$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7744CE40691111F0B8610780C4F9AE02.roa File: 7744CE40691111F0B8610780C4F9AE02.roa (raw, json) Hash identifier: PRxQXBjZlV7Er0eNJUTfg9h3fnoI27mRBFXi4nC7hPs= Subject key identifier: 33:46:F2:4D:C9:F3:D9:A0:0F:F4:E1:9B:74:1C:46:7F:67:EF:C9:70 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 080A Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7744CE40691111F0B8610780C4F9AE02.roa Signing time: Fri 25 Jul 2025 04:40:18 +0000 ROA not before: Fri 25 Jul 2025 04:40:18 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136173 IP address blocks: 36.255.192.0/24 maxlen: 24 43.229.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2058 (0x80a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Jul 25 04:40:18 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68830ab2-265e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:11:af:d0:8a:55:12:46:ac:9f:22:a3:4b:7f: 33:7d:11:fe:2b:84:13:58:fb:2f:b9:a4:52:63:0a: 8c:89:18:8a:1b:7e:ca:70:21:e2:39:a1:8c:13:1c: 39:54:20:de:f7:81:34:53:b7:fa:2c:69:60:21:a6: be:17:30:6c:8a:27:c2:60:37:e2:eb:ef:2d:b6:5a: 79:6e:02:a6:b2:6a:d1:13:b7:a5:9f:70:9f:2b:9c: 32:c8:d4:69:eb:4c:83:39:37:01:6d:e4:23:b8:4a: ba:39:42:b4:8f:99:c7:08:15:88:60:bc:f5:a7:be: b1:23:70:48:da:95:0e:9c:0b:85:b6:e7:e6:16:41: 01:03:71:13:d4:e5:76:af:a1:47:e6:87:53:4b:c0: 51:21:06:56:1d:8e:30:f7:20:c9:3f:16:12:fb:8e: 5f:3e:c6:80:dc:0c:90:2f:98:e2:5b:65:9e:7e:69: 0d:ef:aa:06:53:a7:46:fa:18:5a:57:1e:49:b8:49: 08:be:2a:fd:7c:6c:5f:43:f4:f2:c9:d8:b0:0b:17: a8:51:98:36:64:2b:36:a1:9f:81:9a:8d:23:b0:f3: cf:c6:35:3b:a7:c7:28:47:40:96:18:98:4e:b1:28: ae:bf:d7:1e:9f:d3:34:8c:69:05:57:79:63:c8:ae: 89:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:46:F2:4D:C9:F3:D9:A0:0F:F4:E1:9B:74:1C:46:7F:67:EF:C9:70 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7744CE40691111F0B8610780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.192.0/24 43.229.155.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:08:30:ad:fa:0f:1e:7c:a0:68:01:8c:1f:fb:e8:ac:b1:9e: 02:f6:96:4d:fb:b2:74:ee:30:60:34:3c:a0:fb:87:d4:82:5b: 5a:ee:4d:8a:00:68:f9:f3:b8:fb:53:1a:00:60:23:82:2b:4e: ae:71:e1:a6:08:54:7f:43:c8:90:bf:5f:51:8d:6a:32:f5:23: d1:1a:ee:93:54:7f:55:ce:42:a0:3d:72:ef:e3:19:4f:98:2d: 25:c0:81:ad:87:1e:09:27:c6:e4:b8:7d:14:84:3c:b7:01:bf: e1:3f:6a:9d:24:5f:12:50:8b:b9:e6:8a:39:e6:c8:35:39:36: 0c:31:df:63:d7:32:1e:0e:6b:f0:10:5a:40:11:89:c8:bb:23: e3:a9:2c:84:df:cf:74:ac:99:78:d1:f1:3f:83:34:38:8a:b7: 00:df:6c:a2:cb:44:20:b1:79:d4:65:25:6d:4e:05:9f:a9:1e: f2:cc:3c:ce:63:01:7e:5b:c2:16:df:c6:8d:63:bd:5f:d9:42: 09:44:be:6f:40:12:3b:fd:a6:ca:65:35:2b:07:11:0a:81:cd: 8f:86:1e:2a:e9:c3:21:38:c0:7f:02:f2:4f:44:d3:6e:c8:37: 99:c7:f8:c4:ee:6f:4b:65:d5:13:e9:fe:7a:3b:01:9c:98:26: 1f:5f:09:c7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNzI1MDQ0MDE4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgzMGFiMi0yNjVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuBGv0IpVEkasnyKjS38zfRH+K4QTWPsvuaRSYwqMiRiKG37KcCHiOaGMExw5 VCDe94E0U7f6LGlgIaa+FzBsiifCYDfi6+8ttlp5bgKmsmrRE7eln3CfK5wyyNRp 60yDOTcBbeQjuEq6OUK0j5nHCBWIYLz1p76xI3BI2pUOnAuFtufmFkEBA3ET1OV2 r6FH5odTS8BRIQZWHY4w9yDJPxYS+45fPsaA3AyQL5jiW2WefmkN76oGU6dG+hha Vx5JuEkIvir9fGxfQ/TyydiwCxeoUZg2ZCs2oZ+Bmo0jsPPPxjU7p8coR0CWGJhO sSiuv9cen9M0jGkFV3ljyK6JcQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDNG8k3J 89mgD/Thm3QcRn9n78lwMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNzc0NENFNDA2 OTExMTFGMEI4NjEwNzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAk/8ADBAAr5ZswDQYJKoZIhvcNAQELBQADggEBAE8IMK36 Dx58oGgBjB/76KyxngL2lk37snTuMGA0PKD7h9SCW1ruTYoAaPnzuPtTGgBgI4Ir Tq5x4aYIVH9DyJC/X1GNajL1I9Ea7pNUf1XOQqA9cu/jGU+YLSXAga2HHgknxuS4 fRSEPLcBv+E/ap0kXxJQi7nmijnmyDU5Ngwx32PXMh4Oa/AQWkARici7I+OpLITf z3SsmXjR8T+DNDiKtwDfbKLLRCCxedRlJW1OBZ+pHvLMPM5jAX5bwhbfxo1jvV/Z QglEvm9AEjv9psplNSsHEQqBzY+GHirpwyE4wH8C8k9E027IN5nH+MTub0tl1RPp /no7AZyYJh9fCcc= -----END CERTIFICATE-----Generated at Sun Aug 10 05:43:53 2025 by rpki-client