$ rpki-client -vvf rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/A5C01D6ED15511EA904EF30BC4F9AE02.roa File: A5C01D6ED15511EA904EF30BC4F9AE02.roa (raw, json) Hash identifier: tieWSzu8lKOoBqQ293X6Mhk+ox3CzZ2+KgEe+KsaI+8= Subject key identifier: 8B:1E:4F:A2:01:D0:AD:C1:A6:65:42:31:90:4D:34:8A:EC:39:F3:58 Certificate issuer: /CN=A914A47A/serialNumber=E52D7F7FBAAC1F75AFFA762EDB3F28160BCFBD25 Certificate serial: 3485 Authority key identifier: E5:2D:7F:7F:BA:AC:1F:75:AF:FA:76:2E:DB:3F:28:16:0B:CF:BD:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/A5C01D6ED15511EA904EF30BC4F9AE02.roa Signing time: Wed 14 May 2025 15:10:51 +0000 ROA not before: Wed 14 May 2025 15:10:51 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 23731 IP address blocks: 203.175.120.0/24 maxlen: 24 203.175.121.0/24 maxlen: 24 203.175.122.0/24 maxlen: 24 203.175.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.crl rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:52:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13445 (0x3485) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A47A, serialNumber=E52D7F7FBAAC1F75AFFA762EDB3F28160BCFBD25 Validity Not Before: May 14 15:10:51 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6824b27b-b52b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:89:f5:7a:1c:2c:d2:e3:cb:b0:7e:28:2c:0a: 12:ba:6f:80:9a:fc:86:30:c0:61:be:cf:fb:86:f2: 90:71:15:7d:ee:fb:c5:b1:b4:9a:5a:ea:4e:3e:97: eb:17:c2:c8:a8:37:77:e6:fb:92:43:2c:04:73:9d: ad:44:cf:5a:25:4d:bd:1c:4f:74:d1:e0:f8:5c:61: 97:21:35:de:24:76:b2:07:da:4b:2a:fc:e7:6a:c6: 26:44:05:f2:a9:75:89:8c:e9:09:77:0c:d4:5c:9d: f8:1c:1d:90:25:9c:0e:c7:f0:0a:e3:5b:17:9f:74: c6:02:e4:ae:f9:ff:9a:56:ed:d2:13:86:ae:e9:84: 7a:ba:40:a1:a0:69:02:4c:5f:e0:6f:47:18:ac:f9: 65:0a:5c:e8:0a:39:4c:6c:f5:54:49:5d:69:b7:5a: 68:6d:34:ec:48:2f:b3:60:18:76:88:99:9f:1b:56: 61:6f:1a:11:68:20:3f:2c:6a:1e:b0:d2:6e:72:77: 6e:1c:91:a7:a4:7e:88:b2:fd:c7:01:6f:a2:55:52: 06:d7:3e:7d:cb:e4:be:ad:31:99:0e:23:20:8a:33: cc:0d:e3:15:4e:b2:8b:5d:b2:01:f5:27:d8:09:17: 9f:3e:70:ef:df:f0:41:7f:a2:a5:40:76:38:6c:b6: cb:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:1E:4F:A2:01:D0:AD:C1:A6:65:42:31:90:4D:34:8A:EC:39:F3:58 X509v3 Authority Key Identifier: keyid:E5:2D:7F:7F:BA:AC:1F:75:AF:FA:76:2E:DB:3F:28:16:0B:CF:BD:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5S1_f7qsH3Wv-nYu2z8oFgvPvSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A47A/4AF221DA1D9811E2AD2B398208B02CD2/A5C01D6ED15511EA904EF30BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.175.120.0/22 