$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/4F2C2040066011EEA5F59657C4F9AE02.roa File: 4F2C2040066011EEA5F59657C4F9AE02.roa (raw, json) Hash identifier: y7yNxeywRY1r8qYqNTXpqknUD3wMI4iVn5vIBSPv3v0= Subject key identifier: 5D:4E:9C:DA:AB:AF:49:5A:B1:AD:40:B5:DB:DF:CB:75:5C:9E:8D:9E Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F78 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/4F2C2040066011EEA5F59657C4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:41 +0000 ROA not before: Sat 30 Aug 2025 16:35:41 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4812 IP address blocks: 116.232.0.0/16 maxlen: 24 124.74.0.0/16 maxlen: 24 124.75.0.0/16 maxlen: 16 124.76.0.0/15 maxlen: 24 124.78.0.0/15 maxlen: 24 202.96.194.0/24 maxlen: 24 202.101.0.0/19 maxlen: 24 202.101.32.0/19 maxlen: 19 202.109.0.0/18 maxlen: 18 202.109.64.0/18 maxlen: 24 218.1.0.0/16 maxlen: 24 218.30.132.0/24 maxlen: 24 222.68.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8056 (0x1f78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:41 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b3285d-676e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:13:a3:0f:27:69:1d:a7:17:66:7c:1f:30:12: 9e:eb:06:d0:97:aa:d2:01:ed:8b:5f:e3:a5:2f:44: 82:8d:a0:44:f4:e0:40:2c:94:ae:97:cc:ed:45:76: 0f:84:5f:15:60:86:38:0e:94:d0:40:10:84:7b:10: bf:1a:30:fc:af:af:a9:b1:65:7b:42:0d:d0:d2:04: 47:f6:a7:ab:94:4e:4b:b8:18:7a:92:11:ce:4f:26: c8:4f:99:9a:ec:60:9d:be:47:f6:f1:82:14:dd:c7: b0:e3:a8:d5:99:9a:d7:a4:08:5a:9c:05:45:ec:1c: 40:0d:99:dc:80:2a:12:96:b3:81:0b:37:e0:65:08: 62:01:be:1e:48:51:8c:64:23:1a:b2:03:95:20:40: b2:a3:ae:92:2c:aa:36:e4:cf:fe:cd:7c:d2:35:2f: 0a:76:e5:ad:d9:74:80:54:70:e5:5a:1b:ed:a2:0f: aa:ee:d1:2c:6b:7e:98:1a:26:85:11:4d:7d:f2:f7: 1d:ca:c8:87:f7:ed:de:aa:c0:e9:20:95:2f:99:24: 38:0e:16:29:3a:8d:e7:e6:7b:51:1a:9d:1b:74:22: c2:64:8b:98:ed:17:d9:cc:1a:38:30:ad:40:f8:af: 21:91:18:eb:80:39:08:54:9b:6f:b3:ee:31:ec:c7: 3c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:4E:9C:DA:AB:AF:49:5A:B1:AD:40:B5:DB:DF:CB:75:5C:9E:8D:9E X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/4F2C2040066011EEA5F59657C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.232.0.0/16 124.74.0.0-124.79.255.255 202.96.194.0/24 202.101.0.0/18 202.109.0.0/17 218.1.0.0/16 218.30.132.0/24 222.68.240.0/20 Signature Algorithm: sha256WithRSAEncryption 0b:50:cc:b2:d7:81:b6:c2:07:0a:04:a4:c0:ff:23:10:99:a7: 12:4e:8b:87:fa:85:70:43:f2:ab:32:95:b8:c6:36:90:c0:a2: 96:fb:48:67:04:85:d6:34:8d:d0:41:24:70:2c:27:b2:20:55: 62:43:83:e1:21:f4:15:39:13:08:ac:d5:e4:c1:c3:a0:5b:3c: ae:b7:b2:f0:af:51:f4:49:fd:0b:ef:ec:65:50:da:48:4c:42: 28:25:7e:14:da:3d:e1:e6:3f:c8:2b:9e:bf:2f:18:8a:c4:34: 1c:b4:62:19:15:71:b8:8b:8e:eb:0f:ad:03:68:48:6a:46:27: f7:6c:92:72:08:f8:42:86:86:41:8e:bc:d9:f2:b1:c9:28:26: 70:c0:5a:1c:52:74:a0:d4:ab:77:78:46:6d:b9:19:69:f2:cc: ea:a1:ae:60:53:50:6b:61:9f:9d:9b:c6:fe:b9:6d:18:b8:ed: 02:97:d3:43:96:7f:4e:86:86:1e:d4:36:d4:b1:fa:cf:b8:32: 54:70:b6:1e:a2:ec:e1:17:25:80:97:b6:4f:38:0b:e8:26:5c: 1d:68:69:c2:3b:bc:57:51:75:4f:20:38:3b:56:f9:a0:1b:82: f6:57:4a:54:e8:e5:3e:5a:1d:e7:79:23:f6:38:09:58:f9:1e: 22:d8:c0:03 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICH3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTQxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg1ZC02NzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArBOjDydpHacXZnwfMBKe6wbQl6rSAe2LX+OlL0SCjaBE9OBALJSul8ztRXYP hF8VYIY4DpTQQBCEexC/GjD8r6+psWV7Qg3Q0gRH9qerlE5LuBh6khHOTybIT5ma 7GCdvkf28YIU3cew46jVmZrXpAhanAVF7BxADZncgCoSlrOBCzfgZQhiAb4eSFGM ZCMasgOVIECyo66SLKo25M/+zXzSNS8KduWt2XSAVHDlWhvtog+q7tEsa36YGiaF EU198vcdysiH9+3eqsDpIJUvmSQ4DhYpOo3n5ntRGp0bdCLCZIuY7RfZzBo4MK1A +K8hkRjrgDkIVJtvs+4x7Mc8YwIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFF1OnNqr r0lasa1Atdvfy3Vcno2eMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvNEYyQzIwNDAw NjYwMTFFRUE1RjU5NjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgABMDQDAwB06DAKAwMBfEoDAwR8QAMEAMpgwgMEBsplAAMEB8ptAAMD ANoBAwQA2h6EAwQE3kTwMA0GCSqGSIb3DQEBCwUAA4IBAQALUMyy14G2wgcKBKTA /yMQmacSTouH+oVwQ/KrMpW4xjaQwKKW+0hnBIXWNI3QQSRwLCeyIFViQ4PhIfQV ORMIrNXkwcOgWzyut7Lwr1H0Sf0L7+xlUNpITEIoJX4U2j3h5j/IK56/LxiKxDQc tGIZFXG4i47rD60DaEhqRif3bJJyCPhChoZBjrzZ8rHJKCZwwFocUnSg1Kt3eEZt uRlp8szqoa5gU1BrYZ+dm8b+uW0YuO0Cl9NDln9OhoYe1DbUsfrPuDJUcLYeouzh FyWAl7ZPOAvoJlwdaGnCO7xXUXVPIDg7VvmgG4L2V0pU6OU+Wh3neSP2OAlY+R4i 2MAD -----END CERTIFICATE-----Generated at Sat Sep 6 20:23:48 2025 by rpki-client