$ rpki-client -vvf rpki.apnic.net/member_repository/A912F437/81F669DC97D711EEAABCA432C4F9AE02/D973D5BE97D711EEA1B09A33C4F9AE02.roa File: D973D5BE97D711EEA1B09A33C4F9AE02.roa (raw, json) Hash identifier: r7m3CbmYBiJqaD0HNr0SYvdrD2KBG4gKkuGM3wdlcLU= Subject key identifier: 71:D2:84:20:10:CD:90:B8:86:F0:0D:12:D7:B0:04:C3:20:2C:19:E2 Certificate issuer: /CN=A912F437/serialNumber=FB02ECD6C7789A396B53A48FA9243660E252C143 Certificate serial: C7 Authority key identifier: FB:02:EC:D6:C7:78:9A:39:6B:53:A4:8F:A9:24:36:60:E2:52:C1:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wLs1sd4mjlrU6SPqSQ2YOJSwUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F437/81F669DC97D711EEAABCA432C4F9AE02/D973D5BE97D711EEA1B09A33C4F9AE02.roa Signing time: Wed 25 Dec 2024 04:17:53 +0000 ROA not before: Wed 25 Dec 2024 04:17:53 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 149446 IP address blocks: 210.87.104.0/23 maxlen: 24 2401:5720::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F437/81F669DC97D711EEAABCA432C4F9AE02/-wLs1sd4mjlrU6SPqSQ2YOJSwUM.crl rsync://rpki.apnic.net/member_repository/A912F437/81F669DC97D711EEAABCA432C4F9AE02/-wLs1sd4mjlrU6SPqSQ2YOJSwUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wLs1sd4mjlrU6SPqSQ2YOJSwUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F437, serialNumber=FB02ECD6C7789A396B53A48FA9243660E252C143 Validity Not Before: Dec 25 04:17:53 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=676b8771-db3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:96:6e:1b:a2:3d:98:00:10:66:f6:62:fb:69: c9:67:6c:c5:bb:af:12:f7:02:d3:53:16:89:7c:90: b4:16:0c:24:fe:f2:93:9b:3a:40:0f:1f:cf:e9:54: 68:a5:3d:2e:4a:8d:21:fa:da:f3:d9:50:16:ac:91: c8:eb:4d:ab:d7:fc:97:87:d8:a6:e1:cb:8f:fe:1a: 4c:c7:93:28:5f:5d:b8:8d:47:45:c3:1b:bf:dc:cd: fc:f8:91:c0:7b:73:5b:e3:6d:30:e7:ae:78:0b:46: f0:5f:84:58:2d:47:fe:c4:63:b9:e0:39:53:83:35: f7:00:64:11:8d:ef:53:70:8f:52:cf:f8:e7:2f:93: 4f:a4:d0:88:3a:6e:8d:10:57:32:bf:b4:4c:01:8b: 71:67:67:e4:8a:a2:7c:3e:75:00:0c:5e:59:c2:30: 3a:b9:76:16:cf:b0:b0:e0:cc:0b:5e:0f:8b:fe:2e: 7c:77:67:0f:52:d1:ed:22:13:48:91:49:0a:fb:66: 74:92:9d:81:9e:3f:6f:f4:e1:c3:5c:7a:4a:8c:eb: 26:a2:90:55:62:ca:a5:a7:22:14:40:6b:db:2f:34: 1c:c6:b7:71:2b:c3:f7:40:5e:c5:c9:88:86:87:76: d3:ad:0b:62:bf:7a:c8:a4:a1:df:88:f6:5f:9d:61: 1e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D2:84:20:10:CD:90:B8:86:F0:0D:12:D7:B0:04:C3:20:2C:19:E2 X509v3 Authority Key Identifier: keyid:FB:02:EC:D6:C7:78:9A:39:6B:53:A4:8F:A9:24:36:60:E2:52:C1:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F437/81F669DC97D711EEAABCA432C4F9AE02/-wLs1sd4mjlrU6SPqSQ2YOJSwUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wLs1sd4mjlrU6SPqSQ2YOJSwUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F437/81F669DC97D711EEAABCA432C4F9AE02/D973D5BE97D711EEA1B09A33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.87.104.0/23 