$ rpki-client -vvf rpki.apnic.net/member_repository/A912E53C/4BD0E5F8D37D11EEBA05BD16C4F9AE02/44CA7E22F0D811EEA8D08633C4F9AE02.roa File: 44CA7E22F0D811EEA8D08633C4F9AE02.roa (raw, json) Hash identifier: 7LY78H5hS+YFZuVbW5A4tc8w5yevBk0DBjddJ2jmN+g= Subject key identifier: 6E:27:22:D3:C0:C6:A2:37:FC:AF:38:55:46:54:7F:13:C3:EB:30:B1 Certificate issuer: /CN=A912E53C/serialNumber=7EDCE719258BEDF90AA86C9AEB08CDD31EEF577A Certificate serial: 011A Authority key identifier: 7E:DC:E7:19:25:8B:ED:F9:0A:A8:6C:9A:EB:08:CD:D3:1E:EF:57:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ftznGSWL7fkKqGya6wjN0x7vV3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E53C/4BD0E5F8D37D11EEBA05BD16C4F9AE02/44CA7E22F0D811EEA8D08633C4F9AE02.roa Signing time: Thu 14 Aug 2025 09:45:53 +0000 ROA not before: Thu 14 Aug 2025 09:45:53 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 152183 IP address blocks: 36.50.147.0/24 maxlen: 24 2402:1b60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E53C/4BD0E5F8D37D11EEBA05BD16C4F9AE02/ftznGSWL7fkKqGya6wjN0x7vV3o.crl rsync://rpki.apnic.net/member_repository/A912E53C/4BD0E5F8D37D11EEBA05BD16C4F9AE02/ftznGSWL7fkKqGya6wjN0x7vV3o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ftznGSWL7fkKqGya6wjN0x7vV3o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:26:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E53C, serialNumber=7EDCE719258BEDF90AA86C9AEB08CDD31EEF577A Validity Not Before: Aug 14 09:45:53 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=689db051-b9dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1a:ae:3c:70:10:a7:50:b1:9c:ac:ec:85:1d: 31:26:1d:ea:e0:24:6f:94:f0:a4:5d:55:10:6e:e4: 61:d4:71:5a:e2:ef:a4:7a:e1:8a:6b:10:0d:27:37: 98:35:44:67:33:70:09:38:9b:7d:82:ce:06:e9:a7: 41:2f:fc:12:e9:6f:73:9b:d5:3c:f4:ad:13:db:56: f2:f7:8d:e4:73:a1:fe:ce:e0:da:20:82:83:2f:f9: 1f:9b:9d:f5:28:17:3c:2c:55:dc:70:aa:0c:5f:65: 9d:d2:db:8f:d5:67:42:31:db:c2:a9:03:28:5a:73: 3b:22:2f:ea:85:fc:57:43:b9:0f:c3:16:9f:3c:53: a0:fa:1a:f6:4e:35:26:fe:82:f7:c4:cc:87:1f:98: a7:29:cf:09:56:ff:a2:47:7b:dd:5a:24:ae:2d:6f: 13:ea:0f:4f:16:f0:99:f6:d5:6e:f1:16:61:2c:86: 41:66:4a:a2:7f:57:99:ff:e9:75:08:86:7a:66:33: 1b:84:9c:e9:20:2f:de:cb:eb:8d:75:8f:59:0b:6e: 8a:8b:df:68:c8:b8:7d:b0:b1:5e:c5:ed:45:90:42: c3:0d:43:3e:f0:81:1d:e0:ad:43:74:a7:97:cc:b5: a1:23:58:c1:f0:b5:1a:af:e2:67:e2:ce:59:0e:3d: 55:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:27:22:D3:C0:C6:A2:37:FC:AF:38:55:46:54:7F:13:C3:EB:30:B1 X509v3 Authority Key Identifier: