$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E76A1440922511F0AA40BF2FC4F9AE02.roa File: E76A1440922511F0AA40BF2FC4F9AE02.roa (raw, json) Hash identifier: Sb9d+mFpPd2hxDsvCMCK7xNka8hOUKu2NKSEaYDAjNY= Subject key identifier: 8A:06:84:0A:F7:67:74:B3:8C:F9:7C:1B:EE:E8:98:FD:2B:BD:30:63 Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 22AB Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E76A1440922511F0AA40BF2FC4F9AE02.roa Signing time: Mon 15 Sep 2025 11:19:54 +0000 ROA not before: Mon 15 Sep 2025 11:19:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 59.153.30.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 04:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8875 (0x22ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Sep 15 11:19:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68c7f65a-6aec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c8:44:c0:fd:a1:3f:39:87:e2:c8:a4:1a:b5: 6c:36:55:e8:9f:93:9d:a1:cc:5b:a5:7b:81:f7:6f: 61:5a:50:59:03:1d:8c:19:46:72:05:0d:53:e9:80: b7:b9:f2:bf:92:59:df:e0:ad:34:ab:dd:4c:d3:b6: b3:0f:5b:60:82:34:38:69:77:ab:c6:e7:bd:88:bb: 81:9d:74:7a:e4:88:ab:02:97:52:e8:88:6e:67:ff: d1:34:53:d8:a5:f6:61:c2:37:f9:cb:d3:ab:6e:0e: 98:a1:25:95:3c:71:43:fd:e0:70:84:4e:ef:75:68: 31:dc:37:f2:b5:41:32:a9:d3:d0:91:ef:b1:25:aa: a0:61:fc:58:42:9d:81:1a:f5:d7:9d:7a:57:54:e0: b3:80:53:c3:a0:3e:5f:32:79:49:46:20:94:17:2c: b0:df:4a:4b:0a:25:9b:d6:4d:96:5e:e5:5d:51:64: 3a:c1:93:71:c4:b1:40:20:64:ee:f0:6d:c5:63:0b: 99:07:74:a7:42:d9:62:c3:9f:9c:02:ae:c7:a4:65: eb:a9:d2:32:96:fd:75:81:af:be:b0:b4:56:03:26: 93:66:6c:de:37:8e:5d:66:f5:0d:8b:06:b1:89:e5: c1:77:c6:f9:86:ab:ea:b2:e7:2f:15:4b:c8:8c:43: ee:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:06:84:0A:F7:67:74:B3:8C:F9:7C:1B:EE:E8:98:FD:2B:BD:30:63 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/E76A1440922511F0AA40BF2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.30.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:a5:70:9b:d3:99:63:44:ec:4c:14:5a:1a:c7:d2:9f:41:b8: 40:c8:82:a8:74:2b:f6:6b:fa:e2:fe:fd:74:51:f2:eb:8d:79: 75:b5:dd:28:9c:6f:a8:00:16:49:7a:15:c0:0a:d1:0f:7a:5f: 1c:6b:75:af:55:82:ab:7d:5d:86:67:62:7b:67:dc:64:b9:75: 2e:4b:0b:70:c3:20:1f:c5:14:bb:8c:31:36:57:74:03:d7:41: 88:f6:34:71:a8:50:03:46:c7:e3:dc:89:09:3c:a3:ee:b3:a1: 9f:07:47:7b:bf:c0:8c:19:20:1d:d2:0f:f5:8c:50:4c:6d:b5: 9a:dd:81:4e:5e:65:f2:af:af:10:8b:30:2a:70:82:1e:95:5b: 1d:22:7c:d2:5b:74:a3:0f:31:d0:58:a9:07:18:66:a4:40:81: 67:5d:dd:88:fe:e5:ff:c2:41:2f:6b:96:3b:af:20:3a:41:8d: 62:a8:04:0e:6b:43:6e:2c:28:27:a7:a2:cc:93:02:68:12:00: 2e:23:10:f5:c9:e3:37:ed:0c:15:96:4c:3c:25:71:8e:dd:93: 2e:cc:04:09:a6:98:97:5a:b7:e2:01:09:d3:ab:db:d2:66:aa: 25:7f:5a:fe:9d:b8:bf:9a:5b:85:ee:b6:1e:6d:6e:c6:98:f4: 45:f4:78:9a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjUwOTE1MTExOTU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM3ZjY1YS02YWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1shEwP2hPzmH4sikGrVsNlXon5OdocxbpXuB929hWlBZAx2MGUZyBQ1T6YC3 ufK/klnf4K00q91M07azD1tggjQ4aXerxue9iLuBnXR65IirApdS6IhuZ//RNFPY pfZhwjf5y9Orbg6YoSWVPHFD/eBwhE7vdWgx3DfytUEyqdPQke+xJaqgYfxYQp2B GvXXnXpXVOCzgFPDoD5fMnlJRiCUFyyw30pLCiWb1k2WXuVdUWQ6wZNxxLFAIGTu 8G3FYwuZB3SnQtliw5+cAq7HpGXrqdIylv11ga++sLRWAyaTZmzeN45dZvUNiwax ieXBd8b5hqvqsucvFUvIjEPu7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIoGhAr3 Z3SzjPl8G+7omP0rvTBjMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvRTc2QTE0NDA5 MjI1MTFGMEFBNDBCRjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA7mR4wDQYJKoZIhvcNAQELBQADggEBAG+lcJvTmWNE7EwU WhrH0p9BuEDIgqh0K/Zr+uL+/XRR8uuNeXW13Sicb6gAFkl6FcAK0Q96Xxxrda9V gqt9XYZnYntn3GS5dS5LC3DDIB/FFLuMMTZXdAPXQYj2NHGoUANGx+PciQk8o+6z oZ8HR3u/wIwZIB3SD/WMUExttZrdgU5eZfKvrxCLMCpwgh6VWx0ifNJbdKMPMdBY qQcYZqRAgWdd3Yj+5f/CQS9rljuvIDpBjWKoBA5rQ24sKCenosyTAmgSAC4jEPXJ 4zftDBWWTDwlcY7dky7MBAmmmJdat+IBCdOr29JmqiV/Wv6duL+aW4Xuth5tbsaY 9EX0eJo= -----END CERTIFICATE-----Generated at Thu Sep 18 08:02:17 2025 by rpki-client