$ rpki-client -vvf rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/A88A36D0003A11EEB8430127C4F9AE02.roa File: A88A36D0003A11EEB8430127C4F9AE02.roa (raw, json) Hash identifier: 8rRtO+q4Ir17qHRPB7V36mJGPMj4dxDtsLTHhGJ0+E0= Subject key identifier: FA:C1:3B:56:5E:11:7B:67:D1:A6:A3:3A:E1:7E:FF:C3:C2:92:FA:95 Certificate issuer: /CN=A917FFB0/serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Certificate serial: 3514 Authority key identifier: 13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/A88A36D0003A11EEB8430127C4F9AE02.roa Signing time: Tue 01 Jul 2025 11:33:10 +0000 ROA not before: Tue 01 Jul 2025 11:33:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9260 IP address blocks: 110.38.31.0/24 maxlen: 24 110.38.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13588 (0x3514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917FFB0, serialNumber=1324043021BB45D7FF66F20AFC6839343130C3F2 Validity Not Before: Jul 1 11:33:10 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6863c776-1d24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:82:83:1b:0e:ad:48:5d:d7:b9:9a:33:de:db: 65:0f:04:a5:bf:ac:6e:90:c4:7b:86:c7:90:f3:c0: 04:bf:22:3d:2f:d1:69:34:89:ba:a6:d2:c5:13:da: a1:a7:fa:05:7f:4c:35:ae:f5:e8:ba:14:84:31:1d: dc:9d:5a:6e:b8:ba:6e:e1:2f:44:6f:58:13:d4:f2: 60:8c:0a:c6:b6:8b:83:82:62:dc:23:dc:4a:18:8d: df:10:20:8c:c6:ce:fd:b4:07:65:fd:fd:5c:fe:e0: 62:44:12:cb:17:48:3d:a4:24:ea:6b:96:e0:a6:59: 7b:42:b5:5d:93:f2:f8:ce:b6:f6:b6:91:8b:8a:c3: f7:4e:10:9a:40:32:6a:e1:6a:00:46:ba:4a:53:2b: 9b:a7:48:47:99:42:b1:48:d2:08:94:62:a2:a8:28: 3b:77:27:e8:29:f6:92:f9:20:71:aa:c1:86:7e:ba: b1:57:b1:62:4b:fd:62:5c:7e:1d:18:3b:eb:b6:ed: d0:09:6b:db:b3:1c:54:e9:03:b7:c8:18:1b:49:85: 4e:b8:fc:84:8c:a7:ac:59:8d:fb:51:b6:bb:89:02: a5:57:65:97:54:ac:ef:14:31:3c:27:cc:31:f1:64: 02:a3:ac:09:4a:84:2c:b0:43:17:f9:80:94:e9:20: 35:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C1:3B:56:5E:11:7B:67:D1:A6:A3:3A:E1:7E:FF:C3:C2:92:FA:95 X509v3 Authority Key Identifier: keyid:13:24:04:30:21:BB:45:D7:FF:66:F2:0A:FC:68:39:34:31:30:C3:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EyQEMCG7Rdf_ZvIK_Gg5NDEww_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917FFB0/E557C0001D9211E2933A21F608B02CD2/A88A36D0003A11EEB8430127C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.38.31.0/24 110.38.35.