$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/F5CC48A804D011E994985639C4F9AE02.roa File: F5CC48A804D011E994985639C4F9AE02.roa (raw, json) Hash identifier: doD+yTdaGVyKwIsSSZCRhj5n7eg36BNqzqq+qHdoKjY= Subject key identifier: 2C:78:17:00:18:1F:92:74:97:3C:A0:32:B4:02:89:5E:D6:D3:FA:19 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F70 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/F5CC48A804D011E994985639C4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:34 +0000 ROA not before: Sat 30 Aug 2025 16:35:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 23724 IP address blocks: 218.30.25.0/24 maxlen: 24 218.30.26.0/23 maxlen: 23 218.30.26.0/24 maxlen: 24 218.30.28.0/23 maxlen: 23 218.30.96.0/19 maxlen: 19 218.30.99.0/24 maxlen: 24 218.30.107.0/24 maxlen: 24 218.30.110.0/24 maxlen: 24 218.30.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8048 (0x1f70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32855-3c89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:0c:9b:ef:48:8b:c6:a7:d0:d5:02:7a:9a:64: 8f:fa:69:1d:b1:47:d6:40:3d:1c:a5:87:8e:92:b2: 2a:c5:19:61:60:cd:7c:de:7a:c6:9d:85:d1:fc:5e: 84:6b:6a:96:d6:e2:0c:19:13:51:30:52:1c:30:88: 60:9a:9b:ee:4c:49:ed:ff:f2:a2:e2:7f:ab:00:62: 2f:ed:1e:94:68:21:98:34:a2:15:96:47:f9:83:3b: c4:cd:d5:53:ce:dc:c1:92:68:fa:66:9b:01:00:74: 92:3d:d0:e9:52:f9:4d:0c:42:46:14:eb:7a:b8:66: 44:28:a0:c8:10:38:52:aa:f8:bf:9e:ff:c3:4d:d5: 37:ce:27:ad:ef:00:06:84:21:78:77:72:07:cc:4c: 84:4c:b6:15:18:29:31:f7:65:87:09:10:26:53:e0: 6c:50:66:1f:51:1a:02:82:6f:c9:b4:e4:3d:2d:fd: 21:e8:71:2e:d7:fb:4e:b5:47:7b:3d:7c:61:97:90: 71:00:d7:53:23:55:23:42:2e:ee:6f:50:42:c0:e5: 43:1a:b5:62:11:37:9b:c4:e3:cf:cd:e1:7d:e0:a7: e7:06:66:9e:1d:39:fd:f4:00:61:18:06:e8:46:c6: 9d:26:d1:57:6a:03:6e:82:e9:bb:6b:79:ee:46:d3: c1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:78:17:00:18:1F:92:74:97:3C:A0:32:B4:02:89:5E:D6:D3:FA:19 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/F5CC48A804D011E994985639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.30.25.0-218.30.29.255 218.30.96.0/19 Signature Algorithm: sha256WithRSAEncryption b3:fb:cf:e2:82:54:8a:ce:10:84:d9:a7:af:31:3a:ca:78:8a: c6:10:d4:51:8b:4b:ac:c5:6b:f5:76:ff:70:39:24:42:2f:b2: c7:7d:cd:91:02:82:96:66:c9:5d:a8:f5:29:f7:fc:37:e9:8d: c5:a0:9c:77:e4:ff:8f:27:10:ca:b6:58:ad:f7:3b:d7:3a:89: 0e:9e:d5:72:1f:f8:90:58:b1:47:ce:ed:04:36:ed:12:ab:a2: a4:6a:5d:20:d7:27:fc:84:50:4e:8c:a8:de:c5:51:ec:b4:ab: 27:0e:b7:6d:d2:1e:da:95:17:99:0f:08:86:d7:a4:27:d4:15: 68:47:77:fe:f1:f9:31:0d:99:2f:23:c9:b6:72:70:35:17:9f: 37:35:e1:e7:0f:e0:cc:42:ce:aa:0f:22:3e:06:c1:10:ef:80: dd:fc:a8:19:da:8b:da:f1:8f:04:8a:3f:3f:6c:90:c1:1b:81: 16:4d:a9:d3:c4:97:0b:6b:43:01:ab:bd:78:ed:f6:12:9d:73: d8:1d:fb:c6:71:9c:b0:e8:42:a8:fc:20:9d:0c:21:17:c1:0b: 42:0d:9e:ac:a7:03:e6:a5:13:6e:9c:e1:61:af:71:86:50:9a: 5c:9c:34:9a:8b:fb:de:d3:0b:fb:44:ab:bd:cf:77:32:9e:36: b1:46:b4:cd -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICH3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg1NS0zYzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Ayb70iLxqfQ1QJ6mmSP+mkdsUfWQD0cpYeOkrIqxRlhYM183nrGnYXR/F6E a2qW1uIMGRNRMFIcMIhgmpvuTEnt//Ki4n+rAGIv7R6UaCGYNKIVlkf5gzvEzdVT ztzBkmj6ZpsBAHSSPdDpUvlNDEJGFOt6uGZEKKDIEDhSqvi/nv/DTdU3ziet7wAG hCF4d3IHzEyETLYVGCkx92WHCRAmU+BsUGYfURoCgm/JtOQ9Lf0h6HEu1/tOtUd7 PXxhl5BxANdTI1UjQi7ub1BCwOVDGrViETebxOPPzeF94KfnBmaeHTn99ABhGAbo RsadJtFXagNugum7a3nuRtPBCwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFCx4FwAY H5J0lzygMrQCiV7W0/oZMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRjVDQzQ4QTgw NEQwMTFFOTk0OTg1NjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEANoeGQMEAdoeHAMEBdoeYDANBgkqhkiG9w0BAQsFAAOC AQEAs/vP4oJUis4QhNmnrzE6yniKxhDUUYtLrMVr9Xb/cDkkQi+yx33NkQKClmbJ Xaj1Kff8N+mNxaCcd+T/jycQyrZYrfc71zqJDp7Vch/4kFixR87tBDbtEquipGpd INcn/IRQToyo3sVR7LSrJw63bdIe2pUXmQ8IhtekJ9QVaEd3/vH5MQ2ZLyPJtnJw NRefNzXh5w/gzELOqg8iPgbBEO+A3fyoGdqL2vGPBIo/P2yQwRuBFk2p08SXC2tD Aau9eO32Ep1z2B37xnGcsOhCqPwgnQwhF8ELQg2erKcD5qUTbpzhYa9xhlCaXJw0 mov73tML+0Srvc93Mp42sUa0zQ== -----END CERTIFICATE-----Generated at Sat Sep 6 20:19:40 2025 by rpki-client