$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/6688CA76535F11EE9BC85F83C4F9AE02.roa File: 6688CA76535F11EE9BC85F83C4F9AE02.roa (raw, json) Hash identifier: X9BJWqFkDoO3Z1AnX2rwWIVc/LG4OOcRfPspBGbkn40= Subject key identifier: A1:BE:D1:30:EE:A1:B7:ED:70:02:A7:CC:30:00:A7:F0:85:5D:B3:AC Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0C14 Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/6688CA76535F11EE9BC85F83C4F9AE02.roa Signing time: Wed 06 Nov 2024 19:08:48 +0000 ROA not before: Wed 06 Nov 2024 19:08:48 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4202202111 IP address blocks: 112.137.160.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 19:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3092 (0xc14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78, serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 6 19:08:48 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=672bbec0-f5cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:20:6d:44:7b:a3:e6:72:b3:85:9e:ca:b2:f6: b2:ec:4d:6e:5a:cb:d4:26:ad:75:b4:32:7a:84:5e: 3b:93:3d:eb:ce:85:88:80:53:63:d6:3c:ad:02:96: 80:93:ac:41:f9:ee:ff:28:c9:a8:a9:ec:f8:fe:8b: 0f:02:ab:0f:d2:0a:db:c9:ad:58:35:ba:11:f4:8b: 1a:18:eb:85:c2:62:96:0f:9a:2d:29:3b:c3:47:de: 71:76:a4:b2:9b:bb:e8:d0:bd:5c:0c:12:f7:1b:be: 5b:82:52:20:4d:f7:d0:db:49:08:90:ec:36:ba:b2: 85:de:06:c7:31:ee:2f:df:95:a1:26:a8:00:82:a1: 55:03:3b:12:c2:ba:95:ca:f4:19:36:27:e3:85:75: 15:8a:00:66:a7:e1:8d:e9:92:35:9a:b0:2c:b4:50: ea:a8:80:e5:42:bf:8a:6f:a2:51:d8:ff:45:d7:09: e9:e5:0f:ba:3b:8d:e2:44:dc:5a:45:59:6b:75:15: 44:47:61:ee:ff:d2:66:8d:ff:dd:fc:81:4e:62:a6: a0:15:83:f9:13:ce:d2:13:e5:bc:90:0f:43:53:29: 12:1f:9f:09:8f:2b:ec:9f:ee:5d:ba:d6:b2:58:a2: e7:c9:65:fd:6e:81:ef:bb:02:8f:91:7c:0f:01:68: a0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BE:D1:30:EE:A1:B7:ED:70:02:A7:CC:30:00:A7:F0:85:5D:B3:AC X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/6688CA76535F11EE9BC85F83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.137.160.0/24 Signature Algorithm: sha256WithRSAEncryption 37:18:86:f2:f4:b5:da:5e:da:7f:b9:59:32:9a:74:c9:71:19: 43:1c:13:c2:af:05:2d:78:bc:ed:a9:76:5b:72:f5:f5:ab:34: 33:68:eb:e6:2c:ac:18:68:6e:7a:89:1c:7c:7d:72:2a:3e:17: 0a:2c:3d:fe:93:40:75:8e:6a:90:9b:f1:c6:21:af:e4:cb:43: 2b:0a:6c:32:f6:85:8f:f8:fb:86:96:da:54:cb:73:8e:37:ff: 62:90:32:8c:9c:55:ac:a7:0e:d9:51:7e:07:ab:2d:e2:6c:f9: 9f:89:ad:1c:c4:eb:93:55:47:70:ca:b5:13:7f:0b:21:7c:4a: b5:6e:04:4d:6c:86:79:1c:5c:17:df:de:cd:da:07:09:ad:4d: a8:3f:a1:d6:34:cf:66:99:de:4b:b3:9e:60:31:8f:e0:e3:51: af:32:75:45:a1:11:08:49:d2:af:89:b0:e8:47:11:20:34:70: ef:a2:95:ca:4a:8b:89:6b:b8:c3:3e:f2:4e:81:6e:83:7f:af: bb:e4:39:bc:89:17:5f:f2:11:19:75:1a:47:1b:92:25:eb:97: d1:04:ee:c0:f1:b8:78:21:52:54:a4:b2:17:e1:a3:4b:e7:06: 37:49:2b:dd:b2:13:91:e4:6c:76:09:ed:b1:23:6c:a4:02:18: 3a:9e:33:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjQxMTA2MTkwODQ4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYmVjMC1mNWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiBtRHuj5nKzhZ7Ksvay7E1uWsvUJq11tDJ6hF47kz3rzoWIgFNj1jytApaA k6xB+e7/KMmoqez4/osPAqsP0grbya1YNboR9IsaGOuFwmKWD5otKTvDR95xdqSy m7vo0L1cDBL3G75bglIgTffQ20kIkOw2urKF3gbHMe4v35WhJqgAgqFVAzsSwrqV yvQZNifjhXUVigBmp+GN6ZI1mrAstFDqqIDlQr+Kb6JR2P9F1wnp5Q+6O43iRNxa RVlrdRVER2Hu/9Jmjf/d/IFOYqagFYP5E87SE+W8kA9DUykSH58Jjyvsn+5dutay WKLnyWX9boHvuwKPkXwPAWig5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKG+0TDu obftcAKnzDAAp/CFXbOsMB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvNjY4OENBNzY1 MzVGMTFFRTlCQzg1RjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABwiaAwDQYJKoZIhvcNAQELBQADggEBADcYhvL0tdpe2n+5 WTKadMlxGUMcE8KvBS14vO2pdlty9fWrNDNo6+YsrBhobnqJHHx9cio+FwosPf6T QHWOapCb8cYhr+TLQysKbDL2hY/4+4aW2lTLc443/2KQMoycVaynDtlRfgerLeJs +Z+JrRzE65NVR3DKtRN/CyF8SrVuBE1shnkcXBff3s3aBwmtTag/odY0z2aZ3kuz nmAxj+DjUa8ydUWhEQhJ0q+JsOhHESA0cO+ilcpKi4lruMM+8k6BboN/r7vkObyJ F1/yERl1GkcbkiXrl9EE7sDxuHghUlSkshfho0vnBjdJK92yE5HkbHYJ7bEjbKQC GDqeM1U= -----END CERTIFICATE-----Generated at Fri Oct 24 06:49:41 2025 by rpki-client