$ rpki-client -vvf rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/337C9CE4314C11F0845D2C39C4F9AE02.roa File: 337C9CE4314C11F0845D2C39C4F9AE02.roa (raw, json) Hash identifier: 3xfhrQz5XfecI25n9SPWe9dh+MA3sbDb74Wk4gI1r2I= Subject key identifier: CE:AF:53:DF:94:6F:6E:99:8C:97:14:B3:A9:A5:46:88:14:9D:4C:13 Certificate issuer: /CN=A911FAC3/serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Certificate serial: 13D5 Authority key identifier: 77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/337C9CE4314C11F0845D2C39C4F9AE02.roa Signing time: Tue 26 Aug 2025 05:47:27 +0000 ROA not before: Tue 26 Aug 2025 05:47:27 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 63932 IP address blocks: 43.229.12.0/22 maxlen: 22 43.229.12.0/24 maxlen: 24 43.229.13.0/24 maxlen: 24 43.229.14.0/24 maxlen: 24 43.229.15.0/24 maxlen: 24 103.48.16.0/22 maxlen: 22 103.48.16.0/24 maxlen: 24 103.48.17.0/24 maxlen: 24 103.48.18.0/24 maxlen: 24 103.48.19.0/24 maxlen: 24 114.130.240.0/21 maxlen: 21 114.130.240.0/23 maxlen: 23 114.130.242.0/24 maxlen: 24 114.130.252.0/22 maxlen: 22 2401:ed80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 16:59:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5077 (0x13d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FAC3, serialNumber=7762AA8277020D0BB5C75997DE5F7D8A5142DF14 Validity Not Before: Aug 26 05:47:27 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68ad4a6f-86c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:9c:66:9b:39:0d:7d:56:c0:13:64:31:74:ab: 89:68:42:79:86:b9:cf:bc:4b:00:f4:fd:05:39:ef: 68:b7:8b:a4:18:1c:8b:20:cb:93:63:89:db:b2:46: 50:99:41:eb:09:62:b3:b8:69:dc:3b:f1:3a:10:88: 75:9e:02:c1:d2:0b:8c:19:2a:1b:7f:01:4b:93:b3: 4c:31:2c:66:53:d5:da:a3:35:91:29:57:8e:57:24: 11:e0:7e:4c:71:0d:bf:f5:e7:1b:7d:b5:4f:69:30: 76:3d:17:e3:de:8d:16:c5:d6:a1:fa:0d:f5:eb:7d: 94:32:42:7b:c3:d7:77:ba:65:99:b6:a5:3a:db:6b: f1:07:e3:12:16:f2:c8:2f:74:28:80:85:03:3f:9e: a0:f6:00:7f:d0:64:97:83:4c:f7:6c:45:1b:44:b4: 73:3a:75:b5:6b:db:f7:98:e2:99:e4:7b:21:93:cf: e3:03:5b:00:19:03:dc:43:60:e8:49:b9:e2:24:8d: 3b:bd:47:ba:9e:85:0e:a7:5a:dd:85:98:a3:45:df: 74:c9:d7:39:02:09:20:1b:a0:22:5a:47:6e:99:93: 8b:60:44:8c:02:b0:3b:ff:90:f3:49:b1:17:1d:ae: 7a:9a:91:37:cf:06:f9:b4:19:7c:3e:70:a6:74:07: 7b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:AF:53:DF:94:6F:6E:99:8C:97:14:B3:A9:A5:46:88:14:9D:4C:13 X509v3 Authority Key Identifier: keyid:77:62:AA:82:77:02:0D:0B:B5:C7:59:97:DE:5F:7D:8A:51:42:DF:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/d2KqgncCDQu1x1mX3l99ilFC3xQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d2KqgncCDQu1x1mX3l99ilFC3xQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FAC3/7B868C089DF511E8957AB416C4F9AE02/337C9CE4314C11F0845D2C39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.12.0/22 