Signature Algorithm: sha256WithRSAEncryption ae:6b:2c:ba:0d:91:a5:54:93:83:09:75:43:3c:d5:67:ed:ab: a7:10:7e:d3:f9:0d:85:e1:d7:88:aa:7d:49:9e:c2:01:45:3a: 2c:18:2c:3a:18:c6:63:06:61:07:3f:ed:7a:34:1a:46:c8:c4: d8:d4:0d:a7:de:f3:07:14:93:73:6a:a1:9f:02:b3:c9:f4:d6: d4:d7:a0:99:5f:51:1b:11:52:4e:58:fa:f5:27:ae:af:ff:77: 4e:86:77:91:d1:7a:23:bf:36:7e:3b:60:3e:cf:6c:fc:b5:22: e4:bf:ef:92:8b:c6:65:25:d9:94:db:14:d9:c3:56:69:51:ca: c1:50:0d:33:91:f2:4a:17:8f:0b:ea:cf:57:ca:52:b7:15:89: 35:17:dd:be:f8:2a:74:f7:07:6d:b4:f2:55:c0:76:e0:b4:e0: b1:80:18:cf:84:24:08:dd:d3:a5:85:be:d9:ac:ae:37:cb:4a: bb:fe:7d:37:49:81:0b:15:a9:8b:80:71:bc:a3:a6:86:e9:8f: e7:9c:77:83:63:73:95:1d:e4:19:78:e9:b3:f3:4c:e1:41:90: e7:15:01:2b:ff:7c:30:18:1d:ce:0c:6a:78:f6:09:2e:6e:b0: 49:4d:29:87:f8:37:93:5e:17:41:12:a9:32:f6:d6:ad:a8:3b: 28:fc:9a:c8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE0N0ExMTAvBgNVBAUTKEU1MkQ3RjdGQkFBQzFGNzVBRkZBNzYyRURCM0YyODE2 MEJDRkJEMjUwHhcNMjUwNTE0MTUxMDUxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0YjI3Yi1iNTJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1In1ehws0uPLsH4oLAoSum+AmvyGMMBhvs/7hvKQcRV97vvFsbSaWupOPpfr F8LIqDd35vuSQywEc52tRM9aJU29HE900eD4XGGXITXeJHayB9pLKvznasYmRAXy qXWJjOkJdwzUXJ34HB2QJZwOx/AK41sXn3TGAuSu+f+aVu3SE4au6YR6ukChoGkC TF/gb0cYrPllClzoCjlMbPVUSV1pt1pobTTsSC+zYBh2iJmfG1ZhbxoRaCA/LGoe sNJucnduHJGnpH6Isv3HAW+iVVIG1z59y+S+rTGZDiMgijPMDeMVTrKLXbIB9SfY CRefPnDv3/BBf6KlQHY4bLbLYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIseT6IB 0K3BpmVCMZBNNIrsOfNYMB8GA1UdIwQYMBaAFOUtf3+6rB91r/p2Lts/KBYLz70l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTQ3QS80QUYyMjFEQTFE OTgxMUUyQUQyQjM5ODIwOEIwMkNEMi81UzFfZjdxc0gzV3Ytbll1Mno4b0ZndlB2 U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVTMV9mN3FzSDNXdi1uWXUyejhvRmd2UHZTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE0N0EvNEFGMjIxREExRDk4MTFFMkFEMkIzOTgyMDhCMDJDRDIvQTVDMDFENkVE MTU1MTFFQTkwNEVGMzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLr3gwDQYJKoZIhvcNAQELBQADggEBAK5rLLoNkaVUk4MJ dUM81Wftq6cQftP5DYXh14iqfUmewgFFOiwYLDoYxmMGYQc/7Xo0GkbIxNjUDafe 8wcUk3NqoZ8Cs8n01tTXoJlfURsRUk5Y+vUnrq//d06Gd5HReiO/Nn47YD7PbPy1 IuS/75KLxmUl2ZTbFNnDVmlRysFQDTOR8koXjwvqz1fKUrcViTUX3b74KnT3B220 8lXAduC04LGAGM+EJAjd06WFvtmsrjfLSrv+fTdJgQsVqYuAcbyjpobpj+ecd4Nj c5Ud5Bl46bPzTOFBkOcVASv/fDAYHc4Manj2CS5usElNKYf4N5NeF0ESqTL21q2o Oyj8msg= -----END CERTIFICATE-----Generated at Mon Jun 16 15:56:25 2025 by rpki-client