$ rpki-client -vvf rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/EF4B2E301CE411EB95E5A216C4F9AE02.roa File: EF4B2E301CE411EB95E5A216C4F9AE02.roa (raw, json) Hash identifier: nM4RVZvgitji8IESGu68cVeu1tVBkthAHqzvYlTiCPQ= Subject key identifier: 1A:94:A8:82:08:FB:B1:26:F6:EE:8B:92:77:90:14:49:8C:A4:86:C2 Certificate issuer: /CN=A914CD2D/serialNumber=32952EA461956356D377EBDD4BFA1872A8E1E443 Certificate serial: 0ADC Authority key identifier: 32:95:2E:A4:61:95:63:56:D3:77:EB:DD:4B:FA:18:72:A8:E1:E4:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MpUupGGVY1bTd-vdS_oYcqjh5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/EF4B2E301CE411EB95E5A216C4F9AE02.roa Signing time: Fri 04 Jul 2025 20:00:46 +0000 ROA not before: Fri 04 Jul 2025 20:00:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134974 IP address blocks: 110.92.25.0/24 maxlen: 24 110.92.26.0/24 maxlen: 24 110.92.27.0/24 maxlen: 24 110.92.31.0/24 maxlen: 24 202.61.64.0/24 maxlen: 24 202.61.65.0/24 maxlen: 24 202.61.66.0/24 maxlen: 24 202.61.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/MpUupGGVY1bTd-vdS_oYcqjh5EM.crl rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/MpUupGGVY1bTd-vdS_oYcqjh5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MpUupGGVY1bTd-vdS_oYcqjh5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 19:44:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2780 (0xadc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CD2D, serialNumber=32952EA461956356D377EBDD4BFA1872A8E1E443 Validity Not Before: Jul 4 20:00:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686832ee-843e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:78:bd:75:bc:33:14:a5:71:c6:95:67:e7:02: a3:e7:3b:2b:a6:47:82:cb:bb:1f:58:18:f5:4a:90: 59:7d:54:4c:07:8c:d6:99:4c:0d:83:8c:33:4e:d2: 1a:8b:c3:aa:7d:7e:97:6e:32:fb:02:94:dc:6c:8a: 58:a0:e5:11:32:e1:13:ed:75:27:cf:dd:41:4f:b4: 16:c4:16:c9:95:4f:a6:40:ca:62:d5:ec:f0:34:8c: 88:4f:77:46:27:0a:54:83:5f:e3:fd:61:67:33:84: 88:3c:56:3f:49:ab:d1:08:44:4e:88:80:8b:c8:fe: 25:3e:00:93:14:7f:06:ac:1a:f7:9a:6e:20:67:57: 04:08:20:79:09:f0:a4:ea:81:55:31:8a:9f:6c:50: b9:77:d5:3b:24:52:b2:8a:00:b4:eb:89:a1:c2:d3: a4:d7:b2:86:ad:b2:55:56:e6:08:94:e9:31:45:ae: 33:47:4e:f2:a2:49:07:84:5f:ef:1a:a8:49:20:f5: fd:ff:f4:3a:4f:fa:3c:8a:56:6e:5f:c6:72:ed:0c: 2c:1a:33:61:85:0a:5c:30:4b:62:c4:78:49:07:82: fb:e7:12:33:94:5a:f4:be:c9:d4:ce:84:aa:b1:2c: e7:0b:df:38:4c:3d:19:a6:04:f0:3c:dd:2d:dc:5b: 40:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:94:A8:82:08:FB:B1:26:F6:EE:8B:92:77:90:14:49:8C:A4:86:C2 X509v3 Authority Key Identifier: