$ rpki-client -vvf rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa File: 518ED8E0B10511EAA4771B5BC4F9AE02.roa (raw, json) Hash identifier: CznDNzibfuN72mTm1dEEU/9+8bTnV0dxmZQmYKqdCoU= Subject key identifier: 4F:66:A6:4E:2B:FF:AA:98:B9:28:E2:BD:11:86:EC:80:FB:79:51:B9 Certificate issuer: /CN=A912A3C4/serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Certificate serial: 08E0 Authority key identifier: 95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa Signing time: Mon 02 Jun 2025 21:06:13 +0000 ROA not before: Mon 02 Jun 2025 21:06:13 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 38887 IP address blocks: 103.150.248.0/23 maxlen: 24 2406:fc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 20:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2272 (0x8e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A3C4, serialNumber=9523AD25ECAD5CC525EC42E9EC1DAE4FDFD86057 Validity Not Before: Jun 2 21:06:13 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e1245-e207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:49:2f:05:26:b4:1c:e5:16:b3:bb:04:6f:ee: 7b:29:b8:bf:96:b4:4f:f3:19:21:67:e1:7c:c8:18: fd:82:21:24:5b:76:b6:11:4c:94:58:e7:62:5c:6d: 91:0a:42:cb:c1:8f:cf:ad:33:0a:99:7b:6d:cb:7f: 3d:1c:34:38:23:43:51:37:86:b3:72:f4:73:52:45: 7b:dc:06:cb:0a:cb:09:67:28:2d:78:8a:bc:e0:66: bc:74:2c:3a:23:2e:a1:5f:af:dd:07:70:b9:03:0b: c5:dd:2a:c6:62:35:b7:0e:d8:c1:4f:38:78:fa:9b: 22:76:08:9f:0b:e2:93:e9:fe:c3:cc:5c:f0:d9:44: 94:2d:04:82:2e:62:67:5f:12:56:c8:2c:01:98:7c: 8c:aa:c4:54:04:a7:6d:5d:81:c3:4f:fd:51:60:07: 5b:77:eb:61:8d:13:5e:46:7e:25:2f:de:ef:46:74: ea:29:0b:18:af:b3:a5:81:06:2d:42:94:a9:77:5c: ca:5d:7c:d7:eb:af:0f:7e:cc:2e:13:20:06:8f:a9: a4:54:ca:1a:e1:95:48:73:df:56:5f:63:be:e4:a1: e7:72:05:dc:20:71:00:b9:cf:03:e9:7d:ce:13:11: a3:75:24:17:b5:62:ee:8e:09:dd:a0:a3:95:20:a8: c0:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:66:A6:4E:2B:FF:AA:98:B9:28:E2:BD:11:86:EC:80:FB:79:51:B9 X509v3 Authority Key Identifier: keyid:95:23:AD:25:EC:AD:5C:C5:25:EC:42:E9:EC:1D:AE:4F:DF:D8:60:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/lSOtJeytXMUl7ELp7B2uT9_YYFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSOtJeytXMUl7ELp7B2uT9_YYFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A3C4/3EE64C1AB10411EAA384165AC4F9AE02/518ED8E0B10511EAA4771B5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.150.248.0/23 IPv6: 2406:fc0::/32 Signature Algorithm: