$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/B77A93FE852411EFA67F8144C4F9AE02.roa File: B77A93FE852411EFA67F8144C4F9AE02.roa (raw, json) Hash identifier: UsIOkhaB3Ku4WNkmAUrHYHwGz8u8rCny1doDJQc+IzY= Subject key identifier: 4E:27:1B:CD:AE:F7:DD:35:09:C0:15:5E:F9:83:B1:4A:AA:AD:E1:9A Certificate issuer: /CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Certificate serial: 2565 Authority key identifier: 2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/B77A93FE852411EFA67F8144C4F9AE02.roa Signing time: Thu 26 Jun 2025 06:41:10 +0000 ROA not before: Thu 26 Jun 2025 06:41:10 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45458 IP address blocks: 147.50.32.0/24 maxlen: 24 147.50.33.0/24 maxlen: 24 147.50.63.0/24 maxlen: 24 147.50.79.0/24 maxlen: 24 147.50.80.0/20 maxlen: 24 147.50.96.0/20 maxlen: 24 147.50.112.0/21 maxlen: 21 147.50.117.0/24 maxlen: 24 147.50.119.0/24 maxlen: 24 147.50.120.0/22 maxlen: 24 147.50.125.0/24 maxlen: 24 147.50.126.0/23 maxlen: 24 147.50.192.0/19 maxlen: 19 147.50.192.0/24 maxlen: 24 147.50.193.0/24 maxlen: 24 147.50.195.0/24 maxlen: 24 147.50.201.0/24 maxlen: 24 147.50.202.0/24 maxlen: 24 147.50.203.0/24 maxlen: 24 147.50.208.0/20 maxlen: 24 184.82.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:49:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9573 (0x2565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54, serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Validity Not Before: Jun 26 06:41:10 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=685ceb86-df11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:42:5a:a8:bf:ce:c9:bd:ee:c2:48:34:da:4b: 3f:e2:3c:a0:f8:82:8f:55:e1:0f:b8:0b:17:ea:d2: a5:38:7c:52:96:df:79:21:c4:a6:4e:fd:a8:a1:1d: 8b:b8:b7:33:c0:b8:9f:e7:56:da:ad:10:11:19:21: 9a:c3:3c:45:76:dc:cf:1e:2f:ec:e7:b3:26:35:59: be:2b:5d:ef:55:3a:b9:4a:11:e7:79:1f:d4:9e:c4: 0f:c7:6d:07:e8:69:b9:d2:3d:ca:07:50:0f:d7:a3: 56:77:f8:06:f9:3b:50:a5:21:c8:49:73:15:08:3c: 51:6e:b2:ab:ac:65:6c:0c:07:fc:a1:90:74:38:8b: ae:b3:fe:c5:b3:dc:d5:61:bb:28:70:65:dd:86:f4: 02:42:c3:af:08:38:05:ce:0e:ae:d0:b7:a4:b0:ed: 31:a9:db:89:72:68:18:4b:49:cd:e0:e9:b9:7f:c1: 0c:6c:52:8b:38:02:bd:f5:32:01:63:98:bb:4c:f6: b0:3f:fb:b7:89:b2:c3:8b:dc:09:df:ae:85:01:ad: 95:04:e1:30:a5:42:03:78:fb:c9:8a:28:2e:ad:a0: 23:0c:cc:9a:ab:05:4c:e7:db:04:bb:b1:9a:8c:08: 85:c1:e4:5e:67:eb:80:95:40:69:c0:c1:03:79:81: f6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:27:1B:CD:AE:F7:DD:35:09:C0:15:5E:F9:83:B1:4A:AA:AD:E1:9A X509v3 Authority Key Identifier: keyid:2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/B77A93FE852411EFA67F8144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.32.0/23 