$ rpki-client -vvf rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa File: D34D9A72BBEB11EC83BEA22AC4F9AE02.roa (raw, json) Hash identifier: c/n6DX8r7nJjVUXwPVxV5kzEZ7bIPC1UqZ86XGA9if0= Subject key identifier: E4:EA:97:16:9E:7A:33:5C:DF:13:F5:9A:CD:5E:31:92:BD:01:01:B1 Certificate issuer: /CN=A912176D/serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Certificate serial: 0846 Authority key identifier: 96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa Signing time: Thu 04 Sep 2025 21:31:54 +0000 ROA not before: Thu 04 Sep 2025 21:31:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132825 IP address blocks: 43.231.4.0/24 maxlen: 24 43.231.5.0/24 maxlen: 24 103.250.4.0/24 maxlen: 24 103.250.5.0/24 maxlen: 24 103.250.6.0/24 maxlen: 24 103.250.7.0/24 maxlen: 24 118.107.192.0/24 maxlen: 24 118.107.193.0/24 maxlen: 24 118.107.194.0/24 maxlen: 24 118.107.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 21:23:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2118 (0x846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912176D, serialNumber=96F42E19F69D596A0318921590A17DD53233E595 Validity Not Before: Sep 4 21:31:54 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ba054a-0719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:9b:ca:61:72:6b:77:49:3d:14:74:cd:38:7d: 3c:a6:12:f0:a8:cc:13:ae:86:9b:40:7a:dc:87:ac: 79:7d:76:3c:45:15:17:46:a9:a8:f5:8a:50:fa:9d: 78:c5:95:54:e7:a4:c2:a9:b9:e8:ce:89:5f:39:ab: 3f:57:f7:56:fe:43:f8:39:9d:ed:95:51:89:9a:1e: f2:1a:c1:d2:53:2d:96:21:09:a2:00:30:ef:61:88: 46:93:41:60:e3:d6:c2:0d:b4:42:66:22:c0:2d:84: 0d:f7:c0:8d:64:17:6c:0b:94:46:3b:33:a0:c2:97: fe:8a:4d:f0:4e:3b:35:91:2c:4a:c1:c5:f8:7b:bd: cf:41:6a:04:82:22:8f:f1:d5:f3:c4:0d:70:27:83: b1:7f:7a:be:48:8e:f1:40:fd:32:c5:f7:da:26:17: 4c:aa:42:f0:79:a6:59:2f:b4:da:f1:cf:19:e1:f4: de:b1:66:06:c4:41:53:a6:62:ad:0b:e3:65:95:3f: 0e:0d:73:43:da:c0:98:86:51:eb:80:8a:97:70:c7: b0:a1:40:bc:44:12:e6:26:73:a2:f4:1e:fe:0a:6f: d0:1f:dc:0c:c2:83:57:7b:e0:c0:3c:25:f0:0b:d8: 56:0e:19:fb:9f:59:a9:a4:fb:b5:a1:86:76:88:34: 55:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:EA:97:16:9E:7A:33:5C:DF:13:F5:9A:CD:5E:31:92:BD:01:01:B1 X509v3 Authority Key Identifier: keyid:96:F4:2E:19:F6:9D:59:6A:03:18:92:15:90:A1:7D:D5:32:33:E5:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/lvQuGfadWWoDGJIVkKF91TIz5ZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvQuGfadWWoDGJIVkKF91TIz5ZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912176D/93D17CD006A011EBB4090859C4F9AE02/D34D9A72BBEB11EC83BEA22AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.4.0/23 103.250.4.0/22 118.107.192.