$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/309BECEE09DA11EBB9839313C4F9AE02.roa File: 309BECEE09DA11EBB9839313C4F9AE02.roa (raw, json) Hash identifier: EDqMjKpQ8JJE9YEiS61qJ0Zv7RsV2OUGzCzEdCEHKog= Subject key identifier: 23:4F:3D:EF:4C:93:68:18:D1:7E:15:7F:60:02:CB:58:C8:7D:A0:7C Certificate issuer: /CN=A91DD799/serialNumber=F672D3B6244CA4C8D3FE200826A8A49FAB2C7612 Certificate serial: 34CA Authority key identifier: F6:72:D3:B6:24:4C:A4:C8:D3:FE:20:08:26:A8:A4:9F:AB:2C:76:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nLTtiRMpMjT_iAIJqikn6ssdhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/309BECEE09DA11EBB9839313C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:12 +0000 ROA not before: Tue 02 Sep 2025 15:01:12 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4749 IP address blocks: 180.235.156.0/24 maxlen: 24 180.235.157.0/24 maxlen: 24 180.235.158.0/24 maxlen: 24 180.235.159.0/24 maxlen: 24 203.62.208.0/24 maxlen: 24 203.62.209.0/24 maxlen: 24 203.62.210.0/24 maxlen: 24 203.62.211.0/24 maxlen: 24 203.62.212.0/24 maxlen: 24 203.62.213.0/24 maxlen: 24 203.62.214.0/24 maxlen: 24 203.62.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/9nLTtiRMpMjT_iAIJqikn6ssdhI.crl rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/9nLTtiRMpMjT_iAIJqikn6ssdhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nLTtiRMpMjT_iAIJqikn6ssdhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13514 (0x34ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD799, serialNumber=F672D3B6244CA4C8D3FE200826A8A49FAB2C7612 Validity Not Before: Sep 2 15:01:12 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b706b7-1f28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:44:e0:43:b7:2c:f7:77:81:96:1d:42:a3:9b: 62:de:88:be:ed:4c:4f:27:53:e3:a2:1a:79:21:e6: 4e:07:82:61:2f:d6:5e:be:fa:f2:ea:6e:ed:fa:fe: 70:8d:b3:ff:67:33:a4:fb:27:bc:28:76:ac:64:f2: 0f:ce:59:50:1a:39:32:7a:52:57:ae:53:6b:80:83: 08:c5:9a:ff:d0:a2:74:2e:fa:d0:9b:5b:52:dd:e7: 90:2f:93:a6:e3:b4:09:01:96:c5:a9:68:35:dc:92: 20:ae:7d:3d:d2:99:17:76:33:e4:26:91:ea:cd:39: 63:c0:8d:67:7d:f3:5d:00:ad:f9:42:7a:ee:f9:35: bd:68:cc:44:d5:4e:26:76:ac:75:ea:c5:54:c1:8f: 71:9c:de:44:ff:18:48:e2:a0:63:28:f9:07:a3:b3: ee:92:f1:3d:98:8a:95:5d:4f:74:8a:f9:ae:76:b3: fc:16:d8:e7:ad:03:4a:e7:50:31:d0:84:93:bb:00: 78:07:6c:94:87:1f:56:92:83:ad:f0:4b:21:dd:bd: c1:82:56:a9:6a:15:5e:77:46:2d:59:a7:1e:59:d4: 4e:a5:0d:5b:38:6c:0f:ec:d1:a7:a9:b3:76:e9:0c: 26:b1:43:ca:e7:22:20:d9:c6:be:1a:e3:d6:3d:90: b1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:4F:3D:EF:4C:93:68:18:D1:7E:15:7F:60:02:CB:58:C8:7D:A0:7C X509v3 Authority Key Identifier: