$ rpki-client -vvf rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa File: 76B90530747811EDA48E0D52C4F9AE02.roa (raw, json) Hash identifier: +z4up47sitnxc0BGzrLhea39B00Ir9hVkkzOMtz9tBA= Subject key identifier: C5:F9:97:00:9D:56:EE:B9:03:DE:B9:93:0B:DD:B4:EF:AC:37:EB:F8 Certificate issuer: /CN=A915D99A/serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Certificate serial: 34B2 Authority key identifier: D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa Signing time: Mon 10 Mar 2025 14:30:54 +0000 ROA not before: Mon 10 Mar 2025 14:30:54 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 18024 IP address blocks: 45.64.251.0/24 maxlen: 24 103.245.240.0/23 maxlen: 23 119.2.96.0/20 maxlen: 20 119.2.112.0/20 maxlen: 20 202.144.128.0/20 maxlen: 20 202.144.144.0/20 maxlen: 20 202.144.149.0/24 maxlen: 24 2405:d000::/33 maxlen: 33 2405:d000:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:26:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13490 (0x34b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D99A, serialNumber=D17D77CB0C89B994CDDACBA275270A1E74DCAA27 Validity Not Before: Mar 10 14:30:54 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67cef79d-2391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fa:f5:20:7f:ef:ed:34:42:6f:23:ee:11:13: ce:f4:df:0d:78:8f:36:28:7d:43:d8:63:af:77:f3: 8a:2b:e2:1f:46:31:13:93:5a:63:94:7c:20:3d:7f: b8:02:05:69:52:cf:13:0a:1a:34:e0:01:81:0c:8e: bc:61:12:46:35:62:4d:8a:9a:fd:ab:cd:7b:3e:ea: b2:e1:70:fa:6d:a9:b5:29:af:e3:cf:ba:0a:03:c1: 4c:9f:db:3d:83:ab:2e:36:11:22:e8:ef:34:ba:b1: 08:0d:62:2b:9e:f9:bc:65:83:9d:67:2d:f5:67:66: 05:7b:61:6e:de:7d:40:e5:46:b2:ff:2b:69:0a:d2: 4c:fe:44:c8:9e:42:8e:fe:8b:9b:fe:9d:97:71:19: 08:53:ed:63:5d:79:24:4c:34:07:2f:82:d6:c5:9b: 8f:5c:3a:e1:6a:ec:03:85:0c:38:e8:57:9b:2f:dc: 92:0e:30:ad:68:97:8f:df:42:f2:54:ac:b5:62:6b: 6a:82:ab:49:b1:f9:39:47:88:ae:3c:51:35:7e:67: dc:8c:f1:90:2b:92:f4:2d:89:e9:e5:51:55:a1:8a: 95:1a:e3:a8:31:ae:15:8d:e5:fb:1a:59:0a:b8:6b: 77:68:83:04:e9:f7:8a:5d:7f:d7:13:a3:a8:96:ae: 00:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:F9:97:00:9D:56:EE:B9:03:DE:B9:93:0B:DD:B4:EF:AC:37:EB:F8 X509v3 Authority Key Identifier: keyid:D1:7D:77:CB:0C:89:B9:94:CD:DA:CB:A2:75:27:0A:1E:74:DC:AA:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/0X13ywyJuZTN2suidScKHnTcqic.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0X13ywyJuZTN2suidScKHnTcqic.