$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/4EB814BA8F6711E6A509C92DC4F9AE02.roa File: 4EB814BA8F6711E6A509C92DC4F9AE02.roa (raw, json) Hash identifier: r0CHOQu1cJbmjwRlYBEiavWoEM4N4g/XqSKR2NA/Xr4= Subject key identifier: 67:AD:26:FE:98:6A:8B:21:18:1B:90:4E:32:BD:99:80:2B:05:57:E1 Certificate issuer: /CN=A911ABDD/serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Certificate serial: 1E59 Authority key identifier: 42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/4EB814BA8F6711E6A509C92DC4F9AE02.roa Signing time: Fri 08 Aug 2025 15:52:58 +0000 ROA not before: Fri 08 Aug 2025 15:52:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17887 IP address blocks: 180.128.252.0/22 maxlen: 22 180.128.252.0/23 maxlen: 23 180.128.252.0/24 maxlen: 24 180.128.253.0/24 maxlen: 24 180.128.254.0/23 maxlen: 23 180.128.254.0/24 maxlen: 24 180.128.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7769 (0x1e59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABDD, serialNumber=4287B3332176DB486A2CBC425402FA9C86B6DC48 Validity Not Before: Aug 8 15:52:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68961d5a-3107 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:99:35:28:b5:f1:d5:35:c5:7b:8c:d9:13:6d: 37:66:bf:70:1a:4e:45:40:ed:a6:f6:b2:19:3e:b3: bc:72:92:e0:4a:f1:48:b5:b4:55:70:ba:0b:a3:a9: 99:d5:33:77:de:82:12:2e:21:7c:cb:34:89:54:d3: df:b6:c4:17:ea:b2:61:7e:d2:2d:0e:b8:27:ba:37: ec:b3:0f:49:a6:37:c4:30:8c:1a:2f:3a:be:48:fc: d9:fe:7c:8d:d5:87:7d:3d:d6:7b:29:ce:aa:7a:30: 3b:09:8f:1f:93:4d:08:2f:3f:cb:a5:58:34:52:1a: cf:88:d5:b0:4b:77:05:f9:7c:78:9a:fa:78:76:fc: b1:88:e9:54:ab:dc:25:a6:69:fd:1d:bd:bb:f4:fc: 6d:ca:ba:4d:da:93:fe:01:ab:fc:88:4f:c5:48:4a: 8c:61:0a:ce:88:6d:7e:4c:1c:16:8c:69:f1:74:99: 9f:a0:ba:c0:a7:c7:04:e3:14:16:bb:a6:5b:00:73: 6e:50:f0:67:71:b5:a8:ab:61:c1:27:bd:6e:22:28: 02:f1:08:f6:80:8c:d4:73:4d:7b:fd:15:12:83:78: 48:12:5a:a7:15:ab:a5:de:48:a1:e4:f1:83:f8:aa: fa:f4:fc:0d:cd:2a:7a:26:9c:e2:70:29:b0:cb:91: 4e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:AD:26:FE:98:6A:8B:21:18:1B:90:4E:32:BD:99:80:2B:05:57:E1 X509v3 Authority Key Identifier: keyid:42:87:B3:33:21:76:DB:48:6A:2C:BC:42:54:02:FA:9C:86:B6:DC:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/QoezMyF220hqLLxCVAL6nIa23Eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QoezMyF220hqLLxCVAL6nIa23Eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABDD/3AE004B4D77811E4B3778B72C4F9AE02/4EB814BA8F6711E6A509C92DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.128.252.0/22 