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:56:56:e4:7a:93:02:56:b9:7e:ec:3a:13:b0:d2:fc:02:50: 99:c1:a2:dd:78:e0:51:87:62:a0:48:2c:68:29:38:37:ab:94: 77:ed:7a:f8:55:58:a2:e0:ba:8d:13:dc:3d:6f:fd:9b:cf:12: eb:db:b2:f4:7d:60:53:80:17:97:4d:66:65:66:9b:51:20:4e: ad:4b:26:c1:6b:e8:a2:78:d5:02:82:74:2d:3f:fb:8f:e0:9f: dc:bf:3c:32:40:e5:3f:8f:77:38:93:85:c9:c8:0e:62:27:14: 9b:e0:75:bd:b3:95:a5:99:5e:08:28:a8:2f:95:46:f1:69:73: b6:ca:23:23:3c:5d:23:f5:16:0b:58:5c:31:44:1a:1a:66:5a: ba:73:4b:4c:75:d8:3a:26:0a:71:ec:a7:b4:27:c3:75:42:34: a0:e2:97:94:fb:90:a9:89:c1:ad:30:86:69:bb:35:ca:55:db: 70:6a:cc:82:c5:5d:0e:87:83:de:d6:b6:42:3a:82:34:69:ee: 0a:44:a3:aa:61:2e:c0:2a:bd:17:29:a3:c0:eb:a5:32:a7:a5: f4:dd:03:7e:5b:06:fe:ac:03:7a:dc:a8:22:a3:c5:b9:b0:19: 3e:5f:f8:bf:ef:e5:f4:8e:23:8b:fc:e2:08:f5:bd:11:45:12: 0c:2e:05:9d -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCEYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE3NkQxMTAvBgNVBAUTKDk2RjQyRTE5RjY5RDU5NkEwMzE4OTIxNTkwQTE3REQ1 MzIzM0U1OTUwHhcNMjUwOTA0MjEzMTU0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhMDU0YS0wNzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJvKYXJrd0k9FHTNOH08phLwqMwTroabQHrch6x5fXY8RRUXRqmo9YpQ+p14 xZVU56TCqbnozolfOas/V/dW/kP4OZ3tlVGJmh7yGsHSUy2WIQmiADDvYYhGk0Fg 49bCDbRCZiLALYQN98CNZBdsC5RGOzOgwpf+ik3wTjs1kSxKwcX4e73PQWoEgiKP 8dXzxA1wJ4Oxf3q+SI7xQP0yxffaJhdMqkLweaZZL7Ta8c8Z4fTesWYGxEFTpmKt C+NllT8ODXND2sCYhlHrgIqXcMewoUC8RBLmJnOi9B7+Cm/QH9wMwoNXe+DAPCXw C9hWDhn7n1mppPu1oYZ2iDRVoQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOTqlxae ejNc3xP1ms1eMZK9AQGxMB8GA1UdIwQYMBaAFJb0Lhn2nVlqAxiSFZChfdUyM+WV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTc2RC85M0QxN0NEMDA2 QTAxMUVCQjQwOTA4NTlDNEY5QUUwMi9sdlF1R2ZhZFdXb0RHSklWa0tGOTFUSXo1 WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2UXVHZmFkV1dvREdKSVZrS0Y5MVRJejVaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE3NkQvOTNEMTdDRDAwNkEwMTFFQkI0MDkwODU5QzRGOUFFMDIvRDM0RDlBNzJC QkVCMTFFQzgzQkVBMjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAEr5wQDBAJn+gQDBAJ2a8AwDQYJKoZIhvcNAQELBQADggEB AG9WVuR6kwJWuX7sOhOw0vwCUJnBot144FGHYqBILGgpODerlHftevhVWKLguo0T 3D1v/ZvPEuvbsvR9YFOAF5dNZmVmm1EgTq1LJsFr6KJ41QKCdC0/+4/gn9y/PDJA 5T+PdziThcnIDmInFJvgdb2zlaWZXggoqC+VRvFpc7bKIyM8XSP1FgtYXDFEGhpm WrpzS0x12DomCnHsp7Qnw3VCNKDil5T7kKmJwa0whmm7NcpV23BqzILFXQ6Hg97W tkI6gjRp7gpEo6phLsAqvRcpo8DrpTKnpfTdA35bBv6sA3rcqCKjxbmwGT5f+L/v 5fSOI4v84gj1vRFFEgwuBZ0= -----END CERTIFICATE-----Generated at Sun Sep 7 12:41:54 2025 by rpki-client