$ rpki-client -vvf rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/FD4056EC7CC411F0BAFA214CC4F9AE02.roa File: FD4056EC7CC411F0BAFA214CC4F9AE02.roa (raw, json) Hash identifier: N2rEQqfmtaraI3c1hrrCAXyrNypl60jahKzIoBeEv8U= Subject key identifier: 77:DB:33:74:ED:48:4D:71:50:9B:3C:BB:87:A3:8B:BE:F2:BC:AD:87 Certificate issuer: /CN=A912C8AF/serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Certificate serial: 87 Authority key identifier: 84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/FD4056EC7CC411F0BAFA214CC4F9AE02.roa Signing time: Tue 19 Aug 2025 06:23:15 +0000 ROA not before: Tue 19 Aug 2025 06:23:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138915 IP address blocks: 45.158.180.0/24 maxlen: 24 45.158.181.0/24 maxlen: 24 45.158.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C8AF, serialNumber=840FD6F7E891E3804A7DB309D04CE85C1AF786D1 Validity Not Before: Aug 19 06:23:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a41853-7504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:39:ae:f5:2c:a0:d0:da:6e:7c:12:e7:b8:04: c7:80:89:33:fb:38:b0:36:49:25:83:10:85:07:5c: 0f:7f:cb:66:d3:b0:44:62:e4:89:fa:f0:11:1d:98: 7c:64:8f:18:d2:53:3e:02:f1:b7:84:8d:47:9a:96: 99:31:db:13:d0:b8:a2:51:08:a6:1a:cf:94:8b:3e: 31:b4:39:4f:8e:43:12:23:a7:99:ac:d3:33:a4:3a: f1:d3:e4:7d:af:f2:e4:34:40:60:0f:6d:e7:3d:7d: 8d:eb:7e:f5:26:fc:58:ad:0e:37:58:f0:f6:e4:62: bd:02:d1:72:32:31:cd:75:5d:33:2b:c7:d7:33:3a: 69:27:1d:16:6f:b9:cd:33:4a:14:0c:b2:c0:a9:7b: 26:e6:85:f5:25:65:e3:43:1d:3c:98:ae:75:21:44: 1f:e8:43:8e:7e:10:81:57:4c:5f:1f:88:99:92:42: 7e:4a:89:6a:c7:3e:60:cb:46:b6:af:e8:c1:4e:76: 57:5a:9f:19:96:9b:50:34:ec:c6:23:da:2e:ef:82: 63:d9:fe:29:6d:13:b9:be:57:db:ba:fe:ad:e0:19: f0:1b:de:3f:0d:80:20:b8:0b:8a:cb:04:f3:fd:fb: 9a:31:7f:70:dc:09:a4:80:f9:31:b8:de:c3:b7:35: 8c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:DB:33:74:ED:48:4D:71:50:9B:3C:BB:87:A3:8B:BE:F2:BC:AD:87 X509v3 Authority Key Identifier: keyid:84:0F:D6:F7:E8:91:E3:80:4A:7D:B3:09:D0:4C:E8:5C:1A:F7:86:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/hA_W9-iR44BKfbMJ0EzoXBr3htE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hA_W9-iR44BKfbMJ0EzoXBr3htE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C8AF/197FF7A2B40911EF94E6745DC4F9AE02/FD4056EC7CC411F0BAFA214CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.158.180.0-45.158.182.255 Signature Algorithm: sha256WithRSAEncryption 