103.48.16.0/22 114.130.240.0/21 114.130.252.0/22 IPv6: 2401:ed80::/32 Signature Algorithm: sha256WithRSAEncryption 6c:d3:2f:98:55:28:6c:ac:3f:b4:f2:d0:bf:f8:23:c6:a6:ac: 8b:b6:c7:05:66:1f:6e:77:1d:7b:fb:2f:4a:59:21:41:04:48: 75:f1:d1:df:19:18:52:2b:80:fe:2b:84:38:b3:3c:b7:2a:0e: 58:0d:e4:a5:f3:ce:f5:01:27:c7:42:ac:cb:1c:4a:4d:81:45: b6:45:be:d2:5d:87:a7:70:4b:1f:15:83:10:66:b6:36:33:28: 68:c7:25:7c:72:6f:44:7c:1c:ba:91:4d:9d:00:4c:d6:a6:68: a1:eb:39:62:6b:1a:05:bf:ac:dd:ff:8c:f6:75:d5:16:92:e3: 60:2e:30:88:4b:b8:46:bb:b2:27:ed:bb:23:af:31:99:e6:f2: 35:f5:b8:66:08:6f:12:af:07:1f:c6:c0:18:ab:0c:04:39:00: 9e:24:55:e8:17:4e:fc:fb:77:9e:30:a3:ca:d9:fd:3f:cb:d2: d0:f9:1e:cc:6b:65:8d:f1:3e:69:7d:01:20:67:7d:a4:af:15: 87:25:98:59:99:42:6a:43:32:7a:3c:1f:45:db:91:f7:70:38: a2:fd:87:86:9b:1c:6b:9d:e3:f1:e7:6e:4c:2a:bf:13:d7:a2: b6:ab:a6:58:4b:27:ea:e8:ce:09:00:ab:6f:05:3c:87:06:0a: da:a9:89:66 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICE9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQzMxMTAvBgNVBAUTKDc3NjJBQTgyNzcwMjBEMEJCNUM3NTk5N0RFNUY3RDhB NTE0MkRGMTQwHhcNMjUwODI2MDU0NzI3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFkNGE2Zi04NmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtpxmmzkNfVbAE2QxdKuJaEJ5hrnPvEsA9P0FOe9ot4ukGByLIMuTY4nbskZQ mUHrCWKzuGncO/E6EIh1ngLB0guMGSobfwFLk7NMMSxmU9XaozWRKVeOVyQR4H5M cQ2/9ecbfbVPaTB2PRfj3o0Wxdah+g31632UMkJ7w9d3umWZtqU622vxB+MSFvLI L3QogIUDP56g9gB/0GSXg0z3bEUbRLRzOnW1a9v3mOKZ5Hshk8/jA1sAGQPcQ2Do SbniJI07vUe6noUOp1rdhZijRd90ydc5AgkgG6AiWkdumZOLYESMArA7/5DzSbEX Ha56mpE3zwb5tBl8PnCmdAd7GwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFM6vU9+U b26ZjJcUs6mlRogUnUwTMB8GA1UdIwQYMBaAFHdiqoJ3Ag0LtcdZl95ffYpRQt8U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFDMy83Qjg2OEMwODlE RjUxMUU4OTU3QUI0MTZDNEY5QUUwMi9kMktxZ25jQ0RRdTF4MW1YM2w5OWlsRkMz eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QyS3FnbmNDRFF1MXgxbVgzbDk5aWxGQzN4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZBQzMvN0I4NjhDMDg5REY1MTFFODk1N0FCNDE2QzRGOUFFMDIvMzM3QzlDRTQz MTRDMTFGMDg0NUQyQzM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIr5QwDBAJnMBADBANygvADBAJygvwwDQQCAAIwBwMFACQB 7YAwDQYJKoZIhvcNAQELBQADggEBAGzTL5hVKGysP7Ty0L/4I8amrIu2xwVmH253 HXv7L0pZIUEESHXx0d8ZGFIrgP4rhDizPLcqDlgN5KXzzvUBJ8dCrMscSk2BRbZF vtJdh6dwSx8VgxBmtjYzKGjHJXxyb0R8HLqRTZ0ATNamaKHrOWJrGgW/rN3/jPZ1 1RaS42AuMIhLuEa7siftuyOvMZnm8jX1uGYIbxKvBx/GwBirDAQ5AJ4kVegXTvz7 d54wo8rZ/T/L0tD5HsxrZY3xPml9ASBnfaSvFYclmFmZQmpDMno8H0XbkfdwOKL9 h4abHGud4/HnbkwqvxPXorarplhLJ+rozgkAq28FPIcGCtqpiWY= -----END CERTIFICATE-----Generated at Wed Sep 10 10:08:04 2025 by rpki-client