$ rpki-client -vvf rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/EE1EA292EA6A11E98F16FE30C4F9AE02.roa File: EE1EA292EA6A11E98F16FE30C4F9AE02.roa (raw, json) Hash identifier: Our/a/Q4riPqnap8Bs+iL6aJ7lQ+NPuqmEKv5JVFqNo= Subject key identifier: 25:38:CF:52:44:95:89:76:9F:50:9C:A1:94:A4:C1:C4:B9:DF:2F:BD Certificate issuer: /CN=A911BC62/serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Certificate serial: 0E1C Authority key identifier: 2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/EE1EA292EA6A11E98F16FE30C4F9AE02.roa Signing time: Thu 04 Sep 2025 15:53:04 +0000 ROA not before: Thu 04 Sep 2025 15:53:04 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45356 IP address blocks: 194.140.200.0/21 maxlen: 24 212.104.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 15:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3612 (0xe1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BC62, serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Validity Not Before: Sep 4 15:53:04 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b9b5e0-e44b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ae:4f:18:5f:90:1d:92:84:84:11:4a:5b:25: 35:0b:d2:83:20:a3:bb:fc:33:c5:aa:aa:52:b4:d4: 70:1e:bb:ed:65:3f:38:00:04:6f:db:b8:b4:59:9b: 3c:5e:d5:f1:d8:90:8d:ff:2f:c1:b7:14:5d:a6:aa: 2f:f6:d5:9b:30:48:a0:54:39:a1:bc:fe:2f:03:b7: 3d:33:45:18:29:57:d3:99:2e:52:7a:6d:e4:09:19: 04:27:b4:97:e1:8f:0d:60:4a:e2:ff:3a:ec:c4:55: 10:4a:aa:c4:0c:e1:b8:aa:fe:34:27:ff:34:64:37: 89:e5:ae:20:65:35:24:8d:bc:6f:26:da:e3:7c:7d: f5:13:d7:59:d7:3c:a1:98:e0:87:48:f0:2d:b4:e4: bd:f5:e6:c9:05:ce:b6:08:df:1d:9c:f8:9f:f7:b6: a4:42:c3:87:16:a4:8e:e9:74:9a:45:15:ac:b5:54: 80:11:e3:00:12:be:ce:33:b9:74:97:cb:3b:05:d0: aa:97:07:f6:d7:b9:de:e3:12:60:5a:0c:0b:a3:5e: 42:c4:4e:76:b2:40:d8:af:67:58:98:01:5c:5d:a7: aa:08:74:8d:d6:96:ca:62:4b:eb:6b:d2:ac:f8:ff: 44:cc:fe:16:aa:1c:ce:33:87:47:ce:c8:5f:19:32: 02:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:38:CF:52:44:95:89:76:9F:50:9C:A1:94:A4:C1:C4:B9:DF:2F:BD X509v3 Authority Key Identifier: keyid:2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/EE1EA292EA6A11E98F16FE30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 194.140.200.0/21 212.104.224.0/20 Signature Algorithm: sha256WithRSAEncryption 09:a5:dc:c7:f4:37:81:3e:20:6d:04:64:0e:71:f5:c9:15:be: a3:7d:1a:27:8a:1c:8e:c0:82:3e:34:19:9d:88:d3:33:4b:97: 88:3d:b6:63:52:3a:cf:c8:0f:08:25:40:c5:a6:d2:ed:b4:f0: 7e:d8:1e:c2:c0:70:c9:67:19:1f:3c:d3:66:cb:e7:19:99:ec: 89:bb:9c:e3:a4:23:48:83:8e:01:52:38:9e:6c:51:28:c8:c7: e3:36:58:55:d5:78:23:92:25:2c:ec:78:3c:1e:45:de:4a:0b: b9:b3:c1:6b:e1:f4:e5:c6:44:47:07:c4:42:d2:3c:ed:f3:fc: 66:65:5e:f4:90:06:c8:9d:ff:f9:77:67:d1:54:fb:5c:63:7b: 5d:74:2d:27:8d:e9:66:fd:0b:20:e1:42:cb:d8:b5:51:1c:5f: 4e:7f:f6:58:c1:43:cd:b6:1e:9c:07:a0:2b:21:41:c7:89:57: 5d:92:ec:d2:d0:bb:39:3e:fb:6c:a7:06:13:1a:5f:46:9f:0a: 6a:8c:0f:b2:24:4a:95:02:f3:d2:fb:05:c5:a4:8d:a1:9e:cc: 40:e4:3b:cf:b2:28:89:c8:c4:ad:35:73:f8:3f:f5:2d:a2:29: 89:15:05:7f:e6:20:14:8f:95:4e:71:a3:40:0b:0a:dc:93:9d: af:1a:67:39 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDNjIxMTAvBgNVBAUTKDJCNEYzMjNDNThBNzc2QjRFNzUzODZERUU4MzcyMkUw NDU2MjMyQzYwHhcNMjUwOTA0MTU1MzA0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5YjVlMC1lNDRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoa5PGF+QHZKEhBFKWyU1C9KDIKO7/DPFqqpStNRwHrvtZT84AARv27i0WZs8 XtXx2JCN/y/BtxRdpqov9tWbMEigVDmhvP4vA7c9M0UYKVfTmS5Sem3kCRkEJ7SX 4Y8NYEri/zrsxFUQSqrEDOG4qv40J/80ZDeJ5a4gZTUkjbxvJtrjfH31E9dZ1zyh mOCHSPAttOS99ebJBc62CN8dnPif97akQsOHFqSO6XSaRRWstVSAEeMAEr7OM7l0 l8s7BdCqlwf217ne4xJgWgwLo15CxE52skDYr2dYmAFcXaeqCHSN1pbKYkvra9Ks +P9EzP4WqhzOM4dHzshfGTIC7wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCU4z1JE lYl2n1CcoZSkwcS53y+9MB8GA1UdIwQYMBaAFCtPMjxYp3a051OG3ug3IuBFYjLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkM2Mi9FRTk1RkQ0MkI3 NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRyVG5VNGJlNkRjaTRFVmlN c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0swOHlQRmluZHJUblU0YmU2RGNpNEVWaU1zWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJDNjIvRUU5NUZENDJCNzY2MTFFOTg2QzBFNTE0QzRGOUFFMDIvRUUxRUEyOTJF QTZBMTFFOThGMTZGRTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAPCjMgDBATUaOAwDQYJKoZIhvcNAQELBQADggEBAAml3Mf0 N4E+IG0EZA5x9ckVvqN9GieKHI7Agj40GZ2I0zNLl4g9tmNSOs/IDwglQMWm0u20 8H7YHsLAcMlnGR8802bL5xmZ7Im7nOOkI0iDjgFSOJ5sUSjIx+M2WFXVeCOSJSzs eDweRd5KC7mzwWvh9OXGREcHxELSPO3z/GZlXvSQBsid//l3Z9FU+1xje110LSeN 6Wb9CyDhQsvYtVEcX05/9ljBQ822HpwHoCshQceJV12S7NLQuzk++2ynBhMaX0af CmqMD7IkSpUC89L7BcWkjaGezEDkO8+yKInIxK01c/g/9S2iKYkVBX/mIBSPlU5x o0ALCtyTna8aZzk= -----END CERTIFICATE-----Generated at Fri Sep 19 09:11:33 2025 by rpki-client