$ rpki-client -vvf rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/B4D9927A014E11EB9E13483FC4F9AE02.roa File: B4D9927A014E11EB9E13483FC4F9AE02.roa (raw, json) Hash identifier: aNflNpZRFbV1iEzwZkerSjooL3ZbHNTo9sqEEuW0z5E= Subject key identifier: 78:71:9E:B9:43:59:A1:CC:C2:99:A3:F6:42:D6:67:16:93:A4:54:C6 Certificate issuer: /CN=A914CE75/serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Certificate serial: 31E4 Authority key identifier: 49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/B4D9927A014E11EB9E13483FC4F9AE02.roa Signing time: Wed 30 Apr 2025 15:52:34 +0000 ROA not before: Wed 30 Apr 2025 15:52:34 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 6453 IP address blocks: 59.163.231.0/24 maxlen: 24 115.108.48.0/20 maxlen: 24 115.112.168.0/23 maxlen: 23 203.199.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:28:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12772 (0x31e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CE75, serialNumber=49892537D8B2C0325B7BE081FD9286C79BEA6A85 Validity Not Before: Apr 30 15:52:34 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68124742-e769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:91:29:2e:b3:7d:c6:9e:c5:4f:f5:32:99:72: 17:57:81:e9:e1:a5:12:dc:b5:9b:68:fd:dc:a8:56: ce:ad:d1:fe:c6:db:6b:54:fa:91:e2:9a:55:95:cc: 36:3d:4e:3a:a8:4d:4f:72:9e:8b:df:00:0b:94:83: eb:44:dc:06:00:6a:66:bc:8c:cf:67:a3:80:73:70: 81:a3:e5:16:aa:e4:7b:a5:0b:32:01:83:51:c0:c4: c2:3c:cf:c4:a9:26:c6:b0:87:1a:9b:e7:40:e4:3e: 79:b4:3e:81:4f:ca:41:02:47:5d:e4:21:5b:6e:6e: 9b:e4:97:16:9b:27:98:9f:a0:07:87:76:92:45:9b: b4:5c:50:13:c2:82:46:07:e1:ee:38:eb:73:ee:49: 26:d4:e7:30:c6:a0:d0:41:2d:0a:78:54:81:ab:3b: b1:d0:df:e8:29:08:64:f1:b8:3f:26:86:03:05:49: 45:f7:cb:2d:a2:c7:f1:5d:6c:f4:4d:bb:85:4c:54: 7c:8e:3b:09:50:64:a4:28:cb:88:eb:6b:52:82:48: e5:6e:11:93:3e:f1:f1:e4:d9:4d:ea:6a:64:31:07: de:a7:e8:77:53:6a:7a:6b:e4:c4:28:ae:56:00:5c: 71:8f:e8:1a:e3:4a:23:ef:a9:d7:2c:b7:9c:14:63: cd:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:71:9E:B9:43:59:A1:CC:C2:99:A3:F6:42:D6:67:16:93:A4:54:C6 X509v3 Authority Key Identifier: keyid:49:89:25:37:D8:B2:C0:32:5B:7B:E0:81:FD:92:86:C7:9B:EA:6A:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/SYklN9iywDJbe-CB_ZKGx5vqaoU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SYklN9iywDJbe-CB_ZKGx5vqaoU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CE75/D22EF3D6FF4B11E281BE06625911EA32/B4D9927A014E11EB9E13483FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.163.231.0/24 115.108.48.0/20 115.112.168.0/23 