$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/FC34967C6C8611EFBF35D221C4F9AE02.roa File: FC34967C6C8611EFBF35D221C4F9AE02.roa (raw, json) Hash identifier: g3qVGTL6N3Bx7PoU5ChuYFlVdWGCksOpw5qXnk0J/9I= Subject key identifier: DA:EE:A8:4F:47:17:7A:84:F4:3D:16:15:A2:26:55:D4:C5:55:DE:88 Certificate issuer: /CN=A912F387/serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7 Certificate serial: DF Authority key identifier: 1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/FC34967C6C8611EFBF35D221C4F9AE02.roa Signing time: Wed 11 Dec 2024 04:18:46 +0000 ROA not before: Wed 11 Dec 2024 04:18:46 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45691 IP address blocks: 202.47.187.0/24 maxlen: 24 2001:df3:25c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 03:39:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F387, serialNumber=1D00C283CAA1AB3CC4371A2A384D62B1CD44FBA7 Validity Not Before: Dec 11 04:18:46 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675912a6-44b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a1:de:b5:85:6f:18:be:e4:f9:b8:3b:16:a5: e1:1d:9a:fe:9b:5d:e5:06:fd:03:55:b0:fc:e3:dc: d2:ff:df:3d:f4:85:d4:11:06:b2:00:83:62:c8:ec: 30:e6:de:a0:7c:79:30:bc:74:b4:98:89:81:d1:27: 4f:61:4a:42:61:f2:11:63:9b:75:e3:26:22:c7:ad: 7d:9f:b2:3d:32:40:0d:58:c0:98:07:83:a8:f3:92: fc:38:9e:54:7c:ed:f6:cd:c5:5d:c2:7b:10:a6:94: 50:8b:c6:3b:2b:ea:8c:33:86:44:94:77:d3:62:e4: a6:44:0c:42:26:56:f5:94:62:d4:59:ed:4a:84:ad: 9a:43:0f:4f:a4:e3:1a:e4:b1:08:3a:7f:15:69:09: fa:25:48:6f:c7:95:41:8a:00:91:dc:60:39:32:b3: c4:2e:07:70:2d:2a:4d:ad:2e:b6:d7:ac:9d:d4:9d: 69:6c:42:41:4a:20:d5:68:9e:56:d1:d1:19:ab:75: 1b:ca:f0:48:e9:c2:cd:8e:a6:fb:54:6f:ab:1a:b8: 29:56:8e:e6:a0:0d:ce:aa:f2:e7:f3:11:c7:9d:42: a9:db:e9:15:d0:33:b4:63:66:32:9c:0e:e1:1f:8e: c3:4a:79:12:4b:c7:5c:93:e8:54:2d:20:7e:4d:79: 37:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:EE:A8:4F:47:17:7A:84:F4:3D:16:15:A2:26:55:D4:C5:55:DE:88 X509v3 Authority Key Identifier: keyid:1D:00:C2:83:CA:A1:AB:3C:C4:37:1A:2A:38:4D:62:B1:CD:44:FB:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/HQDCg8qhqzzENxoqOE1isc1E-6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQDCg8qhqzzENxoqOE1isc1E-6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/5F3C849683A311EEA0B4281CC4F9AE02/FC34967C6C8611EFBF35D221C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.47.187.0/24 IPv6: 2001:df3:25c0::/48 Signature Algorithm: