$ rpki-client -vvf rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/88F058948E7E11EA955D1E64C4F9AE02.roa File: 88F058948E7E11EA955D1E64C4F9AE02.roa (raw, json) Hash identifier: DvSBvAVly3QEdI4AtJMEHxBNtfNAhn6C/63PWm2Ji6g= Subject key identifier: 74:72:18:9A:1D:85:E0:31:97:D6:D5:68:83:5B:1B:C6:E9:D7:1E:2A Certificate issuer: /CN=A914A594/serialNumber=83CC72DE7D5C1FE53FC141F8BC1AC27B1DF303B1 Certificate serial: 09BC Authority key identifier: 83:CC:72:DE:7D:5C:1F:E5:3F:C1:41:F8:BC:1A:C2:7B:1D:F3:03:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8xy3n1cH-U_wUH4vBrCex3zA7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/88F058948E7E11EA955D1E64C4F9AE02.roa Signing time: Mon 08 Sep 2025 20:30:38 +0000 ROA not before: Mon 08 Sep 2025 20:30:38 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45355 IP address blocks: 45.117.240.0/22 maxlen: 22 45.117.240.0/24 maxlen: 24 103.58.20.0/22 maxlen: 22 202.151.16.0/20 maxlen: 20 2402:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/g8xy3n1cH-U_wUH4vBrCex3zA7E.crl rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/g8xy3n1cH-U_wUH4vBrCex3zA7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8xy3n1cH-U_wUH4vBrCex3zA7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 20:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2492 (0x9bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A594, serialNumber=83CC72DE7D5C1FE53FC141F8BC1AC27B1DF303B1 Validity Not Before: Sep 8 20:30:38 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68bf3cee-63ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c5:f3:3b:4f:54:97:d2:5c:33:f3:4e:97:d8: 96:45:a0:ed:e8:85:ab:40:63:64:b6:db:24:b7:6a: 85:76:fe:53:2a:0e:c2:92:9d:b2:9c:76:62:b8:a0: 23:24:6b:21:49:fd:d2:b0:a2:bb:a0:ba:79:81:9d: c6:aa:42:c1:d1:0a:bc:d4:cc:11:dc:bb:f9:0f:7d: f2:32:db:74:90:d6:47:16:5f:6b:06:ff:57:71:24: f0:c7:eb:d9:df:a5:d8:a8:cf:17:56:17:0c:a2:42: 34:ba:ab:3d:13:fe:51:86:77:46:f5:77:fd:5b:1f: 9d:f4:48:3c:99:f6:b0:3b:2f:ec:80:f7:aa:21:e9: c7:8c:ae:2f:07:40:69:55:c3:5c:c5:a2:22:83:48: f3:92:a3:cf:7f:5b:76:eb:dd:10:8e:19:5a:57:10: 89:1f:75:b7:bc:38:20:01:67:7b:0b:60:f2:fa:8c: 02:13:8c:5e:ad:cf:e8:f6:9e:bb:ab:15:4f:34:ba: 70:52:1d:35:01:b0:c2:7a:63:65:48:4d:4c:a1:1f: 84:05:e6:64:3f:c4:8c:30:76:2d:49:f6:c3:41:ce: 76:0b:16:18:e6:66:9f:76:71:ed:c1:aa:02:8b:ab: 7d:8c:92:6d:1b:3e:a6:71:bc:f5:d1:ae:f1:28:4e: c7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:72:18:9A:1D:85:E0:31:97:D6:D5:68:83:5B:1B:C6:E9:D7:1E:2A X509v3 Authority Key Identifier: keyid:83:CC:72:DE:7D:5C:1F:E5:3F:C1:41:F8:BC:1A:C2:7B:1D:F3:03:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/g8xy3n1cH-U_wUH4vBrCex3zA7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8xy3n1cH-U_wUH4vBrCex3zA7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A594/53179FF88E7D11EAB5F33261C4F9AE02/88F058948E7E11EA955D1E64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.240.0/22 