$ rpki-client -vvf rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/5A530D08ADE611EDB7013F5DC4F9AE02.roa File: 5A530D08ADE611EDB7013F5DC4F9AE02.roa (raw, json) Hash identifier: 3lKC8Qsq5K7lIYNSCr2N1N8GbsdjQHyz9EFfPLQHf8A= Subject key identifier: 32:FE:8A:12:06:4E:27:E0:AE:98:55:79:89:90:0A:25:A6:16:47:8C Certificate issuer: /CN=A912879A/serialNumber=D55604E1CDB095B1AC0AD4317B6557062304B1D0 Certificate serial: 34AD Authority key identifier: D5:56:04:E1:CD:B0:95:B1:AC:0A:D4:31:7B:65:57:06:23:04:B1:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/5A530D08ADE611EDB7013F5DC4F9AE02.roa Signing time: Mon 28 Jul 2025 14:50:45 +0000 ROA not before: Mon 28 Jul 2025 14:50:45 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38310 IP address blocks: 122.200.16.0/24 maxlen: 24 122.200.17.0/24 maxlen: 24 122.200.18.0/24 maxlen: 24 122.200.19.0/24 maxlen: 24 122.200.20.0/24 maxlen: 24 122.200.21.0/24 maxlen: 24 122.200.22.0/24 maxlen: 24 122.200.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.crl rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13485 (0x34ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912879A, serialNumber=D55604E1CDB095B1AC0AD4317B6557062304B1D0 Validity Not Before: Jul 28 14:50:45 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68878e45-57af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:1c:3e:be:95:1f:db:23:14:bf:43:46:ab:2b: 06:40:dc:42:93:65:b5:9c:32:71:2d:f9:95:5a:ac: 2e:96:db:dc:42:92:f0:2c:bc:00:05:04:eb:94:33: a1:e8:1e:b7:cf:e2:6a:4a:55:df:b1:85:42:20:6f: a3:ce:fe:be:a4:5e:e3:87:44:cc:2c:e2:96:5e:b8: 49:2b:f3:08:8a:76:bb:33:7c:f2:41:02:b6:3f:34: 59:32:5a:30:43:37:30:b6:7a:42:ea:52:ee:68:23: 3e:20:ae:be:1a:fb:c5:c5:41:d7:4c:2f:e8:c8:3e: d3:43:87:92:3d:29:a2:0b:54:37:82:e3:d9:f4:e7: ca:23:46:65:d4:1f:b0:8b:5c:88:7f:26:aa:dd:18: 69:64:8d:90:0f:d3:26:6f:4c:fe:1c:aa:fd:ac:fe: 17:59:4c:7d:d6:44:a9:1a:12:9c:44:fe:26:ed:40: 60:82:3b:fc:f3:e9:21:4b:fc:d4:b5:07:fc:e8:09: d5:b6:d9:b4:31:41:59:75:28:3e:7f:1d:8c:66:9c: 2d:78:ee:8c:44:ae:a3:e7:e8:56:77:59:e6:19:b8: 6b:4a:9d:ac:27:4b:a9:5d:93:52:cc:70:70:9a:ce: bd:e6:a4:a3:b9:90:79:f0:8b:05:88:09:ef:60:06: da:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:FE:8A:12:06:4E:27:E0:AE:98:55:79:89:90:0A:25:A6:16:47:8C X509v3 Authority Key Identifier: keyid:D5:56:04:E1:CD:B0:95:B1:AC:0A:D4:31:7B:65:57:06:23:04:B1:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1VYE4c2wlbGsCtQxe2VXBiMEsdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912879A/0C5364261D9211E28166B5F408B02CD2/5A530D08ADE611EDB7013F5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.200.16.0/21 