$ rpki-client -vvf rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/A3472C78743711F088C1E956C4F9AE02.roa File: A3472C78743711F088C1E956C4F9AE02.roa (raw, json) Hash identifier: LV6X80L3ccxBK4v6DA6N8RMZNVJ1B9qUcxOULyULswY= Subject key identifier: 98:B3:5E:E0:68:2C:54:D8:BB:3B:9A:3B:4A:5C:A0:AD:7F:96:78:B5 Certificate issuer: /CN=A9193388/serialNumber=3C3775D9F87F0EAA296866774EA62F6274D066CB Certificate serial: A1 Authority key identifier: 3C:37:75:D9:F8:7F:0E:AA:29:68:66:77:4E:A6:2F:62:74:D0:66:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/A3472C78743711F088C1E956C4F9AE02.roa Signing time: Sat 09 Aug 2025 07:12:42 +0000 ROA not before: Sat 09 Aug 2025 07:12:42 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 2914 IP address blocks: 202.89.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.crl rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 06:32:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193388, serialNumber=3C3775D9F87F0EAA296866774EA62F6274D066CB Validity Not Before: Aug 9 07:12:42 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=6896f4ea-79e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:63:b1:94:ab:ad:74:ed:68:52:cd:05:01:78: 37:9e:04:bb:25:7e:1c:6d:ee:2e:a4:25:17:dd:94: 76:c8:f7:88:9c:41:29:79:2c:3f:ee:01:15:1f:f5: aa:d1:5d:0e:e6:46:7f:8e:b3:41:78:bf:20:70:3e: 83:a4:ab:39:ef:20:3d:c3:de:2e:1f:a6:81:e4:23: fa:13:2d:1d:44:e6:6d:5f:66:f6:20:5f:58:5d:5d: 0f:11:5e:41:b7:2f:2d:24:4d:81:e5:c8:96:44:ad: 2e:84:0d:96:9c:80:b6:cd:0d:53:9e:b5:46:f3:d8: 73:ff:60:68:18:32:a3:d3:94:d9:a4:15:c4:e4:3d: f4:e6:76:85:29:5c:91:36:16:4b:23:1a:36:72:6f: 23:48:4b:5c:f8:66:5e:55:7a:af:78:54:1b:a7:33: 3a:5e:64:58:e7:a7:44:7a:89:26:bf:5c:f7:3d:ac: 8e:03:92:4d:12:04:d5:1c:34:58:db:62:ea:73:2b: 8a:aa:46:33:3d:a3:5a:ee:f9:9d:85:22:d6:5e:3b: 39:c0:09:47:63:1f:a1:51:75:71:fd:ef:5e:37:d3: cd:5a:33:b5:9f:59:1f:39:98:4c:23:f4:39:6d:35: 52:09:60:7d:4b:1f:86:09:6b:a4:bb:d9:8b:b8:db: 83:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B3:5E:E0:68:2C:54:D8:BB:3B:9A:3B:4A:5C:A0:AD:7F:96:78:B5 X509v3 Authority Key Identifier: keyid:3C:37:75:D9:F8:7F:0E:AA:29:68:66:77:4E:A6:2F:62:74:D0:66:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/PDd12fh_DqopaGZ3TqYvYnTQZss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PDd12fh_DqopaGZ3TqYvYnTQZss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193388/E0E7360A89F411EFA913B952C4F9AE02/A3472C78743711F088C1E956C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.89.255.0/24 