$ rpki-client -vvf rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/0682A6A03DC411EBBFE0EA13C4F9AE02.roa File: 0682A6A03DC411EBBFE0EA13C4F9AE02.roa (raw, json) Hash identifier: EOvQ8HaxPjxipV4KN6XjAG2h4Ay1JAfcvxLrF0MKaek= Subject key identifier: 1B:31:88:77:D9:CD:E5:90:D0:68:7A:06:95:5F:0F:30:65:47:94:62 Certificate issuer: /CN=A913A0F3/serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Certificate serial: 168C Authority key identifier: 84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/0682A6A03DC411EBBFE0EA13C4F9AE02.roa Signing time: Sat 14 Jun 2025 17:07:38 +0000 ROA not before: Sat 14 Jun 2025 17:07:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55508 IP address blocks: 203.110.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 16:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5772 (0x168c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A0F3, serialNumber=84D2904C48BFF55D9AAE0887B82C330F1B9B29AC Validity Not Before: Jun 14 17:07:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684dac59-9295 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1a:01:01:ec:bb:89:6a:2a:83:b8:b0:07:37: 68:cd:34:c7:44:8f:af:11:da:a8:58:f8:90:3f:6a: 58:bc:cb:83:53:b8:cb:35:2e:fb:92:62:bf:cc:1a: a9:76:ec:59:0b:75:f7:4a:30:11:18:90:e4:bc:4a: ef:00:54:42:92:9a:c8:42:52:7d:1a:5c:41:19:a1: 80:ac:89:b4:cb:0f:65:e8:7b:17:fe:49:ab:28:f0: f1:ec:a5:9a:0b:f9:ce:45:46:14:2c:75:4f:2c:57: 40:70:22:45:3a:c9:60:fb:86:2d:0e:4c:9c:15:8d: 87:69:77:cd:c2:33:ac:0c:9b:15:71:cb:b4:d9:65: b3:bf:81:8a:ba:10:a9:61:30:4e:33:d7:1a:be:44: 59:6d:03:63:3d:16:5f:e7:25:f9:8c:dc:cf:5b:65: a9:4e:11:75:43:e5:87:45:6d:56:8a:fc:ed:ee:ef: 58:1e:46:86:9c:b3:37:65:71:4f:cd:11:f2:1c:54: 90:4a:5c:21:87:71:10:2b:c5:79:c6:98:1f:41:b9: a8:34:e0:82:f5:f2:01:70:46:d5:ea:ed:d4:bb:c4: 8d:cf:cf:11:a7:c5:6a:ce:8b:4e:f4:8a:b3:47:2d: 8a:e8:20:8e:92:0d:b6:dc:89:d0:2d:3c:c3:f0:9d: 9c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:31:88:77:D9:CD:E5:90:D0:68:7A:06:95:5F:0F:30:65:47:94:62 X509v3 Authority Key Identifier: keyid:84:D2:90:4C:48:BF:F5:5D:9A:AE:08:87:B8:2C:33:0F:1B:9B:29:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/hNKQTEi_9V2argiHuCwzDxubKaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNKQTEi_9V2argiHuCwzDxubKaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A0F3/4171B70404A811E8B23A9A18C4F9AE02/0682A6A03DC411EBBFE0EA13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.110.64.0/20 