$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AC0C25102A4111EBA1B1BB3DC4F9AE02.roa File: AC0C25102A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: 5y6r5SgE+1dulXmKZWvDkPSlG//7DJyCV8Qy0mpz3H8= Subject key identifier: DD:E6:29:00:C0:84:40:C3:B5:D2:BA:DF:63:5A:22:57:0C:21:91:57 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 087F Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AC0C25102A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 20 May 2025 21:50:46 +0000 ROA not before: Tue 20 May 2025 21:50:46 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133113 IP address blocks: 203.151.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2175 (0x87f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:46 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf936-2a34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a2:ee:9c:86:24:89:1c:92:e4:ca:23:7f:89: 57:73:66:0f:4f:30:dc:a3:83:de:0d:18:7c:0e:b7: f1:7a:94:dc:56:b3:50:41:fb:3d:23:cf:62:c5:7e: df:1c:71:97:f2:2c:4d:0e:0b:42:76:43:32:09:7d: fa:81:cd:14:27:62:78:b5:ef:a0:0d:dc:68:54:b7: 4d:40:c3:8a:8d:fe:68:4f:99:9a:74:df:99:ca:8a: 05:01:9b:63:e5:6e:af:7b:1d:c6:bc:89:3a:30:0a: 53:77:05:bb:66:8e:e1:b9:a6:93:9c:8a:72:0a:31: 39:82:b4:5b:55:8a:fb:3f:05:74:54:9b:36:e5:5b: 92:40:b5:7b:62:7c:2b:8c:f3:b3:8b:18:f4:34:38: 94:3a:20:6a:dd:20:ab:b9:4f:8a:9f:67:3c:ac:9a: 3b:10:b5:96:ef:cd:0a:7d:e7:b2:58:1a:d8:aa:eb: 2a:47:ef:43:6c:6a:07:98:90:30:a4:2a:65:30:b2: cb:51:b1:32:e8:16:68:33:e3:de:b0:bb:68:19:1b: 86:eb:82:80:a4:ac:15:5d:68:f5:d9:71:36:84:d2: cb:84:e5:6d:14:5d:70:c8:6d:73:be:46:eb:3b:92: b8:bb:ad:fe:71:d7:9d:28:c7:d8:0d:4c:c5:74:65: 81:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E6:29:00:C0:84:40:C3:B5:D2:BA:DF:63:5A:22:57:0C:21:91:57 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AC0C25102A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.151.211.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:8a:47:53:5a:24:13:9d:9d:12:6a:b3:71:54:28:ee:25:85: 49:d0:e6:d2:d7:1f:94:8b:a0:40:a4:b7:11:6f:97:d8:1c:06: f6:59:d9:94:80:83:6e:8e:df:08:6f:2f:8c:9f:52:5f:1b:2f: 36:c6:92:b0:4c:43:3f:ec:f6:b9:51:25:91:0b:97:c1:53:27: 9b:bd:87:bd:2e:3d:bf:c6:e4:81:8f:fa:9c:55:a4:ed:c0:39: 14:72:ce:62:2f:ac:62:d6:6e:02:d4:72:18:de:39:03:96:a7: c5:12:7a:ed:ed:76:50:dc:98:08:57:2b:c4:5b:1b:f8:24:87: 13:62:ba:d7:5e:23:48:3b:6a:5c:02:01:e2:11:7f:08:a8:91: 7e:24:df:86:80:bc:ca:8a:89:43:7f:77:9e:f4:83:ab:09:51: 79:2b:2a:79:ac:83:3c:73:f6:9f:43:9e:d4:c8:37:02:bc:0c: 3c:c8:3e:ec:d2:ee:82:5b:ec:fe:19:0d:16:15:49:77:a8:69: c0:29:ea:1d:30:cd:2c:53:98:2c:03:4e:c6:af:b1:b4:37:54: 51:cb:91:6d:3b:7f:a5:7a:fd:b8:fa:12:91:05:95:03:29:f7: 9b:c3:76:3a:4a:e2:38:a2:7a:a3:80:eb:63:2d:75:ee:24:4a: e7:07:f3:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDQ2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjkzNi0yYTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqLunIYkiRyS5Mojf4lXc2YPTzDco4PeDRh8DrfxepTcVrNQQfs9I89ixX7f HHGX8ixNDgtCdkMyCX36gc0UJ2J4te+gDdxoVLdNQMOKjf5oT5madN+ZyooFAZtj 5W6vex3GvIk6MApTdwW7Zo7huaaTnIpyCjE5grRbVYr7PwV0VJs25VuSQLV7Ynwr jPOzixj0NDiUOiBq3SCruU+Kn2c8rJo7ELWW780KfeeyWBrYqusqR+9DbGoHmJAw pCplMLLLUbEy6BZoM+PesLtoGRuG64KApKwVXWj12XE2hNLLhOVtFF1wyG1zvkbr O5K4u63+cdedKMfYDUzFdGWBHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN3mKQDA hEDDtdK632NaIlcMIZFXMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUMwQzI1MTAy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLl9MwDQYJKoZIhvcNAQELBQADggEBAG+KR1NaJBOdnRJq s3FUKO4lhUnQ5tLXH5SLoECktxFvl9gcBvZZ2ZSAg26O3whvL4yfUl8bLzbGkrBM Qz/s9rlRJZELl8FTJ5u9h70uPb/G5IGP+pxVpO3AORRyzmIvrGLWbgLUchjeOQOW p8USeu3tdlDcmAhXK8RbG/gkhxNiutdeI0g7alwCAeIRfwiokX4k34aAvMqKiUN/ d570g6sJUXkrKnmsgzxz9p9DntTINwK8DDzIPuzS7oJb7P4ZDRYVSXeoacAp6h0w zSxTmCwDTsavsbQ3VFHLkW07f6V6/bj6EpEFlQMp95vDdjpK4jiieqOA62Mtde4k SucH89c= -----END CERTIFICATE-----Generated at Sun Jun 15 10:17:16 2025 by rpki-client