$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/48C53B8C920A11F0A7C81B36C4F9AE02.roa File: 48C53B8C920A11F0A7C81B36C4F9AE02.roa (raw, json) Hash identifier: gRWNeP/7deVcVkkhKFjf0tGcP85FBqRzQBxXJqHov0M= Subject key identifier: DE:E8:85:EA:65:26:61:0B:F6:F0:7A:E9:C4:0F:CC:86:C9:87:F8:B8 Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 04CA Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/48C53B8C920A11F0A7C81B36C4F9AE02.roa Signing time: Mon 15 Sep 2025 08:02:12 +0000 ROA not before: Mon 15 Sep 2025 08:02:11 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 399989 IP address blocks: 113.20.48.0/22 maxlen: 22 113.20.52.0/22 maxlen: 22 113.20.56.0/22 maxlen: 22 223.29.128.0/22 maxlen: 22 223.29.136.0/22 maxlen: 22 223.29.140.0/22 maxlen: 22 223.29.144.0/22 maxlen: 22 223.29.148.0/22 maxlen: 22 223.29.152.0/22 maxlen: 22 223.29.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1226 (0x4ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73, serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Sep 15 08:02:11 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68c7c803-8968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:58:8f:6a:92:00:45:10:b4:71:83:94:1d:b9: 76:a6:e0:65:61:43:c0:1d:c2:e1:d6:79:de:2f:89: 8d:8c:69:71:51:77:a3:94:ec:50:ed:c2:43:bd:aa: 75:52:1d:9d:75:23:53:7b:65:45:11:e0:05:f4:c4: 80:40:90:6b:b3:b3:4b:41:db:fa:1c:ae:72:8e:26: df:1a:ec:56:0d:32:be:1d:b0:a8:06:a1:6c:74:57: 9a:fc:5c:88:7b:d8:c1:1b:4f:4f:c2:79:5c:28:b8: 7a:6d:a7:eb:68:0a:ec:f0:55:be:2f:ef:5b:64:4d: d6:aa:26:8f:8b:6f:a8:06:ec:85:c7:16:02:4b:40: ce:73:48:08:71:03:f5:8f:88:b2:5b:91:28:27:c3: 76:d8:8b:fe:5e:17:44:f0:3a:97:1a:d9:08:46:ac: 76:5e:c7:16:00:a3:1d:85:bb:02:cc:fe:1b:04:ca: c9:6c:68:4b:33:42:be:31:f6:4f:f2:4e:f9:e5:0b: 1e:89:40:71:b7:5b:d1:b7:64:a8:54:5e:70:40:0a: 15:5d:6e:1d:6d:d6:20:29:98:76:41:c2:d1:91:47: 83:8c:93:fb:eb:24:98:c8:96:6f:1f:0d:0c:23:a9: 6a:8f:2d:8d:be:4e:00:64:16:06:37:a9:8a:b1:09: 0d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:E8:85:EA:65:26:61:0B:F6:F0:7A:E9:C4:0F:CC:86:C9:87:F8:B8 X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/48C53B8C920A11F0A7C81B36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.48.0-113.20.59.255 223.29.128.0/22 223.29.136.0-223.29.159.255 Signature Algorithm: sha256WithRSAEncryption c5:75:8c:3c:31:d7:f6:15:9c:88:a6:22:e7:6e:33:cd:f9:72: c8:f5:60:48:3a:fc:2f:f5:f0:4d:43:ba:94:d0:15:b0:53:a8: fc:5c:e9:52:14:e6:17:c8:c8:9b:16:03:b2:8c:3b:8e:3d:83: 7c:80:3e:c7:11:fa:d7:52:00:f1:5a:f0:5b:a7:e4:6e:17:9e: 46:87:c1:08:1e:70:c2:ae:3d:97:cc:54:c1:61:b3:02:99:11: ad:1f:09:b6:32:49:11:21:c0:97:6e:17:bd:14:78:75:ef:a9: 8a:44:a0:67:f6:0d:72:c7:bf:ed:dd:80:23:0d:57:0d:be:56: 4e:87:6d:67:a6:48:22:b0:45:ac:b9:4c:f5:d6:ab:5b:9d:35: 83:b7:11:ac:37:14:1b:1e:65:1a:c3:7d:c8:13:58:75:60:fc: a8:45:ff:5a:b7:cc:4e:09:ea:55:9d:6f:93:ec:10:96:4b:d3: 41:bd:c4:9c:7d:a7:36:cf:8d:ef:3c:99:bc:87:d7:3f:22:61: 26:07:47:af:c2:42:24:85:7f:15:84:b9:cc:a6:54:b7:cd:50: ee:5d:10:3e:c4:42:ca:24:a9:d0:92:32:67:73:d9:a0:c2:e9: 0c:7e:eb:9c:96:f8:49:7a:89:3d:87:ef:0c:ef:6b:b7:2b:99: e2:0e:24:6c -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICBMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjUwOTE1MDgwMjExWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM3YzgwMy04OTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1iPapIARRC0cYOUHbl2puBlYUPAHcLh1nneL4mNjGlxUXejlOxQ7cJDvap1 Uh2ddSNTe2VFEeAF9MSAQJBrs7NLQdv6HK5yjibfGuxWDTK+HbCoBqFsdFea/FyI e9jBG09PwnlcKLh6bafraArs8FW+L+9bZE3WqiaPi2+oBuyFxxYCS0DOc0gIcQP1 j4iyW5EoJ8N22Iv+XhdE8DqXGtkIRqx2XscWAKMdhbsCzP4bBMrJbGhLM0K+MfZP 8k755QseiUBxt1vRt2SoVF5wQAoVXW4dbdYgKZh2QcLRkUeDjJP76ySYyJZvHw0M I6lqjy2Nvk4AZBYGN6mKsQkNdwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFN7ohepl JmEL9vB66cQPzIbJh/i4MB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvNDhDNTNCOEM5 MjBBMTFGMEE3QzgxQjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEBHEUMAMEAnEUOAMEAt8dgDAMAwQD3x2IAwQF3x2AMA0G CSqGSIb3DQEBCwUAA4IBAQDFdYw8Mdf2FZyIpiLnbjPN+XLI9WBIOvwv9fBNQ7qU 0BWwU6j8XOlSFOYXyMibFgOyjDuOPYN8gD7HEfrXUgDxWvBbp+RuF55Gh8EIHnDC rj2XzFTBYbMCmRGtHwm2MkkRIcCXbhe9FHh176mKRKBn9g1yx7/t3YAjDVcNvlZO h21npkgisEWsuUz11qtbnTWDtxGsNxQbHmUaw33IE1h1YPyoRf9at8xOCepVnW+T 7BCWS9NBvcScfac2z43vPJm8h9c/ImEmB0evwkIkhX8VhLnMplS3zVDuXRA+xELK JKnQkjJnc9mgwukMfuuclvhJeok9h+8M72u3K5niDiRs -----END CERTIFICATE-----Generated at Sun Oct 19 23:14:28 2025 by rpki-client