keyid:F6:72:D3:B6:24:4C:A4:C8:D3:FE:20:08:26:A8:A4:9F:AB:2C:76:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/9nLTtiRMpMjT_iAIJqikn6ssdhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9nLTtiRMpMjT_iAIJqikn6ssdhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD799/151349981D9511E2BDEBB9F908B02CD2/309BECEE09DA11EBB9839313C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.235.156.0/22 203.62.208.0/21 Signature Algorithm: sha256WithRSAEncryption 82:cb:10:1c:dd:44:60:d5:59:9f:36:66:f2:0f:90:01:41:52: de:76:3b:94:fe:10:c8:b7:94:96:f4:a5:2a:b7:5d:6a:a6:f9: 74:33:61:6e:2f:89:f1:a0:fd:05:0e:c6:e7:94:29:d9:04:d3: 4a:8f:37:29:2d:09:59:94:0a:8b:60:4c:a3:21:75:d8:0a:7a: 0f:75:56:aa:b4:30:28:41:99:e6:32:74:e0:f1:11:12:0f:41: cd:e7:6d:54:e7:5e:0f:52:e4:64:d7:5a:76:7f:91:1e:9b:e5: fa:24:35:b7:96:26:ba:53:ea:48:ce:25:d8:95:ef:d1:64:78: e9:36:d2:3b:67:ca:d4:d6:22:2d:c2:6d:03:1a:89:97:6a:7d: e3:f6:f2:93:cd:05:9a:5a:28:77:d4:94:00:f3:ff:98:f2:0a: 2a:55:aa:41:cd:c6:22:da:ad:03:99:cb:8d:5c:73:3d:1c:eb: a9:95:c2:a5:64:06:75:ee:c1:50:ef:ac:db:2f:34:75:f0:4d: 32:cc:1e:3d:c5:ac:7e:57:69:a4:47:a0:52:75:0c:42:08:c5: 15:04:8a:1b:94:c5:d5:0d:41:24:15:54:bd:b6:2b:67:e5:c8: ca:6d:d7:52:42:dc:7e:cb:6f:a0:c1:db:cb:bd:0b:01:3e:f2: f7:57:81:0f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3OTkxMTAvBgNVBAUTKEY2NzJEM0I2MjQ0Q0E0QzhEM0ZFMjAwODI2QThBNDlG QUIyQzc2MTIwHhcNMjUwOTAyMTUwMTEyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZiNy0xZjI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0TgQ7cs93eBlh1Co5ti3oi+7UxPJ1Pjohp5IeZOB4JhL9Zevvry6m7t+v5w jbP/ZzOk+ye8KHasZPIPzllQGjkyelJXrlNrgIMIxZr/0KJ0LvrQm1tS3eeQL5Om 47QJAZbFqWg13JIgrn090pkXdjPkJpHqzTljwI1nffNdAK35Qnru+TW9aMxE1U4m dqx16sVUwY9xnN5E/xhI4qBjKPkHo7PukvE9mIqVXU90ivmudrP8FtjnrQNK51Ax 0ISTuwB4B2yUhx9WkoOt8Esh3b3BglapahVed0YtWaceWdROpQ1bOGwP7NGnqbN2 6QwmsUPK5yIg2ca+GuPWPZCxPwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCNPPe9M k2gY0X4Vf2ACy1jIfaB8MB8GA1UdIwQYMBaAFPZy07YkTKTI0/4gCCaopJ+rLHYS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc5OS8xNTEzNDk5ODFE OTUxMUUyQkRFQkI5RjkwOEIwMkNEMi85bkxUdGlSTXBNalRfaUFJSnFpa242c3Nk aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzluTFR0aVJNcE1qVF9pQUlKcWlrbjZzc2RoSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ3OTkvMTUxMzQ5OTgxRDk1MTFFMkJERUJCOUY5MDhCMDJDRDIvMzA5QkVDRUUw OURBMTFFQkI5ODM5MzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAK065wDBAPLPtAwDQYJKoZIhvcNAQELBQADggEBAILLEBzd RGDVWZ82ZvIPkAFBUt52O5T+EMi3lJb0pSq3XWqm+XQzYW4vifGg/QUOxueUKdkE 00qPNyktCVmUCotgTKMhddgKeg91Vqq0MChBmeYydODxERIPQc3nbVTnXg9S5GTX WnZ/kR6b5fokNbeWJrpT6kjOJdiV79FkeOk20jtnytTWIi3CbQMaiZdqfeP28pPN BZpaKHfUlADz/5jyCipVqkHNxiLarQOZy41ccz0c66mVwqVkBnXuwVDvrNsvNHXw TTLMHj3FrH5XaaRHoFJ1DEIIxRUEihuUxdUNQSQVVL22K2flyMpt11JC3H7Lb6DB 28u9CwE+8vdXgQ8= -----END CERTIFICATE-----Generated at Thu Sep 18 23:27:17 2025 by rpki-client