$ rpki-client -vvf rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/0878844205F511EEBB8E1062C4F9AE02.roa File: 0878844205F511EEBB8E1062C4F9AE02.roa (raw, json) Hash identifier: /6Err68K4WtTvTK2vN0EmkYV4fAmF1HeKbI8wzMjgSU= Subject key identifier: 85:8F:EC:98:5B:25:33:7F:63:67:AC:B9:B2:45:6C:63:36:95:99:42 Certificate issuer: /CN=A912986D/serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Certificate serial: 0AED Authority key identifier: 17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/0878844205F511EEBB8E1062C4F9AE02.roa Signing time: Fri 08 Aug 2025 19:59:59 +0000 ROA not before: Fri 08 Aug 2025 19:59:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 14618 IP address blocks: 117.120.16.0/24 maxlen: 24 117.120.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2797 (0xaed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912986D, serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Validity Not Before: Aug 8 19:59:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6896573e-9035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:25:24:39:39:a2:7c:f3:de:db:5a:e6:a9:5a: a8:d1:70:0b:70:fb:4b:60:c2:04:99:ab:5b:5d:6b: 80:73:e1:6e:ae:75:d2:9f:14:70:fe:5c:da:84:cc: 84:cc:2c:97:5c:9e:dc:93:5c:71:4c:8c:97:fa:c5: f3:39:41:e5:35:79:54:99:0e:e8:89:a2:70:4b:3c: 2d:6c:03:a9:6a:cb:d7:00:75:c7:8b:b7:cb:32:fe: 8a:1c:cc:64:32:37:81:be:eb:a5:31:00:34:1c:8e: f9:05:02:91:64:71:82:a8:fc:17:6a:da:ef:c0:07: 40:81:af:92:30:73:69:80:c0:9a:e5:24:9a:e6:c7: a7:6b:db:17:a1:d0:07:55:00:c4:da:24:de:25:39: cf:04:d5:d6:b7:82:b3:49:9e:f7:8b:a3:1e:44:ac: 50:6a:43:0e:64:9b:f9:e7:70:4e:e5:14:5b:54:b0: 9e:dc:2b:1a:64:62:9b:41:cb:af:30:4b:df:4a:08: b5:69:2c:a6:9d:be:70:8b:59:00:a7:72:40:1e:5f: 71:32:50:79:65:b8:8d:d6:f3:a7:7b:f1:b6:0b:d6: 96:90:c1:a6:a8:a4:10:d0:04:de:11:55:c5:7d:3e: f0:d3:78:7b:a5:a3:de:c7:46:91:0f:c1:8a:75:d4: ad:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:8F:EC:98:5B:25:33:7F:63:67:AC:B9:B2:45:6C:63:36:95:99:42 X509v3 Authority Key Identifier: keyid:17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/0878844205F511EEBB8E1062C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.120.16.0/23 Signature Algorithm: sha256WithRSAEncryption 53:d2:d8:31:4d:1e:88:6c:70:9a:7c:99:68:37:67:4e:e6:1f: 3c:2e:2f:19:cc:03:54:e0:6d:83:46:dd:8f:b4:41:39:d1:95: 66:30:6e:8e:3c:aa:3d:a4:ad:52:e7:f4:46:80:68:53:1d:95: aa:0c:cb:c0:ff:1f:91:9c:9f:0f:7d:57:02:f0:8e:75:74:a7: 43:96:98:82:b1:de:33:7f:b8:35:17:7b:34:1b:77:13:fc:f0: 9b:d7:3f:ce:0a:25:2f:79:06:09:06:f2:00:2d:03:8d:4d:5a: 3d:49:ac:e2:04:a8:0d:48:dc:08:e6:a1:8e:50:0c:85:69:d4: 73:69:30:ad:4a:7f:78:0a:4d:80:52:98:be:e1:e8:63:db:fd: 0c:19:1c:b2:f4:97:92:0c:9e:40:34:b3:7f:38:23:3e:15:d4: 32:8e:51:02:05:93:10:41:a3:0d:3f:fa:d8:10:64:18:8b:af: d5:16:50:3d:92:8b:a6:14:60:8b:fe:46:81:22:01:dd:3d:58: 0f:41:9a:d4:9a:86:5a:cf:7a:ed:07:96:2e:67:38:48:ee:b8: a1:03:19:59:98:87:11:ad:31:bc:b1:39:95:8e:13:d3:7e:bd: 01:e8:0d:4b:fa:d9:a8:16:ff:06:7d:2e:73:fc:6e:c8:39:36: 38:6b:d6:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4NkQxMTAvBgNVBAUTKDE3MTdBQ0FDMDUzRjEzMUUyMjYxNDUyNzM2NTEzRTRF OEY2MjZDREIwHhcNMjUwODA4MTk1OTU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2NTczZS05MDM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1CUkOTmifPPe21rmqVqo0XALcPtLYMIEmatbXWuAc+FurnXSnxRw/lzahMyE zCyXXJ7ck1xxTIyX+sXzOUHlNXlUmQ7oiaJwSzwtbAOpasvXAHXHi7fLMv6KHMxk MjeBvuulMQA0HI75BQKRZHGCqPwXatrvwAdAga+SMHNpgMCa5SSa5sena9sXodAH VQDE2iTeJTnPBNXWt4KzSZ73i6MeRKxQakMOZJv553BO5RRbVLCe3CsaZGKbQcuv MEvfSgi1aSymnb5wi1kAp3JAHl9xMlB5ZbiN1vOne/G2C9aWkMGmqKQQ0ATeEVXF fT7w03h7paPex0aRD8GKddStqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIWP7Jhb JTN/Y2esubJFbGM2lZlCMB8GA1UdIwQYMBaAFBcXrKwFPxMeImFFJzZRPk6PYmzb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTg2RC9BMDA3NEQxODUz M0IxMUVBQkFBNzVCM0FDNEY5QUUwMi9GeGVzckFVX0V4NGlZVVVuTmxFLVRvOWli TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z4ZXNyQVVfRXg0aVlVVW5ObEUtVG85aWJOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4NkQvQTAwNzREMTg1MzNCMTFFQUJBQTc1QjNBQzRGOUFFMDIvMDg3ODg0NDIw NUY1MTFFRUJCOEUxMDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF1eBAwDQYJKoZIhvcNAQELBQADggEBAFPS2DFNHohscJp8 mWg3Z07mHzwuLxnMA1TgbYNG3Y+0QTnRlWYwbo48qj2krVLn9EaAaFMdlaoMy8D/ H5Gcnw99VwLwjnV0p0OWmIKx3jN/uDUXezQbdxP88JvXP84KJS95BgkG8gAtA41N Wj1JrOIEqA1I3AjmoY5QDIVp1HNpMK1Kf3gKTYBSmL7h6GPb/QwZHLL0l5IMnkA0 s384Iz4V1DKOUQIFkxBBow0/+tgQZBiLr9UWUD2Si6YUYIv+RoEiAd09WA9BmtSa hlrPeu0Hli5nOEjuuKEDGVmYhxGtMbyxOZWOE9N+vQHoDUv62agW/wZ9LnP8bsg5 Njhr1tQ= -----END CERTIFICATE-----Generated at Sun Aug 10 21:05:03 2025 by rpki-client