$ rpki-client -vvf rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/2BB37D0641FB11F0AF4AA817C4F9AE02.roa File: 2BB37D0641FB11F0AF4AA817C4F9AE02.roa (raw, json) Hash identifier: XEo3yH9798bRctchsMT2LIaz6q7sk6+vjG3539bWh8g= Subject key identifier: EA:FA:92:10:3C:BF:08:95:74:7D:90:BB:11:31:97:1E:AC:38:0B:26 Certificate issuer: /CN=A912582A/serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A Certificate serial: F6 Authority key identifier: 7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/2BB37D0641FB11F0AF4AA817C4F9AE02.roa Signing time: Thu 05 Jun 2025 11:28:37 +0000 ROA not before: Thu 05 Jun 2025 11:28:37 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152632 IP address blocks: 202.36.122.0/23 maxlen: 23 202.36.122.0/24 maxlen: 24 202.36.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.crl rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:38:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912582A, serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A Validity Not Before: Jun 5 11:28:37 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68417f64-aa23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:52:c4:3b:2a:6f:cf:bf:af:9c:21:09:27:e1: 3b:1f:e6:4f:c6:43:6f:2b:eb:cb:41:a5:36:12:a0: f1:7a:e1:25:a0:eb:c1:ee:74:4f:33:07:78:88:90: 7f:43:e1:a8:6d:8e:72:cf:dc:79:23:9d:0c:1f:f9: 72:38:39:88:31:fc:83:9d:4e:61:4e:cc:7f:b2:9d: 99:c2:0f:56:ce:f8:9f:1e:8d:6b:fa:df:cb:a6:9f: 60:62:a3:3d:9c:75:90:d4:a9:4a:05:30:07:17:3e: 85:cb:b9:60:e7:da:ff:25:73:75:5c:9f:93:8c:af: b2:99:56:90:18:bc:1e:18:54:17:0a:b4:9c:a0:30: cb:26:22:5c:cf:28:56:54:f8:b2:c3:eb:73:d6:bf: 9b:a6:fd:db:de:41:a5:32:7c:26:29:1d:27:e3:07: b0:b7:1d:2c:5a:a3:cd:47:10:f2:f1:07:5c:3c:54: b6:0c:44:94:14:0d:b6:f2:60:53:a8:4b:ad:f4:b5: 35:8e:33:dd:e7:ef:ed:a4:ae:5b:25:4e:21:0d:34: 01:88:25:56:52:d5:fd:74:12:11:64:0f:78:3a:19: 61:ad:b1:1b:0b:90:76:db:ad:54:2e:d1:d0:85:19: 01:bb:17:0c:cb:e8:d7:a9:18:7e:05:9a:ff:1d:65: 87:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:FA:92:10:3C:BF:08:95:74:7D:90:BB:11:31:97:1E:AC:38:0B:26 X509v3 Authority Key Identifier: keyid:7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/2BB37D0641FB11F0AF4AA817C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.122.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:93:b2:2a:d2:d9:43:b6:49:ea:ad:49:f0:1e:a1:14:43:1b: 51:1e:a3:19:52:fe:ca:59:17:3c:51:e7:4c:1c:6d:e9:42:84: 3a:84:67:3b:44:6b:67:17:ef:30:43:b5:65:fd:ce:7a:10:64: 34:26:ed:01:fd:fc:53:08:3d:df:d8:f2:eb:c3:59:01:9b:1c: 61:d2:0c:f0:a0:05:d7:23:02:3d:f9:da:dc:55:e9:5d:af:b3: 7d:9a:c2:8b:0d:e2:f5:ef:60:bf:24:56:8c:58:9e:9e:a7:c2: 2c:26:3d:db:b7:23:d8:60:8f:f7:fe:c8:da:3b:e8:b2:83:85: 01:3f:42:6f:e1:46:e3:57:f3:11:42:89:26:d5:58:cb:fa:90: 5f:22:7a:49:e9:84:52:e3:d7:16:fc:f3:1b:ed:3c:b6:fd:1a: 36:d7:50:81:73:e6:aa:66:86:6c:ea:07:0f:1c:b8:5e:e1:21: 7d:6f:b3:01:13:b9:10:73:b5:b3:2a:81:48:a7:81:4c:c0:f1: 15:22:2a:14:4c:be:78:6c:c6:5c:81:bc:e9:a8:a7:38:2c:0e: dc:bb:6f:6b:55:25:2a:36:34:c0:2f:db:3a:ab:60:fd:48:91: ce:1d:22:53:81:9c:d9:8f:61:20:69:e3:71:09:90:f1:ba:bb: d8:b1:81:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU4MkExMTAvBgNVBAUTKDdBMEZEMDMyQkMyODEyMTBCM0M5NTIyQjQ3MTU4RDU2 Q0NERUE2MEEwHhcNMjUwNjA1MTEyODM3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxN2Y2NC1hYTIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoFLEOypvz7+vnCEJJ+E7H+ZPxkNvK+vLQaU2EqDxeuEloOvB7nRPMwd4iJB/ Q+GobY5yz9x5I50MH/lyODmIMfyDnU5hTsx/sp2Zwg9WzvifHo1r+t/Lpp9gYqM9 nHWQ1KlKBTAHFz6Fy7lg59r/JXN1XJ+TjK+ymVaQGLweGFQXCrScoDDLJiJczyhW VPiyw+tz1r+bpv3b3kGlMnwmKR0n4wewtx0sWqPNRxDy8QdcPFS2DESUFA228mBT qEut9LU1jjPd5+/tpK5bJU4hDTQBiCVWUtX9dBIRZA94OhlhrbEbC5B2261ULtHQ hRkBuxcMy+jXqRh+BZr/HWWHgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOr6khA8 vwiVdH2QuxExlx6sOAsmMB8GA1UdIwQYMBaAFHoP0DK8KBIQs8lSK0cVjVbM3qYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTgyQS83OEQ3NDk2RURE RTgxMUVFQTNCMEU3MTNDNEY5QUUwMi9lZ19RTXJ3b0VoQ3p5VklyUnhXTlZzemVw Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VnX1FNcndvRWhDenlWSXJSeFdOVnN6ZXBnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU4MkEvNzhENzQ5NkVEREU4MTFFRUEzQjBFNzEzQzRGOUFFMDIvMkJCMzdEMDY0 MUZCMTFGMEFGNEFBODE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKJHowDQYJKoZIhvcNAQELBQADggEBAB+TsirS2UO2Seqt SfAeoRRDG1EeoxlS/spZFzxR50wcbelChDqEZztEa2cX7zBDtWX9znoQZDQm7QH9 /FMIPd/Y8uvDWQGbHGHSDPCgBdcjAj352txV6V2vs32awosN4vXvYL8kVoxYnp6n wiwmPdu3I9hgj/f+yNo76LKDhQE/Qm/hRuNX8xFCiSbVWMv6kF8ieknphFLj1xb8 8xvtPLb9GjbXUIFz5qpmhmzqBw8cuF7hIX1vswETuRBztbMqgUingUzA8RUiKhRM vnhsxlyBvOmopzgsDty7b2tVJSo2NMAv2zqrYP1Ikc4dIlOBnNmPYSBp43EJkPG6 u9ixgdk= -----END CERTIFICATE-----Generated at Wed Nov 5 20:08:39 2025 by rpki-client