$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa File: 1347AA9019FE11ECB459B141C4F9AE02.roa (raw, json) Hash identifier: fCn+m1Y3s4qDIZUNYo4x+QJzX9KNTkFwagXKOoylYkw= Subject key identifier: F2:A8:12:C5:E8:82:A3:94:B3:49:4B:D1:CE:54:8B:D9:58:66:65:84 Certificate issuer: /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Certificate serial: 0527 Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa Signing time: Wed 25 Jun 2025 00:04:10 +0000 ROA not before: Wed 25 Jun 2025 00:04:10 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.20.197.0/24 maxlen: 24 203.20.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BB, serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Validity Not Before: Jun 25 00:04:10 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=685b3cfa-12e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f0:ef:19:e4:66:a3:08:cf:2f:07:02:3f:1c: 40:f9:15:1a:6e:07:cf:be:96:88:29:aa:93:1e:c9: 6c:54:fb:12:6e:46:c2:df:9c:d9:65:f1:1c:e9:f0: fb:ff:2a:4a:86:31:23:1c:6e:8e:15:56:35:6f:c5: 7f:77:10:9a:fc:37:0a:1b:bd:a2:4d:6a:2c:1f:3b: 43:36:85:a2:dc:9d:f1:87:a5:3a:1f:e5:f1:c2:fc: 57:2c:55:53:2a:48:b4:35:94:73:8c:fb:51:1b:f4: 09:82:0c:9b:0e:41:c9:95:3f:34:a3:b4:c2:3d:38: bd:52:55:72:a2:4c:e5:ac:10:cc:05:01:0d:3d:0e: 79:c9:1f:14:21:d1:12:77:39:43:13:e1:d4:46:5d: 58:03:6e:84:68:46:1f:ad:1d:c7:d9:3d:8a:66:75: b5:94:55:79:97:76:66:c7:da:07:53:8c:3a:6a:fd: 4a:e8:1e:09:9c:c0:65:4b:f3:6c:c3:11:8e:39:b3: eb:d8:13:bf:86:3e:b0:77:6e:e9:f1:dd:95:c9:4b: 63:c1:23:df:8e:bf:5f:83:9e:df:f4:81:02:85:99: aa:90:e0:18:0b:92:a8:4c:c8:2c:aa:67:7f:93:6d: d4:68:ed:65:5e:fc:96:99:5c:94:4d:b8:e4:7b:a3: 77:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:A8:12:C5:E8:82:A3:94:B3:49:4B:D1:CE:54:8B:D9:58:66:65:84 X509v3 Authority Key Identifier: keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.197.0/24 203.20.199.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:0e:30:cf:c2:b4:fa:55:12:01:57:d5:36:5a:7e:79:24:8b: ff:29:08:f6:06:b8:b7:6c:54:d2:f4:45:8f:d8:94:13:ab:a4: fc:1e:3f:ef:70:d1:4e:29:55:ea:02:5a:85:97:ee:66:d8:64: ed:dd:4b:71:55:73:e2:f3:51:44:cf:a8:76:6e:b7:9b:9d:0a: 1d:0b:f6:a9:fc:88:a8:1e:97:a7:b7:99:04:86:69:94:54:3c: 9d:89:dd:9b:79:67:f2:3a:84:d4:df:28:ef:06:ce:90:df:cb: 7b:42:e0:4e:ba:f4:25:c5:a5:68:41:b5:3d:d1:b9:c9:e5:f6: 6b:f0:dd:63:0e:1a:c9:c3:b5:8a:ef:7d:22:c1:d3:7c:6e:04: d0:d7:3b:24:f8:f4:f4:78:53:43:d3:23:2a:8e:06:6d:e6:c8: 7f:a9:24:5b:e8:89:f8:49:9c:86:10:38:76:cb:12:a9:02:84: 29:6a:68:e0:0d:3f:62:fe:9f:54:e7:91:85:9c:8c:3f:69:f7: 9d:ac:4a:90:4d:dc:87:8c:ec:2b:ab:96:66:f8:cf:22:80:75: 52:5f:8b:9d:a6:79:a6:89:6e:67:79:a2:f8:43:22:c4:1f:bf: 85:45:04:45:d3:66:ca:db:69:1b:c5:b5:21:1e:92:29:ff:cb: 77:00:cc:cb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkIxMTAvBgNVBAUTKDJDQ0ExMzU0MEYwMTNCOTNCMjNDOURGMTREOTYxN0RB NDBDQjI2NzcwHhcNMjUwNjI1MDAwNDEwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViM2NmYS0xMmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvDvGeRmowjPLwcCPxxA+RUabgfPvpaIKaqTHslsVPsSbkbC35zZZfEc6fD7 /ypKhjEjHG6OFVY1b8V/dxCa/DcKG72iTWosHztDNoWi3J3xh6U6H+XxwvxXLFVT Kki0NZRzjPtRG/QJggybDkHJlT80o7TCPTi9UlVyokzlrBDMBQENPQ55yR8UIdES dzlDE+HURl1YA26EaEYfrR3H2T2KZnW1lFV5l3Zmx9oHU4w6av1K6B4JnMBlS/Ns wxGOObPr2BO/hj6wd27p8d2VyUtjwSPfjr9fg57f9IEChZmqkOAYC5KoTMgsqmd/ k23UaO1lXvyWmVyUTbjke6N3XQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPKoEsXo gqOUs0lL0c5Ui9lYZmWEMB8GA1UdIwQYMBaAFCzKE1QPATuTsjyd8U2WF9pAyyZ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQi81Q0VBNTQ5NDE2 RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81T3lQSjN4VFpZWDJrRExK bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNb1RWQThCTzVPeVBKM3hUWllYMmtETEpuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU2QkIvNUNFQTU0OTQxNkQ1MTFFQ0E3RjNGNDZBQzRGOUFFMDIvMTM0N0FBOTAx OUZFMTFFQ0I0NTlCMTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLFMUDBADLFMcwDQYJKoZIhvcNAQELBQADggEBAIwOMM/C tPpVEgFX1TZafnkki/8pCPYGuLdsVNL0RY/YlBOrpPweP+9w0U4pVeoCWoWX7mbY ZO3dS3FVc+LzUUTPqHZut5udCh0L9qn8iKgel6e3mQSGaZRUPJ2J3Zt5Z/I6hNTf KO8GzpDfy3tC4E669CXFpWhBtT3Rucnl9mvw3WMOGsnDtYrvfSLB03xuBNDXOyT4 9PR4U0PTIyqOBm3myH+pJFvoifhJnIYQOHbLEqkChClqaOANP2L+n1TnkYWcjD9p 952sSpBN3IeM7Curlmb4zyKAdVJfi52meaaJbmd5ovhDIsQfv4VFBEXTZsrbaRvF tSEekin/y3cAzMs= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:54 2025 by rpki-client