$ rpki-client -vvf rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/9D44176C781211F09ADE4979C4F9AE02.roa File: 9D44176C781211F09ADE4979C4F9AE02.roa (raw, json) Hash identifier: jXqxc10SyUCzWVj9PPPMNw2b7v248uGR+j4feRoYBdI= Subject key identifier: 7A:2F:7F:D9:C0:7A:FD:BC:C3:0C:70:E1:2E:0B:CA:35:A2:5D:2E:1F Certificate issuer: /CN=A911F5CA/serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Certificate serial: FC Authority key identifier: B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/9D44176C781211F09ADE4979C4F9AE02.roa Signing time: Wed 13 Aug 2025 07:16:30 +0000 ROA not before: Wed 13 Aug 2025 07:16:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138607 IP address blocks: 78.138.12.0/24 maxlen: 24 78.138.13.0/24 maxlen: 24 213.255.200.0/22 maxlen: 22 213.255.200.0/24 maxlen: 24 213.255.201.0/24 maxlen: 24 213.255.202.0/24 maxlen: 24 213.255.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 05:21:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F5CA, serialNumber=B3D75AE1ECEEF6F92BD17D0C4B36518D5BE776F1 Validity Not Before: Aug 13 07:16:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=689c3bce-0297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0b:92:4e:4c:97:3c:9f:00:73:24:01:24:d1: 92:d5:3f:89:b3:98:12:f2:e8:f9:56:e4:c8:85:94: 3f:c6:8c:7b:e4:49:0f:1a:da:aa:bd:a8:15:36:ce: a9:f5:b8:42:56:d8:d3:e1:2e:45:51:7b:80:58:af: 1a:ba:61:d3:d1:be:9b:47:fd:2f:8d:a4:28:56:11: cd:c5:35:23:28:4c:df:c1:3f:ce:e5:e1:22:7c:5e: c0:89:81:11:e9:ec:87:17:9c:fa:36:a8:c9:ab:a2: 68:ee:52:59:50:9e:77:22:c7:ac:a5:24:1d:5d:1d: b6:cd:9d:b5:44:c5:42:a2:c5:13:33:d4:0b:fa:a6: 36:11:d0:20:0b:95:e8:82:7d:7b:44:4f:01:b6:13: 85:32:26:ee:37:70:d8:8c:b8:c3:41:df:9f:39:eb: 31:69:ec:3a:dd:75:b7:6b:0d:8c:43:94:0b:d0:f3: e6:ea:4b:a8:2f:1b:c0:c9:a9:bd:1e:0b:32:1d:24: 85:8d:f4:e3:e3:49:bd:82:9c:d0:34:12:8c:b9:2a: ad:f8:10:fb:35:da:76:89:8f:b3:60:d3:52:44:05: d3:48:c3:2d:0d:ac:98:df:3e:f3:b5:32:c4:92:9f: 0f:05:5f:ec:d6:6a:d6:c3:a2:b9:79:2c:ad:68:ef: 87:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:2F:7F:D9:C0:7A:FD:BC:C3:0C:70:E1:2E:0B:CA:35:A2:5D:2E:1F X509v3 Authority Key Identifier: keyid:B3:D7:5A:E1:EC:EE:F6:F9:2B:D1:7D:0C:4B:36:51:8D:5B:E7:76:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/s9da4ezu9vkr0X0MSzZRjVvndvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/s9da4ezu9vkr0X0MSzZRjVvndvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F5CA/9E7C2CEE024F11EFAC65F577C4F9AE02/9D44176C781211F09ADE4979C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 