Signature Algorithm: sha256WithRSAEncryption 46:3d:a0:6c:4a:50:21:ef:b5:b6:0f:ec:1d:46:86:8d:d0:59: 90:58:5c:cc:25:b1:64:ca:27:b2:f6:51:e2:07:94:9a:f1:68: 91:a5:5f:96:43:46:1f:30:56:eb:b3:b2:b7:96:5e:87:8f:97: 07:28:4e:01:84:8e:cb:92:0b:e5:4b:06:c0:cb:54:4b:bd:78: 49:22:00:b2:10:00:0c:04:c3:ff:37:69:9c:6a:ea:49:6a:e7: d6:d9:27:b6:5d:6b:54:64:e8:9a:86:81:2e:fd:20:18:34:83: 53:72:9a:56:c6:c2:82:6c:7e:15:a0:12:e3:73:e4:17:1e:25: f7:5a:43:42:b1:52:9d:3e:80:29:8a:ac:1d:c4:db:1d:90:33: d1:d4:9a:93:8d:93:e6:f5:14:5d:63:19:ea:94:df:4f:64:6a: 1d:44:5c:1d:45:10:ce:c1:06:aa:51:0c:2c:8f:05:9c:16:76: de:b9:1a:7a:be:be:32:d4:96:dc:35:49:c1:78:0b:6e:9c:3b: 2b:4f:02:f0:60:f1:d8:a1:2e:a9:1c:1c:1e:28:bd:66:50:83: bf:e9:48:f9:c3:31:7f:62:99:9a:0b:25:95:ca:7a:b5:56:fd: 74:cd:e5:4b:92:a6:86:2d:a9:8e:1b:0d:a7:52:7d:c5:7f:b4: f8:48:c4:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0EwRjMxMTAvBgNVBAUTKDg0RDI5MDRDNDhCRkY1NUQ5QUFFMDg4N0I4MkMzMzBG MUI5QjI5QUMwHhcNMjUwNjE0MTcwNzM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRkYWM1OS05Mjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBoBAey7iWoqg7iwBzdozTTHRI+vEdqoWPiQP2pYvMuDU7jLNS77kmK/zBqp duxZC3X3SjARGJDkvErvAFRCkprIQlJ9GlxBGaGArIm0yw9l6HsX/kmrKPDx7KWa C/nORUYULHVPLFdAcCJFOslg+4YtDkycFY2HaXfNwjOsDJsVccu02WWzv4GKuhCp YTBOM9cavkRZbQNjPRZf5yX5jNzPW2WpThF1Q+WHRW1Wivzt7u9YHkaGnLM3ZXFP zRHyHFSQSlwhh3EQK8V5xpgfQbmoNOCC9fIBcEbV6u3Uu8SNz88Rp8VqzotO9Iqz Ry2K6CCOkg223InQLTzD8J2c9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBsxiHfZ zeWQ0Gh6BpVfDzBlR5RiMB8GA1UdIwQYMBaAFITSkExIv/Vdmq4Ih7gsMw8bmyms MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTBGMy80MTcxQjcwNDA0 QTgxMUU4QjIzQTlBMThDNEY5QUUwMi9oTktRVEVpXzlWMmFyZ2lIdUN3ekR4dWJL YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOS1FURWlfOVYyYXJnaUh1Q3d6RHh1Ykthdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0EwRjMvNDE3MUI3MDQwNEE4MTFFOEIyM0E5QTE4QzRGOUFFMDIvMDY4MkE2QTAz REM0MTFFQkJGRTBFQTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATLbkAwDQYJKoZIhvcNAQELBQADggEBAEY9oGxKUCHvtbYP 7B1Gho3QWZBYXMwlsWTKJ7L2UeIHlJrxaJGlX5ZDRh8wVuuzsreWXoePlwcoTgGE jsuSC+VLBsDLVEu9eEkiALIQAAwEw/83aZxq6klq59bZJ7Zda1Rk6JqGgS79IBg0 g1NymlbGwoJsfhWgEuNz5BceJfdaQ0KxUp0+gCmKrB3E2x2QM9HUmpONk+b1FF1j GeqU309kah1EXB1FEM7BBqpRDCyPBZwWdt65Gnq+vjLUltw1ScF4C26cOytPAvBg 8dihLqkcHB4ovWZQg7/pSPnDMX9imZoLJZXKerVW/XTN5UuSpoYtqY4bDadSfcV/ tPhIxNM= -----END CERTIFICATE-----Generated at Sat Jun 21 03:24:50 2025 by rpki-client