103.58.20.0/22 202.151.16.0/20 IPv6: 2402:1840::/32 Signature Algorithm: sha256WithRSAEncryption 22:b4:21:7f:77:9b:13:56:3a:d0:3a:88:02:35:e6:f9:45:05: aa:bb:fa:ef:43:ad:0f:bc:e7:06:05:75:c0:5c:74:e9:05:30: c7:eb:dd:0e:1c:2d:8d:05:77:44:8f:56:fd:e8:6a:16:3d:4d: 20:57:4e:3d:8a:53:45:5d:88:04:e5:e0:8e:c5:2c:a3:a4:92: 47:d3:cf:44:2c:c6:f0:90:80:c9:e8:02:e6:2d:b8:b7:27:91: 52:fe:fa:3b:e9:5a:bd:a3:e9:30:33:30:38:f2:27:79:20:0b: 80:2c:7e:71:ee:32:e9:06:f6:0f:96:de:28:7f:cd:64:39:b7: ee:11:60:d6:0e:40:8f:02:04:6f:23:d8:9c:1d:5d:7b:a5:ab: 96:f2:b3:22:8d:62:92:52:57:26:42:ee:30:6f:d5:36:f8:1d: 7e:b9:54:db:ec:57:3b:dc:ec:24:61:2a:42:d0:47:8d:f5:59: ad:43:b9:9a:52:32:5b:9b:90:ab:c3:89:37:8c:5e:e8:fc:9c: 39:87:7c:ef:d1:11:f4:5f:7d:88:62:52:c3:da:8e:3d:4a:5d: 52:cf:f7:20:a1:ed:ea:db:7b:b2:b0:0d:b8:11:28:9d:be:02: ec:9d:3e:d4:72:dc:0b:68:54:32:a7:54:7f:29:40:b8:18:3b: c0:d9:dd:36 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE1OTQxMTAvBgNVBAUTKDgzQ0M3MkRFN0Q1QzFGRTUzRkMxNDFGOEJDMUFDMjdC MURGMzAzQjEwHhcNMjUwOTA4MjAzMDM4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmM2NlZS02M2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3MXzO09Ul9JcM/NOl9iWRaDt6IWrQGNkttskt2qFdv5TKg7Ckp2ynHZiuKAj JGshSf3SsKK7oLp5gZ3GqkLB0Qq81MwR3Lv5D33yMtt0kNZHFl9rBv9XcSTwx+vZ 36XYqM8XVhcMokI0uqs9E/5RhndG9Xf9Wx+d9Eg8mfawOy/sgPeqIenHjK4vB0Bp VcNcxaIig0jzkqPPf1t2690QjhlaVxCJH3W3vDggAWd7C2Dy+owCE4xerc/o9p67 qxVPNLpwUh01AbDCemNlSE1MoR+EBeZkP8SMMHYtSfbDQc52CxYY5mafdnHtwaoC i6t9jJJtGz6mcbz10a7xKE7H7QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFHRyGJod heAxl9bVaINbG8bp1x4qMB8GA1UdIwQYMBaAFIPMct59XB/lP8FB+Lwawnsd8wOx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTU5NC81MzE3OUZGODhF N0QxMUVBQjVGMzMyNjFDNEY5QUUwMi9nOHh5M24xY0gtVV93VUg0dkJyQ2V4M3pB N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c4eHkzbjFjSC1VX3dVSDR2QnJDZXgzekE3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE1OTQvNTMxNzlGRjg4RTdEMTFFQUI1RjMzMjYxQzRGOUFFMDIvODhGMDU4OTQ4 RTdFMTFFQTk1NUQxRTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItdfADBAJnOhQDBATKlxAwDQQCAAIwBwMFACQCGEAwDQYJ KoZIhvcNAQELBQADggEBACK0IX93mxNWOtA6iAI15vlFBaq7+u9DrQ+85wYFdcBc dOkFMMfr3Q4cLY0Fd0SPVv3oahY9TSBXTj2KU0VdiATl4I7FLKOkkkfTz0QsxvCQ gMnoAuYtuLcnkVL++jvpWr2j6TAzMDjyJ3kgC4AsfnHuMukG9g+W3ih/zWQ5t+4R YNYOQI8CBG8j2JwdXXulq5bysyKNYpJSVyZC7jBv1Tb4HX65VNvsVzvc7CRhKkLQ R431Wa1DuZpSMlubkKvDiTeMXuj8nDmHfO/REfRffYhiUsPajj1KXVLP9yCh7erb e7KwDbgRKJ2+AuydPtRy3AtoVDKnVH8pQLgYO8DZ3TY= -----END CERTIFICATE-----Generated at Fri Sep 19 08:10:15 2025 by rpki-client