78.138.12.0/23 213.255.200.0/22 Signature Algorithm: sha256WithRSAEncryption 78:22:7b:75:fd:ee:44:d0:23:a0:a8:3d:42:6f:35:bf:76:68: b3:1c:6a:9f:7f:b2:95:f5:46:d4:16:04:09:9e:b6:eb:11:8e: 78:66:e6:29:58:db:de:b6:25:a5:c2:6e:85:cc:97:ed:6a:76: 6b:18:4c:fc:c4:b8:32:27:47:83:64:23:43:ae:2a:92:cd:af: 91:65:42:34:ff:41:c2:0f:5f:d7:5e:dd:5b:89:48:a9:cd:1b: 32:83:e8:af:3f:e6:92:76:66:9a:0b:8f:b5:8b:c4:7c:3f:89: 80:a6:3b:a2:92:9c:da:91:00:d2:01:73:0d:25:d6:ea:fa:3a: 1f:c6:9e:35:96:3d:5b:5a:18:78:56:4a:8e:0e:eb:f0:c0:70: ad:de:9b:c8:e7:df:bb:ea:f2:96:a0:ef:5e:2c:65:cc:4f:6f: 81:56:55:36:42:c3:b8:1b:6a:5e:56:b7:77:0d:b7:54:c3:3c: a8:61:b7:57:55:7a:1c:58:54:f0:73:f9:ca:fe:04:b8:cb:65: 6c:02:90:87:10:83:e2:af:39:89:fa:22:f9:cc:10:df:58:3f: 22:9b:3b:8b:0c:c3:8f:09:fb:5e:aa:fe:09:e9:a8:66:4e:d7: b4:75:ac:de:2a:26:82:0a:d6:ef:8c:85:ff:f3:51:60:18:a7: e4:05:53:da -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1Q0ExMTAvBgNVBAUTKEIzRDc1QUUxRUNFRUY2RjkyQkQxN0QwQzRCMzY1MThE NUJFNzc2RjEwHhcNMjUwODEzMDcxNjMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODljM2JjZS0wMjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyguSTkyXPJ8AcyQBJNGS1T+Js5gS8uj5VuTIhZQ/xox75EkPGtqqvagVNs6p 9bhCVtjT4S5FUXuAWK8aumHT0b6bR/0vjaQoVhHNxTUjKEzfwT/O5eEifF7AiYER 6eyHF5z6NqjJq6Jo7lJZUJ53IsespSQdXR22zZ21RMVCosUTM9QL+qY2EdAgC5Xo gn17RE8BthOFMibuN3DYjLjDQd+fOesxaew63XW3aw2MQ5QL0PPm6kuoLxvAyam9 HgsyHSSFjfTj40m9gpzQNBKMuSqt+BD7Ndp2iY+zYNNSRAXTSMMtDayY3z7ztTLE kp8PBV/s1mrWw6K5eSytaO+HjQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHovf9nA ev28wwxw4S4LyjWiXS4fMB8GA1UdIwQYMBaAFLPXWuHs7vb5K9F9DEs2UY1b53bx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjVDQS85RTdDMkNFRTAy NEYxMUVGQUM2NUY1NzdDNEY5QUUwMi9zOWRhNGV6dTl2a3IwWDBNU3paUmpWdm5k dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3M5ZGE0ZXp1OXZrcjBYME1TelpSalZ2bmR2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1Q0EvOUU3QzJDRUUwMjRGMTFFRkFDNjVGNTc3QzRGOUFFMDIvOUQ0NDE3NkM3 ODEyMTFGMDlBREU0OTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFOigwDBALV/8gwDQYJKoZIhvcNAQELBQADggEBAHgie3X9 7kTQI6CoPUJvNb92aLMcap9/spX1RtQWBAmetusRjnhm5ilY2962JaXCboXMl+1q dmsYTPzEuDInR4NkI0OuKpLNr5FlQjT/QcIPX9de3VuJSKnNGzKD6K8/5pJ2ZpoL j7WLxHw/iYCmO6KSnNqRANIBcw0l1ur6Oh/GnjWWPVtaGHhWSo4O6/DAcK3em8jn 37vq8pag714sZcxPb4FWVTZCw7gbal5Wt3cNt1TDPKhht1dVehxYVPBz+cr+BLjL ZWwCkIcQg+KvOYn6IvnMEN9YPyKbO4sMw48J+16q/gnpqGZO17R1rN4qJoIK1u+M hf/zUWAYp+QFU9o= -----END CERTIFICATE-----Generated at Sat Aug 23 00:55:01 2025 by rpki-client