$ rpki-client -vvf rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/FCF8B992679111F09C8F057DC4F9AE02.roa File: FCF8B992679111F09C8F057DC4F9AE02.roa (raw, json) Hash identifier: kwKEGvjPSYWkocb09ei383ShnOWyBUUVEonrFFSPNGo= Subject key identifier: 65:10:7E:18:49:2C:BB:A3:12:89:58:25:25:0C:D2:4D:A3:53:6E:71 Certificate issuer: /CN=A913C52D/serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Certificate serial: 06D8 Authority key identifier: 1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/FCF8B992679111F09C8F057DC4F9AE02.roa Signing time: Wed 23 Jul 2025 06:55:16 +0000 ROA not before: Wed 23 Jul 2025 06:55:16 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45593 IP address blocks: 119.2.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C52D, serialNumber=1D3A9A8FC97CFCD7AE84FFDC5AA0BBFB9693DC97 Validity Not Before: Jul 23 06:55:16 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68808754-1575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c1:17:4b:1d:89:2a:4b:9e:63:7f:95:8a:d5: c0:20:96:31:6c:11:d6:c6:fa:10:02:d7:a8:32:d9: e3:83:f3:0b:cc:04:27:ad:77:ce:d5:ec:13:ae:cc: b5:01:36:4e:23:a6:0e:1a:35:ee:09:1e:0f:97:15: b3:18:d8:97:d1:73:f1:41:9c:ca:a9:f4:55:be:8f: 40:2c:2a:3e:29:94:8e:22:b6:7d:dc:48:05:48:14: 69:30:41:57:51:4e:0e:ff:1c:2f:d7:42:6c:0c:85: 70:2f:ea:99:e7:a0:bb:cc:f4:7f:a1:0d:26:3c:8b: e6:d6:c0:7e:4a:21:f4:5c:02:4b:18:7a:30:2a:b3: cd:03:02:60:96:21:8d:64:8b:12:e1:82:ef:64:4b: 9c:93:0a:28:bc:29:4a:bf:e5:2f:ac:49:a1:a2:08: 87:c5:f1:6d:9c:a1:56:10:00:66:6f:75:d8:12:6c: bf:83:5c:f9:3e:ab:2d:e7:c2:7f:50:8f:dd:89:3c: 38:6d:d2:db:5b:f2:2c:c0:72:c2:22:6e:48:a4:bd: 70:93:b8:ba:26:0d:e5:64:61:bb:cc:30:0e:2c:fd: cb:e4:a4:13:06:18:1b:32:23:ef:38:5f:81:54:1c: b2:0d:b9:60:dc:2a:d1:f1:3d:41:31:3d:45:7d:47: 6a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:10:7E:18:49:2C:BB:A3:12:89:58:25:25:0C:D2:4D:A3:53:6E:71 X509v3 Authority Key Identifier: keyid:1D:3A:9A:8F:C9:7C:FC:D7:AE:84:FF:DC:5A:A0:BB:FB:96:93:DC:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HTqaj8l8_NeuhP_cWqC7-5aT3Jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C52D/8FA976BE5BB711EB8BAD2142C4F9AE02/FCF8B992679111F09C8F057DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.2.37.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:76:80:92:9e:0a:2d:72:10:f5:cf:38:3b:90:7c:27:a3:15: 4a:02:95:43:80:69:14:f0:95:09:cf:f4:5d:f1:69:7b:2f:ca: 83:a7:94:cf:18:d3:b0:c0:1c:97:20:27:ef:39:87:5a:55:46: 84:fb:25:2c:7d:7c:1c:24:90:4d:97:10:b2:51:c6:9a:e0:39: 46:6f:5c:c0:e8:58:06:80:30:af:1a:9e:da:85:3c:d5:62:e8: 30:95:ad:34:94:a2:07:b6:40:1f:d2:4b:aa:6e:41:33:0a:9c: 05:25:fd:48:c5:8b:48:61:4d:4c:26:fe:a4:2f:79:4d:c7:0e: ac:19:4b:a0:c1:3e:63:61:05:6c:3a:23:18:5d:db:47:d9:4a: ef:ef:a3:5d:61:58:03:02:03:71:d7:fc:58:a9:62:67:b3:e4: 66:e0:8e:32:ec:d4:50:82:a8:81:5c:cf:5c:ce:92:44:6b:3d: 93:bf:3a:8f:71:08:c0:6a:2b:4d:31:d7:1e:84:36:93:fd:7e: 22:3c:71:8a:0c:5c:88:c2:4f:b9:95:9b:f7:d1:e7:5d:f0:96: 19:8a:6b:52:d1:50:e8:2e:35:cd:d8:fe:f4:a3:fa:9a:5e:72: c3:60:94:9c:c0:aa:52:1a:38:b9:dc:6e:ec:21:27:34:aa:20: 75:a7:45:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M1MkQxMTAvBgNVBAUTKDFEM0E5QThGQzk3Q0ZDRDdBRTg0RkZEQzVBQTBCQkZC OTY5M0RDOTcwHhcNMjUwNzIzMDY1NTE2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgwODc1NC0xNTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsEXSx2JKkueY3+VitXAIJYxbBHWxvoQAteoMtnjg/MLzAQnrXfO1ewTrsy1 ATZOI6YOGjXuCR4PlxWzGNiX0XPxQZzKqfRVvo9ALCo+KZSOIrZ93EgFSBRpMEFX UU4O/xwv10JsDIVwL+qZ56C7zPR/oQ0mPIvm1sB+SiH0XAJLGHowKrPNAwJgliGN ZIsS4YLvZEuckwoovClKv+UvrEmhogiHxfFtnKFWEABmb3XYEmy/g1z5Pqst58J/ UI/diTw4bdLbW/IswHLCIm5IpL1wk7i6Jg3lZGG7zDAOLP3L5KQTBhgbMiPvOF+B VByyDblg3CrR8T1BMT1FfUdqEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGUQfhhJ LLujEolYJSUM0k2jU25xMB8GA1UdIwQYMBaAFB06mo/JfPzXroT/3Fqgu/uWk9yX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzUyRC84RkE5NzZCRTVC QjcxMUVCOEJBRDIxNDJDNEY5QUUwMi9IVHFhajhsOF9OZXVoUF9jV3FDNy01YVQz SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hUcWFqOGw4X05ldWhQX2NXcUM3LTVhVDNKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M1MkQvOEZBOTc2QkU1QkI3MTFFQjhCQUQyMTQyQzRGOUFFMDIvRkNGOEI5OTI2 NzkxMTFGMDlDOEYwNTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3AiUwDQYJKoZIhvcNAQELBQADggEBAIp2gJKeCi1yEPXP ODuQfCejFUoClUOAaRTwlQnP9F3xaXsvyoOnlM8Y07DAHJcgJ+85h1pVRoT7JSx9 fBwkkE2XELJRxprgOUZvXMDoWAaAMK8antqFPNVi6DCVrTSUoge2QB/SS6puQTMK nAUl/UjFi0hhTUwm/qQveU3HDqwZS6DBPmNhBWw6Ixhd20fZSu/vo11hWAMCA3HX /FipYmez5GbgjjLs1FCCqIFcz1zOkkRrPZO/Oo9xCMBqK00x1x6ENpP9fiI8cYoM XIjCT7mVm/fR513wlhmKa1LRUOguNc3Y/vSj+ppecsNglJzAqlIaOLncbuwhJzSq IHWnRc0= -----END CERTIFICATE-----Generated at Sun Aug 10 18:20:31 2025 by rpki-client