$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FAF6D732CD3811EDBD37B674C4F9AE02.roa File: FAF6D732CD3811EDBD37B674C4F9AE02.roa (raw, json) Hash identifier: z9HaUp/F2Eb09B4FeQi8go7G2DS9o12Zg3mvwv3IbtM= Subject key identifier: 45:F1:2B:82:AE:D6:F0:29:7E:88:2C:55:1D:18:F0:08:FA:29:FD:98 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3924 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FAF6D732CD3811EDBD37B674C4F9AE02.roa Signing time: Fri 04 Jul 2025 14:50:45 +0000 ROA not before: Fri 04 Jul 2025 14:50:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45996 IP address blocks: 110.172.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14628 (0x3924) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Jul 4 14:50:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6867ea44-9b16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4c:52:fe:9f:11:f7:87:14:ff:a5:0d:2c:b4: c2:d2:bf:d6:73:f7:9a:86:52:fa:bb:02:9a:b2:94: b3:91:c4:99:9a:4e:7f:95:02:5e:48:c2:ba:12:c0: 37:29:02:b2:d7:07:06:ac:32:5c:f0:bc:c3:83:8b: fd:de:19:92:54:47:47:62:0c:5b:8e:05:2b:86:a8: 00:e2:34:60:42:0d:c0:51:cb:bd:97:cb:bf:b1:48: 87:b1:f7:8f:2a:25:99:e5:2b:73:ec:4d:0d:60:b4: 16:44:42:7e:65:35:b7:e0:f7:3f:57:0d:9b:41:39: 2b:44:e7:14:90:68:b2:83:76:67:a5:ae:c1:f9:6a: c1:89:3e:9b:76:03:65:d4:69:a4:61:e4:75:26:98: a1:11:f8:2a:91:12:dc:6f:3f:19:f6:7f:9a:95:a1: a2:8b:c1:29:dc:a3:1e:0f:ca:25:5c:e5:b0:f1:f5: 71:e9:e1:e9:9f:0d:bd:41:f0:15:c2:32:b8:23:8e: 0a:31:42:4e:2a:d8:5a:c4:20:80:e4:f0:28:40:bb: 6f:99:30:31:01:4c:98:42:60:ca:08:b2:13:8c:16: 3f:82:d5:9f:ee:08:0d:a1:5c:cb:b7:9c:5b:ba:2f: 8d:ba:36:ad:49:1f:b2:fd:7f:d8:c0:95:3f:2f:f7: 42:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F1:2B:82:AE:D6:F0:29:7E:88:2C:55:1D:18:F0:08:FA:29:FD:98 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FAF6D732CD3811EDBD37B674C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.172.112.0/20 Signature Algorithm: sha256WithRSAEncryption df:de:01:68:d0:71:2d:d6:cf:97:a4:45:a7:ed:1a:07:49:f0: 65:2a:09:77:bd:9a:16:5e:37:c9:6d:46:8d:10:3c:c5:7d:af: 0a:ca:6b:d1:7c:9c:75:05:a6:91:52:2f:c6:a8:f2:7e:3e:83: 94:da:e6:8a:d6:4f:bd:ab:29:fc:57:f7:51:87:47:87:59:49: dc:0c:5b:74:81:af:30:65:65:db:ff:3c:ce:82:e6:ef:41:e0: 5d:c2:00:76:66:30:21:b7:11:cf:74:9d:b0:bf:ad:a4:46:a4: fd:82:f1:df:97:a3:37:08:a8:1e:f2:0c:79:2f:c9:47:f2:17: ad:e4:ba:8a:95:54:ba:01:57:88:b6:63:4d:9c:23:c8:65:f5: 42:3f:9c:52:02:91:5c:72:9c:8e:22:2b:9d:28:72:5e:a4:5a: ef:09:7b:bf:89:03:59:a7:8b:e2:fd:e8:4f:0f:37:85:33:ce: 39:17:9c:8c:79:c1:61:2d:7b:55:fe:5d:df:94:04:04:a5:73: 0f:c4:52:7e:10:b1:01:ac:12:fe:b6:f9:15:94:37:07:af:0c: d8:06:d6:17:3e:24:26:08:c7:7a:cb:0f:2c:dc:f7:71:f4:db: d3:10:41:34:c0:d7:67:c0:4c:d5:5e:c2:86:a2:dc:87:d1:88: 62:10:45:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOSQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUwNzA0MTQ1MDQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3ZWE0NC05YjE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAukxS/p8R94cU/6UNLLTC0r/Wc/eahlL6uwKaspSzkcSZmk5/lQJeSMK6EsA3 KQKy1wcGrDJc8LzDg4v93hmSVEdHYgxbjgUrhqgA4jRgQg3AUcu9l8u/sUiHsfeP KiWZ5Stz7E0NYLQWREJ+ZTW34Pc/Vw2bQTkrROcUkGiyg3Znpa7B+WrBiT6bdgNl 1GmkYeR1JpihEfgqkRLcbz8Z9n+alaGii8Ep3KMeD8olXOWw8fVx6eHpnw29QfAV wjK4I44KMUJOKthaxCCA5PAoQLtvmTAxAUyYQmDKCLITjBY/gtWf7ggNoVzLt5xb ui+NujatSR+y/X/YwJU/L/dCKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEXxK4Ku 1vApfogsVR0Y8Aj6Kf2YMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvRkFGNkQ3MzJD RDM4MTFFREJEMzdCNjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARurHAwDQYJKoZIhvcNAQELBQADggEBAN/eAWjQcS3Wz5ek RaftGgdJ8GUqCXe9mhZeN8ltRo0QPMV9rwrKa9F8nHUFppFSL8ao8n4+g5Ta5orW T72rKfxX91GHR4dZSdwMW3SBrzBlZdv/PM6C5u9B4F3CAHZmMCG3Ec90nbC/raRG pP2C8d+XozcIqB7yDHkvyUfyF63kuoqVVLoBV4i2Y02cI8hl9UI/nFICkVxynI4i K50ocl6kWu8Je7+JA1mni+L96E8PN4UzzjkXnIx5wWEte1X+Xd+UBASlcw/EUn4Q sQGsEv62+RWUNwevDNgG1hc+JCYIx3rLDyzc93H029MQQTTA12fATNVewoai3IfR iGIQRTo= -----END CERTIFICATE-----Generated at Mon Jul 21 08:42:48 2025 by rpki-client