$ rpki-client -vvf rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/8EBA772E3F2B11EB87759716C4F9AE02.roa File: 8EBA772E3F2B11EB87759716C4F9AE02.roa (raw, json) Hash identifier: JhJ29hsZ9Nl8Kc5Vc5GMGK+cSOOJDZ3+fb8ZbDKNP/w= Subject key identifier: 73:13:B5:49:35:4C:86:65:0E:25:AB:C1:BF:A0:B6:49:70:E6:0A:A4 Certificate issuer: /CN=A912BC39/serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Certificate serial: 074F Authority key identifier: 5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/8EBA772E3F2B11EB87759716C4F9AE02.roa Signing time: Tue 02 Sep 2025 22:12:34 +0000 ROA not before: Tue 02 Sep 2025 22:12:34 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 37978 IP address blocks: 110.76.176.0/23 maxlen: 23 110.76.178.0/23 maxlen: 23 110.76.178.0/24 maxlen: 24 110.76.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 21:46:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1871 (0x74f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BC39, serialNumber=5D0D75004956EDCCAB9B84271A7340E63855FF8A Validity Not Before: Sep 2 22:12:34 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b76bd2-2fe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5f:8a:81:ff:90:58:65:99:04:cb:35:9a:40: 61:8a:5f:11:90:ab:4f:ff:a2:fd:95:1f:00:d0:41: e7:24:81:04:32:11:4b:9a:04:3b:8e:05:b6:21:5b: 6c:ad:d8:0d:c3:64:61:28:aa:9a:12:cf:37:32:48: 8b:22:c7:49:8d:15:e7:29:ad:e5:f7:b6:d5:60:5c: 72:bb:9c:bc:71:ea:aa:4a:9f:75:49:1a:3f:fb:5f: 66:12:e7:06:7a:fd:53:57:2d:a1:ac:1d:0e:d8:be: b4:a1:b0:58:19:71:3f:ac:19:f0:aa:44:b8:49:b8: 9b:db:d4:ac:04:4b:09:58:4e:6f:54:72:eb:62:3c: c5:85:a5:78:77:60:d6:ea:8d:bd:6e:d4:fc:6e:11: fb:ed:ce:3c:a3:d5:cf:43:ca:74:9c:26:ab:42:a3: 57:4c:f6:94:b6:b0:71:2e:57:9e:ab:7c:4f:49:45: 94:ea:6d:22:88:62:e0:4e:ef:2e:49:8f:57:06:12: 94:79:d1:51:95:97:ff:77:ea:03:91:7c:70:1c:3b: 24:33:2a:68:1b:8d:2c:d1:5a:75:12:45:6c:7f:b2: 67:db:07:cc:95:5b:16:bd:72:78:65:8e:af:7f:56: 39:a7:a2:05:4a:a4:e9:65:26:54:d9:6a:4e:51:db: 68:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:13:B5:49:35:4C:86:65:0E:25:AB:C1:BF:A0:B6:49:70:E6:0A:A4 X509v3 Authority Key Identifier: keyid:5D:0D:75:00:49:56:ED:CC:AB:9B:84:27:1A:73:40:E6:38:55:FF:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/XQ11AElW7cyrm4QnGnNA5jhV_4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XQ11AElW7cyrm4QnGnNA5jhV_4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BC39/B37B158E3F2911EB9B9A2314C4F9AE02/8EBA772E3F2B11EB87759716C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.76.176.0/22 