$ rpki-client -vvf rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/E652AA52C40911EBA930053BC4F9AE02.roa File: E652AA52C40911EBA930053BC4F9AE02.roa (raw, json) Hash identifier: 059V5evvVlwvqhYmAH8RCR6WncgUFs2g2N8S+IGfKUE= Subject key identifier: C4:33:D1:75:E9:EE:B0:45:E9:C4:9E:0B:0B:AE:77:64:39:F9:70:DA Certificate issuer: /CN=A913ED35/serialNumber=7EE945E9E5E51C4B41D99C4332952F9C95876608 Certificate serial: 350E Authority key identifier: 7E:E9:45:E9:E5:E5:1C:4B:41:D9:9C:43:32:95:2F:9C:95:87:66:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/E652AA52C40911EBA930053BC4F9AE02.roa Signing time: Fri 18 Jul 2025 14:50:52 +0000 ROA not before: Fri 18 Jul 2025 14:50:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 141047 IP address blocks: 111.119.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.crl rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13582 (0x350e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913ED35, serialNumber=7EE945E9E5E51C4B41D99C4332952F9C95876608 Validity Not Before: Jul 18 14:50:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687a5f4b-d88a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:87:14:8a:9c:03:df:c2:15:bc:c0:b9:7b:b1: 45:39:53:54:fb:60:54:13:31:e0:12:02:3a:03:45: 2d:7b:c5:90:57:a3:7c:fe:21:07:ec:a9:d6:b0:0a: 88:43:02:82:15:3d:dc:f6:b4:0d:7c:16:3a:56:9e: d9:98:65:b6:9b:b8:22:f2:6e:bc:d0:8b:c4:cc:f9: 3a:34:11:16:8d:80:90:7f:d5:9d:48:56:27:5c:33: 6d:5d:e7:53:1a:84:e6:28:46:d2:3e:c2:31:63:38: 43:97:b9:0e:4b:b6:da:ec:8b:5a:52:97:f0:d8:34: 76:f6:a1:c3:5b:5e:41:f9:b7:08:c4:12:d5:5e:d0: c4:25:02:b4:6d:be:2f:a2:84:98:c2:ac:1a:f3:05: 0b:00:7e:c2:e0:bc:7e:48:98:b4:ce:59:f7:ed:88: db:b3:fe:99:fc:fa:ef:e0:7a:c2:90:fd:ab:97:6c: da:1c:ff:7b:35:a9:84:c5:35:66:83:ac:8d:08:02: 68:d4:ce:14:99:9d:8b:3d:1b:6c:0e:ac:4f:54:b1: fd:3d:b2:25:cf:9c:b8:5e:8e:52:13:1c:44:d1:e8: 2e:83:39:10:48:95:99:66:b5:36:3d:39:a1:56:17: 56:c4:a3:f9:93:c9:5c:ab:63:0f:49:40:63:52:6c: 31:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:33:D1:75:E9:EE:B0:45:E9:C4:9E:0B:0B:AE:77:64:39:F9:70:DA X509v3 Authority Key Identifier: keyid:7E:E9:45:E9:E5:E5:1C:4B:41:D9:9C:43:32:95:2F:9C:95:87:66:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fulF6eXlHEtB2ZxDMpUvnJWHZgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913ED35/B63BA7EE1D9411E29D1A2EF908B02CD2/E652AA52C40911EBA930053BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.119.40.0/21 Signature