sha256WithRSAEncryption 29:a3:00:2d:0b:f8:d6:de:37:d5:75:0a:b5:b8:1b:9e:61:bb: 13:ea:54:c4:3a:11:27:d3:cc:b1:1c:41:36:27:3e:f1:61:e8: ac:4f:1a:f1:b0:61:9c:30:4a:be:11:d4:fc:0e:08:20:2f:02: c3:f0:f1:ef:9b:79:dd:d4:44:24:7e:9d:51:2f:10:be:cb:ea: 8a:bb:e2:1d:ed:fd:4b:09:2b:a9:71:33:d6:1d:e2:2d:9a:ab: d8:c7:fc:cd:2c:38:03:34:1d:7c:c8:70:07:68:6c:59:59:ff: 23:81:32:56:7b:23:fe:5b:29:3e:06:9e:1a:91:4b:c8:08:da: e4:2f:5f:f5:c7:cb:e9:e5:34:f4:6b:d9:26:18:9f:f5:f3:dc: 6f:c4:98:3a:d8:21:b2:db:ef:13:99:a4:53:0b:5c:50:08:95: a0:98:11:08:a8:1a:75:a1:64:96:63:c8:d1:cc:7d:a0:0d:fd: 90:44:1a:10:f9:dd:97:60:c5:a6:e8:5b:a3:52:77:63:29:c1: 43:20:20:50:f7:13:30:0f:19:ca:f9:97:4c:05:c8:8d:84:27: e0:68:14:e6:92:27:92:3a:66:36:1d:d8:8a:ce:12:49:38:e9: ef:17:45:fd:73:af:76:72:96:d1:75:c8:de:00:66:d8:f2:20: bd:2f:e2:32 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzODcxMTAvBgNVBAUTKDFEMDBDMjgzQ0FBMUFCM0NDNDM3MUEyQTM4NEQ2MkIx Q0Q0NEZCQTcwHhcNMjQxMjExMDQxODQ2WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzU5MTJhNi00NGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqHetYVvGL7k+bg7FqXhHZr+m13lBv0DVbD849zS/9899IXUEQayAINiyOww 5t6gfHkwvHS0mImB0SdPYUpCYfIRY5t14yYix619n7I9MkANWMCYB4Oo85L8OJ5U fO32zcVdwnsQppRQi8Y7K+qMM4ZElHfTYuSmRAxCJlb1lGLUWe1KhK2aQw9PpOMa 5LEIOn8VaQn6JUhvx5VBigCR3GA5MrPELgdwLSpNrS6216yd1J1pbEJBSiDVaJ5W 0dEZq3UbyvBI6cLNjqb7VG+rGrgpVo7moA3OqvLn8xHHnUKp2+kV0DO0Y2YynA7h H47DSnkSS8dck+hULSB+TXk3kwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNruqE9H F3qE9D0WFaImVdTFVd6IMB8GA1UdIwQYMBaAFB0AwoPKoas8xDcaKjhNYrHNRPun MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjM4Ny81RjNDODQ5Njgz QTMxMUVFQTBCNDI4MUNDNEY5QUUwMi9IUURDZzhxaHF6ekVOeG9xT0UxaXNjMUUt NmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRRENnOHFocXp6RU54b3FPRTFpc2MxRS02Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYzODcvNUYzQzg0OTY4M0EzMTFFRUEwQjQyODFDQzRGOUFFMDIvRkMzNDk2N0M2 Qzg2MTFFRkJGMzVEMjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKL7swDwQCAAIwCQMHACABDfMlwDANBgkqhkiG9w0BAQsF AAOCAQEAKaMALQv41t431XUKtbgbnmG7E+pUxDoRJ9PMsRxBNic+8WHorE8a8bBh nDBKvhHU/A4IIC8Cw/Dx75t53dREJH6dUS8QvsvqirviHe39SwkrqXEz1h3iLZqr 2Mf8zSw4AzQdfMhwB2hsWVn/I4EyVnsj/lspPgaeGpFLyAja5C9f9cfL6eU09GvZ Jhif9fPcb8SYOtghstvvE5mkUwtcUAiVoJgRCKgadaFklmPI0cx9oA39kEQaEPnd l2DFpuhbo1J3YynBQyAgUPcTMA8ZyvmXTAXIjYQn4GgU5pInkjpmNh3Yis4SSTjp 7xdF/XOvdnKW0XXI3gBm2PIgvS/iMg== -----END CERTIFICATE-----Generated at Wed Oct 29 18:13:29 2025 by rpki-client