sha256WithRSAEncryption 34:1e:ee:3b:0b:94:38:ba:4d:88:13:46:4d:a5:b8:a2:ad:c8: 3e:78:7c:37:79:ce:5e:a7:3b:af:b5:82:8e:a7:1a:27:82:f4: ca:84:5f:78:2f:25:b8:cc:c9:14:cd:f6:34:e9:a6:fc:76:88: 62:e9:05:3b:00:b3:45:f6:1f:ab:fb:d6:f0:38:5b:22:24:7d: af:c3:88:e5:13:a8:fe:c9:87:ce:14:5c:34:85:cb:a9:e2:09: c5:da:9e:22:5f:f2:6d:08:7b:db:29:cd:53:a2:d3:8d:1a:89: 66:3c:6e:84:92:32:3b:63:e3:8f:ef:00:16:3c:b9:8c:53:19: 1d:1b:59:29:d9:a3:2d:97:45:60:97:32:14:f4:1f:07:b0:ab: ff:a9:ac:67:24:13:a4:4a:4d:e7:a3:fe:f6:81:ca:f4:24:a8: 42:57:10:c5:4c:4d:f6:7f:0f:32:35:97:1c:82:09:3e:a6:f2: 9a:e3:c8:86:4e:be:35:16:e1:47:22:a5:38:1c:75:47:ff:38: fe:99:7b:c5:34:19:0e:53:e9:ab:32:4d:1c:9e:67:7d:67:64: 53:a2:23:db:4e:96:04:35:a6:d0:e4:ba:ae:1e:48:1b:2c:cb: 32:fd:2b:cd:7d:05:e7:b4:da:36:23:ab:6f:6e:df:82:f8:5e: 0a:c2:31:fa -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzQzQxMTAvBgNVBAUTKDk1MjNBRDI1RUNBRDVDQzUyNUVDNDJFOUVDMURBRTRG REZEODYwNTcwHhcNMjUwNjAyMjEwNjEzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlMTI0NS1lMjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6kkvBSa0HOUWs7sEb+57Kbi/lrRP8xkhZ+F8yBj9giEkW3a2EUyUWOdiXG2R CkLLwY/PrTMKmXtty389HDQ4I0NRN4azcvRzUkV73AbLCssJZygteIq84Ga8dCw6 Iy6hX6/dB3C5AwvF3SrGYjW3DtjBTzh4+psidgifC+KT6f7DzFzw2USULQSCLmJn XxJWyCwBmHyMqsRUBKdtXYHDT/1RYAdbd+thjRNeRn4lL97vRnTqKQsYr7OlgQYt QpSpd1zKXXzX668PfswuEyAGj6mkVMoa4ZVIc99WX2O+5KHncgXcIHEAuc8D6X3O ExGjdSQXtWLujgndoKOVIKjANQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFE9mpk4r /6qYuSjivRGG7ID7eVG5MB8GA1UdIwQYMBaAFJUjrSXsrVzFJexC6ewdrk/f2GBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTNDNC8zRUU2NEMxQUIx MDQxMUVBQTM4NDE2NUFDNEY5QUUwMi9sU090SmV5dFhNVWw3RUxwN0IydVQ5X1lZ RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTT3RKZXl0WE1VbDdFTHA3QjJ1VDlfWVlGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzQzQvM0VFNjRDMUFCMTA0MTFFQUEzODQxNjVBQzRGOUFFMDIvNTE4RUQ4RTBC MTA1MTFFQUE0NzcxQjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnlvgwDQQCAAIwBwMFACQGD8AwDQYJKoZIhvcNAQELBQAD ggEBADQe7jsLlDi6TYgTRk2luKKtyD54fDd5zl6nO6+1go6nGieC9MqEX3gvJbjM yRTN9jTppvx2iGLpBTsAs0X2H6v71vA4WyIkfa/DiOUTqP7Jh84UXDSFy6niCcXa niJf8m0Ie9spzVOi040aiWY8boSSMjtj44/vABY8uYxTGR0bWSnZoy2XRWCXMhT0 Hwewq/+prGckE6RKTeej/vaByvQkqEJXEMVMTfZ/DzI1lxyCCT6m8prjyIZOvjUW 4UcipTgcdUf/OP6Ze8U0GQ5T6asyTRyeZ31nZFOiI9tOlgQ1ptDkuq4eSBssyzL9 K819Bee02jYjq29u34L4XgrCMfo= -----END CERTIFICATE-----Generated at Sun Jun 22 03:28:58 2025 by rpki-client