$ rpki-client -vvf rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa File: 03C522BA8CF211ED8699F014C4F9AE02.roa (raw, json) Hash identifier: SDoyG5rsMeQ6bXhagfaHksn0k7FTFIvh2Jsa/kFvAUY= Subject key identifier: 38:FA:AA:A2:D4:44:A1:BE:B9:20:D3:8F:43:02:B2:7A:73:75:DA:ED Certificate issuer: /CN=A914BC7A/serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Certificate serial: 35A7 Authority key identifier: 53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa Signing time: Thu 30 Oct 2025 15:31:21 +0000 ROA not before: Thu 30 Oct 2025 15:31:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 148000 IP address blocks: 36.50.36.0/24 maxlen: 24 36.50.50.0/24 maxlen: 24 2409::/40 maxlen: 40 2409::/48 maxlen: 48 2409:1::/48 maxlen: 48 2409:e:eb::/48 maxlen: 48 2409:e:ed::/48 maxlen: 48 240a:e000::/20 maxlen: 20 240a:eabc::/32 maxlen: 32 240a:eabc:abcd::/48 maxlen: 48 240a:eabc:d00d::/48 maxlen: 48 240a:eff0::/32 maxlen: 32 240a:eff1::/32 maxlen: 32 240a:eff2::/32 maxlen: 32 240a:eff4::/32 maxlen: 32 240a:eff6::/32 maxlen: 32 240a:eff8::/32 maxlen: 32 240a:eff9::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:23:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13735 (0x35a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BC7A, serialNumber=5312F399A6F7EB0DDCD51C039F83F7B7A47A5F09 Validity Not Before: Oct 30 15:31:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=690384c8-47a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:57:86:09:23:6c:91:40:e8:d3:18:7f:5f:5e: fc:04:8a:b4:fd:b0:40:0c:a0:90:6f:87:8a:b8:a8: d2:ca:c6:34:f4:46:09:27:34:72:14:34:f1:4d:4e: 3f:47:76:40:cd:27:02:2c:86:35:9d:99:2e:15:3a: 21:02:f8:d8:fd:c1:ea:3c:b2:a4:5e:13:bd:87:dd: 7e:9f:71:a5:d8:f4:8a:d9:8b:d2:f3:cb:36:15:32: 3a:d0:37:33:47:cb:6b:6f:bf:37:ec:ae:fc:66:86: 30:45:ee:27:1c:27:08:a3:f6:e1:95:18:53:56:ec: 4e:7d:2f:1a:46:d2:87:08:39:67:2d:3d:e9:85:47: 55:c4:d6:da:56:28:97:dc:b9:ae:b9:15:d5:c3:10: 5a:6c:e2:12:07:d7:41:2a:55:d2:5b:ab:df:19:b4: ae:a7:d4:02:7c:2f:ea:7a:d8:28:dd:34:db:7f:24: b3:73:58:2d:6a:cb:e4:71:4d:84:94:79:bf:87:2a: ab:2e:51:96:2b:3f:43:c0:aa:44:17:ac:30:6c:c5: c7:d0:f2:4f:62:38:ed:1d:bd:44:2b:a0:62:34:d2: c7:a2:2e:9d:82:9f:ac:1a:c0:95:a5:a0:b5:e5:5a: 0a:7d:e4:6a:4a:66:40:2c:01:72:0a:87:47:2f:1a: 27:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:FA:AA:A2:D4:44:A1:BE:B9:20:D3:8F:43:02:B2:7A:73:75:DA:ED X509v3 Authority Key Identifier: keyid:53:12:F3:99:A6:F7:EB:0D:DC:D5:1C:03:9F:83:F7:B7:A4:7A:5F:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/UxLzmab36w3c1RwDn4P3t6R6Xwk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UxLzmab36w3c1RwDn4P3t6R6Xwk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BC7A/4C528F78450311E2BDCA1F732979BB20/03C522BA8CF211ED8699F014C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.36.0/24 