IPv6: 2401:5720::/32 Signature Algorithm: sha256WithRSAEncryption 5f:72:0f:31:b2:5b:f2:c6:60:b9:16:34:07:8a:04:dc:9c:a8: 5b:f0:1f:05:66:60:1b:72:37:40:d0:8a:8e:80:16:58:f7:c2: 82:81:d6:0d:ed:58:fb:45:96:9b:34:82:70:f9:df:3f:8c:3c: b2:47:d5:2c:66:b2:02:5a:8f:ca:c3:6e:33:0e:65:96:dd:d7: ef:63:9b:17:d4:32:44:fe:44:4f:1c:c7:df:43:92:16:97:5d: 4a:a0:c9:c6:4e:9f:83:92:01:80:26:f1:51:4a:4b:51:6e:08: a0:ba:7c:e8:30:21:8d:dd:2f:d4:3a:aa:0b:1d:ff:00:09:ce: 31:9c:ce:43:f2:01:f7:9c:26:63:ed:2c:ad:8a:f0:e9:a9:43: 58:c9:05:ad:3c:d9:3d:a4:a1:93:94:c9:38:e7:3b:1c:ea:b2: 5b:18:75:dd:0e:4b:21:a3:07:73:91:9d:5e:5e:44:a7:e5:46: d2:8f:19:37:09:4b:af:e5:d4:68:b6:51:d1:5a:7c:7f:05:7d: 8f:24:23:7f:07:b8:c4:7b:11:95:17:52:2b:f6:0d:10:b7:06: 06:a2:ad:e9:ad:b2:e2:1f:03:f8:4e:25:f5:74:f1:d4:c9:65: a7:2d:de:03:12:2c:99:48:a0:b9:ff:5d:3b:18:27:25:7f:6c: 98:43:3d:a3 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY0MzcxMTAvBgNVBAUTKEZCMDJFQ0Q2Qzc3ODlBMzk2QjUzQTQ4RkE5MjQzNjYw RTI1MkMxNDMwHhcNMjQxMjI1MDQxNzUzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzZiODc3MS1kYjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15ZuG6I9mAAQZvZi+2nJZ2zFu68S9wLTUxaJfJC0Fgwk/vKTmzpADx/P6VRo pT0uSo0h+trz2VAWrJHI602r1/yXh9im4cuP/hpMx5MoX124jUdFwxu/3M38+JHA e3Nb420w5654C0bwX4RYLUf+xGO54DlTgzX3AGQRje9TcI9Sz/jnL5NPpNCIOm6N EFcyv7RMAYtxZ2fkiqJ8PnUADF5ZwjA6uXYWz7Cw4MwLXg+L/i58d2cPUtHtIhNI kUkK+2Z0kp2Bnj9v9OHDXHpKjOsmopBVYsqlpyIUQGvbLzQcxrdxK8P3QF7FyYiG h3bTrQtiv3rIpKHfiPZfnWEeNwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHHShCAQ zZC4hvANEtewBMMgLBniMB8GA1UdIwQYMBaAFPsC7NbHeJo5a1Okj6kkNmDiUsFD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjQzNy84MUY2NjlEQzk3 RDcxMUVFQUFCQ0E0MzJDNEY5QUUwMi8td0xzMXNkNG1qbHJVNlNQcVNRMllPSlN3 VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy13THMxc2Q0bWpsclU2U1BxU1EyWU9KU3dVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkY0MzcvODFGNjY5REM5N0Q3MTFFRUFBQkNBNDMyQzRGOUFFMDIvRDk3M0Q1QkU5 N0Q3MTFFRUExQjA5QTMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAHSV2gwDQQCAAIwBwMFACQBVyAwDQYJKoZIhvcNAQELBQAD ggEBAF9yDzGyW/LGYLkWNAeKBNycqFvwHwVmYBtyN0DQio6AFlj3woKB1g3tWPtF lps0gnD53z+MPLJH1SxmsgJaj8rDbjMOZZbd1+9jmxfUMkT+RE8cx99DkhaXXUqg ycZOn4OSAYAm8VFKS1FuCKC6fOgwIY3dL9Q6qgsd/wAJzjGczkPyAfecJmPtLK2K 8OmpQ1jJBa082T2koZOUyTjnOxzqslsYdd0OSyGjB3ORnV5eRKflRtKPGTcJS6/l 1Gi2UdFafH8FfY8kI38HuMR7EZUXUiv2DRC3BgairemtsuIfA/hOJfV08dTJZact 3gMSLJlIoLn/XTsYJyV/bJhDPaM= -----END CERTIFICATE-----Generated at Wed Nov 5 00:23:45 2025 by rpki-client