203.199.243.0/24 Signature Algorithm: sha256WithRSAEncryption 22:85:f5:41:8c:a9:1e:e5:7e:f4:15:54:82:67:a4:6f:63:f5: d5:d0:3a:7e:f7:8c:de:da:a0:25:2a:26:4c:df:c4:e2:8c:8a: 28:60:f3:91:54:c4:c6:2a:4f:9c:49:b1:42:9e:f3:0a:16:02: 05:6f:6f:c4:ce:98:44:bd:57:e8:61:62:ed:7e:5d:25:c6:50: d1:22:bb:de:7f:ff:c6:a9:8f:fb:6b:0e:ad:32:5e:92:d5:cf: 3e:8f:03:fe:6f:c5:86:4a:2c:3b:5f:84:b1:4a:d7:11:85:28: b4:65:55:06:34:03:60:54:e7:aa:0b:c4:21:e0:fe:34:bb:29: d5:be:86:aa:1e:c3:ee:f0:e7:70:35:c5:5a:68:5b:be:7a:2b: 9b:d3:a3:ca:25:ee:82:76:e5:ff:55:70:41:4f:ac:72:9f:fe: 9b:50:ef:3d:0f:de:3d:83:6c:46:8d:c7:86:aa:d7:f0:5a:b7: e5:48:f1:04:e7:3c:f8:e5:63:d2:ba:85:82:b2:a8:f8:d6:4c: 6a:4d:73:71:f3:17:71:70:2d:c0:c2:7d:99:e0:a9:21:00:18: ad:6f:b1:ae:da:02:6c:84:19:0f:57:86:f9:c6:75:37:cc:ff: 71:a7:ba:a4:be:a7:a0:6e:f6:4c:31:66:5d:47:df:b4:7a:64: 32:c4:6c:6e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICMeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENFNzUxMTAvBgNVBAUTKDQ5ODkyNTM3RDhCMkMwMzI1QjdCRTA4MUZEOTI4NkM3 OUJFQTZBODUwHhcNMjUwNDMwMTU1MjM0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNDc0Mi1lNzY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8JEpLrN9xp7FT/UymXIXV4Hp4aUS3LWbaP3cqFbOrdH+xttrVPqR4ppVlcw2 PU46qE1Pcp6L3wALlIPrRNwGAGpmvIzPZ6OAc3CBo+UWquR7pQsyAYNRwMTCPM/E qSbGsIcam+dA5D55tD6BT8pBAkdd5CFbbm6b5JcWmyeYn6AHh3aSRZu0XFATwoJG B+HuOOtz7kkm1OcwxqDQQS0KeFSBqzux0N/oKQhk8bg/JoYDBUlF98stosfxXWz0 TbuFTFR8jjsJUGSkKMuI62tSgkjlbhGTPvHx5NlN6mpkMQfep+h3U2p6a+TEKK5W AFxxj+ga40oj76nXLLecFGPNnQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFHhxnrlD WaHMwpmj9kLWZxaTpFTGMB8GA1UdIwQYMBaAFEmJJTfYssAyW3vggf2Shseb6mqF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0U3NS9EMjJFRjNENkZG NEIxMUUyODFCRTA2NjI1OTExRUEzMi9TWWtsTjlpeXdESmJlLUNCX1pLR3g1dnFh b1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NZa2xOOWl5d0RKYmUtQ0JfWktHeDV2cWFvVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENFNzUvRDIyRUYzRDZGRjRCMTFFMjgxQkUwNjYyNTkxMUVBMzIvQjREOTkyN0Ew MTRFMTFFQjlFMTM0ODNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAA7o+cDBARzbDADBAFzcKgDBADLx/MwDQYJKoZIhvcNAQEL BQADggEBACKF9UGMqR7lfvQVVIJnpG9j9dXQOn73jN7aoCUqJkzfxOKMiihg85FU xMYqT5xJsUKe8woWAgVvb8TOmES9V+hhYu1+XSXGUNEiu95//8apj/trDq0yXpLV zz6PA/5vxYZKLDtfhLFK1xGFKLRlVQY0A2BU56oLxCHg/jS7KdW+hqoew+7w53A1 xVpoW756K5vTo8ol7oJ25f9VcEFPrHKf/ptQ7z0P3j2DbEaNx4aq1/Bat+VI8QTn PPjlY9K6hYKyqPjWTGpNc3HzF3FwLcDCfZngqSEAGK1vsa7aAmyEGQ9XhvnGdTfM /3GnuqS+p6Bu9kwxZl1H37R6ZDLEbG4= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:48 2025 by rpki-client