$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa File: D3CE622872D911E9B41E5B11C4F9AE02.roa (raw, json) Hash identifier: Rq28F8DG0yv7BlbarhDxq9/F29Ep/HSvPI5qoAbvOgs= Subject key identifier: FE:19:A2:78:00:AD:7E:11:2B:B9:93:B7:90:22:89:4D:BF:BB:40:D3 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F7C Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:45 +0000 ROA not before: Sat 30 Aug 2025 16:35:45 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4847 IP address blocks: 115.171.0.0/16 maxlen: 16 115.171.0.0/18 maxlen: 18 115.171.64.0/18 maxlen: 18 115.171.128.0/18 maxlen: 18 115.171.192.0/18 maxlen: 18 218.30.179.0/24 maxlen: 24 218.30.180.0/24 maxlen: 24 218.30.181.0/24 maxlen: 24 218.30.182.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8060 (0x1f7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:45 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32860-f521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:57:a8:7b:0c:c6:b8:bd:40:28:c8:ea:fd:81: 66:73:96:31:63:89:a5:7d:ea:32:a3:81:21:1a:fb: 20:08:6b:c0:6a:2b:4b:f3:9c:24:94:93:8f:1b:0a: 18:d0:46:ca:c0:13:30:b2:34:d4:39:13:7e:21:92: 9d:a4:94:d9:02:6c:ad:2b:32:63:74:3b:dd:43:3b: 94:21:b5:61:fb:db:f2:ae:f2:9d:72:d5:d3:2f:75: 6d:4c:bb:c2:0e:76:31:a7:b0:31:e2:fd:30:b1:9c: fb:b3:53:3f:7c:a2:68:99:b6:90:c6:4d:ea:73:1d: 9f:2d:8e:03:8f:eb:c7:e3:41:20:52:e7:12:ea:a8: 44:33:c1:7e:7b:d7:5f:2b:74:b9:cd:11:c5:98:e8: 75:67:20:bb:ce:3b:38:46:d7:05:de:5e:39:fb:82: 87:e5:65:e6:94:38:dd:b6:56:cd:6f:04:f7:33:68: 80:5a:28:54:d7:fe:81:be:bd:e2:de:b6:de:4b:ce: d0:9d:ea:6b:e7:91:11:8d:f7:28:c5:75:53:5a:41: 52:9c:00:65:c7:b5:9a:cd:c0:bd:4e:a6:9b:60:ad: d1:73:dd:4d:33:b5:58:89:a7:b4:9e:7d:6e:ca:17: fa:06:16:95:2e:b0:9f:f5:92:01:de:6c:be:1d:61: 10:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:19:A2:78:00:AD:7E:11:2B:B9:93:B7:90:22:89:4D:BF:BB:40:D3 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/D3CE622872D911E9B41E5B11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.171.0.0/16 218.30.179.0-218.30.182.255 Signature Algorithm: sha256WithRSAEncryption 35:b6:c3:6c:67:81:64:3b:96:7f:ed:7e:07:35:2c:c6:47:15: 18:ae:bb:3d:2b:77:f7:a5:c4:6a:47:64:fa:58:45:d3:7c:5c: 07:35:14:75:64:0f:d1:01:32:0d:e3:a6:85:95:22:53:9a:7f: ff:0d:e7:0c:d3:fe:64:37:ef:dc:1a:cb:c0:14:ff:40:d4:97: 47:c2:0e:bf:e2:08:cb:ea:0a:49:e5:7a:9e:35:45:ff:b8:58: b7:52:b5:ef:b0:44:08:2f:1d:b7:54:c8:b7:93:6d:62:80:db: e6:63:9c:5d:78:49:de:28:b8:f8:76:50:57:75:c4:30:cd:c7: 94:f6:ae:0d:96:77:5b:5e:f7:29:56:9c:b0:a6:23:90:65:f1: 6d:01:d5:55:f2:46:55:ea:e5:3c:8e:37:e5:5f:a5:04:3f:30: de:a4:77:b1:a9:6c:e8:e8:3e:69:29:55:d9:a7:d2:db:ad:74: fd:8a:c4:d3:d3:33:09:ef:b5:6b:60:73:df:ec:c4:78:67:d0: 93:57:f3:82:48:ce:80:fd:44:65:be:52:42:9f:f4:ae:43:50: 74:99:0d:18:2f:93:4e:43:30:30:79:36:40:78:73:5c:20:7f: de:e9:49:e9:3b:1e:4b:37:42:ec:8a:4e:65:ad:b5:b4:a3:75: 33:ea:4d:27 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgICH3wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTQ1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg2MC1mNTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1eoewzGuL1AKMjq/YFmc5YxY4mlfeoyo4EhGvsgCGvAaitL85wklJOPGwoY 0EbKwBMwsjTUORN+IZKdpJTZAmytKzJjdDvdQzuUIbVh+9vyrvKdctXTL3VtTLvC DnYxp7Ax4v0wsZz7s1M/fKJombaQxk3qcx2fLY4Dj+vH40EgUucS6qhEM8F+e9df K3S5zRHFmOh1ZyC7zjs4RtcF3l45+4KH5WXmlDjdtlbNbwT3M2iAWihU1/6Bvr3i 3rbeS87Qnepr55ERjfcoxXVTWkFSnABlx7WazcC9TqabYK3Rc91NM7VYiae0nn1u yhf6BhaVLrCf9ZIB3my+HWEQLwIDAQABo4ICojCCAp4wHQYDVR0OBBYEFP4ZongA rX4RK7mTt5AiiU2/u0DTMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRDNDRTYyMjg3 MkQ5MTFFOUI0MUU1QjExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLAYIKwYBBQUHAQcBAf8E HTAbMBkEAgABMBMDAwBzqzAMAwQA2h6zAwQA2h62MA0GCSqGSIb3DQEBCwUAA4IB AQA1tsNsZ4FkO5Z/7X4HNSzGRxUYrrs9K3f3pcRqR2T6WEXTfFwHNRR1ZA/RATIN 46aFlSJTmn//DecM0/5kN+/cGsvAFP9A1JdHwg6/4gjL6gpJ5XqeNUX/uFi3UrXv sEQILx23VMi3k21igNvmY5xdeEneKLj4dlBXdcQwzceU9q4NlndbXvcpVpywpiOQ ZfFtAdVV8kZV6uU8jjflX6UEPzDepHexqWzo6D5pKVXZp9LbrXT9isTT0zMJ77Vr YHPf7MR4Z9CTV/OCSM6A/URlvlJCn/SuQ1B0mQ0YL5NOQzAweTZAeHNcIH/e6Unp Ox5LN0Lsik5lrbW0o3Uz6k0n -----END CERTIFICATE-----Generated at Sat Sep 6 13:17:42 2025 by rpki-client