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:fd:3a:9c:08:4e:af:98:02:a8:2e:ec:dd:63:80:cd:0c:48: e9:bd:7c:05:93:c7:b2:03:93:63:98:25:59:ed:da:1d:5f:58: 7c:62:ec:55:91:e7:cc:81:d8:e0:4d:13:8f:aa:ec:a5:2f:cb: b8:7e:e8:21:9c:87:b3:6b:26:52:da:99:74:0d:c5:78:d1:25: 7f:02:42:ec:d8:17:31:dc:eb:bb:67:98:76:bf:7d:c0:57:3a: d0:03:6d:eb:57:9c:4e:64:18:8a:09:d6:fa:ee:1a:d8:63:0a: 91:80:06:05:b9:51:5f:6f:75:20:fc:81:89:bc:27:e8:a9:28: 29:9e:6e:94:92:6f:7f:d9:44:ff:76:b8:88:2d:50:d2:18:af: 51:e0:59:ef:7a:81:99:26:91:35:7d:ec:93:cc:30:6b:cf:71: 59:a4:c9:91:06:57:b4:57:d4:39:90:2e:fa:c0:46:03:e5:19: c2:b3:79:28:19:68:ec:d5:f4:23:b4:6f:98:c9:50:f0:ce:d7: 09:5f:2b:36:cf:cf:84:d5:b0:a7:54:c7:b1:fd:ac:fc:80:87: e1:7f:15:25:8d:be:6f:5f:e7:d0:17:84:cd:c0:b7:a0:83:30: fe:61:6a:11:3c:d9:c9:12:c5:12:95:69:a5:9f:7a:fb:96:c2: f4:9c:fd:e6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0ZGQjAxMTAvBgNVBAUTKDEzMjQwNDMwMjFCQjQ1RDdGRjY2RjIwQUZDNjgzOTM0 MzEzMEMzRjIwHhcNMjUwNzAxMTEzMzEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzYzc3Ni0xZDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4oKDGw6tSF3XuZoz3ttlDwSlv6xukMR7hseQ88AEvyI9L9FpNIm6ptLFE9qh p/oFf0w1rvXouhSEMR3cnVpuuLpu4S9Eb1gT1PJgjArGtouDgmLcI9xKGI3fECCM xs79tAdl/f1c/uBiRBLLF0g9pCTqa5bgpll7QrVdk/L4zrb2tpGLisP3ThCaQDJq 4WoARrpKUyubp0hHmUKxSNIIlGKiqCg7dyfoKfaS+SBxqsGGfrqxV7FiS/1iXH4d GDvrtu3QCWvbsxxU6QO3yBgbSYVOuPyEjKesWY37Uba7iQKlV2WXVKzvFDE8J8wx 8WQCo6wJSoQssEMX+YCU6SA1LQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPrBO1Ze EXtn0aajOuF+/8PCkvqVMB8GA1UdIwQYMBaAFBMkBDAhu0XX/2byCvxoOTQxMMPy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RkZCMC9FNTU3QzAwMDFE OTIxMUUyOTMzQTIxRjYwOEIwMkNEMi9FeVFFTUNHN1JkZl9adklLX0dnNU5ERXd3 X0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0V5UUVNQ0c3UmRmX1p2SUtfR2c1TkRFd3dfSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0ZGQjAvRTU1N0MwMDAxRDkyMTFFMjkzM0EyMUY2MDhCMDJDRDIvQTg4QTM2RDAw MDNBMTFFRUI4NDMwMTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABuJh8DBABuJiMwDQYJKoZIhvcNAQELBQADggEBAF39OpwI Tq+YAqgu7N1jgM0MSOm9fAWTx7IDk2OYJVnt2h1fWHxi7FWR58yB2OBNE4+q7KUv y7h+6CGch7NrJlLamXQNxXjRJX8CQuzYFzHc67tnmHa/fcBXOtADbetXnE5kGIoJ 1vruGthjCpGABgW5UV9vdSD8gYm8J+ipKCmebpSSb3/ZRP92uIgtUNIYr1HgWe96 gZkmkTV97JPMMGvPcVmkyZEGV7RX1DmQLvrARgPlGcKzeSgZaOzV9CO0b5jJUPDO 1wlfKzbPz4TVsKdUx7H9rPyAh+F/FSWNvm9f59AXhM3At6CDMP5hahE82ckSxRKV aaWfevuWwvSc/eY= -----END CERTIFICATE-----Generated at Tue Jul 1 13:21:10 2025 by rpki-client