$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D716391C53CC11F0BC106B7CC4F9AE02.roa File: D716391C53CC11F0BC106B7CC4F9AE02.roa (raw, json) Hash identifier: k4CowUTHd4JWLT5TzNHxTN/JDFAXBiiVbvhmdg4E2JI= Subject key identifier: 55:BB:AB:22:71:4A:28:84:6B:5A:A9:ED:90:98:FB:CA:C7:3B:21:5E Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 07F4 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D716391C53CC11F0BC106B7CC4F9AE02.roa Signing time: Sat 28 Jun 2025 03:06:10 +0000 ROA not before: Sat 28 Jun 2025 03:06:10 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 21859 IP address blocks: 36.255.193.0/24 maxlen: 24 43.229.152.0/24 maxlen: 24 150.107.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2036 (0x7f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Jun 28 03:06:10 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=685f5c21-3fe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3e:cc:60:c7:66:f8:7a:fd:ee:20:c5:24:b5: 3c:63:1a:b2:87:21:9c:99:bc:74:97:11:53:6f:43: a9:ec:ee:07:ae:02:7f:0c:25:ed:71:7c:2a:ac:aa: 31:0a:06:59:ef:ca:1b:4b:fe:ce:63:23:3d:51:c4: 52:6d:bb:16:39:eb:e7:92:11:0c:3f:65:4b:f1:37: 53:8a:e9:f5:fc:6e:2d:a9:8d:1d:19:f8:3b:66:09: 9e:bf:f5:35:53:b9:10:4e:31:31:bd:82:ae:4d:e0: 1f:a6:e3:e6:2c:93:5c:7f:99:0c:f5:a9:a4:f2:99: fe:a7:d0:3b:b7:3c:74:59:70:ee:f0:fb:b4:e8:69: 25:4f:59:66:7e:4c:91:c1:2e:2d:32:77:4d:46:36: bf:75:bf:68:de:7c:01:c7:55:dc:7d:df:03:8d:60: 1f:2c:a4:cb:97:c6:06:c1:c9:76:dc:61:5c:59:b5: 36:40:e9:7c:29:61:30:b4:10:a1:7e:8d:10:92:58: 4a:d6:6d:75:87:2c:12:98:14:01:be:8b:6e:df:b8: 19:2d:91:b6:fb:df:93:4b:de:dc:91:94:ac:2b:c7: df:17:11:81:2c:03:12:1a:44:27:5b:d8:f3:b9:ef: 5e:45:16:6d:81:c0:c8:90:3b:bc:56:12:e8:85:26: 83:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BB:AB:22:71:4A:28:84:6B:5A:A9:ED:90:98:FB:CA:C7:3B:21:5E X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/D716391C53CC11F0BC106B7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.193.0/24 43.229.152.0/24 150.107.0.0/24 Signature Algorithm: sha256WithRSAEncryption 03:47:c8:85:b7:1e:98:1a:ef:2d:15:e3:d7:51:34:ad:72:f2: fa:50:81:d8:aa:dc:20:d8:59:f8:fe:f8:a2:4d:33:61:b3:1b: 9d:88:c8:a2:50:ba:8f:b3:e0:d0:e1:f5:f5:51:a1:32:31:56: c9:63:41:61:3d:0c:25:98:0e:aa:2e:9b:b7:5a:55:2d:d8:9d: ea:7d:fc:36:b9:9b:5a:00:47:3f:78:4e:88:a9:69:ac:5c:2f: 57:4e:0c:a9:1f:aa:ab:62:dc:83:59:ff:0c:c4:79:f2:4e:33: b5:cc:58:e6:f1:6c:58:02:e5:af:71:ad:6f:59:34:ad:7d:b3: 1b:f8:70:76:04:4d:2f:4d:6f:02:34:bb:65:16:c6:4d:2d:c3: 61:96:bb:08:a6:e1:97:28:e7:fe:23:63:1d:65:a6:5b:c2:dd: 6b:30:b9:79:c0:ae:13:4f:20:07:39:1f:81:ee:cf:1e:a8:2e: c7:e9:df:fb:48:2e:7d:ea:a2:82:22:1c:70:94:8d:ac:ff:f2: 6a:0f:98:4d:83:ed:8c:2e:ee:43:67:d5:a6:c0:9c:64:6c:a1: c2:e7:43:df:7c:7b:76:f3:2a:ee:2e:0d:59:32:35:87:f1:9e: 00:ae:77:e1:11:13:93:5b:19:f6:a1:63:6b:16:8b:e7:82:eb: 57:f5:b5:ff -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNjI4MDMwNjEwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVmNWMyMS0zZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnD7MYMdm+Hr97iDFJLU8YxqyhyGcmbx0lxFTb0Op7O4HrgJ/DCXtcXwqrKox CgZZ78obS/7OYyM9UcRSbbsWOevnkhEMP2VL8TdTiun1/G4tqY0dGfg7Zgmev/U1 U7kQTjExvYKuTeAfpuPmLJNcf5kM9amk8pn+p9A7tzx0WXDu8Pu06GklT1lmfkyR wS4tMndNRja/db9o3nwBx1Xcfd8DjWAfLKTLl8YGwcl23GFcWbU2QOl8KWEwtBCh fo0QklhK1m11hywSmBQBvotu37gZLZG2+9+TS97ckZSsK8ffFxGBLAMSGkQnW9jz ue9eRRZtgcDIkDu8VhLohSaDfQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFFW7qyJx SiiEa1qp7ZCY+8rHOyFeMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvRDcxNjM5MUM1 M0NDMTFGMEJDMTA2QjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAk/8EDBAAr5ZgDBACWawAwDQYJKoZIhvcNAQELBQADggEB AANHyIW3Hpga7y0V49dRNK1y8vpQgdiq3CDYWfj++KJNM2GzG52IyKJQuo+z4NDh 9fVRoTIxVsljQWE9DCWYDqoum7daVS3Ynep9/Da5m1oARz94ToipaaxcL1dODKkf qqti3INZ/wzEefJOM7XMWObxbFgC5a9xrW9ZNK19sxv4cHYETS9NbwI0u2UWxk0t w2GWuwim4Zco5/4jYx1lplvC3WswuXnArhNPIAc5H4Huzx6oLsfp3/tILn3qooIi HHCUjaz/8moPmE2D7Ywu7kNn1abAnGRsocLnQ998e3bzKu4uDVkyNYfxngCud+ER E5NbGfahY2sWi+eC61f1tf8= -----END CERTIFICATE-----Generated at Thu Jul 3 08:16:55 2025 by rpki-client