$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/1C850CAA35DF11F0B03A3E81C4F9AE02.roa File: 1C850CAA35DF11F0B03A3E81C4F9AE02.roa (raw, json) Hash identifier: CdtEKajPiCOmh5RzzjuGY0y/THTRfIUl3tSRLZyVCcI= Subject key identifier: 9F:77:2B:B7:7A:F1:74:15:CC:1E:22:68:CA:7B:DB:13:BC:77:E1:0B Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 07D8 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/1C850CAA35DF11F0B03A3E81C4F9AE02.roa Signing time: Wed 21 May 2025 01:02:33 +0000 ROA not before: Wed 21 May 2025 01:02:33 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 21859 IP address blocks: 36.255.193.0/24 maxlen: 24 36.255.194.0/24 maxlen: 24 43.229.152.0/24 maxlen: 24 150.107.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:22:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: May 21 01:02:33 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=682d2629-1986 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:56:86:56:6a:e2:46:cc:9a:fa:1c:bc:cf:df: 1a:08:1f:fb:22:b4:e9:e3:d0:39:66:c6:f6:a9:f8: f3:78:37:e0:ed:a1:04:3c:b0:b1:68:9e:bd:d3:0e: 5e:b3:94:cd:26:33:a1:91:17:2a:fd:e4:ef:2d:2e: d3:b8:ce:b5:3d:4c:44:ca:0e:82:c0:5b:ac:0a:e7: 8c:86:d9:2b:17:05:ea:0b:ac:86:5c:bf:88:ea:14: 13:f8:ee:50:78:35:e4:b9:0d:bb:67:e3:a9:fa:0f: c4:7a:e3:e0:61:a0:c6:31:56:a2:ff:97:12:e1:59: c5:a2:a8:e1:94:6a:19:e5:31:70:1d:50:7c:2e:bc: 94:93:e9:e3:f0:c4:34:67:ca:a9:2c:79:4d:6d:f7: a8:26:2c:14:41:7c:92:87:b1:c8:e1:2b:f7:bc:45: 00:d2:17:67:2b:b9:9e:6a:f5:ad:87:d6:8b:9e:56: 58:78:29:4a:e9:43:67:20:41:96:4e:78:01:74:cf: 59:bd:5b:db:48:6a:ab:40:93:96:a9:0a:11:03:68: 9a:94:07:b7:04:22:76:2f:04:32:64:aa:9a:b1:dc: 62:1c:96:1c:e2:97:d2:78:c4:ff:62:e3:94:54:80: 96:55:1f:11:e0:bb:71:93:cd:3d:07:94:87:11:e8: 0c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:77:2B:B7:7A:F1:74:15:CC:1E:22:68:CA:7B:DB:13:BC:77:E1:0B X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/1C850CAA35DF11F0B03A3E81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.193.0-36.255.194.255 43.229.152.0/24 150.107.0.0/24 Signature Algorithm: sha256WithRSAEncryption b4:20:24:da:16:d6:e9:74:81:80:82:5e:45:d9:ab:65:25:5a: 1e:cf:86:9c:84:27:ec:2f:83:0b:3c:83:5e:33:ef:41:ba:25: 98:1f:22:c7:f2:c1:ce:69:81:80:ab:60:b2:a6:f2:54:5f:a0: 52:44:7a:ee:b3:bd:9c:af:38:27:bf:92:42:dd:8d:21:fe:93: 7a:c8:50:bb:05:18:da:28:78:9b:af:8b:90:7f:ce:74:cc:3b: 8c:73:5b:c9:04:eb:ac:39:e4:8b:a6:21:c3:0c:39:7f:31:c4: 76:64:ae:78:4a:22:13:e0:df:73:9a:05:2c:d8:79:cd:66:57: a1:5f:b8:c1:04:a2:f1:21:94:24:7e:cc:02:c5:6c:84:0d:0f: 73:37:16:ea:c3:37:6e:53:25:e7:5e:fb:2f:d7:a7:39:92:22: 30:ef:8a:3d:b0:81:e0:1f:04:98:cb:ec:61:34:4e:e4:30:b9: 50:8f:16:2a:8c:39:b1:75:c6:4d:e6:06:f0:f5:6b:f8:b1:63: a4:98:89:26:e9:72:46:5f:f2:2d:04:95:83:28:32:03:00:b0: 3f:f0:35:41:2a:fd:91:41:ae:b9:9f:ee:88:a2:72:43:d2:c5: 95:03:d2:88:3e:d6:92:7b:f7:0e:86:95:f4:88:0d:1f:4c:d5: 8e:43:24:49 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNTIxMDEwMjMzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkMjYyOS0xOTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuFaGVmriRsya+hy8z98aCB/7IrTp49A5Zsb2qfjzeDfg7aEEPLCxaJ690w5e s5TNJjOhkRcq/eTvLS7TuM61PUxEyg6CwFusCueMhtkrFwXqC6yGXL+I6hQT+O5Q eDXkuQ27Z+Op+g/EeuPgYaDGMVai/5cS4VnFoqjhlGoZ5TFwHVB8LryUk+nj8MQ0 Z8qpLHlNbfeoJiwUQXySh7HI4Sv3vEUA0hdnK7meavWth9aLnlZYeClK6UNnIEGW TngBdM9ZvVvbSGqrQJOWqQoRA2ialAe3BCJ2LwQyZKqasdxiHJYc4pfSeMT/YuOU VICWVR8R4Ltxk809B5SHEegMTQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFJ93K7d6 8XQVzB4iaMp72xO8d+ELMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvMUM4NTBDQUEz NURGMTFGMEIwM0EzRTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEACT/wQMEACT/wgMEACvlmAMEAJZrADANBgkqhkiG9w0B AQsFAAOCAQEAtCAk2hbW6XSBgIJeRdmrZSVaHs+GnIQn7C+DCzyDXjPvQbolmB8i x/LBzmmBgKtgsqbyVF+gUkR67rO9nK84J7+SQt2NIf6TeshQuwUY2ih4m6+LkH/O dMw7jHNbyQTrrDnki6Yhwww5fzHEdmSueEoiE+Dfc5oFLNh5zWZXoV+4wQSi8SGU JH7MAsVshA0PczcW6sM3blMl5177L9enOZIiMO+KPbCB4B8EmMvsYTRO5DC5UI8W Kow5sXXGTeYG8PVr+LFjpJiJJulyRl/yLQSVgygyAwCwP/A1QSr9kUGuuZ/uiKJy Q9LFlQPSiD7Wknv3DoaV9IgNH0zVjkMkSQ== -----END CERTIFICATE-----Generated at Mon Jun 2 07:01:41 2025 by rpki-client