keyid:7E:DC:E7:19:25:8B:ED:F9:0A:A8:6C:9A:EB:08:CD:D3:1E:EF:57:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E53C/4BD0E5F8D37D11EEBA05BD16C4F9AE02/ftznGSWL7fkKqGya6wjN0x7vV3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ftznGSWL7fkKqGya6wjN0x7vV3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E53C/4BD0E5F8D37D11EEBA05BD16C4F9AE02/44CA7E22F0D811EEA8D08633C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.147.0/24 IPv6: 2402:1b60::/32 Signature Algorithm: sha256WithRSAEncryption a8:14:3b:a7:e5:fd:eb:1e:9c:c1:36:94:de:f1:fc:f2:ab:58: c4:29:fd:b2:e7:5d:94:7b:64:50:43:e8:6f:df:e2:48:fa:dd: 99:54:1a:db:cf:87:7a:93:b6:b5:02:3e:38:96:81:1b:54:0c: a4:a8:ef:73:72:28:45:48:b1:14:00:c2:db:b4:78:d6:6e:7b: 19:64:dd:dc:bf:e8:ab:14:16:e4:5e:25:09:1b:c7:6d:6d:2b: 8a:7b:b7:ab:5b:55:c3:85:2a:4b:0f:ce:16:cb:4f:5c:3b:18: a0:27:52:9d:ed:36:d7:e6:ba:fe:a6:39:36:df:6e:e9:1c:c6: 59:61:37:2f:c7:4b:94:cf:9d:c2:0d:e6:e5:0b:26:ba:6d:eb: 34:75:34:f2:84:e5:37:3f:ee:a1:0f:73:74:d0:92:19:d2:15: f8:42:2b:d7:f6:f4:c3:13:76:18:af:44:10:46:2d:10:8e:78: 49:0f:c9:35:d6:69:93:96:10:e8:29:3b:34:9f:35:b3:de:53: 70:44:c9:5d:6f:b1:82:8e:37:7b:f8:a1:20:d1:86:43:52:39: 59:72:65:73:ac:a8:e4:b8:65:5b:77:1a:5e:04:0d:8a:85:37: 8b:88:07:06:20:2d:5f:a9:75:0d:ce:66:cf:04:12:34:82:4d: 49:67:4d:58 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU1M0MxMTAvBgNVBAUTKDdFRENFNzE5MjU4QkVERjkwQUE4NkM5QUVCMDhDREQz MUVFRjU3N0EwHhcNMjUwODE0MDk0NTUzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODlkYjA1MS1iOWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAshquPHAQp1CxnKzshR0xJh3q4CRvlPCkXVUQbuRh1HFa4u+keuGKaxANJzeY NURnM3AJOJt9gs4G6adBL/wS6W9zm9U89K0T21by943kc6H+zuDaIIKDL/kfm531 KBc8LFXccKoMX2Wd0tuP1WdCMdvCqQMoWnM7Ii/qhfxXQ7kPwxafPFOg+hr2TjUm /oL3xMyHH5inKc8JVv+iR3vdWiSuLW8T6g9PFvCZ9tVu8RZhLIZBZkqif1eZ/+l1 CIZ6ZjMbhJzpIC/ey+uNdY9ZC26Ki99oyLh9sLFexe1FkELDDUM+8IEd4K1DdKeX zLWhI1jB8LUar+Jn4s5ZDj1VJwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFG4nItPA xqI3/K84VUZUfxPD6zCxMB8GA1UdIwQYMBaAFH7c5xkli+35CqhsmusIzdMe71d6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTUzQy80QkQwRTVGOEQz N0QxMUVFQkEwNUJEMTZDNEY5QUUwMi9mdHpuR1NXTDdma0txR3lhNndqTjB4N3ZW M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z0em5HU1dMN2ZrS3FHeWE2d2pOMHg3dlYzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkU1M0MvNEJEMEU1RjhEMzdEMTFFRUJBMDVCRDE2QzRGOUFFMDIvNDRDQTdFMjJG MEQ4MTFFRUE4RDA4NjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAAkMpMwDQQCAAIwBwMFACQCG2AwDQYJKoZIhvcNAQELBQAD ggEBAKgUO6fl/esenME2lN7x/PKrWMQp/bLnXZR7ZFBD6G/f4kj63ZlUGtvPh3qT trUCPjiWgRtUDKSo73NyKEVIsRQAwtu0eNZuexlk3dy/6KsUFuReJQkbx21tK4p7 t6tbVcOFKksPzhbLT1w7GKAnUp3tNtfmuv6mOTbfbukcxllhNy/HS5TPncIN5uUL Jrpt6zR1NPKE5Tc/7qEPc3TQkhnSFfhCK9f29MMTdhivRBBGLRCOeEkPyTXWaZOW EOgpOzSfNbPeU3BEyV1vsYKON3v4oSDRhkNSOVlyZXOsqOS4ZVt3Gl4EDYqFN4uI BwYgLV+pdQ3OZs8EEjSCTUlnTVg= -----END CERTIFICATE-----Generated at Wed Nov 5 06:00:22 2025 by rpki-client