Signature Algorithm: sha256WithRSAEncryption 96:aa:9e:54:12:51:80:d6:c5:97:cc:28:92:30:39:56:81:a7: fb:88:92:19:ce:19:1b:d2:51:9a:04:bf:74:05:af:e0:41:66: 0f:29:36:9f:ae:35:eb:37:36:4d:35:8a:0a:9d:53:02:a1:03: 76:6f:02:24:c4:d8:77:a9:69:b8:33:58:1c:92:e6:81:be:b7: 45:e9:e4:67:fe:f0:12:3b:c3:0e:92:00:55:b3:9d:de:41:8e: b6:73:d6:4a:5f:aa:06:5e:52:67:f5:01:ba:ce:30:ed:18:a4: 4c:a4:cd:84:52:b7:32:8c:96:2d:1d:58:a5:be:be:89:cb:63: c1:1e:36:db:6c:4a:72:a3:70:91:8f:69:97:3b:a1:6d:3f:91: cb:78:56:96:cd:10:ce:b9:dd:73:65:5a:06:89:1c:d5:5b:d8: 09:73:b2:49:f3:89:53:d1:5f:4b:d4:43:aa:11:a5:7f:d9:86: 6f:4e:0e:f2:9e:69:bc:e9:0d:9d:68:36:96:92:7b:39:70:d8: 84:1b:28:8f:41:2a:c9:6a:85:e9:ad:d3:01:24:a2:de:30:58: e8:2d:c4:1f:66:05:64:47:b0:9a:b8:16:48:9f:e5:6f:83:ee: ac:ae:1d:e0:93:c4:62:25:3a:3c:2d:85:75:23:b7:92:66:a4: 9c:86:f5:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB08wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDMzkxMTAvBgNVBAUTKDVEMEQ3NTAwNDk1NkVEQ0NBQjlCODQyNzFBNzM0MEU2 Mzg1NUZGOEEwHhcNMjUwOTAyMjIxMjM0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NmJkMi0yZmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn1+Kgf+QWGWZBMs1mkBhil8RkKtP/6L9lR8A0EHnJIEEMhFLmgQ7jgW2IVts rdgNw2RhKKqaEs83MkiLIsdJjRXnKa3l97bVYFxyu5y8ceqqSp91SRo/+19mEucG ev1TVy2hrB0O2L60obBYGXE/rBnwqkS4Sbib29SsBEsJWE5vVHLrYjzFhaV4d2DW 6o29btT8bhH77c48o9XPQ8p0nCarQqNXTPaUtrBxLleeq3xPSUWU6m0iiGLgTu8u SY9XBhKUedFRlZf/d+oDkXxwHDskMypoG40s0Vp1EkVsf7Jn2wfMlVsWvXJ4ZY6v f1Y5p6IFSqTpZSZU2WpOUdtoywIDAQABo4IClTCCApEwHQYDVR0OBBYEFHMTtUk1 TIZlDiWrwb+gtklw5gqkMB8GA1UdIwQYMBaAFF0NdQBJVu3Mq5uEJxpzQOY4Vf+K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkMzOS9CMzdCMTU4RTNG MjkxMUVCOUI5QTIzMTRDNEY5QUUwMi9YUTExQUVsVzdjeXJtNFFuR25OQTVqaFZf NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hRMTFBRWxXN2N5cm00UW5Hbk5BNWpoVl80by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJDMzkvQjM3QjE1OEUzRjI5MTFFQjlCOUEyMzE0QzRGOUFFMDIvOEVCQTc3MkUz RjJCMTFFQjg3NzU5NzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJuTLAwDQYJKoZIhvcNAQELBQADggEBAJaqnlQSUYDWxZfM KJIwOVaBp/uIkhnOGRvSUZoEv3QFr+BBZg8pNp+uNes3Nk01igqdUwKhA3ZvAiTE 2HepabgzWByS5oG+t0Xp5Gf+8BI7ww6SAFWznd5BjrZz1kpfqgZeUmf1AbrOMO0Y pEykzYRStzKMli0dWKW+vonLY8EeNttsSnKjcJGPaZc7oW0/kct4VpbNEM653XNl WgaJHNVb2AlzsknziVPRX0vUQ6oRpX/Zhm9ODvKeabzpDZ1oNpaSezlw2IQbKI9B Kslqhemt0wEkot4wWOgtxB9mBWRHsJq4Fkif5W+D7qyuHeCTxGIlOjwthXUjt5Jm pJyG9VE= -----END CERTIFICATE-----Generated at Tue Sep 9 07:51:30 2025 by rpki-client