Signature Algorithm: sha256WithRSAEncryption 15:93:a8:9f:40:da:52:70:7a:2a:08:bf:ef:84:f9:60:3f:0d: 59:1a:75:7a:b1:0f:fc:29:b0:06:c8:27:81:db:06:08:4d:08: 58:9d:61:19:72:77:52:97:c7:d6:7f:79:fc:ac:6e:e2:c2:28: 6e:a7:e4:c0:18:75:8b:b2:b2:01:2e:44:3f:2f:5e:a4:a6:06: 42:22:47:31:37:1c:88:cc:63:73:84:e5:d6:6d:98:bd:c1:1b: 41:2b:ea:98:fe:7a:5a:56:ca:f4:4c:1b:a6:79:fb:5b:ce:50: fb:8d:da:60:7b:ef:50:5b:bd:49:d6:dd:28:0d:63:e4:9f:c6: bf:bb:ce:df:39:57:e3:91:db:65:cd:c4:73:ff:9d:24:99:bd: 98:a0:8e:5e:99:17:52:46:a2:4d:4f:5a:34:63:3b:a0:55:0a: 80:85:c9:5b:bd:63:fd:84:8d:c2:1f:e9:5f:0d:74:0d:ac:14: de:3e:ec:77:39:36:fa:8b:a6:e2:78:10:b1:8d:10:30:70:63: 8a:4a:d4:38:13:e4:b0:1c:d3:f2:c4:dd:01:db:56:de:b1:bc: bb:58:46:71:de:11:f9:2a:59:bc:27:34:90:24:71:44:bd:8e: 8b:29:ac:1f:29:fb:9d:ca:dc:ce:78:5d:4d:af:b3:e4:98:70: 82:a6:78:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3OUExMTAvBgNVBAUTKEQ1NTYwNEUxQ0RCMDk1QjFBQzBBRDQzMTdCNjU1NzA2 MjMwNEIxRDAwHhcNMjUwNzI4MTQ1MDQ1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg3OGU0NS01N2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5xw+vpUf2yMUv0NGqysGQNxCk2W1nDJxLfmVWqwultvcQpLwLLwABQTrlDOh 6B63z+JqSlXfsYVCIG+jzv6+pF7jh0TMLOKWXrhJK/MIina7M3zyQQK2PzRZMlow QzcwtnpC6lLuaCM+IK6+GvvFxUHXTC/oyD7TQ4eSPSmiC1Q3guPZ9OfKI0Zl1B+w i1yIfyaq3RhpZI2QD9Mmb0z+HKr9rP4XWUx91kSpGhKcRP4m7UBggjv88+khS/zU tQf86AnVttm0MUFZdSg+fx2MZpwteO6MRK6j5+hWd1nmGbhrSp2sJ0upXZNSzHBw ms695qSjuZB58IsFiAnvYAbahwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDL+ihIG TifgrphVeYmQCiWmFkeMMB8GA1UdIwQYMBaAFNVWBOHNsJWxrArUMXtlVwYjBLHQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODc5QS8wQzUzNjQyNjFE OTIxMUUyODE2NkI1RjQwOEIwMkNEMi8xVllFNGMyd2xiR3NDdFF4ZTJWWEJpTUVz ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFWWUU0YzJ3bGJHc0N0UXhlMlZYQmlNRXNkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg3OUEvMEM1MzY0MjYxRDkyMTFFMjgxNjZCNUY0MDhCMDJDRDIvNUE1MzBEMDhB REU2MTFFREI3MDEzRjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN6yBAwDQYJKoZIhvcNAQELBQADggEBABWTqJ9A2lJweioI v++E+WA/DVkadXqxD/wpsAbIJ4HbBghNCFidYRlyd1KXx9Z/efysbuLCKG6n5MAY dYuysgEuRD8vXqSmBkIiRzE3HIjMY3OE5dZtmL3BG0Er6pj+elpWyvRMG6Z5+1vO UPuN2mB771BbvUnW3SgNY+Sfxr+7zt85V+OR22XNxHP/nSSZvZigjl6ZF1JGok1P WjRjO6BVCoCFyVu9Y/2EjcIf6V8NdA2sFN4+7Hc5NvqLpuJ4ELGNEDBwY4pK1DgT 5LAc0/LE3QHbVt6xvLtYRnHeEfkqWbwnNJAkcUS9josprB8p+53K3M54XU2vs+SY cIKmeAM= -----END CERTIFICATE-----Generated at Sun Aug 10 10:46:56 2025 by rpki-client