$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/54DA33D2FB2E11EFB488A95EC4F9AE02.roa File: 54DA33D2FB2E11EFB488A95EC4F9AE02.roa (raw, json) Hash identifier: L/7VzM2fbo0IdE808LBeTzf3z0geWQ0SpeUJCZmWPBg= Subject key identifier: E8:CF:22:8D:03:6D:92:1F:B0:79:D1:2C:4D:4E:DD:BE:49:E8:07:A5 Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: 05 Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/54DA33D2FB2E11EFB488A95EC4F9AE02.roa Signing time: Fri 07 Mar 2025 08:29:48 +0000 ROA not before: Fri 07 Mar 2025 08:29:48 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 38235 IP address blocks: 118.67.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:56:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502, serialNumber=386C300ED72F12B905478A33CEF27799254A691C Validity Not Before: Mar 7 08:29:48 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67caae7c-d0b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:19:ed:40:90:83:dc:a0:7d:4c:72:8c:82:ed: 71:c0:df:01:dd:9a:5e:3d:bd:84:b4:3a:ba:b8:12: 5b:ff:74:79:49:3b:45:85:d9:1a:37:7c:9c:ef:45: d0:6b:04:43:03:0a:77:46:4e:d0:05:b5:82:ce:9b: d5:8e:b8:5a:f7:71:4c:d3:b2:55:e7:1b:5f:4a:17: d1:04:00:63:71:a0:a9:65:d6:d3:87:8d:a5:8d:ed: 40:ef:49:fe:0c:55:ae:dc:a0:14:ae:f8:5b:d0:2d: 14:09:2d:65:7d:54:0d:0f:ab:31:fd:7a:ad:8b:ef: 54:a1:1a:55:c8:d8:30:b4:99:f5:31:bc:36:88:aa: b4:f7:ce:54:42:be:2f:af:56:32:a4:e4:57:48:dc: 82:8f:c9:a7:44:94:a8:da:8b:0d:d6:62:ca:98:a1: 54:a0:41:09:b2:21:44:bf:30:1d:56:ad:9a:7a:bc: 81:09:c4:12:c4:7e:f5:c9:22:da:99:0e:ef:7d:c1: fc:3a:54:98:5d:d1:45:56:71:84:aa:37:ad:0d:85: ac:0f:6b:69:62:03:29:1a:ad:d2:5e:8f:e9:ee:9a: 49:3b:c4:77:d4:4f:62:a6:de:37:24:f7:1c:b4:92: fb:f5:46:90:42:ca:8f:60:c2:ce:c9:27:98:ca:f9: d3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:CF:22:8D:03:6D:92:1F:B0:79:D1:2C:4D:4E:DD:BE:49:E8:07:A5 X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/54DA33D2FB2E11EFB488A95EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.67.204.0/22 Signature Algorithm: sha256WithRSAEncryption 70:9f:9e:00:e9:94:db:d7:d0:24:0f:35:ee:81:63:cb:be:97: 16:cb:95:42:56:9d:ee:ef:ad:04:96:1e:28:f5:45:1d:b6:8a: 8c:87:1d:c7:26:8f:e0:e5:d9:6b:30:39:e2:8f:36:e6:1b:23: d8:33:db:ee:63:c0:5a:31:be:0e:2a:76:83:e2:74:5e:4b:3a: 20:ea:24:4f:f1:4f:bc:bd:45:71:15:a3:f6:64:5a:d8:5f:9a: 68:77:64:eb:63:cf:a5:8c:3f:d3:1c:34:e0:5d:f7:40:98:35: 72:e7:99:d8:cb:07:13:2f:6a:4f:77:01:f4:31:d8:c6:81:85: a6:02:9e:b2:7e:f9:ec:f5:fd:a8:88:dd:12:aa:1f:1d:59:db: 1b:53:94:5b:8e:b2:a0:fb:c3:df:d8:67:7c:3d:62:2e:ac:3b: df:1f:9f:38:8e:7b:c8:29:e2:2a:a5:ad:66:d5:73:ce:1b:9c: 05:e1:d3:5d:df:ab:ab:9b:85:e3:25:b1:53:ea:55:16:78:c3: b2:8e:2b:06:c5:49:f1:78:68:06:b4:01:c1:82:a2:c9:4b:f3: 2a:ef:e6:4e:76:1a:8f:65:ee:cd:b8:b1:79:26:c5:0f:35:a4: 30:cf:8c:c7:14:52:a7:33:51:de:13:9b:f8:8a:12:d7:21:1d: 8d:97:39:ff -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTUwMjExMC8GA1UEBRMoMzg2QzMwMEVENzJGMTJCOTA1NDc4QTMzQ0VGMjc3OTky NTRBNjkxQzAeFw0yNTAzMDcwODI5NDhaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Y2FhZTdjLWQwYjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSGe1AkIPcoH1McoyC7XHA3wHdml49vYS0Orq4Elv/dHlJO0WF2Ro3fJzvRdBr BEMDCndGTtAFtYLOm9WOuFr3cUzTslXnG19KF9EEAGNxoKll1tOHjaWN7UDvSf4M Va7coBSu+FvQLRQJLWV9VA0PqzH9eq2L71ShGlXI2DC0mfUxvDaIqrT3zlRCvi+v VjKk5FdI3IKPyadElKjaiw3WYsqYoVSgQQmyIUS/MB1WrZp6vIEJxBLEfvXJItqZ Du99wfw6VJhd0UVWcYSqN60NhawPa2liAykardJej+numkk7xHfUT2Km3jck9xy0 kvv1RpBCyo9gws7JJ5jK+dP5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6M8ijQNt kh+wedEsTU7dvknoB6UwHwYDVR0jBBgwFoAUOGwwDtcvErkFR4ozzvJ3mSVKaRww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNTAyLzg3QzNGRDBBRkIy OTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FS dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0d3d0R0Y3ZFcmtGUjRvenp2SjNtU1ZLYVJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTUwMi84N0MzRkQwQUZCMjkxMUVGQjc2NkRDNzZDNEY5QUUwMi81NERBMzNEMkZC MkUxMUVGQjQ4OEE5NUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAnZDzDANBgkqhkiG9w0BAQsFAAOCAQEAcJ+eAOmU29fQJA81 7oFjy76XFsuVQlad7u+tBJYeKPVFHbaKjIcdxyaP4OXZazA54o825hsj2DPb7mPA WjG+Dip2g+J0Xks6IOokT/FPvL1FcRWj9mRa2F+aaHdk62PPpYw/0xw04F33QJg1 cueZ2MsHEy9qT3cB9DHYxoGFpgKesn757PX9qIjdEqofHVnbG1OUW46yoPvD39hn fD1iLqw73x+fOI57yCniKqWtZtVzzhucBeHTXd+rq5uF4yWxU+pVFnjDso4rBsVJ 8XhoBrQBwYKiyUvzKu/mTnYaj2XuzbixeSbFDzWkMM+MxxRSpzNR3hOb+IoS1yEd jZc5/w== -----END CERTIFICATE-----Generated at Wed Nov 5 10:29:00 2025 by rpki-client