$ rpki-client -vvf rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/11EC50B48B8F11EF8DE96E60C4F9AE02.roa File: 11EC50B48B8F11EF8DE96E60C4F9AE02.roa (raw, json) Hash identifier: H0AJqEiGAywgjMNh/B1Rg0QqAknxodzCmkcexEm/7aU= Subject key identifier: 5E:21:8A:61:6E:63:8C:67:1D:FA:4D:A9:00:96:59:16:3E:2D:04:31 Certificate issuer: /CN=A914D6FC/serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Certificate serial: 0226 Authority key identifier: A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/11EC50B48B8F11EF8DE96E60C4F9AE02.roa Signing time: Tue 05 Aug 2025 02:41:11 +0000 ROA not before: Tue 05 Aug 2025 02:41:11 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4658 IP address blocks: 202.81.224.0/19 maxlen: 24 2401:300::/35 maxlen: 35 2401:300:2000::/35 maxlen: 35 2401:300:4000::/35 maxlen: 35 2401:300:6000::/35 maxlen: 35 2401:300:8000::/35 maxlen: 35 2401:300:a000::/35 maxlen: 35 2401:300:c000::/35 maxlen: 35 2401:300:e000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D6FC, serialNumber=A8BF54F6081967221935CB17CC13EBFB841A60C2 Validity Not Before: Aug 5 02:41:11 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68916f47-47ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:ce:12:09:87:43:bf:02:9a:6c:a0:b3:08:72: c0:c7:ce:85:ee:36:56:50:e1:ec:5d:65:bf:17:0a: 56:ed:ba:de:b1:3c:88:68:39:02:c5:e2:e3:84:6f: 11:b7:42:80:82:81:54:90:8e:4b:ef:c1:9c:be:3a: cd:28:96:ab:7c:e2:54:3d:bd:1b:75:da:7c:58:50: 33:a1:23:19:41:9e:07:43:1c:a5:8e:b6:55:9c:cb: 33:a5:30:dd:a1:f8:48:7f:82:df:50:f3:41:66:9c: 84:b6:e0:2b:38:4b:bd:16:2a:ed:65:14:77:e8:3d: 84:ef:8a:20:64:8b:16:8b:6c:30:dc:86:2e:be:68: 05:9d:73:b9:77:85:62:66:95:a0:81:49:0a:8e:9b: 02:2a:93:eb:59:a0:60:44:ba:e9:4c:90:cd:cb:df: a8:6b:0a:78:e2:48:1f:d2:d9:08:ef:13:30:94:5e: b1:04:36:51:0e:44:3a:24:ba:a0:66:47:09:be:d0: 02:b6:df:8a:c6:e6:c6:c3:6a:61:96:00:1c:c0:d4: fa:55:9e:02:55:39:98:e8:15:e4:97:7b:dc:31:99: a0:97:16:ce:0f:55:ce:2c:6f:b3:bb:8f:75:fe:0c: f0:92:f8:93:61:b3:0d:f6:e9:e5:82:3e:1d:db:24: 5c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:21:8A:61:6E:63:8C:67:1D:FA:4D:A9:00:96:59:16:3E:2D:04:31 X509v3 Authority Key Identifier: keyid:A8:BF:54:F6:08:19:67:22:19:35:CB:17:CC:13:EB:FB:84:1A:60:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/qL9U9ggZZyIZNcsXzBPr-4QaYMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qL9U9ggZZyIZNcsXzBPr-4QaYMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D6FC/88759182432F11EDBBD98F5CC4F9AE02/11EC50B48B8F11EF8DE96E60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.81.224.0/19 