$ rpki-client -vvf rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/BDF659C4445111F0945A7E49C4F9AE02.roa File: BDF659C4445111F0945A7E49C4F9AE02.roa (raw, json) Hash identifier: NrM1GT0GOIEPUd0x6/lOomv0lodf7Nxw+vo5Gb1q27Y= Subject key identifier: 35:89:7B:63:BE:46:DC:7C:00:3F:5E:EC:33:6B:39:8F:71:BF:51:A1 Certificate issuer: /CN=A911C53A/serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Certificate serial: 03 Authority key identifier: B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/BDF659C4445111F0945A7E49C4F9AE02.roa Signing time: Sun 08 Jun 2025 10:17:12 +0000 ROA not before: Sun 08 Jun 2025 10:17:12 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137208 IP address blocks: 163.227.122.0/24 maxlen: 24 163.227.123.0/24 maxlen: 24 2001:df5:6740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C53A, serialNumber=B08B59E5D10705C5CB2D3CDB8565B328D502F550 Validity Not Before: Jun 8 10:17:12 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68456328-5b2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:fe:cc:36:d4:91:db:db:55:16:3c:b9:5d:95: a8:7c:7c:5a:1b:34:69:7b:a3:4f:73:bb:69:74:ef: fa:f9:80:53:55:f9:a7:50:42:c2:a5:c1:20:31:6d: 81:f9:36:54:e3:88:de:a0:38:04:a7:c0:b7:45:0e: 9a:2d:2a:b0:42:08:6e:4a:3e:27:b8:72:89:4a:d8: 2a:f6:06:5b:62:9b:65:78:ce:e7:a0:81:61:ad:9b: 4e:c8:38:1a:f2:70:63:63:9a:47:d1:3f:11:93:dc: b2:df:de:40:ce:74:e6:59:4f:44:20:9c:4d:1f:11: 77:4a:01:92:53:02:5a:37:11:34:ae:34:54:49:d4: d1:77:a7:07:b7:dd:d6:80:b1:51:b2:48:46:a2:9e: 44:8d:4a:ba:49:02:a4:e7:57:a3:33:da:05:9d:04: 91:4c:7b:2e:6b:55:f0:67:5f:5e:4f:b5:a7:91:cb: 66:7f:de:61:2d:95:97:71:e4:f4:f0:2a:47:73:cb: cf:23:94:1c:7f:9b:de:3e:6c:83:ce:82:87:9f:35: 5c:7f:ef:f3:17:fc:1e:be:1e:a9:7e:a9:fd:1b:40: bb:dc:c0:68:a7:7b:3a:a9:dc:36:40:b7:82:d7:1d: 2b:04:21:20:5b:17:1c:a1:d1:86:a2:ad:4e:ab:3e: 40:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:89:7B:63:BE:46:DC:7C:00:3F:5E:EC:33:6B:39:8F:71:BF:51:A1 X509v3 Authority Key Identifier: keyid:B0:8B:59:E5:D1:07:05:C5:CB:2D:3C:DB:85:65:B3:28:D5:02:F5:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/sItZ5dEHBcXLLTzbhWWzKNUC9VA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sItZ5dEHBcXLLTzbhWWzKNUC9VA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C53A/4745056E445111F0A09E8A24C4F9AE02/BDF659C4445111F0945A7E49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.122.0/23 IPv6: 2001:df5:6740::/48 Signature Algorithm: sha256WithRSAEncryption