$ rpki-client -vvf rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/050079585AC911EF9DF4275AC4F9AE02.roa File: 050079585AC911EF9DF4275AC4F9AE02.roa (raw, json) Hash identifier: r3ab2hXEUx4DTxPcSBrvJTxlFoImKdTbWENPYxt4ZVo= Subject key identifier: 33:42:93:36:25:ED:BA:C9:3E:81:5E:CE:63:1E:67:10:FD:0E:01:81 Certificate issuer: /CN=A912DF25/serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Certificate serial: DE Authority key identifier: 96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/050079585AC911EF9DF4275AC4F9AE02.roa Signing time: Fri 03 Oct 2025 06:02:49 +0000 ROA not before: Fri 03 Oct 2025 06:02:49 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 202.160.113.0/24 maxlen: 24 202.160.115.0/24 maxlen: 24 202.160.117.0/24 maxlen: 24 202.160.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:28:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DF25, serialNumber=96835450D321C1E7C48CA0C5DCD2BA6C1D2D48F1 Validity Not Before: Oct 3 06:02:49 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68df6709-32b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0a:c5:cc:00:b1:e2:33:cd:17:16:aa:eb:83: d8:5d:cf:3e:c5:ca:7b:64:04:db:99:97:1e:d6:f4: bd:ca:19:02:57:32:7c:e3:7f:64:72:80:3f:0c:ae: 64:7f:75:a7:f5:61:51:79:e2:01:e5:b8:3b:b6:24: 79:0b:3c:3c:e0:a2:ff:8a:d9:39:29:c9:e5:91:54: 7f:c6:e0:04:8a:59:f3:b2:2d:e6:b6:48:19:dd:6a: 3a:21:37:c3:cb:95:b9:d0:a4:e6:40:7c:0d:41:82: 66:84:8f:42:8b:7a:3c:2d:4e:16:68:0b:50:39:c8: 52:2f:83:6d:90:18:43:15:50:b6:e9:7c:49:33:c9: 76:62:83:56:2f:45:a8:e1:52:34:ae:1c:d3:cc:c6: 77:d8:4d:2e:8a:2b:a0:2b:89:c2:dc:0b:c7:c0:45: aa:76:20:33:ec:80:5d:ff:a9:34:de:21:b9:66:0c: 79:c7:75:d7:53:96:b3:de:22:22:d5:a1:5d:c1:4c: 88:94:e6:b8:3a:af:73:da:98:8f:2e:4d:d2:72:58: 3b:d1:6c:a2:18:38:64:f1:99:a7:75:61:39:5f:7e: 76:d7:23:4a:60:fd:77:19:20:3b:94:c9:26:4e:f4: 57:50:7e:95:4f:f4:9d:ee:9d:f4:6c:99:cb:f4:ab: ff:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:42:93:36:25:ED:BA:C9:3E:81:5E:CE:63:1E:67:10:FD:0E:01:81 X509v3 Authority Key Identifier: keyid:96:83:54:50:D3:21:C1:E7:C4:8C:A0:C5:DC:D2:BA:6C:1D:2D:48:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/loNUUNMhwefEjKDF3NK6bB0tSPE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/loNUUNMhwefEjKDF3NK6bB0tSPE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DF25/7F7B1DAC5AC711EF99EAFC43C4F9AE02/050079585AC911EF9DF4275AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.113.0/24 202.160.115.0/24 202.160.117.0/24 202.160.119.0/24 