36.50.50.0/24 IPv6: 2409::/40 2409:1::/48 2409:e:eb::/48 2409:e:ed::/48 240a:e000::/20 Signature Algorithm: sha256WithRSAEncryption 1a:19:af:40:5a:e5:a0:8f:5b:1e:c0:b7:4c:21:5f:e9:8a:56: e0:80:69:49:04:42:23:fb:31:19:b2:58:d6:e8:56:9f:d9:60: fd:8d:90:61:a5:16:3c:11:a0:e3:f8:5e:ca:64:a1:00:4b:b9: 8d:7e:ac:53:3d:d7:0a:2c:84:63:d3:ff:2c:91:ca:1f:5f:d9: 51:d1:51:8e:2d:a2:a7:fa:03:a2:82:ce:b4:3a:ad:08:9b:14: eb:d4:03:96:9d:50:2a:2e:47:8c:28:3f:38:e0:45:4b:88:4f: 2b:bf:95:87:ac:b2:b1:5e:e9:22:32:56:91:a1:a2:0d:77:0e: 27:74:96:b3:a5:8d:53:0b:4c:08:fb:bf:d9:99:b9:97:f9:11: 98:46:68:88:1d:46:6a:3d:57:54:29:02:87:ef:1d:1e:73:7c: 2a:5c:a4:60:da:2d:63:f4:cc:51:b3:f8:31:cf:67:f5:69:a9: b3:7d:87:8d:6c:9c:4d:50:9b:bd:19:11:cc:b4:e7:62:96:24: ea:e6:72:6e:f4:3e:5b:ef:77:fe:15:0b:58:2a:e6:c4:a8:a1: 5c:8c:31:da:db:00:5b:7d:49:aa:c4:1a:05:ea:cb:76:2e:be: 6a:cb:56:4a:f1:92:a8:91:dd:ba:b3:09:c2:82:15:a0:3e:a8: a3:ca:8d:99 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICNacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJDN0ExMTAvBgNVBAUTKDUzMTJGMzk5QTZGN0VCMEREQ0Q1MUMwMzlGODNGN0I3 QTQ3QTVGMDkwHhcNMjUxMDMwMTUzMTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzODRjOC00N2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFeGCSNskUDo0xh/X178BIq0/bBADKCQb4eKuKjSysY09EYJJzRyFDTxTU4/ R3ZAzScCLIY1nZkuFTohAvjY/cHqPLKkXhO9h91+n3Gl2PSK2YvS88s2FTI60Dcz R8trb7837K78ZoYwRe4nHCcIo/bhlRhTVuxOfS8aRtKHCDlnLT3phUdVxNbaViiX 3LmuuRXVwxBabOISB9dBKlXSW6vfGbSup9QCfC/qetgo3TTbfySzc1gtasvkcU2E lHm/hyqrLlGWKz9DwKpEF6wwbMXH0PJPYjjtHb1EK6BiNNLHoi6dgp+sGsCVpaC1 5VoKfeRqSmZALAFyCodHLxonpwIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFDj6qqLU RKG+uSDTj0MCsnpzddrtMB8GA1UdIwQYMBaAFFMS85mm9+sN3NUcA5+D97ekel8J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkM3QS80QzUyOEY3ODQ1 MDMxMUUyQkRDQTFGNzMyOTc5QkIyMC9VeEx6bWFiMzZ3M2MxUndEbjRQM3Q2UjZY d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V4THptYWIzNnczYzFSd0RuNFAzdDZSNlh3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJDN0EvNEM1MjhGNzg0NTAzMTFFMkJEQ0ExRjczMjk3OUJCMjAvMDNDNTIyQkE4 Q0YyMTFFRDg2OTlGMDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMBIEAgABMAwDBAAkMiQDBAAkMjIwLwQCAAIwKQMGACQJAAAAAwcAJAkAAQAA AwcAJAkADgDrAwcAJAkADgDtAwQEJArgMA0GCSqGSIb3DQEBCwUAA4IBAQAaGa9A WuWgj1sewLdMIV/pilbggGlJBEIj+zEZsljW6Faf2WD9jZBhpRY8EaDj+F7KZKEA S7mNfqxTPdcKLIRj0/8skcofX9lR0VGOLaKn+gOigs60Oq0ImxTr1AOWnVAqLkeM KD844EVLiE8rv5WHrLKxXukiMlaRoaINdw4ndJazpY1TC0wI+7/ZmbmX+RGYRmiI HUZqPVdUKQKH7x0ec3wqXKRg2i1j9MxRs/gxz2f1aamzfYeNbJxNUJu9GRHMtOdi liTq5nJu9D5b73f+FQtYKubEqKFcjDHa2wBbfUmqxBoF6st2Lr5qy1ZK8ZKokd26 swnCghWgPqijyo2Z -----END CERTIFICATE-----Generated at Wed Nov 5 04:48:36 2025 by rpki-client