$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/3050FB0E9F7511F085D9D70FC4F9AE02.roa File: 3050FB0E9F7511F085D9D70FC4F9AE02.roa (raw, json) Hash identifier: kp0+gojuuIRTr6eUGBLfQa4oY8u2BrxDelQl3l3Jaqw= Subject key identifier: 23:89:61:5E:6F:96:35:F9:9C:32:62:EB:96:6D:5A:32:3C:F5:85:F0 Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 04DB Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/3050FB0E9F7511F085D9D70FC4F9AE02.roa Signing time: Thu 02 Oct 2025 09:50:12 +0000 ROA not before: Thu 02 Oct 2025 09:50:12 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45461 IP address blocks: 113.20.32.0/21 maxlen: 24 113.20.47.0/24 maxlen: 24 223.29.128.0/19 maxlen: 19 2403:200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1243 (0x4db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73, serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Oct 2 09:50:12 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68de4ad4-5f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:3e:be:48:22:83:6b:49:3f:56:7d:92:a0:df: 4f:e3:00:42:18:96:ed:ce:6d:f8:be:10:25:ea:2f: 13:fa:c2:08:09:01:6a:d5:e2:f5:95:01:6e:d6:b0: 0c:53:7a:86:15:e1:f9:24:c8:59:7b:72:48:3d:4d: 9a:91:4d:ec:70:4a:26:e4:ff:ef:37:13:10:6c:fc: 05:4b:f0:15:4c:b6:0d:3e:83:a9:c3:56:1b:1c:e7: 76:d8:08:6d:ed:a5:3a:db:9a:b4:d9:47:92:db:ac: 3e:27:76:ba:5a:ff:1f:6a:2c:db:0f:25:b8:8f:4c: 76:3c:1e:51:2b:ed:b0:ba:0d:f0:18:09:50:40:7c: 9b:c2:a0:8e:dc:4e:27:94:fe:a5:90:40:1d:c7:83: 05:25:22:db:79:9d:99:ed:2b:ee:f4:bc:68:b0:57: 13:98:87:56:c4:7f:c2:ac:3c:56:a5:20:0f:41:9c: a1:27:2b:7f:b5:e5:cc:a7:07:c3:1c:bb:f3:48:a8: cf:b3:26:9f:52:f0:38:07:51:3f:ab:78:87:4f:1c: 59:c1:8b:0e:84:07:33:df:7c:0c:71:ab:da:2c:9a: 96:a2:db:00:88:f9:90:c8:28:8f:5a:1e:7d:5f:1b: c5:d6:ce:d2:91:b3:f8:ea:23:59:a4:1e:9c:3e:a2: 25:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:89:61:5E:6F:96:35:F9:9C:32:62:EB:96:6D:5A:32:3C:F5:85:F0 X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/3050FB0E9F7511F085D9D70FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.32.0/21 113.20.47.0/24 223.29.128.0/19 IPv6: 2403:200::/32 Signature Algorithm: sha256WithRSAEncryption 6c:f6:65:06:8e:1b:84:d2:4a:af:a7:ad:f6:f8:4c:6c:ed:4e: e5:f5:cc:7c:6f:88:31:ce:42:40:fd:5e:37:7a:1d:4f:0c:95: 3b:e9:25:27:b6:42:af:a8:57:42:79:3f:d0:cb:4b:55:16:a8: 3d:21:7b:93:62:04:c6:ff:c9:72:58:95:c5:33:5d:5e:68:bc: 6f:fc:f3:4e:99:d4:1f:55:2c:58:be:5b:f0:47:4d:e9:24:3d: d7:f5:66:3d:1f:05:00:91:08:7b:39:b0:c3:b0:66:24:f9:7e: 46:27:72:bc:43:f1:85:99:86:f5:eb:2c:22:c7:8d:85:2d:c1: e8:62:d5:c9:61:2c:3a:e8:7a:6c:86:1e:b9:53:50:5c:15:4e: 78:ac:6e:50:af:c7:a3:b9:21:36:0b:41:d8:8b:e4:70:bb:c7: 96:4c:7a:6b:6a:ab:32:31:df:c2:82:c2:48:a6:c9:dc:0b:f3: 23:3f:4e:f3:ba:45:aa:a1:a9:0f:8a:8f:78:3c:93:07:c0:71: d2:9f:70:28:71:fb:16:5d:a7:c9:a9:b3:cd:aa:4c:29:9a:11: 75:09:af:9c:73:8d:9e:45:0b:2a:51:91:ca:99:40:8a:d9:3d: 85:bc:46:a1:55:c5:d9:18:d9:ab:2b:0e:81:a9:0f:82:1d:55: 16:4d:93:3e -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBNswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjUxMDAyMDk1MDEyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlNGFkNC01ZjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyT6+SCKDa0k/Vn2SoN9P4wBCGJbtzm34vhAl6i8T+sIICQFq1eL1lQFu1rAM U3qGFeH5JMhZe3JIPU2akU3scEom5P/vNxMQbPwFS/AVTLYNPoOpw1YbHOd22Aht 7aU625q02UeS26w+J3a6Wv8faizbDyW4j0x2PB5RK+2wug3wGAlQQHybwqCO3E4n lP6lkEAdx4MFJSLbeZ2Z7Svu9LxosFcTmIdWxH/CrDxWpSAPQZyhJyt/teXMpwfD HLvzSKjPsyafUvA4B1E/q3iHTxxZwYsOhAcz33wMcavaLJqWotsAiPmQyCiPWh59 XxvF1s7SkbP46iNZpB6cPqIlgQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFCOJYV5v ljX5nDJi65ZtWjI89YXwMB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvMzA1MEZCMEU5 Rjc1MTFGMDg1RDlENzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBANxFCADBABxFC8DBAXfHYAwDQQCAAIwBwMFACQDAgAwDQYJ KoZIhvcNAQELBQADggEBAGz2ZQaOG4TSSq+nrfb4TGztTuX1zHxviDHOQkD9Xjd6 HU8MlTvpJSe2Qq+oV0J5P9DLS1UWqD0he5NiBMb/yXJYlcUzXV5ovG/8806Z1B9V LFi+W/BHTekkPdf1Zj0fBQCRCHs5sMOwZiT5fkYncrxD8YWZhvXrLCLHjYUtwehi 1clhLDroemyGHrlTUFwVTnisblCvx6O5ITYLQdiL5HC7x5ZMemtqqzIx38KCwkim ydwL8yM/TvO6RaqhqQ+Kj3g8kwfAcdKfcChx+xZdp8mps82qTCmaEXUJr5xzjZ5F CypRkcqZQIrZPYW8RqFVxdkY2asrDoGpD4IdVRZNkz4= -----END CERTIFICATE-----Generated at Tue Oct 21 11:28:41 2025 by rpki-client