$ rpki-client -vvf rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa File: 8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa (raw, json) Hash identifier: ftIkLDDMGwCQRtXIOQIkbcVqJAF5OWBHQPg/Mtm9NhM= Subject key identifier: A8:90:EA:9F:6A:FC:68:4A:96:43:CE:FD:94:E4:C1:E2:8F:CA:AA:E7 Certificate issuer: /CN=A911CC1D/serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Certificate serial: 01D6 Authority key identifier: FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa Signing time: Fri 29 Aug 2025 03:51:41 +0000 ROA not before: Fri 29 Aug 2025 03:51:41 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45177 IP address blocks: 123.253.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 03:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 470 (0x1d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CC1D, serialNumber=FB0197D802A66186E840BD62E88EE40ED95E9529 Validity Not Before: Aug 29 03:51:41 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b123cc-2169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d7:ac:0e:11:75:53:07:ed:be:1a:72:3e:57: 55:67:7b:0a:78:d8:24:13:68:15:da:84:70:a8:0f: 80:43:4c:dd:60:5b:52:b9:99:18:e1:21:74:b5:10: 15:86:80:49:dc:c7:30:93:7a:30:bc:38:20:17:28: f7:fa:bb:69:0f:7d:f0:26:e2:4e:e4:33:cc:5c:2c: 04:1a:d1:48:11:60:8c:6e:83:fa:c1:a1:66:d1:e9: f3:ef:86:8d:98:b4:f8:53:8b:d8:79:b2:c8:f9:b9: 4d:43:c6:20:32:ee:38:ab:05:61:16:00:33:fe:12: e8:15:37:5f:f2:23:9a:ed:e7:46:5e:15:bf:9a:a6: e9:b7:bf:5e:dc:4d:bc:4e:18:89:35:64:85:d3:31: a6:f7:ad:a9:71:67:1f:3e:9c:4a:cd:c1:27:2d:68: 21:a0:4c:f0:fa:92:3f:e0:43:e4:5d:b6:09:25:97: 02:a0:fa:bf:ce:41:f2:a0:fc:4a:1f:18:ed:a8:b9: 69:d1:1d:43:42:b7:b1:e4:8d:01:47:e8:d3:ad:ba: a4:d9:da:35:ca:6d:25:ed:4b:a4:36:b5:34:ee:62: f5:0d:e5:3f:fd:c5:87:4a:1e:47:b4:2f:d2:81:13: 5f:38:1d:83:e4:10:6d:2b:37:08:ff:f2:ad:8b:7e: 70:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:90:EA:9F:6A:FC:68:4A:96:43:CE:FD:94:E4:C1:E2:8F:CA:AA:E7 X509v3 Authority Key Identifier: keyid:FB:01:97:D8:02:A6:61:86:E8:40:BD:62:E8:8E:E4:0E:D9:5E:95:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/-wGX2AKmYYboQL1i6I7kDtlelSk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-wGX2AKmYYboQL1i6I7kDtlelSk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CC1D/8CFE1D9AD1E211ED923C611FC4F9AE02/8FF4E2E2EFAE11EDBD96F26BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.208.0/22 Signature Algorithm: sha256WithRSAEncryption af:26:1f:5c:90:21:69:d8:a2:d9:68:1d:29:02:2e:35:01:25: 2d:fd:ac:ef:21:d1:f3:44:03:9c:11:f2:f8:ab:37:22:48:70: 4f:4a:79:6b:f0:fa:74:44:dd:4f:b8:d5:58:90:ae:d5:de:1e: 1e:53:c3:bd:c2:c0:a0:4c:b3:4c:79:86:1e:b3:6e:98:65:65: 18:e9:dc:c2:11:9f:6e:5a:4d:9a:70:08:a3:48:2e:ea:de:bc: 5a:a5:45:95:ee:f1:0e:95:93:43:79:65:40:50:17:21:d6:c5: cd:12:18:f8:60:a3:bc:43:6c:7b:e0:65:d0:d7:4f:25:94:9f: 83:97:30:87:f3:37:5e:93:5e:ba:ec:08:49:3a:69:a6:6f:41: 65:aa:da:bd:3a:42:08:2d:f6:78:9d:f4:35:74:97:b7:8c:2e: fc:d1:da:37:a5:bd:90:eb:69:b2:6c:98:6a:a8:c5:93:62:06: fb:a0:aa:19:78:8b:78:3a:13:8e:34:df:bd:96:40:73:85:80: 34:5c:98:ac:14:a3:64:c2:5c:e9:f9:c7:82:db:63:ff:7e:57: 5f:74:12:f3:9a:09:5a:70:7e:0d:49:83:f0:a1:92:bb:a7:97: 71:ea:2e:55:51:25:5b:f6:b1:47:7a:57:d1:01:64:92:44:f8: c3:89:0e:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNDMUQxMTAvBgNVBAUTKEZCMDE5N0Q4MDJBNjYxODZFODQwQkQ2MkU4OEVFNDBF RDk1RTk1MjkwHhcNMjUwODI5MDM1MTQxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMjNjYy0yMTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9esDhF1UwftvhpyPldVZ3sKeNgkE2gV2oRwqA+AQ0zdYFtSuZkY4SF0tRAV hoBJ3Mcwk3owvDggFyj3+rtpD33wJuJO5DPMXCwEGtFIEWCMboP6waFm0enz74aN mLT4U4vYebLI+blNQ8YgMu44qwVhFgAz/hLoFTdf8iOa7edGXhW/mqbpt79e3E28 ThiJNWSF0zGm962pcWcfPpxKzcEnLWghoEzw+pI/4EPkXbYJJZcCoPq/zkHyoPxK HxjtqLlp0R1DQrex5I0BR+jTrbqk2do1ym0l7UukNrU07mL1DeU//cWHSh5HtC/S gRNfOB2D5BBtKzcI//Kti35wVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKiQ6p9q /GhKlkPO/ZTkweKPyqrnMB8GA1UdIwQYMBaAFPsBl9gCpmGG6EC9YuiO5A7ZXpUp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0MxRC84Q0ZFMUQ5QUQx RTIxMUVEOTIzQzYxMUZDNEY5QUUwMi8td0dYMkFLbVlZYm9RTDFpNkk3a0R0bGVs U2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy13R1gyQUttWVlib1FMMWk2STdrRHRsZWxTay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNDMUQvOENGRTFEOUFEMUUyMTFFRDkyM0M2MTFGQzRGOUFFMDIvOEZGNEUyRTJF RkFFMTFFREJEOTZGMjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ7/dAwDQYJKoZIhvcNAQELBQADggEBAK8mH1yQIWnYotlo HSkCLjUBJS39rO8h0fNEA5wR8virNyJIcE9KeWvw+nRE3U+41ViQrtXeHh5Tw73C wKBMs0x5hh6zbphlZRjp3MIRn25aTZpwCKNILurevFqlRZXu8Q6Vk0N5ZUBQFyHW xc0SGPhgo7xDbHvgZdDXTyWUn4OXMIfzN16TXrrsCEk6aaZvQWWq2r06Qggt9nid 9DV0l7eMLvzR2jelvZDrabJsmGqoxZNiBvugqhl4i3g6E440372WQHOFgDRcmKwU o2TCXOn5x4LbY/9+V190EvOaCVpwfg1Jg/Chkrunl3HqLlVRJVv2sUd6V9EBZJJE +MOJDrY= -----END CERTIFICATE-----Generated at Sat Sep 6 12:50:17 2025 by rpki-client