$ rpki-client -vvf rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/ACDC884E1C1511EF93C5F728C4F9AE02.roa File: ACDC884E1C1511EF93C5F728C4F9AE02.roa (raw, json) Hash identifier: pXwAyW9Hy/DMGmTjqX3G4l47uqWRP7c4rJmBKT94M2A= Subject key identifier: 6E:0A:4F:B8:8C:F9:BA:C4:7D:62:D9:25:CD:FC:7A:C9:F0:F7:59:E0 Certificate issuer: /CN=A913E32A/serialNumber=C1C46FC4A71969E58504A734D4904A7BD2FF0543 Certificate serial: 2611 Authority key identifier: C1:C4:6F:C4:A7:19:69:E5:85:04:A7:34:D4:90:4A:7B:D2:FF:05:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/ACDC884E1C1511EF93C5F728C4F9AE02.roa Signing time: Fri 06 Jun 2025 15:52:33 +0000 ROA not before: Fri 06 Jun 2025 15:52:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 23966 IP address blocks: 203.124.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.crl rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9745 (0x2611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E32A, serialNumber=C1C46FC4A71969E58504A734D4904A7BD2FF0543 Validity Not Before: Jun 6 15:52:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68430ec1-97c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:28:40:8c:47:a9:3b:1c:33:5b:4c:09:bd:a2: 3c:e7:05:e0:b6:61:4d:e8:45:1f:31:93:55:49:13: 98:2a:bd:53:18:f1:c5:fc:f1:b0:27:22:9e:b4:34: 6c:ac:1e:73:3e:e5:ef:7f:7a:75:6f:2c:65:14:e1: a5:2d:d9:3a:d2:52:c0:7c:4a:56:0a:2a:35:9a:5c: be:55:20:65:75:74:15:82:4b:ec:f6:d8:c8:ea:47: 61:e7:40:01:9b:31:94:dd:24:6a:c8:d7:66:46:a8: e2:e8:ba:f9:fd:13:b6:32:27:2a:6a:ce:17:f2:5c: 1f:90:6a:ee:15:25:03:e1:a2:e5:98:18:7b:20:37: 97:a4:77:82:25:0b:16:a6:db:e3:66:6c:f5:7f:0a: 14:97:57:55:3a:04:6e:32:82:b5:0b:49:2d:e1:36: 46:e0:cf:8c:39:cd:ee:b9:67:a5:fd:9c:17:97:53: ab:b2:06:46:3c:96:9b:66:c9:3d:d0:70:71:ea:82: 69:62:b8:97:88:84:03:ef:91:a0:46:52:64:18:c1: 0f:c5:49:14:eb:77:40:0a:5e:22:90:b0:8c:17:24: fa:17:09:80:f5:76:68:07:c1:c5:2d:27:9b:c4:2d: 13:d5:b9:92:bc:8d:33:5c:f9:08:0a:d4:d8:56:d2: d8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0A:4F:B8:8C:F9:BA:C4:7D:62:D9:25:CD:FC:7A:C9:F0:F7:59:E0 X509v3 Authority Key Identifier: keyid:C1:C4:6F:C4:A7:19:69:E5:85:04:A7:34:D4:90:4A:7B:D2:FF:05:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/wcRvxKcZaeWFBKc01JBKe9L_BUM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wcRvxKcZaeWFBKc01JBKe9L_BUM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E32A/1B4F9F96FAD311E496C6E80CC4F9AE02/ACDC884E1C1511EF93C5F728C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.124.34.0/24 