$ rpki-client -vvf rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/823E55DE6D1111EFA2579E40C4F9AE02.roa File: 823E55DE6D1111EFA2579E40C4F9AE02.roa (raw, json) Hash identifier: Y2F1zl8mLeyWjYCbu80HQfaHCYqj4Iy83h0ageBQWO8= Subject key identifier: 41:13:24:AC:8D:71:83:10:C0:E2:3A:6E:DC:5E:72:16:4C:9E:4D:2F Certificate issuer: /CN=A912FAA0/serialNumber=C535B6343EA9BF59EA82EEEE3AFB8A4000DE8BB2 Certificate serial: 04E0 Authority key identifier: C5:35:B6:34:3E:A9:BF:59:EA:82:EE:EE:3A:FB:8A:40:00:DE:8B:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTW2ND6pv1nqgu7uOvuKQADei7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/823E55DE6D1111EFA2579E40C4F9AE02.roa Signing time: Sat 05 Jul 2025 00:36:58 +0000 ROA not before: Sat 05 Jul 2025 00:36:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138968 IP address blocks: 103.255.56.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/xTW2ND6pv1nqgu7uOvuKQADei7I.crl rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/xTW2ND6pv1nqgu7uOvuKQADei7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTW2ND6pv1nqgu7uOvuKQADei7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1248 (0x4e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FAA0, serialNumber=C535B6343EA9BF59EA82EEEE3AFB8A4000DE8BB2 Validity Not Before: Jul 5 00:36:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686873aa-dbe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:45:15:03:ef:ae:4c:56:e3:8c:0f:a6:c9:5e: ae:08:4c:79:52:8b:04:08:e6:4a:14:ec:38:72:b4: 7d:04:40:51:c4:07:0a:08:15:2b:74:c4:dd:d4:11: 81:15:af:34:2e:26:06:a2:bc:1a:a7:5a:cb:15:12: 13:2c:ed:55:35:ca:59:f2:be:b7:7d:cf:54:4e:fc: 56:14:da:85:70:aa:f3:4a:b6:ba:5e:f6:d0:16:99: b4:23:5c:9c:5a:8c:89:64:10:57:35:25:8f:35:3f: ab:6b:c8:70:1a:2c:e0:91:f5:db:bd:b3:a0:f4:94: 2b:b2:e5:1e:a8:ff:25:d8:50:98:fc:85:6e:25:b0: 4b:63:bd:25:c5:2d:ff:f9:16:6a:98:8c:9e:c3:3f: aa:fd:62:c1:1f:12:bb:12:9d:e0:ec:ff:37:97:b5: 73:9b:79:51:f3:86:b2:b6:78:69:79:92:cb:74:58: 1d:dd:a9:9e:20:79:08:1e:4b:66:fb:9b:5c:fe:dc: 7b:39:19:b1:3e:a2:b2:5c:05:8d:4c:5f:91:1c:27: 43:d2:07:cb:5c:b6:b9:be:6e:c6:ae:21:11:2a:69: b9:46:51:f4:59:91:43:76:50:49:a3:a4:85:10:c8: b4:66:01:2c:bc:2c:c0:79:46:33:03:b9:89:75:f4: 3d:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:13:24:AC:8D:71:83:10:C0:E2:3A:6E:DC:5E:72:16:4C:9E:4D:2F X509v3 Authority Key Identifier: keyid:C5:35:B6:34:3E:A9:BF:59:EA:82:EE:EE:3A:FB:8A:40:00:DE:8B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/xTW2ND6pv1nqgu7uOvuKQADei7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xTW2ND6pv1nqgu7uOvuKQADei7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FAA0/A6337BE225DC11EC951ECE82C4F9AE02/823E55DE6D1111EFA2579E40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.56.