Signature Algorithm: sha256WithRSAEncryption de:2b:5e:0a:a0:58:59:35:33:96:da:c0:9d:03:cd:16:aa:73: e7:cc:3b:d9:03:d9:b0:0c:34:bd:b2:41:3c:9e:8f:c5:71:55: 88:ff:80:64:f0:43:eb:c2:40:29:a8:02:64:2b:e5:52:c7:cf: b3:89:b5:54:7f:15:4b:62:bd:50:5d:96:2a:78:eb:3a:4f:e8: 22:70:6a:d2:2c:24:5b:cb:c9:c1:eb:7f:1e:a9:06:a0:4d:e9: 24:0c:c1:41:91:fd:bf:9c:68:91:75:1b:da:45:44:9f:57:56: 94:50:09:e8:32:bc:d8:5b:5a:21:ee:f5:be:96:3d:9d:d9:d8: de:3b:98:21:e9:10:8b:5c:59:d1:5b:6b:b5:39:b6:90:ce:f8: 2c:69:09:f8:00:93:ca:3b:0e:6d:11:83:f8:43:a8:84:b5:90: 2f:97:22:e9:10:1a:00:87:d6:bd:48:5b:e5:e3:61:f5:f6:ce: 5c:0d:b4:6f:e7:4d:dc:cd:61:8c:42:c1:59:de:4b:4c:bd:fe: ce:a2:8b:58:2a:50:5d:15:e2:fc:c8:b4:b3:4a:37:88:31:f7: 53:22:66:dd:17:4b:80:eb:41:b1:c7:dd:08:80:52:74:ff:7d: 14:c4:ea:74:81:46:8a:65:1a:8f:3b:cf:e0:c4:58:e8:58:1f: 61:32:94:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzODgxMTAvBgNVBAUTKDNDMzc3NUQ5Rjg3RjBFQUEyOTY4NjY3NzRFQTYyRjYy NzREMDY2Q0IwHhcNMjUwODA5MDcxMjQyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2ZjRlYS03OWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA32OxlKutdO1oUs0FAXg3ngS7JX4cbe4upCUX3ZR2yPeInEEpeSw/7gEVH/Wq 0V0O5kZ/jrNBeL8gcD6DpKs57yA9w94uH6aB5CP6Ey0dROZtX2b2IF9YXV0PEV5B ty8tJE2B5ciWRK0uhA2WnIC2zQ1TnrVG89hz/2BoGDKj05TZpBXE5D305naFKVyR NhZLIxo2cm8jSEtc+GZeVXqveFQbpzM6XmRY56dEeokmv1z3PayOA5JNEgTVHDRY 22LqcyuKqkYzPaNa7vmdhSLWXjs5wAlHYx+hUXVx/e9eN9PNWjO1n1kfOZhMI/Q5 bTVSCWB9Sx+GCWuku9mLuNuDxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJizXuBo LFTYuzuaO0pcoK1/lni1MB8GA1UdIwQYMBaAFDw3ddn4fw6qKWhmd06mL2J00GbL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzM4OC9FMEU3MzYwQTg5 RjQxMUVGQTkxM0I5NTJDNEY5QUUwMi9QRGQxMmZoX0Rxb3BhR1ozVHFZdlluVFFa c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BEZDEyZmhfRHFvcGFHWjNUcVl2WW5UUVpzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzODgvRTBFNzM2MEE4OUY0MTFFRkE5MTNCOTUyQzRGOUFFMDIvQTM0NzJDNzg3 NDM3MTFGMDg4QzFFOTU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKWf8wDQYJKoZIhvcNAQELBQADggEBAN4rXgqgWFk1M5ba wJ0DzRaqc+fMO9kD2bAMNL2yQTyej8VxVYj/gGTwQ+vCQCmoAmQr5VLHz7OJtVR/ FUtivVBdlip46zpP6CJwatIsJFvLycHrfx6pBqBN6SQMwUGR/b+caJF1G9pFRJ9X VpRQCegyvNhbWiHu9b6WPZ3Z2N47mCHpEItcWdFba7U5tpDO+CxpCfgAk8o7Dm0R g/hDqIS1kC+XIukQGgCH1r1IW+XjYfX2zlwNtG/nTdzNYYxCwVneS0y9/s6ii1gq UF0V4vzItLNKN4gx91MiZt0XS4DrQbHH3QiAUnT/fRTE6nSBRoplGo87z+DEWOhY H2EylFQ= -----END CERTIFICATE-----Generated at Wed Aug 13 05:35:55 2025 by rpki-client