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D99A/178822DA1D8511E2A82A7CDB08B02CD2/76B90530747811EDA48E0D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.251.0/24 103.245.240.0/23 119.2.96.0/19 202.144.128.0/19 IPv6: 2405:d000::/32 Signature Algorithm: sha256WithRSAEncryption 36:e0:57:9b:ff:03:94:6d:0e:1f:57:fc:78:d6:e5:e9:45:cd: 54:ac:0e:db:db:03:e9:e9:fa:7a:b4:cb:33:99:b6:3e:a4:60: a7:f3:47:74:28:08:1a:6b:64:0a:e2:4d:a5:91:1b:d8:d5:27: b9:de:2c:f1:7b:b3:b9:5f:31:d7:2d:62:f5:9e:e1:82:89:a8: ff:41:46:6f:6f:b8:4c:23:ad:7b:bf:47:7e:1e:35:b2:db:d1: 4e:fd:70:c4:92:c9:52:f4:ba:f5:aa:b6:06:10:3f:f5:43:51: 9f:39:69:2c:bd:1a:18:70:f3:50:a3:df:83:c4:67:94:cd:0f: 1a:e7:e2:9d:1d:82:e8:37:dc:c6:ca:25:6f:92:78:71:8e:73: 4a:6b:9b:f2:ec:d7:a1:15:38:96:28:6a:69:b2:f9:be:58:be: 6c:c3:e8:17:8b:9d:76:a2:4a:7e:25:8f:d6:5e:ff:7e:68:e2: cf:5c:df:ac:b4:d2:d6:6b:3e:91:01:54:9e:bf:88:95:e6:2b: 06:e3:03:16:e7:c0:c2:7c:af:71:65:08:1d:01:08:43:16:70: 44:6d:3f:48:58:df:9c:6d:51:75:ec:77:bd:2b:18:10:6a:a5: 79:70:b6:ec:86:35:fb:72:13:13:e3:d5:95:c0:60:fe:ef:fc: 63:c3:79:45 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICNLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ5OUExMTAvBgNVBAUTKEQxN0Q3N0NCMEM4OUI5OTRDRERBQ0JBMjc1MjcwQTFF NzREQ0FBMjcwHhcNMjUwMzEwMTQzMDU0WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2NlZjc5ZC0yMzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAufr1IH/v7TRCbyPuERPO9N8NeI82KH1D2GOvd/OKK+IfRjETk1pjlHwgPX+4 AgVpUs8TCho04AGBDI68YRJGNWJNipr9q817Puqy4XD6bam1Ka/jz7oKA8FMn9s9 g6suNhEi6O80urEIDWIrnvm8ZYOdZy31Z2YFe2Fu3n1A5Uay/ytpCtJM/kTInkKO /oub/p2XcRkIU+1jXXkkTDQHL4LWxZuPXDrhauwDhQw46FebL9ySDjCtaJeP30Ly VKy1YmtqgqtJsfk5R4iuPFE1fmfcjPGQK5L0LYnp5VFVoYqVGuOoMa4VjeX7GlkK uGt3aIME6feKXX/XE6Oolq4ApwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFMX5lwCd Vu65A965kwvdtO+sN+v4MB8GA1UdIwQYMBaAFNF9d8sMibmUzdrLonUnCh503Kon MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDk5QS8xNzg4MjJEQTFE ODUxMUUyQTgyQTdDREIwOEIwMkNEMi8wWDEzeXd5SnVaVE4yc3VpZFNjS0huVGNx aWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBYMTN5d3lKdVpUTjJzdWlkU2NLSG5UY3FpYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ5OUEvMTc4ODIyREExRDg1MTFFMkE4MkE3Q0RCMDhCMDJDRDIvNzZCOTA1MzA3 NDc4MTFFREE0OEUwRDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAAtQPsDBAFn9fADBAV3AmADBAXKkIAwDQQCAAIwBwMFACQF 0AAwDQYJKoZIhvcNAQELBQADggEBADbgV5v/A5RtDh9X/HjW5elFzVSsDtvbA+np +nq0yzOZtj6kYKfzR3QoCBprZAriTaWRG9jVJ7neLPF7s7lfMdctYvWe4YKJqP9B Rm9vuEwjrXu/R34eNbLb0U79cMSSyVL0uvWqtgYQP/VDUZ85aSy9Ghhw81Cj34PE Z5TNDxrn4p0dgug33MbKJW+SeHGOc0prm/Ls16EVOJYoammy+b5YvmzD6BeLnXai Sn4lj9Ze/35o4s9c36y00tZrPpEBVJ6/iJXmKwbjAxbnwMJ8r3FlCB0BCEMWcERt P0hY35xtUXXsd70rGBBqpXlwtuyGNftyExPj1ZXAYP7v/GPDeUU= -----END CERTIFICATE-----Generated at Tue Nov 4 17:18:12 2025 by rpki-client