147.50.63.0/24 147.50.79.0-147.50.123.255 147.50.125.0-147.50.127.255 147.50.192.0/19 184.82.128.0/21 Signature Algorithm: sha256WithRSAEncryption 9c:9b:9f:c6:47:57:c8:19:80:57:22:0e:ac:e4:3e:46:61:85: 90:d3:e2:68:4a:08:cb:ed:80:1f:f3:19:33:98:d4:1b:fd:07: 12:92:17:ce:46:93:b4:1e:60:30:d1:71:47:dc:63:4b:00:fd: c7:dd:b6:8f:4b:0b:e1:22:b2:7a:f2:d8:88:be:e0:2b:14:30: 84:56:f9:27:50:3e:86:f5:0a:56:3d:af:a9:3d:d1:b9:14:a3: bf:45:d1:c3:05:6d:10:7c:bf:88:9f:1f:6c:fd:e4:dc:8f:78: 6c:49:c1:12:a4:5f:3d:d3:a7:6f:7a:6c:72:57:96:5f:ef:cb: bd:b1:76:f6:74:0d:a4:14:06:99:bb:55:c0:ce:56:15:46:ac: 3f:95:ab:30:5a:51:33:9b:43:c3:16:de:ac:d3:d5:c2:86:28: 0e:57:b1:aa:c9:68:c1:7f:c9:b4:8f:26:a6:6b:a4:86:70:80: 8e:99:fb:79:af:3d:7c:4f:d3:fc:ec:c3:63:fd:2a:ff:af:eb: bb:89:5d:4e:9b:7a:65:2b:05:e5:ae:c8:b5:da:6b:7d:82:e5: 3b:cf:3b:f1:cf:dd:70:a6:78:f2:30:d5:2d:5c:e4:cb:09:62: 7c:5a:cd:0b:fd:28:af:79:a3:ff:e0:4b:da:f3:de:c1:ac:97: 00:a0:68:63 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICJWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKDJGNTlDRURBNjE0ODE1RjQ2MzJGMzlENUEzMUMyQTUx NDhDNkI0RkEwHhcNMjUwNjI2MDY0MTEwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVjZWI4Ni1kZjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0JaqL/Oyb3uwkg02ks/4jyg+IKPVeEPuAsX6tKlOHxSlt95IcSmTv2ooR2L uLczwLif51barRARGSGawzxFdtzPHi/s57MmNVm+K13vVTq5ShHneR/UnsQPx20H 6Gm50j3KB1AP16NWd/gG+TtQpSHISXMVCDxRbrKrrGVsDAf8oZB0OIuus/7Fs9zV YbsocGXdhvQCQsOvCDgFzg6u0LeksO0xqduJcmgYS0nN4Om5f8EMbFKLOAK99TIB Y5i7TPawP/u3ibLDi9wJ366FAa2VBOEwpUIDePvJiiguraAjDMyaqwVM59sEu7Ga jAiFweReZ+uAlUBpwMEDeYH2qQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFE4nG82u 9901CcAVXvmDsUqqreGaMB8GA1UdIwQYMBaAFC9ZztphSBX0Yy851aMcKlFIxrT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC9EOTAxMTI4NDNG NEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZmUmpMem5Wb3h3cVVVakd0 UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0wxbk8ybUZJRmZSakx6blZveHdxVVVqR3RQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvRDkwMTEyODQzRjRGMTFFNTk1MTJFMDRDQzRGOUFFMDIvQjc3QTkzRkU4 NTI0MTFFRkE2N0Y4MTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgABMDQDBAGTMiADBACTMj8wDAMEAJMyTwMEApMyeDAMAwQAkzJ9AwQH kzIAAwQFkzLAAwQDuFKAMA0GCSqGSIb3DQEBCwUAA4IBAQCcm5/GR1fIGYBXIg6s 5D5GYYWQ0+JoSgjL7YAf8xkzmNQb/QcSkhfORpO0HmAw0XFH3GNLAP3H3baPSwvh IrJ68tiIvuArFDCEVvknUD6G9QpWPa+pPdG5FKO/RdHDBW0QfL+Inx9s/eTcj3hs ScESpF8906dvemxyV5Zf78u9sXb2dA2kFAaZu1XAzlYVRqw/laswWlEzm0PDFt6s 09XChigOV7GqyWjBf8m0jyama6SGcICOmft5rz18T9P87MNj/Sr/r+u7iV1Om3pl KwXlrsi12mt9guU7zzvxz91wpnjyMNUtXOTLCWJ8Ws0L/SiveaP/4Eva897BrJcA oGhj -----END CERTIFICATE-----Generated at Fri Jul 4 01:15:18 2025 by rpki-client