keyid:32:95:2E:A4:61:95:63:56:D3:77:EB:DD:4B:FA:18:72:A8:E1:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/MpUupGGVY1bTd-vdS_oYcqjh5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MpUupGGVY1bTd-vdS_oYcqjh5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CD2D/94FF1FBC588211EA95B47F51C4F9AE02/EF4B2E301CE411EB95E5A216C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.92.25.0-110.92.27.255 110.92.31.0/24 202.61.64.0/22 Signature Algorithm: sha256WithRSAEncryption 46:e9:4c:d7:fd:50:4f:69:0b:54:23:13:91:09:2a:61:80:6f: c6:4d:19:81:83:ff:3a:0f:a6:69:8b:77:76:0b:8f:94:e5:60: 15:9c:b3:b2:92:b0:07:94:06:30:17:5b:ed:00:92:a3:61:1f: 0c:2e:05:f7:89:11:79:a4:df:4e:cd:05:97:27:d4:32:51:ba: 92:45:40:f3:f9:b4:e6:3d:0c:9c:29:a2:8d:dc:62:dc:a9:f6: 08:3e:b2:cd:35:3a:76:43:0a:65:9a:e9:50:f2:79:8f:b5:f3: cc:eb:13:ab:c4:f3:8c:e0:6c:b3:d5:18:0e:c6:3f:18:2a:58: d1:4c:6f:17:62:70:cb:b6:27:69:51:18:a9:08:fc:2d:1d:42: 6d:87:fd:7f:f6:dd:72:b9:da:6c:a5:34:97:d3:0f:65:7c:45: ad:fc:de:8f:56:16:67:d1:d5:7f:fe:92:5e:e5:d9:94:2d:a7: ac:e5:9e:5b:58:94:f8:e4:f3:0b:8a:89:19:4b:f8:ab:fb:8c: e7:d4:91:1d:da:f5:96:a7:3b:ae:61:aa:fb:17:6d:38:0b:06: 5a:04:4b:15:4e:3d:42:78:85:a5:a7:1d:d0:c3:58:fb:a0:98: e4:f8:cb:2a:59:f6:93:75:54:85:10:d1:42:08:d2:44:1f:b9: 04:8a:46:f9 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENEMkQxMTAvBgNVBAUTKDMyOTUyRUE0NjE5NTYzNTZEMzc3RUJERDRCRkExODcy QThFMUU0NDMwHhcNMjUwNzA0MjAwMDQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4MzJlZS04NDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmXi9dbwzFKVxxpVn5wKj5zsrpkeCy7sfWBj1SpBZfVRMB4zWmUwNg4wzTtIa i8OqfX6XbjL7ApTcbIpYoOURMuET7XUnz91BT7QWxBbJlU+mQMpi1ezwNIyIT3dG JwpUg1/j/WFnM4SIPFY/SavRCEROiICLyP4lPgCTFH8GrBr3mm4gZ1cECCB5CfCk 6oFVMYqfbFC5d9U7JFKyigC064mhwtOk17KGrbJVVuYIlOkxRa4zR07yokkHhF/v GqhJIPX9//Q6T/o8ilZuX8Zy7QwsGjNhhQpcMEtixHhJB4L75xIzlFr0vsnUzoSq sSznC984TD0ZpgTwPN0t3FtAaQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFBqUqIII +7Em9u6LkneQFEmMpIbCMB8GA1UdIwQYMBaAFDKVLqRhlWNW03fr3Uv6GHKo4eRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0QyRC85NEZGMUZCQzU4 ODIxMUVBOTVCNDdGNTFDNEY5QUUwMi9NcFV1cEdHVlkxYlRkLXZkU19vWWNxamg1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wVXVwR0dWWTFiVGQtdmRTX29ZY3FqaDVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENEMkQvOTRGRjFGQkM1ODgyMTFFQTk1QjQ3RjUxQzRGOUFFMDIvRUY0QjJFMzAx Q0U0MTFFQjk1RTVBMjE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAG5cGQMEAm5cGAMEAG5cHwMEAso9QDANBgkqhkiG9w0B AQsFAAOCAQEARulM1/1QT2kLVCMTkQkqYYBvxk0ZgYP/Og+maYt3dguPlOVgFZyz spKwB5QGMBdb7QCSo2EfDC4F94kReaTfTs0FlyfUMlG6kkVA8/m05j0MnCmijdxi 3Kn2CD6yzTU6dkMKZZrpUPJ5j7XzzOsTq8TzjOBss9UYDsY/GCpY0UxvF2Jwy7Yn aVEYqQj8LR1CbYf9f/bdcrnabKU0l9MPZXxFrfzej1YWZ9HVf/6SXuXZlC2nrOWe W1iU+OTzC4qJGUv4q/uM59SRHdr1lqc7rmGq+xdtOAsGWgRLFU49QniFpacd0MNY +6CY5PjLKln2k3VUhRDRQgjSRB+5BIpG+Q== -----END CERTIFICATE-----Generated at Wed Aug 13 04:24:12 2025 by rpki-client