$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/F0F715D8D91811EFAD9B2462C4F9AE02.roa File: F0F715D8D91811EFAD9B2462C4F9AE02.roa (raw, json) Hash identifier: 0eC5c42+O3/zR7ToxD38Dr0t546Zok3PpDvZy47K3EU= Subject key identifier: B4:33:D7:34:1A:46:DF:DD:8C:34:7C:DF:91:3E:58:24:A8:49:CD:47 Certificate issuer: /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Certificate serial: 0528 Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/F0F715D8D91811EFAD9B2462C4F9AE02.roa Signing time: Wed 25 Jun 2025 00:04:11 +0000 ROA not before: Wed 25 Jun 2025 00:04:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 203.20.192.0/24 maxlen: 24 203.20.193.0/24 maxlen: 24 203.20.194.0/24 maxlen: 24 203.20.195.0/24 maxlen: 24 203.20.196.0/24 maxlen: 24 203.20.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1320 (0x528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BB, serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Validity Not Before: Jun 25 00:04:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=685b3cfb-b8ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2c:e3:ab:34:98:1a:e2:d7:ac:ac:ce:8b:d1: b5:26:cd:8c:98:3c:58:1c:46:eb:3f:55:da:0b:3b: 78:bf:ae:57:3f:d0:f9:fd:7a:22:01:ae:4a:d1:84: 7c:ad:db:72:15:fe:41:9d:09:e2:9b:17:c1:d0:f2: de:89:33:27:0e:c7:1b:09:f5:61:4a:1e:dc:d8:5f: 65:6d:d8:2c:24:2e:57:0a:11:8e:32:6f:46:06:be: 37:8d:e1:df:15:10:ee:b1:0e:44:ef:99:ab:fd:0d: 1e:94:79:dd:10:c7:db:ac:dc:88:8c:65:b1:82:bd: c0:a5:ae:95:b4:56:9a:d7:7e:a4:8d:aa:ae:7c:09: e4:ce:b8:0a:3c:47:6c:a5:18:07:cc:a2:e0:79:4f: 46:bd:e6:d2:f0:20:56:45:66:b8:25:c2:b5:4b:b5: c9:5f:d2:4a:29:1d:da:ca:f7:2b:3b:b5:e8:29:cb: e5:8f:df:22:19:f5:bc:87:f7:b2:55:7b:33:a0:03: a3:21:94:41:aa:dd:fc:cf:32:8a:d1:a2:d4:02:47: 53:ee:4b:86:d8:3e:d0:29:f6:8e:1a:51:0b:bb:06: 0b:76:52:b4:f8:21:f3:52:24:ef:c5:69:25:da:e5: 98:0e:e2:69:c7:fb:86:08:8b:3d:63:1a:2a:15:d2: b5:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:33:D7:34:1A:46:DF:DD:8C:34:7C:DF:91:3E:58:24:A8:49:CD:47 X509v3 Authority Key Identifier: keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/F0F715D8D91811EFAD9B2462C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.192.0-203.20.196.255 203.20.198.0/24 Signature Algorithm: sha256WithRSAEncryption c0:50:c4:b6:3e:06:6a:69:f7:cf:da:0e:1a:89:31:15:80:b8: 4c:03:8c:9c:81:2c:7d:fd:83:87:28:50:b4:25:78:56:ba:49: 30:29:c3:ad:5c:48:a5:d5:e6:2f:9b:c2:4d:78:28:f7:5c:da: b0:6f:76:2c:01:92:16:33:99:60:2c:16:7d:64:b8:48:62:a3: 8f:ab:27:4c:47:c4:1b:13:2c:b7:46:6b:ee:d1:0d:45:ae:1e: c4:8e:7a:60:0a:fb:92:53:8d:8e:ff:79:2e:b1:38:fa:a6:40: bc:5d:18:f9:bf:f4:9f:ee:4e:75:24:c4:08:a5:59:9d:65:77: 2f:17:12:30:8b:c0:d6:cd:ba:04:aa:1e:d0:b8:79:2f:a8:0b: 59:74:12:7e:52:79:af:38:2a:ff:5f:bf:b5:ac:5f:c5:20:07: 35:ed:bc:11:e3:62:c6:48:23:e9:11:2a:7e:51:11:ba:e5:f4: bc:80:98:34:81:e2:c5:e2:47:24:e8:f7:32:0c:63:00:17:27: a5:78:75:ef:ab:78:c0:48:27:e7:f2:db:8c:d3:ac:ec:95:a5: 40:09:5f:2c:e8:e0:d5:94:3e:30:a2:20:3b:7e:a9:ab:f0:77: 67:4f:b2:d7:17:b2:4b:50:ac:ff:9e:af:a3:41:3b:a1:01:e3: 5e:eb:82:68 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkIxMTAvBgNVBAUTKDJDQ0ExMzU0MEYwMTNCOTNCMjNDOURGMTREOTYxN0RB NDBDQjI2NzcwHhcNMjUwNjI1MDAwNDExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODViM2NmYi1iOGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyzjqzSYGuLXrKzOi9G1Js2MmDxYHEbrP1XaCzt4v65XP9D5/XoiAa5K0YR8 rdtyFf5BnQnimxfB0PLeiTMnDscbCfVhSh7c2F9lbdgsJC5XChGOMm9GBr43jeHf FRDusQ5E75mr/Q0elHndEMfbrNyIjGWxgr3Apa6VtFaa136kjaqufAnkzrgKPEds pRgHzKLgeU9GvebS8CBWRWa4JcK1S7XJX9JKKR3ayvcrO7XoKcvlj98iGfW8h/ey VXszoAOjIZRBqt38zzKK0aLUAkdT7kuG2D7QKfaOGlELuwYLdlK0+CHzUiTvxWkl 2uWYDuJpx/uGCIs9YxoqFdK1kQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFLQz1zQa Rt/djDR835E+WCSoSc1HMB8GA1UdIwQYMBaAFCzKE1QPATuTsjyd8U2WF9pAyyZ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQi81Q0VBNTQ5NDE2 RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81T3lQSjN4VFpZWDJrRExK bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNb1RWQThCTzVPeVBKM3hUWllYMmtETEpuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU2QkIvNUNFQTU0OTQxNkQ1MTFFQ0E3RjNGNDZBQzRGOUFFMDIvRjBGNzE1RDhE OTE4MTFFRkFEOUIyNDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEBssUwAMEAMsUxAMEAMsUxjANBgkqhkiG9w0BAQsFAAOC AQEAwFDEtj4Gamn3z9oOGokxFYC4TAOMnIEsff2DhyhQtCV4VrpJMCnDrVxIpdXm L5vCTXgo91zasG92LAGSFjOZYCwWfWS4SGKjj6snTEfEGxMst0Zr7tENRa4exI56 YAr7klONjv95LrE4+qZAvF0Y+b/0n+5OdSTECKVZnWV3LxcSMIvA1s26BKoe0Lh5 L6gLWXQSflJ5rzgq/1+/taxfxSAHNe28EeNixkgj6REqflERuuX0vICYNIHixeJH JOj3MgxjABcnpXh176t4wEgn5/LbjNOs7JWlQAlfLOjg1ZQ+MKIgO36pq/B3Z0+y 1xeyS1Cs/56vo0E7oQHjXuuCaA== -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:44 2025 by rpki-client