$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/88DCDDDC7CE911F0848CDE7EC4F9AE02.roa File: 88DCDDDC7CE911F0848CDE7EC4F9AE02.roa (raw, json) Hash identifier: 068XltOifOso6oTe4AsLg0kZTIBf2e1T8A0/XwOlCGY= Subject key identifier: 83:46:B5:72:5F:3D:BC:10:9E:49:FE:0E:28:DF:E9:65:C0:3F:5E:90 Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 04A4 Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/88DCDDDC7CE911F0848CDE7EC4F9AE02.roa Signing time: Tue 19 Aug 2025 10:44:51 +0000 ROA not before: Tue 19 Aug 2025 10:44:51 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 39600 IP address blocks: 223.29.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1188 (0x4a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73, serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Aug 19 10:44:51 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68a455a3-8060 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:df:e5:83:49:ae:d6:61:a0:f2:6c:47:bc:74: 59:f8:cc:08:3c:64:39:31:f6:15:48:20:40:2d:3e: 7d:0c:fd:48:bf:28:5e:50:24:ce:60:d5:a1:0f:6b: 01:0a:ab:6b:ad:47:b6:5c:d3:18:62:c0:65:41:07: 05:5f:66:b1:3f:79:d8:f0:7d:2b:6d:d0:2f:88:5d: ac:16:f3:99:35:de:49:0d:73:a5:0e:82:45:7d:db: 5b:51:b3:7f:16:d3:ef:93:62:14:18:1b:34:2d:3b: 5a:cb:f7:b6:4e:b0:09:a3:58:46:cb:87:b5:b1:ee: 94:af:35:74:09:5d:f6:ba:17:9b:18:8b:ba:04:b3: 83:28:f4:cc:94:b5:6f:c2:9b:b9:fc:be:6d:c0:d1: 9d:69:c5:66:2e:3a:2d:f8:0b:5e:12:bf:0b:e6:a2: f1:26:13:5c:09:e3:fa:76:8d:48:5b:a7:52:14:33: 6c:60:38:f8:9e:4c:8e:d3:99:6a:f6:e5:e5:30:83: 97:5b:65:36:ab:43:87:94:d7:e2:39:2b:e5:f5:1a: 16:ef:4a:51:f3:94:24:e0:1d:1d:2f:25:15:d9:67: 62:7f:eb:3e:71:b7:61:17:f6:c8:77:e7:44:33:9d: e1:d6:f6:d7:f0:b1:e3:3b:ee:e1:31:59:b5:9a:02: 07:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:46:B5:72:5F:3D:BC:10:9E:49:FE:0E:28:DF:E9:65:C0:3F:5E:90 X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/88DCDDDC7CE911F0848CDE7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.29.172.0/22 Signature Algorithm: sha256WithRSAEncryption 04:b2:f7:09:26:87:1f:cc:a7:58:41:b9:ab:c5:12:84:88:8a: a0:a4:e2:bc:0b:75:51:0a:2a:4b:07:60:46:68:d4:e7:18:85: bd:08:13:81:32:06:62:ac:a8:17:57:74:16:cf:0f:7b:ac:a8: b8:3e:be:99:e9:c0:5d:c0:5f:8e:0b:33:6a:1d:3d:2a:15:45: 94:7a:86:be:b5:21:bf:27:88:4e:ef:6c:88:6e:8d:1a:a3:b9: 05:86:fb:60:9d:72:e1:a1:48:22:74:2f:51:d2:2b:2e:bd:d7: 5a:73:c6:42:ca:07:e0:38:1a:4d:c7:e5:20:31:b1:48:e2:ef: ad:5e:88:c5:55:07:24:45:67:5e:16:e8:ad:90:5b:8f:42:bc: 29:88:a5:65:23:14:31:69:6e:79:f6:73:41:5c:a8:4f:18:16: 64:35:24:0a:ff:1e:85:19:56:12:09:84:f1:22:f6:19:6a:22: ef:4c:86:85:f6:6b:f3:8d:d7:be:02:47:36:dc:84:c4:91:24: 01:bf:d4:08:58:a4:3a:c5:6c:3a:27:38:74:e7:92:ad:3d:c5: 09:74:2d:eb:93:47:1b:74:d5:af:1c:89:66:17:5e:cd:51:ed: 4b:a5:4f:08:a9:0b:1e:95:c4:6f:81:4c:a9:16:c8:68:9d:6f: 91:46:3c:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjUwODE5MTA0NDUxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE0NTVhMy04MDYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAot/lg0mu1mGg8mxHvHRZ+MwIPGQ5MfYVSCBALT59DP1IvyheUCTOYNWhD2sB CqtrrUe2XNMYYsBlQQcFX2axP3nY8H0rbdAviF2sFvOZNd5JDXOlDoJFfdtbUbN/ FtPvk2IUGBs0LTtay/e2TrAJo1hGy4e1se6UrzV0CV32uhebGIu6BLODKPTMlLVv wpu5/L5twNGdacVmLjot+AteEr8L5qLxJhNcCeP6do1IW6dSFDNsYDj4nkyO05lq 9uXlMIOXW2U2q0OHlNfiOSvl9RoW70pR85Qk4B0dLyUV2Wdif+s+cbdhF/bId+dE M53h1vbX8LHjO+7hMVm1mgIHBQIDAQABo4IClTCCApEwHQYDVR0OBBYEFINGtXJf PbwQnkn+Dijf6WXAP16QMB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvODhEQ0REREM3 Q0U5MTFGMDg0OENERTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALfHawwDQYJKoZIhvcNAQELBQADggEBAASy9wkmhx/Mp1hB uavFEoSIiqCk4rwLdVEKKksHYEZo1OcYhb0IE4EyBmKsqBdXdBbPD3usqLg+vpnp wF3AX44LM2odPSoVRZR6hr61Ib8niE7vbIhujRqjuQWG+2CdcuGhSCJ0L1HSKy69 11pzxkLKB+A4Gk3H5SAxsUji761eiMVVByRFZ14W6K2QW49CvCmIpWUjFDFpbnn2 c0FcqE8YFmQ1JAr/HoUZVhIJhPEi9hlqIu9MhoX2a/ON174CRzbchMSRJAG/1AhY pDrFbDonOHTnkq09xQl0LeuTRxt01a8ciWYXXs1R7UulTwipCx6VxG+BTKkWyGid b5FGPGA= -----END CERTIFICATE-----Generated at Sat Aug 23 19:23:59 2025 by rpki-client