQwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRmY2M5NC02YmFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwA444JI5i3GhrA5moDSIFg8kjDfbNdHckPY/nLIPSE7D8wPXT58jYUVAq9WS fcZ0sIpuT0ZxmhUqhAq6404++14W7ZN5Md0wvhl4vXayUFM9IUINrqaeFszDitEM 8nyLBs8+1IsQNPGkJS6LdgGrrH+U7A9iwPTcmmazhplDIjBzPo+LhYXwA+9+3jnM ApObmhFlvj4shW2gGkSEsoo9Jr4S7clu+i6vL5CiRnyPPnf5y+Drz0J69ciE98c9 Bh4/2RcxMq5LlPDEx2lYRBF9EfnlZ6vURPk3AOCc+2i0ljg+w661ktap8BSQbZK5 NcYfnmeU5cR7X7XJnDD5wrTm9wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPPI2Cmc /QSp9uAFVhvAOt50Dk/ZMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNzU3RDc5Rjg0 QTg2MTFGMDg4ODRDNjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr/NEDBABn6jYDBACWawIwDQYJKoZIhvcNAQELBQADggEB ADrXDXtf9Jo66uKT5DiKPVvwNIn9dmBMWeRmEN/DO/qpwl/+uclXsR8+f32ZrTSo 6Cv51BZxapJ8QnB8QXApK2bpvraDDSKOnz5HZjJ5cjW3lTAs/ZjmUH4YVqSjbuGK PxtKt2lUFZOuJXhqkKx2rWDm+8LX7FkpKM/ABx9yAatapcgxubN6aUDOrquwCS88 B4aZCYBcXoojIDbCFF4f3SGctkr41FIaC8Aer96ElMGrZFSmXpIxvX+Krsk+VYj/ cGtj5Y7AO10vnKBoJtiwO4brzQSKc0tOHDTHa66RvvWxjL7Ocs8/NLjoJvs3V7w8 7UHXoHJJruSckMwInsI2mTg= -----END CERTIFICATE-----Generated at Thu Jul 3 03:13:28 2025 by rpki-client