d4:84:12:a7:28:34:c2:0d:c2:6b:44:f1:4d:a8:3d:60:e3:c0: 9f:99:ff:cd:65:ad:a0:0f:72:30:80:d8:70:ab:20:cf:81:74: 17:47:b0:88:e9:02:a9:24:85:e7:04:e3:f2:da:cd:a3:69:ea: 0d:e2:b0:93:e2:37:7e:e9:bd:f6:40:c7:15:03:f8:1b:62:d2: 7a:77:f3:23:a9:c7:bb:d5:be:f1:8b:5c:a8:fa:f5:92:85:a1: 2d:e7:49:82:75:ac:2c:e5:12:07:fd:be:6b:b1:f3:99:c3:56: a2:fe:2c:93:62:0c:6e:47:7b:42:cd:f4:cb:6d:5f:74:88:d9: 4c:80:d1:f3:86:fa:32:b4:9e:e2:1f:c2:09:26:7f:59:57:dc: 17:5a:56:2b:71:d5:48:be:a0:7d:68:af:1e:e8:d2:34:f2:52: cf:30:00:93:53:57:6b:c8:3a:9d:a4:59:f9:12:00:91:e8:ec: 4f:34:31:a7:62:30:f4:b6:b3:40:ee:a3:59:ba:5b:99:19:74: bc:a2:69:d0:2d:59:40:1f:90:6f:a9:dc:46:a5:dd:be:16:da: c0:47:38:59:41:8b:7d:3e:26:ea:71:12:45:c4:00:d5:07:3a: a5:ff:a0:fa:bc:ac:51:26:5d:71:54:94:78:91:e9:cf:91:e4: d4:f4:37:b1 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QzUzQTExMC8GA1UEBRMoQjA4QjU5RTVEMTA3MDVDNUNCMkQzQ0RCODU2NUIzMjhE NTAyRjU1MDAeFw0yNTA2MDgxMDE3MTJaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NDU2MzI4LTViMmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDT/sw21JHb21UWPLldlah8fFobNGl7o09zu2l07/r5gFNV+adQQsKlwSAxbYH5 NlTjiN6gOASnwLdFDpotKrBCCG5KPie4colK2Cr2Bltim2V4zueggWGtm07IOBry cGNjmkfRPxGT3LLf3kDOdOZZT0QgnE0fEXdKAZJTAlo3ETSuNFRJ1NF3pwe33daA sVGySEainkSNSrpJAqTnV6Mz2gWdBJFMey5rVfBnX15PtaeRy2Z/3mEtlZdx5PTw Kkdzy88jlBx/m94+bIPOgoefNVx/7/MX/B6+Hql+qf0bQLvcwGinezqp3DZAt4LX HSsEISBbFxyh0YairU6rPkDLAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUNYl7Y75G 3HwAP17sM2s5j3G/UaEwHwYDVR0jBBgwFoAUsItZ5dEHBcXLLTzbhWWzKNUC9VAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFDNTNBLzQ3NDUwNTZFNDQ1 MTExRjBBMDlFOEEyNEM0RjlBRTAyL3NJdFo1ZEVIQmNYTExUemJoV1d6S05VQzlW QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc0l0WjVkRUhCY1hMTFR6YmhXV3pLTlVDOVZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QzUzQS80NzQ1MDU2RTQ0NTExMUYwQTA5RThBMjRDNEY5QUUwMi9CREY2NTlDNDQ0 NTExMUYwOTQ1QTdFNDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAaPjejAPBAIAAjAJAwcAIAEN9WdAMA0GCSqGSIb3DQEBCwUA A4IBAQDUhBKnKDTCDcJrRPFNqD1g48Cfmf/NZa2gD3IwgNhwqyDPgXQXR7CI6QKp JIXnBOPy2s2jaeoN4rCT4jd+6b32QMcVA/gbYtJ6d/Mjqce71b7xi1yo+vWShaEt 50mCdaws5RIH/b5rsfOZw1ai/iyTYgxuR3tCzfTLbV90iNlMgNHzhvoytJ7iH8IJ Jn9ZV9wXWlYrcdVIvqB9aK8e6NI08lLPMACTU1dryDqdpFn5EgCR6OxPNDGnYjD0 trNA7qNZuluZGXS8omnQLVlAH5BvqdxGpd2+FtrARzhZQYt9PibqcRJFxADVBzql /6D6vKxRJl1xVJR4kenPkeTU9Dex -----END CERTIFICATE-----Generated at Sun Jun 15 10:24:45 2025 by rpki-client