Signature Algorithm: sha256WithRSAEncryption 17:40:f6:48:cb:1d:8f:3f:14:d9:e4:05:07:31:0d:08:0e:21: 87:f8:22:63:c7:fd:e7:71:02:73:a6:4a:0b:9b:47:8c:be:7b: 4d:91:57:ca:8c:c7:fc:d0:c0:47:4b:09:68:12:98:66:e7:1e: ac:99:14:4b:f9:fb:93:c8:a5:89:cb:5a:e2:c5:c2:1f:35:2d: d5:f5:0f:46:bc:9c:13:e9:fb:89:b9:1a:f5:52:81:25:62:76: 32:be:86:64:86:78:17:8f:06:11:d8:f0:fc:5f:0d:41:21:c8: 20:cf:9b:4e:84:a8:f0:bc:9a:1e:a3:a3:5a:52:1a:de:0f:f5: 2d:bf:33:e1:58:8e:d3:37:eb:5b:1d:5a:e9:98:77:cc:06:4a: cb:38:37:a1:23:4d:74:bd:92:a9:1e:c3:b5:d8:06:11:6e:bc: d7:12:f8:95:87:e5:d9:5c:aa:d8:f3:8d:7a:06:4a:e1:f8:cd: f5:73:14:d0:58:d1:36:c7:61:e7:5e:5a:16:34:73:5a:39:32: ef:ae:2f:ef:67:0c:75:3a:26:4d:7c:22:4c:cb:e8:6a:63:ef: 10:81:40:83:07:01:6d:b8:9a:72:80:6b:56:35:63:04:5a:7c: de:f4:ac:67:8b:2b:d4:03:dc:28:27:48:79:04:a9:0b:00:f7: 83:e3:04:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGMjUxMTAvBgNVBAUTKDk2ODM1NDUwRDMyMUMxRTdDNDhDQTBDNURDRDJCQTZD MUQyRDQ4RjEwHhcNMjUxMDAzMDYwMjQ5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRmNjcwOS0zMmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuArFzACx4jPNFxaq64PYXc8+xcp7ZATbmZce1vS9yhkCVzJ8439kcoA/DK5k f3Wn9WFReeIB5bg7tiR5Czw84KL/itk5KcnlkVR/xuAEilnzsi3mtkgZ3Wo6ITfD y5W50KTmQHwNQYJmhI9Ci3o8LU4WaAtQOchSL4NtkBhDFVC26XxJM8l2YoNWL0Wo 4VI0rhzTzMZ32E0uiiugK4nC3AvHwEWqdiAz7IBd/6k03iG5Zgx5x3XXU5az3iIi 1aFdwUyIlOa4Oq9z2piPLk3Sclg70WyiGDhk8ZmndWE5X3521yNKYP13GSA7lMkm TvRXUH6VT/Sd7p30bJnL9Kv/QQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDNCkzYl 7brJPoFezmMeZxD9DgGBMB8GA1UdIwQYMBaAFJaDVFDTIcHnxIygxdzSumwdLUjx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREYyNS83RjdCMURBQzVB QzcxMUVGOTlFQUZDNDNDNEY5QUUwMi9sb05VVU5NaHdlZkVqS0RGM05LNmJCMHRT UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xvTlVVTk1od2VmRWpLREYzTks2YkIwdFNQRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRGMjUvN0Y3QjFEQUM1QUM3MTFFRjk5RUFGQzQzQzRGOUFFMDIvMDUwMDc5NTg1 QUM5MTFFRjlERjQyNzVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBADKoHEDBADKoHMDBADKoHUDBADKoHcwDQYJKoZIhvcNAQEL BQADggEBABdA9kjLHY8/FNnkBQcxDQgOIYf4ImPH/edxAnOmSgubR4y+e02RV8qM x/zQwEdLCWgSmGbnHqyZFEv5+5PIpYnLWuLFwh81LdX1D0a8nBPp+4m5GvVSgSVi djK+hmSGeBePBhHY8PxfDUEhyCDPm06EqPC8mh6jo1pSGt4P9S2/M+FYjtM361sd WumYd8wGSss4N6EjTXS9kqkew7XYBhFuvNcS+JWH5dlcqtjzjXoGSuH4zfVzFNBY 0TbHYedeWhY0c1o5Mu+uL+9nDHU6Jk18IkzL6Gpj7xCBQIMHAW24mnKAa1Y1YwRa fN70rGeLK9QD3CgnSHkEqQsA94PjBDM= -----END CERTIFICATE-----Generated at Mon Oct 20 16:17:13 2025 by rpki-client