$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/65340A1872BC11F09185E539C4F9AE02.roa File: 65340A1872BC11F09185E539C4F9AE02.roa (raw, json) Hash identifier: K/potOxUvF/FW7c0K8mdrZxqDuZcT+AM82uUloKs3/8= Subject key identifier: 03:33:6E:76:8A:C9:85:F0:34:1F:4B:B0:82:75:B2:B6:9A:54:B9:45 Certificate issuer: /CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Certificate serial: 073C Authority key identifier: ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/65340A1872BC11F09185E539C4F9AE02.roa Signing time: Wed 06 Aug 2025 11:56:33 +0000 ROA not before: Wed 06 Aug 2025 11:56:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 16276 IP address blocks: 36.255.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 22:28:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1852 (0x73c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FE, serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Validity Not Before: Aug 6 11:56:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=689342f0-0b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d3:f3:8f:b5:e7:a5:4a:85:8e:10:d0:c9:f3: 4a:05:71:53:b3:c0:17:d8:cc:55:76:ec:39:06:31: 09:7a:9d:e6:1f:2e:51:db:ff:09:a5:49:dd:e7:43: fc:8a:67:3d:30:c8:6d:34:b5:ce:e5:98:f8:0d:53: 1a:86:40:19:88:44:e6:4a:96:35:81:1f:b2:17:5e: a1:3e:ec:1d:bd:b5:55:ad:9c:63:c9:c1:31:f7:6f: 44:0c:04:f2:a5:a3:31:3f:4c:70:41:e9:ea:63:9f: 2a:00:c0:8e:c3:c6:17:87:0a:9e:1b:cb:53:9e:e6: 41:d6:aa:0f:5e:17:0d:d7:2b:83:44:24:05:43:81: 65:e4:54:f1:02:75:6e:9f:0d:b8:ad:a3:48:ef:c1: 7e:79:f4:df:7e:73:b2:0b:d0:05:82:ec:8c:3a:0c: fa:92:7d:9d:80:85:a1:4a:8e:43:cf:b1:86:a6:b7: 1c:89:cd:b8:94:30:78:a0:ff:e7:b9:1f:dc:78:24: d9:33:18:df:a3:f8:65:e3:86:67:36:70:08:c6:b1: 2d:8c:66:a1:7c:0d:4d:11:2c:a7:7d:38:a1:43:35: 2d:e3:ed:71:d6:24:8a:ea:a9:46:56:f8:33:f8:bd: 7b:1a:56:27:1e:d1:2a:a8:27:dc:68:f1:21:72:ff: 79:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:33:6E:76:8A:C9:85:F0:34:1F:4B:B0:82:75:B2:B6:9A:54:B9:45 X509v3 Authority Key Identifier: keyid:ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/65340A1872BC11F09185E539C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.199.0/24 Signature Algorithm: sha256WithRSAEncryption 08:b6:11:51:d4:69:02:42:b6:10:14:3f:fd:5a:c5:4c:f6:a9: 52:e4:0e:ce:8c:aa:e2:da:a4:ef:57:87:ab:f3:de:5e:8f:aa: f4:a7:fa:84:a3:7f:ee:df:bc:a1:18:73:af:fb:01:2a:d3:b7: 15:05:d0:fb:3c:3b:6d:d2:8d:a3:2c:e2:08:cb:57:bc:e1:07: f5:ba:cd:ff:48:0c:9b:28:98:f6:09:dc:19:70:dc:cd:5b:55: bb:1b:19:f9:1d:f0:41:02:33:55:a7:da:dd:27:7e:15:35:96: 67:ee:6e:bd:c7:58:d0:e3:59:e4:f3:e7:a6:f7:3a:a8:8f:2e: 24:23:18:c5:7d:fc:a1:47:6c:bc:c5:cd:1f:59:c7:e7:69:55: b7:6c:18:4d:f1:d4:dd:b7:3e:06:b5:d8:8b:0e:85:4b:e8:12: 7e:0c:d8:db:84:21:d1:7f:fb:03:37:55:30:98:7e:bf:7e:45: 7e:38:02:a7:27:a5:f8:c8:46:f5:34:a6:66:d5:52:fd:b6:1f: 5c:35:99:62:5d:fa:fb:0a:e9:f9:ec:b9:66:9e:9e:76:53:8c: 88:ff:38:9a:7a:8b:ab:41:3e:ab:bd:c1:1b:3b:76:41:06:24: 38:04:f7:fb:8e:5c:9e:9e:38:4c:b7:be:ce:c4:79:e7:ee:c6: ae:ef:2e:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxRkUxMTAvBgNVBAUTKEVERUI5NkYwNEM4RDNFRENDQkVFQkE0MEM0MjQyOTIy QTgxMzZCNTMwHhcNMjUwODA2MTE1NjMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkzNDJmMC0wYjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNPzj7XnpUqFjhDQyfNKBXFTs8AX2MxVduw5BjEJep3mHy5R2/8JpUnd50P8 imc9MMhtNLXO5Zj4DVMahkAZiETmSpY1gR+yF16hPuwdvbVVrZxjycEx929EDATy paMxP0xwQenqY58qAMCOw8YXhwqeG8tTnuZB1qoPXhcN1yuDRCQFQ4Fl5FTxAnVu nw24raNI78F+efTffnOyC9AFguyMOgz6kn2dgIWhSo5Dz7GGprccic24lDB4oP/n uR/ceCTZMxjfo/hl44ZnNnAIxrEtjGahfA1NESynfTihQzUt4+1x1iSK6qlGVvgz +L17GlYnHtEqqCfcaPEhcv95rwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAMzbnaK yYXwNB9LsIJ1sraaVLlFMB8GA1UdIwQYMBaAFO3rlvBMjT7cy+66QMQkKSKoE2tT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFGRS8zODYyMzVGMDZG ODgxMUVCQTg2QkY2NEFDNEY5QUUwMi83ZXVXOEV5TlB0ekw3cnBBeENRcElxZ1Rh MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdldVc4RXlOUHR6TDdycEF4Q1FwSXFnVGExTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UxRkUvMzg2MjM1RjA2Rjg4MTFFQkE4NkJGNjRBQzRGOUFFMDIvNjUzNDBBMTg3 MkJDMTFGMDkxODVFNTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAk/8cwDQYJKoZIhvcNAQELBQADggEBAAi2EVHUaQJCthAU P/1axUz2qVLkDs6MquLapO9Xh6vz3l6PqvSn+oSjf+7fvKEYc6/7ASrTtxUF0Ps8 O23SjaMs4gjLV7zhB/W6zf9IDJsomPYJ3Blw3M1bVbsbGfkd8EECM1Wn2t0nfhU1 lmfubr3HWNDjWeTz56b3OqiPLiQjGMV9/KFHbLzFzR9Zx+dpVbdsGE3x1N23Pga1 2IsOhUvoEn4M2NuEIdF/+wM3VTCYfr9+RX44AqcnpfjIRvU0pmbVUv22H1w1mWJd +vsK6fnsuWaennZTjIj/OJp6i6tBPqu9wRs7dkEGJDgE9/uOXJ6eOEy3vs7Eeefu xq7vLmk= -----END CERTIFICATE-----Generated at Wed Aug 13 14:33:51 2025 by rpki-client