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:7d:7d:ff:94:19:ee:09:f0:5d:76:e9:56:5f:31:d9:51:98: ca:7c:7d:2e:de:82:f8:b0:74:91:85:02:c8:76:4c:a4:25:3e: d7:5c:e4:02:d6:77:13:ee:fc:26:fc:6d:fe:35:c7:0a:8e:5e: ae:8e:6e:d8:45:4c:f6:9b:a7:c7:85:fc:81:23:0e:22:b3:75: 43:9b:62:49:c1:55:2a:b3:72:e7:da:8a:dc:8a:0a:ad:f4:5e: 3d:91:eb:e5:42:d2:7f:5a:de:36:07:c2:6c:8b:99:08:be:21: b8:60:34:24:57:d0:4c:d7:13:a1:c9:c1:8a:7c:56:77:91:05: bc:4f:ab:82:c1:cd:1b:e6:88:83:28:20:77:08:14:7d:e6:f4: ee:e1:d5:e6:fd:db:ce:de:db:da:5d:7b:57:d4:bd:16:50:3b: be:fe:a9:dc:0e:21:60:ca:aa:ae:8f:07:9a:2c:b8:08:5b:66: 6f:8a:10:40:73:e4:04:fd:4a:c2:29:36:b3:5b:95:ea:13:47: c7:e5:87:4f:56:9f:47:6a:ed:18:f5:2f:b9:40:20:50:79:85: 74:e1:2b:e5:97:a3:0f:e2:36:fe:2f:4c:a1:c0:5f:6a:63:5e: 17:9f:81:29:db:ec:2b:15:a9:2a:b9:75:43:f2:4b:01:ba:f9: 25:d9:ee:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZBQTAxMTAvBgNVBAUTKEM1MzVCNjM0M0VBOUJGNTlFQTgyRUVFRTNBRkI4QTQw MDBERThCQjIwHhcNMjUwNzA1MDAzNjU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4NzNhYS1kYmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2kUVA++uTFbjjA+myV6uCEx5UosECOZKFOw4crR9BEBRxAcKCBUrdMTd1BGB Fa80LiYGorwap1rLFRITLO1VNcpZ8r63fc9UTvxWFNqFcKrzSra6XvbQFpm0I1yc WoyJZBBXNSWPNT+ra8hwGizgkfXbvbOg9JQrsuUeqP8l2FCY/IVuJbBLY70lxS3/ +RZqmIyewz+q/WLBHxK7Ep3g7P83l7Vzm3lR84aytnhpeZLLdFgd3ameIHkIHktm +5tc/tx7ORmxPqKyXAWNTF+RHCdD0gfLXLa5vm7GriERKmm5RlH0WZFDdlBJo6SF EMi0ZgEsvCzAeUYzA7mJdfQ9awIDAQABo4IClTCCApEwHQYDVR0OBBYEFEETJKyN cYMQwOI6btxechZMnk0vMB8GA1UdIwQYMBaAFMU1tjQ+qb9Z6oLu7jr7ikAA3ouy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkFBMC9BNjMzN0JFMjI1 REMxMUVDOTUxRUNFODJDNEY5QUUwMi94VFcyTkQ2cHYxbnFndTd1T3Z1S1FBRGVp N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hUVzJORDZwdjFucWd1N3VPdnVLUUFEZWk3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZBQTAvQTYzMzdCRTIyNURDMTFFQzk1MUVDRTgyQzRGOUFFMDIvODIzRTU1REU2 RDExMTFFRkEyNTc5RTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn/zgwDQYJKoZIhvcNAQELBQADggEBAHx9ff+UGe4J8F12 6VZfMdlRmMp8fS7egviwdJGFAsh2TKQlPtdc5ALWdxPu/Cb8bf41xwqOXq6ObthF TPabp8eF/IEjDiKzdUObYknBVSqzcufaityKCq30Xj2R6+VC0n9a3jYHwmyLmQi+ IbhgNCRX0EzXE6HJwYp8VneRBbxPq4LBzRvmiIMoIHcIFH3m9O7h1eb9287e29pd e1fUvRZQO77+qdwOIWDKqq6PB5osuAhbZm+KEEBz5AT9SsIpNrNbleoTR8flh09W n0dq7Rj1L7lAIFB5hXThK+WXow/iNv4vTKHAX2pjXhefgSnb7CsVqSq5dUPySwG6 +SXZ7k4= -----END CERTIFICATE-----Generated at Sun Jul 20 13:40:07 2025 by rpki-client