$ rpki-client -vvf rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/33CDE41E5A4711EFA5ED8487C4F9AE02.roa File: 33CDE41E5A4711EFA5ED8487C4F9AE02.roa (raw, json) Hash identifier: 4ExF2O2Frz9RSsUL7YBwRkgASJlP9BcJdkByxRonGSo= Subject key identifier: 6D:47:2B:9E:CB:E0:74:27:44:63:FB:12:70:1B:7A:73:22:CE:EE:2E Certificate issuer: /CN=A916D687/serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Certificate serial: 094E Authority key identifier: DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/33CDE41E5A4711EFA5ED8487C4F9AE02.roa Signing time: Tue 08 Jul 2025 21:01:02 +0000 ROA not before: Tue 08 Jul 2025 21:01:02 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38084 IP address blocks: 45.113.36.0/22 maxlen: 24 103.9.60.0/22 maxlen: 24 2402:6c40::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2382 (0x94e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D687, serialNumber=DABB169D9E9D77E6576C018101252CB0B4857F62 Validity Not Before: Jul 8 21:01:02 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686d870e-e3db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2a:07:bb:4b:08:5e:ab:41:a9:f6:9c:55:b7: 84:5d:f1:77:48:c1:90:da:6f:89:fe:71:e8:79:61: e5:ab:97:1b:f2:6c:9a:47:e1:c2:ea:7e:e7:1b:b1: 42:89:1f:a5:bc:79:01:ef:bb:8f:4d:bf:ac:98:34: 16:86:cc:c3:96:6d:67:c3:e0:32:ce:bc:ba:2a:40: 9d:76:e1:eb:15:12:81:8a:9c:99:db:7c:05:f0:22: 90:73:f8:ec:9a:56:33:ee:cd:76:22:f4:f4:4e:42: 14:e8:28:3c:76:6e:62:de:30:fb:12:21:f1:34:fb: c7:44:8b:cb:e7:47:e3:17:9c:06:60:ef:05:e4:60: b1:97:27:38:7c:5c:cf:ee:a3:7a:31:7d:36:a7:41: 9f:eb:c6:88:4e:ad:dd:62:53:5f:f3:f7:34:05:18: 4c:12:97:cd:8e:b6:6d:3f:e4:40:d2:f9:62:ff:76: 82:fe:a6:9c:d6:33:70:d0:f7:81:99:5a:63:ce:dc: 7c:f7:fa:8b:12:87:0f:a2:ad:34:26:9e:0a:1a:8e: 13:63:64:a3:f4:8c:0c:91:87:ac:bc:b2:e0:87:75: 60:15:c6:ee:72:d1:1e:85:ae:29:0d:16:b1:7a:1f: c0:0e:5c:b0:73:49:e2:5d:23:8b:1d:af:40:52:5b: 50:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:47:2B:9E:CB:E0:74:27:44:63:FB:12:70:1B:7A:73:22:CE:EE:2E X509v3 Authority Key Identifier: keyid:DA:BB:16:9D:9E:9D:77:E6:57:6C:01:81:01:25:2C:B0:B4:85:7F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/2rsWnZ6dd-ZXbAGBASUssLSFf2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2rsWnZ6dd-ZXbAGBASUssLSFf2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D687/76B43B649F4511EA9E523563C4F9AE02/33CDE41E5A4711EFA5ED8487C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.36.0/22 103.9.60.0/22 IPv6: 2402:6c40::/32 