IPv6: 2401:300::/32 Signature Algorithm: sha256WithRSAEncryption d1:4a:4f:1d:4f:ca:05:ea:be:88:00:21:8a:e8:cc:d9:1d:a1: 48:ad:a1:61:3b:26:42:07:e3:9f:39:e2:76:51:6b:73:2d:c1: 35:cc:c3:45:50:ee:ed:b1:95:04:1f:81:c8:5a:78:49:21:ce: 72:ed:c7:ab:8e:ec:d6:41:72:b1:8d:6d:fe:a9:07:e5:be:b9: fd:d9:bd:2f:f1:4d:70:bc:74:9d:c6:63:4b:e3:69:98:d4:77: 10:e1:b0:1c:40:95:16:1a:2e:1a:ee:7c:d9:b0:1d:86:cc:44: 19:4a:40:27:69:96:f1:1f:31:b8:03:8d:07:d1:f7:52:d6:6b: 6f:c6:b9:74:a2:a8:8e:3d:cf:32:c5:ea:7c:72:fb:ff:c5:86: 13:03:bb:2e:72:a4:19:79:0b:85:70:0f:d6:b9:0c:b1:47:74: 6b:8b:02:6d:cf:3a:3f:81:c7:0c:75:85:b3:1e:d7:55:96:1a: 3c:8d:72:71:27:0a:7e:e3:22:05:0f:12:bd:98:28:89:84:51: 0b:85:91:01:d3:b3:6a:95:b2:a6:9b:8d:38:8d:4d:77:b1:08: 9d:44:90:98:75:36:6d:95:39:cc:2b:39:e4:5e:f5:12:b7:8f: 4a:bf:37:ee:b0:15:3a:a8:b8:c1:f1:06:80:58:8d:51:54:da: d4:46:09:da -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEQ2RkMxMTAvBgNVBAUTKEE4QkY1NEY2MDgxOTY3MjIxOTM1Q0IxN0NDMTNFQkZC ODQxQTYwQzIwHhcNMjUwODA1MDI0MTExWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxNmY0Ny00N2VlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAms4SCYdDvwKabKCzCHLAx86F7jZWUOHsXWW/FwpW7bresTyIaDkCxeLjhG8R t0KAgoFUkI5L78GcvjrNKJarfOJUPb0bddp8WFAzoSMZQZ4HQxyljrZVnMszpTDd ofhIf4LfUPNBZpyEtuArOEu9FirtZRR36D2E74ogZIsWi2ww3IYuvmgFnXO5d4Vi ZpWggUkKjpsCKpPrWaBgRLrpTJDNy9+oawp44kgf0tkI7xMwlF6xBDZRDkQ6JLqg ZkcJvtACtt+KxubGw2phlgAcwNT6VZ4CVTmY6BXkl3vcMZmglxbOD1XOLG+zu491 /gzwkviTYbMN9unlgj4d2yRcVQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFF4himFu Y4xnHfpNqQCWWRY+LQQxMB8GA1UdIwQYMBaAFKi/VPYIGWciGTXLF8wT6/uEGmDC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RDZGQy84ODc1OTE4MjQz MkYxMUVEQkJEOThGNUNDNEY5QUUwMi9xTDlVOWdnWlp5SVpOY3NYekJQci00UWFZ TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FMOVU5Z2daWnlJWk5jc1h6QlByLTRRYVlNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEQ2RkMvODg3NTkxODI0MzJGMTFFREJCRDk4RjVDQzRGOUFFMDIvMTFFQzUwQjQ4 QjhGMTFFRjhERTk2RTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXKUeAwDQQCAAIwBwMFACQBAwAwDQYJKoZIhvcNAQELBQAD ggEBANFKTx1PygXqvogAIYrozNkdoUitoWE7JkIH45854nZRa3MtwTXMw0VQ7u2x lQQfgchaeEkhznLtx6uO7NZBcrGNbf6pB+W+uf3ZvS/xTXC8dJ3GY0vjaZjUdxDh sBxAlRYaLhrufNmwHYbMRBlKQCdplvEfMbgDjQfR91LWa2/GuXSiqI49zzLF6nxy +//FhhMDuy5ypBl5C4VwD9a5DLFHdGuLAm3POj+Bxwx1hbMe11WWGjyNcnEnCn7j IgUPEr2YKImEUQuFkQHTs2qVsqabjTiNTXexCJ1EkJh1Nm2VOcwrOeRe9RK3j0q/ N+6wFTqouMHxBoBYjVFU2tRGCdo= -----END CERTIFICATE-----Generated at Sun Aug 10 21:06:06 2025 by rpki-client