1c:de:9e:9f:2e:c4:84:7f:4f:ee:28:9c:3b:e6:3f:f7:71:86: 26:04:50:43:28:6f:2c:35:7a:85:ea:9a:b0:ca:ff:62:34:56: 22:3e:61:31:03:c0:7d:f1:8c:91:ab:e5:c7:dd:7c:11:ee:54: 23:6c:7c:f2:7c:bc:31:98:ad:10:4b:32:cf:a7:35:97:ed:36: f0:0d:3a:a8:31:b1:fc:5f:1b:36:61:78:c8:24:4e:58:18:9e: 18:33:d0:ff:39:c4:5e:0d:d2:a5:62:cf:94:30:ef:5f:53:97: b8:1c:ad:c0:01:9b:54:84:a0:49:11:5d:a4:10:f3:65:0d:77: eb:f6:7d:8b:62:44:29:86:f2:6b:fe:66:e7:57:1e:a3:ed:8d: 6c:cc:77:ef:a4:57:9a:dd:91:75:49:ea:db:fa:93:15:4b:90: b7:8a:34:59:9e:53:4a:57:dd:97:3e:3b:e1:98:ab:ab:67:71: 06:57:f4:77:f6:e5:6a:7e:d7:2f:2c:84:cb:9e:3c:15:4b:47: fb:b1:c6:99:35:0e:49:8f:82:d3:be:77:2a:99:ef:63:0f:76: 50:3d:43:00:07:56:bc:0a:37:ad:75:1b:cd:32:10:8f:ee:87: da:af:73:4d:a6:b7:58:20:c4:32:19:b4:f0:c7:e0:c3:f3:2b: d5:e0:1c:2e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM4QUYxMTAvBgNVBAUTKDg0MEZENkY3RTg5MUUzODA0QTdEQjMwOUQwNENFODVD MUFGNzg2RDEwHhcNMjUwODE5MDYyMzE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE0MTg1My03NTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6jmu9Syg0NpufBLnuATHgIkz+ziwNkklgxCFB1wPf8tm07BEYuSJ+vARHZh8 ZI8Y0lM+AvG3hI1HmpaZMdsT0LiiUQimGs+Uiz4xtDlPjkMSI6eZrNMzpDrx0+R9 r/LkNEBgD23nPX2N6371JvxYrQ43WPD25GK9AtFyMjHNdV0zK8fXMzppJx0Wb7nN M0oUDLLAqXsm5oX1JWXjQx08mK51IUQf6EOOfhCBV0xfH4iZkkJ+Solqxz5gy0a2 r+jBTnZXWp8ZlptQNOzGI9ou74Jj2f4pbRO5vlfbuv6t4BnwG94/DYAguAuKywTz /fuaMX9w3AmkgPkxuN7DtzWMTQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFHfbM3Tt SE1xUJs8u4eji77yvK2HMB8GA1UdIwQYMBaAFIQP1vfokeOASn2zCdBM6Fwa94bR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzhBRi8xOTdGRjdBMkI0 MDkxMUVGOTRFNjc0NURDNEY5QUUwMi9oQV9XOS1pUjQ0QktmYk1KMEV6b1hCcjNo dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hBX1c5LWlSNDRCS2ZiTUowRXpvWEJyM2h0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM4QUYvMTk3RkY3QTJCNDA5MTFFRjk0RTY3NDVEQzRGOUFFMDIvRkQ0MDU2RUM3 Q0M0MTFGMEJBRkEyMTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAi2etAMEAC2etjANBgkqhkiG9w0BAQsFAAOCAQEAHN6e ny7EhH9P7iicO+Y/93GGJgRQQyhvLDV6heqasMr/YjRWIj5hMQPAffGMkavlx918 Ee5UI2x88ny8MZitEEsyz6c1l+028A06qDGx/F8bNmF4yCROWBieGDPQ/znEXg3S pWLPlDDvX1OXuBytwAGbVISgSRFdpBDzZQ136/Z9i2JEKYbya/5m51ceo+2NbMx3 76RXmt2RdUnq2/qTFUuQt4o0WZ5TSlfdlz474Zirq2dxBlf0d/blan7XLyyEy548 FUtH+7HGmTUOSY+C0753KpnvYw92UD1DAAdWvAo3rXUbzTIQj+6H2q9zTaa3WCDE Mhm08Mfgw/Mr1eAcLg== -----END CERTIFICATE-----Generated at Sat Aug 23 16:23:09 2025 by rpki-client