$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/688EAE1E8A1911EC94921D85C4F9AE02.roa File: 688EAE1E8A1911EC94921D85C4F9AE02.roa (raw, json) Hash identifier: +jUuW9+jw1JUgmOZj9N0BtBUU0s0p/K1kZNOedeoZQI= Subject key identifier: 11:81:DB:88:69:68:14:17:9D:E8:A1:B1:54:AD:95:47:F5:4C:2A:A6 Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 074E Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/688EAE1E8A1911EC94921D85C4F9AE02.roa Signing time: Tue 02 Sep 2025 22:12:33 +0000 ROA not before: Tue 02 Sep 2025 22:12:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138186 IP address blocks: 110.76.176.0/23 maxlen: 24 110.76.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 21:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1870 (0x74e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Sep 2 22:12:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b76bd1-450e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a3:31:3d:a2:c2:4d:c5:f6:89:35:52:54:ab: 6f:05:8b:b9:84:4b:46:2a:00:d4:77:e5:69:fb:1d: 62:46:f1:59:36:ec:cb:e7:02:17:9d:c9:53:ca:93: 37:9d:f0:af:22:b3:a1:5e:e8:3b:26:4c:b0:43:54: 66:85:a5:59:d5:db:b9:8c:c6:a5:07:9c:ad:59:5a: 39:3e:80:73:5f:18:59:95:c7:3e:db:09:01:c9:d6: 95:4c:6f:0a:b2:84:47:0f:c1:6b:02:ae:aa:cd:d2: fe:0e:f2:08:28:72:e6:96:52:24:3d:20:9d:ae:92: c0:03:19:2a:56:8e:08:96:33:0c:ec:59:db:a8:10: 37:1c:c3:bf:0c:a1:41:27:61:8c:a5:9a:29:2c:c2: df:30:55:62:85:dd:99:61:e6:21:34:57:42:68:8b: 1a:eb:72:14:dc:4e:ef:0d:5a:c6:e9:1a:67:f9:6c: be:43:ff:52:12:33:ef:6b:13:ed:94:f5:58:e7:26: 1b:49:65:17:19:fd:d3:34:65:98:6d:8c:33:3a:d0: 17:77:b3:33:55:9e:f5:9f:45:15:a5:50:99:b1:29: 40:72:e4:fb:95:04:ea:31:6d:eb:6c:e4:11:e2:d2: de:ad:5d:85:c2:fc:0a:f0:ad:fe:98:e4:98:0b:c3: 65:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:81:DB:88:69:68:14:17:9D:E8:A1:B1:54:AD:95:47:F5:4C:2A:A6 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/688EAE1E8A1911EC94921D85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.76.176.0/22 Signature Algorithm: sha256WithRSAEncryption 66:9d:ee:cb:f2:50:5c:1a:76:10:f3:fe:87:11:31:3a:90:00: 9c:c8:55:9c:58:f3:50:66:d8:00:c0:5d:30:e3:c6:01:6a:12: 32:c9:50:32:bd:66:74:99:de:6f:16:ea:ce:85:06:21:3a:80: f0:bd:26:44:9d:4d:8b:a2:d6:7f:5e:f4:be:0d:2f:e2:62:99: e8:1e:15:e6:08:f5:0e:95:67:75:38:89:40:3a:48:9a:89:56: d9:9a:a5:9e:a4:9b:fa:42:57:d1:dd:3f:56:80:cd:a9:96:4c: 90:70:12:15:fc:16:0b:1c:b0:14:05:4b:fc:9e:78:08:1b:08: 45:ca:e4:a0:07:48:8f:d0:89:c6:42:6d:7f:94:91:83:45:17: 10:25:10:13:e5:92:7c:77:10:7b:59:2e:41:84:81:a3:63:93: 90:a2:27:0f:68:97:e7:52:b3:3c:39:2c:71:be:40:08:f1:2d: fd:79:3e:aa:fb:5a:f9:51:38:7f:b1:fa:87:d9:aa:9d:9f:28: 26:aa:07:dc:52:de:9a:aa:b4:85:e0:5c:b6:84:4a:fb:8c:d9: 5d:fa:7c:0d:f9:d7:a7:27:0a:90:5b:09:cb:a4:c6:fa:64:82: 12:ad:d0:68:c1:cb:97:75:14:87:d2:31:58:b8:a6:ac:e8:a0: 60:f4:59:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUwOTAyMjIxMjMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NmJkMS00NTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqMxPaLCTcX2iTVSVKtvBYu5hEtGKgDUd+Vp+x1iRvFZNuzL5wIXnclTypM3 nfCvIrOhXug7JkywQ1RmhaVZ1du5jMalB5ytWVo5PoBzXxhZlcc+2wkBydaVTG8K soRHD8FrAq6qzdL+DvIIKHLmllIkPSCdrpLAAxkqVo4IljMM7FnbqBA3HMO/DKFB J2GMpZopLMLfMFVihd2ZYeYhNFdCaIsa63IU3E7vDVrG6Rpn+Wy+Q/9SEjPvaxPt lPVY5yYbSWUXGf3TNGWYbYwzOtAXd7MzVZ71n0UVpVCZsSlAcuT7lQTqMW3rbOQR 4tLerV2FwvwK8K3+mOSYC8NlJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBGB24hp aBQXneihsVStlUf1TCqmMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJDMzkvQjM3QjE1OEUzRjI5MTFFQjlCOUEyMzE0QzRGOUFFMDIvNjg4RUFFMUU4 QTE5MTFFQzk0OTIxRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJuTLAwDQYJKoZIhvcNAQELBQADggEBAGad7svyUFwadhDz /ocRMTqQAJzIVZxY81Bm2ADAXTDjxgFqEjLJUDK9ZnSZ3m8W6s6FBiE6gPC9JkSd TYui1n9e9L4NL+JimegeFeYI9Q6VZ3U4iUA6SJqJVtmapZ6km/pCV9HdP1aAzamW TJBwEhX8FgscsBQFS/yeeAgbCEXK5KAHSI/QicZCbX+UkYNFFxAlEBPlknx3EHtZ LkGEgaNjk5CiJw9ol+dSszw5LHG+QAjxLf15Pqr7WvlROH+x+ofZqp2fKCaqB9xS 3pqqtIXgXLaESvuM2V36fA3516cnCpBbCcukxvpkghKt0GjBy5d1FIfSMVi4pqzo oGD0WXU= -----END CERTIFICATE-----Generated at Tue Sep 9 18:44:01 2025 by rpki-client