$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/4BB76870066011EEA5F59657C4F9AE02.roa File: 4BB76870066011EEA5F59657C4F9AE02.roa (raw, json) Hash identifier: bhR5rDRi92lQT+/4ZT+LwH+kvujHBgyqcJUxAMDwnCU= Subject key identifier: 0F:E3:37:40:FB:03:49:B9:60:CB:14:73:FA:A8:C0:E3:02:83:E4:B2 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F64 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/4BB76870066011EEA5F59657C4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:22 +0000 ROA not before: Sat 30 Aug 2025 16:35:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 140330 IP address blocks: 110.87.0.0/19 maxlen: 19 110.87.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8036 (0x1f64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:22 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b3284a-7642 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:aa:f1:55:61:1a:b1:94:75:6e:c9:e1:c3:10: 6c:ce:c6:11:5c:34:ba:13:49:9e:b4:f1:f0:98:c1: d0:e8:7e:a2:29:e3:41:08:b0:e2:37:01:88:81:4d: 74:a2:70:b4:2a:1f:04:95:c0:23:02:a9:6f:55:fd: 05:b2:ae:5d:5e:44:ae:91:ce:54:2b:f8:a5:c6:bd: 45:4d:7b:bf:a8:ca:5e:34:4b:83:03:e8:c8:2d:01: 38:f9:65:13:19:31:2a:0e:b0:97:4e:f2:d9:73:c9: 09:41:ca:41:34:22:5c:27:4c:a9:d1:38:ea:3c:9c: a2:0c:c0:61:36:ef:d0:e8:f0:0e:64:bd:ed:06:d9: a4:64:01:09:32:fc:45:bb:f9:97:7f:51:fb:0d:23: 79:ce:77:42:56:c6:fd:e4:ab:a0:94:4a:00:60:d6: ab:72:87:50:dc:65:7a:64:d2:7b:16:25:e0:cd:31: 30:8a:3a:9d:05:a5:30:81:cd:74:b9:68:d0:e0:a3: 2d:ab:d6:fb:f6:30:ed:2f:4e:a6:d7:10:70:9b:9f: ff:d8:f7:e4:70:d7:a4:88:46:51:16:74:7b:9b:1b: 01:ee:98:17:06:01:6b:53:e1:94:1a:0d:ce:bb:15: 67:83:20:da:bb:81:d8:a0:40:09:dd:a9:3f:eb:38: 28:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E3:37:40:FB:03:49:B9:60:CB:14:73:FA:A8:C0:E3:02:83:E4:B2 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/4BB76870066011EEA5F59657C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.87.0.0/19 110.87.64.0/19 Signature Algorithm: sha256WithRSAEncryption 3f:a8:75:f8:c5:8a:4c:51:64:b3:2d:a4:40:0f:af:b2:dd:2a: 4c:9d:49:cd:c7:09:83:29:7c:ca:77:a9:d6:d2:b3:b7:c5:f1: 34:2e:4c:af:d7:f0:69:64:5a:cf:dc:2d:b0:6e:dc:7f:44:43: 5d:59:dc:29:62:1b:5c:65:e3:78:6d:ef:19:91:e2:e4:d5:a4: cf:6d:25:51:51:1f:3f:48:03:7f:80:12:8d:0d:a5:a5:4e:4c: 76:98:02:bb:e3:df:11:87:40:cd:a4:ac:52:e6:50:f6:7f:a3: 7b:a4:b0:fd:89:f7:70:d8:18:74:cb:df:22:8a:9d:59:28:c4: 97:e0:df:a7:cc:c8:c6:76:c4:06:11:70:b5:84:c8:c4:42:c5: 7c:f0:90:d0:b3:27:22:3a:7f:b9:3c:67:cb:68:ea:fe:70:b8: ef:59:23:7c:51:48:8d:14:5e:77:79:3d:5f:c3:98:09:ac:16: 88:36:d1:ba:7b:5a:68:ce:36:c0:75:38:6f:8a:39:0c:cc:c1: 3b:c4:68:7a:71:9b:2c:9f:6a:6f:d8:c4:c1:83:59:f0:e4:45: 70:79:0f:0a:63:f2:48:f6:fc:50:e6:b3:fa:28:fc:62:27:91: 05:af:4f:c0:25:97:69:0d:e7:84:c8:b7:c3:ab:09:74:7f:2f: 81:3c:2f:2c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICH2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg0YS03NjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqrxVWEasZR1bsnhwxBszsYRXDS6E0metPHwmMHQ6H6iKeNBCLDiNwGIgU10 onC0Kh8ElcAjAqlvVf0Fsq5dXkSukc5UK/ilxr1FTXu/qMpeNEuDA+jILQE4+WUT GTEqDrCXTvLZc8kJQcpBNCJcJ0yp0TjqPJyiDMBhNu/Q6PAOZL3tBtmkZAEJMvxF u/mXf1H7DSN5zndCVsb95KuglEoAYNarcodQ3GV6ZNJ7FiXgzTEwijqdBaUwgc10 uWjQ4KMtq9b79jDtL06m1xBwm5//2PfkcNekiEZRFnR7mxsB7pgXBgFrU+GUGg3O uxVngyDau4HYoEAJ3ak/6zgo+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFA/jN0D7 A0m5YMsUc/qowOMCg+SyMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvNEJCNzY4NzAw NjYwMTFFRUE1RjU5NjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAVuVwADBAVuV0AwDQYJKoZIhvcNAQELBQADggEBAD+odfjF ikxRZLMtpEAPr7LdKkydSc3HCYMpfMp3qdbSs7fF8TQuTK/X8GlkWs/cLbBu3H9E Q11Z3CliG1xl43ht7xmR4uTVpM9tJVFRHz9IA3+AEo0NpaVOTHaYArvj3xGHQM2k rFLmUPZ/o3uksP2J93DYGHTL3yKKnVkoxJfg36fMyMZ2xAYRcLWEyMRCxXzwkNCz JyI6f7k8Z8to6v5wuO9ZI3xRSI0UXnd5PV/DmAmsFog20bp7WmjONsB1OG+KOQzM wTvEaHpxmyyfam/YxMGDWfDkRXB5Dwpj8kj2/FDms/oo/GInkQWvT8All2kN54TI t8OrCXR/L4E8Lyw= -----END CERTIFICATE-----Generated at Sat Sep 6 20:23:48 2025 by rpki-client