Algorithm: sha256WithRSAEncryption 18:ea:98:b9:bf:ec:44:ef:25:a4:eb:20:8c:7a:70:f5:5c:55: 31:48:d6:98:8f:35:05:e4:8b:81:ee:49:f2:b5:72:12:10:d9: ab:79:9d:4f:11:31:2e:5e:c0:61:d2:59:fb:41:de:c5:08:5f: 9d:43:d1:30:fe:c6:ad:6a:bc:ca:31:dd:42:0f:57:ea:a0:fc: d0:12:05:1a:07:7c:42:dc:a3:7c:e5:f1:c5:3e:da:2f:43:ef: d9:1f:43:e7:74:fe:74:23:07:c1:b9:fb:9b:fe:da:45:18:38: 9b:69:be:d9:3e:b0:09:ca:53:61:7d:c0:a1:01:ce:ca:0f:ba: 37:e5:85:15:08:d7:93:a3:9f:15:d3:44:b7:a4:29:8c:87:b2: ef:2f:b0:44:92:e4:7b:af:d6:5a:30:fe:83:ab:a3:8f:b6:98: 0e:a6:e4:8b:a2:a0:61:29:85:24:59:32:27:b7:65:06:ab:51: c0:c2:b7:1f:db:bc:f3:b9:a3:31:53:82:a7:70:9c:54:e5:98: e9:ee:15:f3:fe:7c:72:a0:f7:6e:88:ec:e0:48:56:c1:72:6a: 0c:9e:50:45:78:d5:bb:d9:2c:38:08:44:48:7d:2f:cd:5e:ac: 90:69:fe:af:55:35:4c:0e:75:70:ed:1b:8e:65:c7:94:0a:84: 6e:eb:64:0a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0VEMzUxMTAvBgNVBAUTKDdFRTk0NUU5RTVFNTFDNEI0MUQ5OUM0MzMyOTUyRjlD OTU4NzY2MDgwHhcNMjUwNzE4MTQ1MDUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdhNWY0Yi1kODhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxocUipwD38IVvMC5e7FFOVNU+2BUEzHgEgI6A0Ute8WQV6N8/iEH7KnWsAqI QwKCFT3c9rQNfBY6Vp7ZmGW2m7gi8m680IvEzPk6NBEWjYCQf9WdSFYnXDNtXedT GoTmKEbSPsIxYzhDl7kOS7ba7ItaUpfw2DR29qHDW15B+bcIxBLVXtDEJQK0bb4v ooSYwqwa8wULAH7C4Lx+SJi0zln37Yjbs/6Z/Prv4HrCkP2rl2zaHP97NamExTVm g6yNCAJo1M4UmZ2LPRtsDqxPVLH9PbIlz5y4Xo5SExxE0egugzkQSJWZZrU2PTmh VhdWxKP5k8lcq2MPSUBjUmwxfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMQz0XXp 7rBF6cSeCwuud2Q5+XDaMB8GA1UdIwQYMBaAFH7pRenl5RxLQdmcQzKVL5yVh2YI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRUQzNS9CNjNCQTdFRTFE OTQxMUUyOUQxQTJFRjkwOEIwMkNEMi9mdWxGNmVYbEhFdEIyWnhETXBVdm5KV0ha Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1bEY2ZVhsSEV0QjJaeERNcFV2bkpXSFpnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0VEMzUvQjYzQkE3RUUxRDk0MTFFMjlEMUEyRUY5MDhCMDJDRDIvRTY1MkFBNTJD NDA5MTFFQkE5MzAwNTNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBANvdygwDQYJKoZIhvcNAQELBQADggEBABjqmLm/7ETvJaTr IIx6cPVcVTFI1piPNQXki4HuSfK1chIQ2at5nU8RMS5ewGHSWftB3sUIX51D0TD+ xq1qvMox3UIPV+qg/NASBRoHfELco3zl8cU+2i9D79kfQ+d0/nQjB8G5+5v+2kUY OJtpvtk+sAnKU2F9wKEBzsoPujflhRUI15OjnxXTRLekKYyHsu8vsESS5Huv1low /oOro4+2mA6m5IuioGEphSRZMie3ZQarUcDCtx/bvPO5ozFTgqdwnFTlmOnuFfP+ fHKg926I7OBIVsFyagyeUEV41bvZLDgIREh9L81erJBp/q9VNUwOdXDtG45lx5QK hG7rZAo= -----END CERTIFICATE-----Generated at Mon Jul 21 08:42:48 2025 by rpki-client