Signature Algorithm: sha256WithRSAEncryption c0:16:2b:db:ef:69:2d:e3:53:6e:e7:69:1a:a7:82:35:b3:37: ed:a9:03:1e:cd:60:19:a8:d5:a9:e7:59:b8:7b:2c:e3:40:88: cc:79:1d:9d:63:e9:cb:d1:d1:e3:47:6d:93:a6:07:31:15:47: 02:7f:8b:9a:1c:d4:38:05:5e:77:60:13:58:a4:9d:f5:6f:9c: 3b:48:50:3a:a3:34:5c:53:75:d7:64:84:d6:f5:c3:f1:67:ef: 74:25:c1:52:9b:4d:ea:2a:70:98:22:5a:cf:2e:74:71:e5:a0: 9e:03:cb:2b:3b:db:6c:46:df:2a:34:2f:56:1c:75:40:f4:69: cc:dc:87:b6:b4:d6:bc:c7:ae:53:70:5a:8e:79:31:96:c4:f1: da:ef:f2:9e:42:df:a0:57:06:67:48:5f:50:a7:4b:04:5b:ee: 5a:f1:49:dc:a1:9c:4f:50:f0:3f:bc:39:5b:52:eb:9b:c2:9c: 69:fb:11:15:02:1f:17:24:6f:d5:2c:30:71:c1:cb:4c:82:bf: 82:46:f2:1c:35:93:8d:94:e5:12:b4:db:28:53:25:a4:11:18: 2c:dd:1b:71:39:84:73:0a:5c:0d:fd:b5:c7:48:f0:a7:bb:c1: 7b:d6:b7:e6:bb:5a:69:bc:40:6e:ba:ca:96:7a:e8:7b:12:3c: 07:47:05:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCREQxMTAvBgNVBAUTKDQyODdCMzMzMjE3NkRCNDg2QTJDQkM0MjU0MDJGQTlD ODZCNkRDNDgwHhcNMjUwODA4MTU1MjU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2MWQ1YS0zMTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJk1KLXx1TXFe4zZE203Zr9wGk5FQO2m9rIZPrO8cpLgSvFItbRVcLoLo6mZ 1TN33oISLiF8yzSJVNPftsQX6rJhftItDrgnujfssw9JpjfEMIwaLzq+SPzZ/nyN 1Yd9PdZ7Kc6qejA7CY8fk00ILz/LpVg0UhrPiNWwS3cF+Xx4mvp4dvyxiOlUq9wl pmn9Hb279PxtyrpN2pP+Aav8iE/FSEqMYQrOiG1+TBwWjGnxdJmfoLrAp8cE4xQW u6ZbAHNuUPBncbWoq2HBJ71uIigC8Qj2gIzUc017/RUSg3hIElqnFaul3kih5PGD +Kr69PwNzSp6JpzicCmwy5FOIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGetJv6Y aoshGBuQTjK9mYArBVfhMB8GA1UdIwQYMBaAFEKHszMhdttIaiy8QlQC+pyGttxI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJERC8zQUUwMDRCNEQ3 NzgxMUU0QjM3NzhCNzJDNEY5QUUwMi9Rb2V6TXlGMjIwaHFMTHhDVkFMNm5JYTIz RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FvZXpNeUYyMjBocUxMeENWQUw2bklhMjNFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCREQvM0FFMDA0QjRENzc4MTFFNEIzNzc4QjcyQzRGOUFFMDIvNEVCODE0QkE4 RjY3MTFFNkE1MDlDOTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK0gPwwDQYJKoZIhvcNAQELBQADggEBAMAWK9vvaS3jU27n aRqngjWzN+2pAx7NYBmo1annWbh7LONAiMx5HZ1j6cvR0eNHbZOmBzEVRwJ/i5oc 1DgFXndgE1iknfVvnDtIUDqjNFxTdddkhNb1w/Fn73QlwVKbTeoqcJgiWs8udHHl oJ4Dyys722xG3yo0L1YcdUD0aczch7a01rzHrlNwWo55MZbE8drv8p5C36BXBmdI X1CnSwRb7lrxSdyhnE9Q8D+8OVtS65vCnGn7ERUCHxckb9UsMHHBy0yCv4JG8hw1 k42U5RK02yhTJaQRGCzdG3E5hHMKXA39tcdI8Ke7wXvWt+a7Wmm8QG66ypZ66HsS PAdHBbE= -----END CERTIFICATE-----Generated at Sun Aug 10 05:34:16 2025 by rpki-client