Signature Algorithm: sha256WithRSAEncryption 81:79:f8:83:6d:74:02:9d:1a:eb:dd:b8:81:c0:76:01:86:30: 96:19:d4:98:24:43:a6:d8:6f:74:ac:d1:b6:4b:a3:05:22:b0: e3:ee:e5:00:fb:bc:6b:be:73:26:52:b3:28:13:c0:90:fc:5f: 0a:fb:ba:fd:68:54:57:f4:27:93:84:ef:2a:8a:f7:a0:8a:13: d6:5d:25:f7:4f:6e:81:ff:f2:3b:b4:ad:4a:98:9b:bb:09:6b: 3b:c5:9e:42:82:2a:7e:55:23:f9:37:7d:85:80:b3:9a:c4:f9: d5:b4:ac:f6:53:64:1d:c5:bc:b3:14:2b:af:11:02:d5:d3:1f: 35:58:e5:f9:36:ab:b6:31:d5:fd:f1:d3:ad:2a:d3:40:3e:aa: d2:8b:a7:93:80:ef:ff:b6:ed:e2:3f:48:62:6f:e3:68:23:e3: db:63:e9:46:66:a8:56:31:53:03:fd:fc:fe:64:7c:9a:c9:c4: eb:41:24:4d:87:cd:ba:ab:da:7a:39:35:ba:43:3d:9b:64:8f: 79:d9:bf:b0:cd:ff:a8:35:c3:02:ab:39:a5:f2:ee:44:25:a8: 01:04:6d:46:0e:88:14:d6:34:6d:a5:3a:9d:5a:49:c4:5e:32: be:5a:9d:07:41:c0:6a:47:41:c0:b8:f4:f3:0a:c6:ab:31:f8: f7:84:85:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0UzMkExMTAvBgNVBAUTKEMxQzQ2RkM0QTcxOTY5RTU4NTA0QTczNEQ0OTA0QTdC RDJGRjA1NDMwHhcNMjUwNjA2MTU1MjMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzMGVjMS05N2MzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5yhAjEepOxwzW0wJvaI85wXgtmFN6EUfMZNVSROYKr1TGPHF/PGwJyKetDRs rB5zPuXvf3p1byxlFOGlLdk60lLAfEpWCio1mly+VSBldXQVgkvs9tjI6kdh50AB mzGU3SRqyNdmRqji6Lr5/RO2Micqas4X8lwfkGruFSUD4aLlmBh7IDeXpHeCJQsW ptvjZmz1fwoUl1dVOgRuMoK1C0kt4TZG4M+MOc3uuWel/ZwXl1OrsgZGPJabZsk9 0HBx6oJpYriXiIQD75GgRlJkGMEPxUkU63dACl4ikLCMFyT6FwmA9XZoB8HFLSeb xC0T1bmSvI0zXPkICtTYVtLYsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFG4KT7iM +brEfWLZJc38esnw91ngMB8GA1UdIwQYMBaAFMHEb8SnGWnlhQSnNNSQSnvS/wVD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTMyQS8xQjRGOUY5NkZB RDMxMUU0OTZDNkU4MENDNEY5QUUwMi93Y1J2eEtjWmFlV0ZCS2MwMUpCS2U5TF9C VU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3djUnZ4S2NaYWVXRkJLYzAxSkJLZTlMX0JVTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0UzMkEvMUI0RjlGOTZGQUQzMTFFNDk2QzZFODBDQzRGOUFFMDIvQUNEQzg4NEUx QzE1MTFFRjkzQzVGNzI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLfCIwDQYJKoZIhvcNAQELBQADggEBAIF5+INtdAKdGuvd uIHAdgGGMJYZ1JgkQ6bYb3Ss0bZLowUisOPu5QD7vGu+cyZSsygTwJD8Xwr7uv1o VFf0J5OE7yqK96CKE9ZdJfdPboH/8ju0rUqYm7sJazvFnkKCKn5VI/k3fYWAs5rE +dW0rPZTZB3FvLMUK68RAtXTHzVY5fk2q7Yx1f3x060q00A+qtKLp5OA7/+27eI/ SGJv42gj49tj6UZmqFYxUwP9/P5kfJrJxOtBJE2Hzbqr2no5NbpDPZtkj3nZv7DN /6g1wwKrOaXy7kQlqAEEbUYOiBTWNG2lOp1aScReMr5anQdBwGpHQcC49PMKxqsx +PeEhYk= -----END CERTIFICATE-----Generated at Wed Nov 5 05:13:50 2025 by rpki-client