Signature Algorithm: sha256WithRSAEncryption 53:67:57:eb:8f:f9:9b:ba:41:3e:a6:91:5d:b3:6b:dd:b1:8a: 6f:ba:29:90:89:85:4f:e1:91:17:bd:bb:c4:d8:8c:64:71:13: 6b:43:63:cd:2a:74:eb:15:c2:7a:a6:04:e5:fa:e6:6e:9b:21: 16:cc:b3:5d:43:c3:e3:6a:37:a0:d2:b2:62:b7:4c:8b:c8:20: a4:f2:e0:9d:b0:fc:62:98:8a:70:8a:69:25:33:82:77:29:bb: 9e:24:8d:19:5a:71:37:bd:f0:e9:f6:77:3e:89:c4:65:0e:41: 74:4c:26:bc:9c:6c:6d:05:e6:cc:df:60:0b:60:ff:fa:09:0b: 1c:1b:51:84:6c:4a:7d:2d:a2:98:16:75:fe:e5:1e:df:0e:ec: ce:37:ba:e2:d9:c5:f1:f5:08:e9:9a:19:b1:8a:b7:99:38:bb: c0:a6:c1:54:19:cb:17:4b:d0:fd:d8:2c:5e:42:20:cb:49:e0: 13:4a:4c:ca:7f:1f:aa:5e:86:69:e6:74:0e:bb:53:6f:24:c8: 7a:82:bd:87:c3:c4:24:0c:9b:0e:af:b1:4c:e1:6d:43:df:70: 71:c6:87:03:42:6f:78:0b:77:05:3e:96:10:9f:ef:95:e7:34: 92:08:59:3e:7f:0f:f9:9d:1e:18:54:30:2d:9a:93:3f:96:d6: ff:09:9a:3d -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ2ODcxMTAvBgNVBAUTKERBQkIxNjlEOUU5RDc3RTY1NzZDMDE4MTAxMjUyQ0Iw QjQ4NTdGNjIwHhcNMjUwNzA4MjEwMTAyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkODcwZS1lM2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCoHu0sIXqtBqfacVbeEXfF3SMGQ2m+J/nHoeWHlq5cb8myaR+HC6n7nG7FC iR+lvHkB77uPTb+smDQWhszDlm1nw+Ayzry6KkCdduHrFRKBipyZ23wF8CKQc/js mlYz7s12IvT0TkIU6Cg8dm5i3jD7EiHxNPvHRIvL50fjF5wGYO8F5GCxlyc4fFzP 7qN6MX02p0Gf68aITq3dYlNf8/c0BRhMEpfNjrZtP+RA0vli/3aC/qac1jNw0PeB mVpjztx89/qLEocPoq00Jp4KGo4TY2Sj9IwMkYesvLLgh3VgFcbuctEeha4pDRax eh/ADlywc0niXSOLHa9AUltQVwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFG1HK57L 4HQnRGP7EnAbenMizu4uMB8GA1UdIwQYMBaAFNq7Fp2enXfmV2wBgQElLLC0hX9i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDY4Ny83NkI0M0I2NDlG NDUxMUVBOUU1MjM1NjNDNEY5QUUwMi8ycnNXblo2ZGQtWlhiQUdCQVNVc3NMU0Zm MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJyc1duWjZkZC1aWGJBR0JBU1Vzc0xTRmYySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ2ODcvNzZCNDNCNjQ5RjQ1MTFFQTlFNTIzNTYzQzRGOUFFMDIvMzNDREU0MUU1 QTQ3MTFFRkE1RUQ4NDg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItcSQDBAJnCTwwDQQCAAIwBwMFACQCbEAwDQYJKoZIhvcN AQELBQADggEBAFNnV+uP+Zu6QT6mkV2za92xim+6KZCJhU/hkRe9u8TYjGRxE2tD Y80qdOsVwnqmBOX65m6bIRbMs11Dw+NqN6DSsmK3TIvIIKTy4J2w/GKYinCKaSUz gncpu54kjRlacTe98On2dz6JxGUOQXRMJrycbG0F5szfYAtg//oJCxwbUYRsSn0t opgWdf7lHt8O7M43uuLZxfH1COmaGbGKt5k4u8CmwVQZyxdL0P3YLF5CIMtJ4BNK TMp/H6pehmnmdA67U28kyHqCvYfDxCQMmw6vsUzhbUPfcHHGhwNCb3gLdwU+lhCf 75XnNJIIWT5/D/mdHhhUMC2akz+W1v8Jmj0= -----END CERTIFICATE-----Generated at Wed Nov 5 13:37:25 2025 by rpki-client