$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/36AA48F2D55E11EAB56B562AC4F9AE02.roa File: 36AA48F2D55E11EAB56B562AC4F9AE02.roa (raw, json) Hash identifier: CT9oR+mour9icf2SXlc68B/oJLLnyCcyaxA9b5EH/aA= Subject key identifier: 03:6E:48:47:CF:D0:56:7A:A6:4B:27:5D:FE:48:B2:FD:09:EE:B8:BD Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F5B Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/36AA48F2D55E11EAB56B562AC4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:15 +0000 ROA not before: Sat 30 Aug 2025 16:35:15 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133775 IP address blocks: 125.77.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8027 (0x1f5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:15 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32842-22dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:81:5e:ef:db:9a:fd:dd:2e:02:85:92:3d:cf: fb:1d:09:c3:f0:34:2b:c2:af:36:4f:61:24:e6:8c: ae:4e:9b:15:e6:30:b2:30:b4:b5:e8:a1:07:6a:cb: 4f:f4:da:3e:84:96:24:61:26:f2:4c:b3:56:6a:fd: 67:b3:87:73:01:2d:7e:4c:3a:d5:24:f5:44:27:aa: 8a:95:e4:9e:9e:04:7e:0d:b3:e5:dc:22:54:2a:95: ff:6f:75:90:8e:ed:8d:55:e7:5c:a1:5c:e5:19:ec: 1d:23:9a:01:f1:e5:70:94:ce:5f:55:50:aa:1d:61: aa:cd:6e:26:90:6e:5e:76:46:24:26:dd:da:d9:01: 3c:83:d2:e3:37:80:3c:0d:14:2e:7c:41:43:b8:99: 8e:d4:f5:60:d8:2e:2c:a4:89:62:bc:86:2f:58:0b: 57:46:93:52:b4:15:7c:ac:79:31:40:c2:93:e0:1a: c5:d8:bb:1b:d1:41:57:c9:34:21:b0:c0:83:e3:57: 57:32:45:38:99:76:95:4b:49:c5:b9:59:7d:c6:3b: 67:cc:13:c5:b5:f4:3b:56:90:54:05:10:3d:2e:1a: f3:96:b8:e7:d7:eb:e1:8e:c8:02:cd:b5:48:7e:4b: 41:12:0f:91:df:ce:e0:08:44:36:3b:f0:e0:27:20: 97:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:6E:48:47:CF:D0:56:7A:A6:4B:27:5D:FE:48:B2:FD:09:EE:B8:BD X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/36AA48F2D55E11EAB56B562AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.77.192.0/21 Signature Algorithm: sha256WithRSAEncryption 1c:b9:7d:e9:a0:9d:34:f8:85:10:11:02:01:69:c1:4c:c0:84: df:00:ba:ea:09:5e:17:b9:3e:cd:7b:87:9a:64:c4:b1:c8:03: 4e:68:ca:45:06:36:f7:76:50:60:c0:5b:a3:42:56:f7:9a:a3: f1:6e:2d:f6:39:4c:6e:f1:89:f0:01:3e:3d:bf:4d:33:46:03: 50:8a:aa:69:45:34:08:0e:7b:99:1b:50:45:0b:aa:e1:33:06: d3:ec:4a:8f:ff:0a:66:2a:70:5e:ac:b6:74:7a:3d:b6:db:65: 39:fa:a6:b9:bb:fa:b2:6b:f2:2f:88:3c:91:cb:e9:bd:b1:e5: 51:5e:f3:2c:e6:9c:0b:11:84:6b:e9:53:23:c7:c7:02:f2:7f: c5:78:4a:f6:41:cd:aa:6a:98:12:fa:3d:5b:43:bc:7b:78:11: 32:fc:5c:3a:23:5b:ec:ee:ca:c4:00:f4:fc:42:55:dd:4e:92: 4c:05:64:7a:91:f9:e8:5b:91:7b:bd:d9:34:1d:42:0d:aa:00: 06:b7:91:49:f4:7e:22:4f:26:81:a2:3c:89:5b:a3:ac:39:54: a3:48:b7:d7:b8:03:fb:37:47:28:e4:dc:b4:78:0a:79:a4:53: 22:5b:c0:8a:8c:3a:1a:6d:20:e1:ce:1c:f2:9a:c9:73:31:9f: 19:df:3e:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTE1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg0Mi0yMmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA14Fe79ua/d0uAoWSPc/7HQnD8DQrwq82T2Ek5oyuTpsV5jCyMLS16KEHastP 9No+hJYkYSbyTLNWav1ns4dzAS1+TDrVJPVEJ6qKleSengR+DbPl3CJUKpX/b3WQ ju2NVedcoVzlGewdI5oB8eVwlM5fVVCqHWGqzW4mkG5edkYkJt3a2QE8g9LjN4A8 DRQufEFDuJmO1PVg2C4spIlivIYvWAtXRpNStBV8rHkxQMKT4BrF2Lsb0UFXyTQh sMCD41dXMkU4mXaVS0nFuVl9xjtnzBPFtfQ7VpBUBRA9Lhrzlrjn1+vhjsgCzbVI fktBEg+R387gCEQ2O/DgJyCX6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFANuSEfP 0FZ6pksnXf5Isv0J7ri9MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMzZBQTQ4RjJE NTVFMTFFQUI1NkI1NjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN9TcAwDQYJKoZIhvcNAQELBQADggEBABy5femgnTT4hRAR AgFpwUzAhN8AuuoJXhe5Ps17h5pkxLHIA05oykUGNvd2UGDAW6NCVveao/FuLfY5 TG7xifABPj2/TTNGA1CKqmlFNAgOe5kbUEULquEzBtPsSo//CmYqcF6stnR6Pbbb ZTn6prm7+rJr8i+IPJHL6b2x5VFe8yzmnAsRhGvpUyPHxwLyf8V4SvZBzapqmBL6 PVtDvHt4ETL8XDojW+zuysQA9PxCVd1OkkwFZHqR+ehbkXu92TQdQg2qAAa3kUn0 fiJPJoGiPIlbo6w5VKNIt9e4A/s3Ryjk3LR4CnmkUyJbwIqMOhptIOHOHPKayXMx nxnfPiQ= -----END CERTIFICATE-----Generated at Sat Sep 6 20:22:03 2025 by rpki-client