$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/780640468A3D11F093ED1621C4F9AE02.roa File: 780640468A3D11F093ED1621C4F9AE02.roa (raw, json) Hash identifier: LTllKYqkWJ+58WDgQtbTBJX2olxlP1MnwlcLQ+5+fms= Subject key identifier: C1:C0:E6:9C:4B:9C:72:77:82:1B:F4:6C:CB:93:79:B3:76:19:0D:C9 Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 04B5 Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/780640468A3D11F093ED1621C4F9AE02.roa Signing time: Fri 05 Sep 2025 09:48:26 +0000 ROA not before: Fri 05 Sep 2025 09:48:26 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 399989 IP address blocks: 113.20.48.0/22 maxlen: 22 113.20.52.0/22 maxlen: 22 113.20.56.0/22 maxlen: 22 223.29.128.0/22 maxlen: 22 223.29.132.0/22 maxlen: 22 223.29.136.0/22 maxlen: 22 223.29.140.0/22 maxlen: 22 223.29.144.0/22 maxlen: 22 223.29.148.0/22 maxlen: 22 223.29.152.0/22 maxlen: 22 223.29.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1205 (0x4b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73, serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Sep 5 09:48:26 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68bab1ea-7cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a2:17:8c:5e:00:b9:e9:a6:ff:66:5b:6f:2b: 42:27:90:bb:24:a7:88:d9:f6:ce:aa:9e:e4:08:13: 3f:80:ce:c5:1a:de:98:43:07:29:e1:9c:46:ed:39: 57:cd:59:2d:a7:32:b4:ef:80:5a:b4:5e:6b:f8:bd: 9e:7a:1b:f2:4b:e1:59:63:a7:59:2c:66:d2:dd:4f: 4f:61:27:5e:f7:21:2b:8a:cb:f7:38:15:3a:14:19: a6:3a:8d:be:06:99:07:7b:17:b6:cd:a7:f4:fc:f6: ff:b8:4a:04:16:ca:90:9e:80:c1:58:df:69:fc:a2: ed:bb:d7:6c:2f:53:63:38:d3:55:08:33:90:44:93: 1f:55:eb:24:ea:57:d2:f5:97:1e:c9:19:65:8a:2e: d4:06:ee:b1:c3:75:e2:e4:3a:1b:85:4a:6e:b9:53: 88:02:51:30:4b:79:07:be:45:92:ae:b3:df:97:30: bf:a2:74:db:c9:4f:d4:25:5a:a6:0a:11:42:9e:1b: 40:7f:bf:82:e5:9f:03:b6:cc:7e:ed:ea:9e:a8:ee: ca:d0:39:2d:96:cb:42:5c:65:e8:37:71:46:15:8b: 0f:04:19:74:ef:8d:48:f4:52:f5:a1:0d:8c:bd:2d: 9f:90:99:fb:d2:1c:fd:c3:45:ff:fa:b4:b1:3d:fb: ca:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C0:E6:9C:4B:9C:72:77:82:1B:F4:6C:CB:93:79:B3:76:19:0D:C9 X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/780640468A3D11F093ED1621C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.48.0-113.20.59.255 223.29.128.0/19 Signature Algorithm: sha256WithRSAEncryption ad:9d:1b:14:a3:a6:21:7e:69:42:6e:e3:7b:dc:85:d4:95:bd: f4:2c:03:36:5a:45:0b:1a:c2:9a:3f:39:99:5b:d7:4f:74:29: c0:b5:de:0e:aa:0a:df:c7:7c:62:75:22:93:5e:52:30:ac:b9: c3:00:f0:20:d2:83:dc:a0:16:11:fc:a8:8d:d4:49:81:10:a9: b2:7b:cf:72:fb:ec:3f:93:1f:03:2d:b6:66:b5:38:28:0b:30: cc:6c:af:2d:48:a7:5f:83:fa:2c:00:7f:20:c0:bb:33:a5:d9: 2c:8f:16:5e:e7:95:73:73:2e:58:54:57:49:fb:75:b7:c0:ce: 7d:ab:60:61:5d:94:5a:f0:94:ea:c1:0d:af:a9:24:0a:60:83: 2d:bf:d3:4f:da:ba:93:23:e5:2d:03:b2:26:2f:5b:ca:65:5b: e0:78:6d:5b:37:af:7f:93:12:5f:f8:74:58:cc:a5:02:f2:9d: 0e:72:0a:36:5e:9a:a4:43:41:1b:5d:7e:75:cf:30:16:78:d4: fa:ef:f6:fc:fa:cb:b1:98:1a:97:9f:3a:fc:b7:49:4a:64:9b: 8b:a6:80:a9:c1:df:fd:35:7e:d3:f1:44:e8:69:53:82:78:09: 01:f8:83:35:80:0c:d4:f7:17:e8:e1:41:3b:a6:9a:f1:2a:83: f0:de:3d:eb -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBLUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjUwOTA1MDk0ODI2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhYjFlYS03Y2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKIXjF4Auemm/2ZbbytCJ5C7JKeI2fbOqp7kCBM/gM7FGt6YQwcp4ZxG7TlX zVktpzK074BatF5r+L2eehvyS+FZY6dZLGbS3U9PYSde9yErisv3OBU6FBmmOo2+ BpkHexe2zaf0/Pb/uEoEFsqQnoDBWN9p/KLtu9dsL1NjONNVCDOQRJMfVesk6lfS 9ZceyRllii7UBu6xw3Xi5DobhUpuuVOIAlEwS3kHvkWSrrPflzC/onTbyU/UJVqm ChFCnhtAf7+C5Z8Dtsx+7eqeqO7K0DktlstCXGXoN3FGFYsPBBl0741I9FL1oQ2M vS2fkJn70hz9w0X/+rSxPfvKDQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFMHA5pxL nHJ3ghv0bMuTebN2GQ3JMB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvNzgwNjQwNDY4 QTNEMTFGMDkzRUQxNjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEBHEUMAMEAnEUOAMEBd8dgDANBgkqhkiG9w0BAQsFAAOC AQEArZ0bFKOmIX5pQm7je9yF1JW99CwDNlpFCxrCmj85mVvXT3QpwLXeDqoK38d8 YnUik15SMKy5wwDwINKD3KAWEfyojdRJgRCpsnvPcvvsP5MfAy22ZrU4KAswzGyv LUinX4P6LAB/IMC7M6XZLI8WXueVc3MuWFRXSft1t8DOfatgYV2UWvCU6sENr6kk CmCDLb/TT9q6kyPlLQOyJi9bymVb4HhtWzevf5MSX/h0WMylAvKdDnIKNl6apENB G11+dc8wFnjU+u/2/PrLsZgal586/LdJSmSbi6aAqcHf/TV+0/FE6GlTgngJAfiD NYAM1PcX6OFBO6aa8SqD8N496w== -----END CERTIFICATE-----Generated at Mon Sep 8 10:05:27 2025 by rpki-client