$ rpki-client -vvf rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/3C916EA69A7D11EF8450BB33C4F9AE02.roa File: 3C916EA69A7D11EF8450BB33C4F9AE02.roa (raw, json) Hash identifier: rchAj9jqPDGZDJRDoGpXWHGS4Jz2guhJrwUw3kOv+ps= Subject key identifier: 05:58:D1:9B:47:11:F7:9A:94:67:9A:6B:07:E9:57:1D:A9:4C:66:1A Certificate issuer: /CN=A914E93F/serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC Certificate serial: 13F2 Authority key identifier: B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/3C916EA69A7D11EF8450BB33C4F9AE02.roa Signing time: Thu 19 Jun 2025 15:31:13 +0000 ROA not before: Thu 19 Jun 2025 15:31:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 395793 IP address blocks: 14.192.49.0/24 maxlen: 24 14.192.50.0/24 maxlen: 24 14.192.51.0/24 maxlen: 24 103.78.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 17:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5106 (0x13f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E93F, serialNumber=B2F8AB00D57464DD5D05A45A47C420F5F896B8FC Validity Not Before: Jun 19 15:31:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68542d40-fffa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:04:da:a9:01:82:67:b8:44:81:a9:ed:cd:0a: c1:0b:b0:26:f2:8a:1b:48:78:6f:5b:7b:1e:9a:b0: c5:18:7f:13:a6:05:a6:ac:8a:78:ef:3b:e1:f8:be: 2a:fb:bb:04:7d:8c:7e:4a:28:55:df:ad:81:99:bd: 9d:55:64:3a:87:d3:14:51:26:22:c9:ef:c2:3e:d3: cd:bd:21:bf:69:82:12:2e:f2:3d:bb:6b:e1:c9:0d: ff:8a:42:e1:5a:1c:32:ff:01:ca:53:53:2c:02:61: 5d:67:f7:17:17:58:01:5f:7e:89:a8:24:a2:48:09: 0a:ad:ad:43:31:2f:d2:40:14:26:d5:04:61:5b:23: 21:c1:6d:93:7a:02:af:9b:92:8f:d0:1a:90:4c:72: a7:f9:09:28:08:12:5a:0b:ec:01:f3:ed:9c:0f:31: 17:d7:b4:1b:ba:7c:fa:86:08:ea:9f:f3:3f:63:50: e0:bd:81:66:95:e8:58:1a:17:25:c3:18:ff:1c:fc: a3:5c:84:fb:99:7e:bf:af:d8:53:62:cc:e4:b0:36: 9a:6c:f6:17:58:f7:cc:fc:23:cd:9c:93:58:16:36: 16:88:51:6f:1a:c2:56:f7:e6:74:64:8d:ca:9a:08: 38:25:b8:28:1d:02:29:9b:11:ef:0d:b7:42:26:a2: d7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:58:D1:9B:47:11:F7:9A:94:67:9A:6B:07:E9:57:1D:A9:4C:66:1A X509v3 Authority Key Identifier: keyid:B2:F8:AB:00:D5:74:64:DD:5D:05:A4:5A:47:C4:20:F5:F8:96:B8:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/svirANV0ZN1dBaRaR8Qg9fiWuPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svirANV0ZN1dBaRaR8Qg9fiWuPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E93F/2ED775DAA36C11E891405926C4F9AE02/3C916EA69A7D11EF8450BB33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.49.0-14.192.51.255 103.78.243.0/24 Signature Algorithm: sha256WithRSAEncryption 39:a9:c5:b0:66:1a:7a:e5:a5:a2:38:fd:d7:42:d0:33:e3:6b: 24:61:2b:0e:02:6e:a4:af:a3:87:69:5e:d1:d4:a6:ac:69:ef: 46:9c:d4:f6:16:1f:49:49:dc:c8:4e:1b:f9:7b:c8:f9:a4:c6: 5b:97:9f:04:a3:ac:d5:e2:52:42:e5:de:c6:59:77:ec:00:b2: d7:5b:29:39:c9:e0:4b:a4:f1:d4:09:55:e1:59:8c:01:a7:f6: 65:8b:6a:16:64:a7:08:71:73:fa:77:f9:eb:46:99:d6:86:8a: 2c:12:9d:5a:9a:c0:65:e5:fb:bf:49:e4:2e:ce:a8:52:3a:b9: ec:eb:7a:39:72:71:c1:1d:be:6d:e4:1b:a6:74:45:50:eb:33: ba:b2:4f:2f:2a:0a:6e:5b:f0:c8:f0:b4:78:45:4c:f7:be:52: 75:d9:62:af:01:42:f9:ce:5c:ab:68:8e:ea:35:23:75:bf:77: 74:84:97:d9:5c:e8:17:0f:7e:b1:e8:71:f9:cc:a9:d1:b5:93: 0f:e6:69:36:e1:3e:b6:9a:ef:1c:96:2d:ea:9c:29:b3:85:57: 44:75:3a:13:5e:b4:09:13:fb:42:a7:f3:ad:82:07:db:a6:2e: 9c:ec:07:e2:5a:07:05:7e:a9:bb:95:1e:42:d6:42:c0:24:67: bd:8b:f2:a2 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICE/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5M0YxMTAvBgNVBAUTKEIyRjhBQjAwRDU3NDY0REQ1RDA1QTQ1QTQ3QzQyMEY1 Rjg5NkI4RkMwHhcNMjUwNjE5MTUzMTEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU0MmQ0MC1mZmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygTaqQGCZ7hEgantzQrBC7Am8oobSHhvW3semrDFGH8TpgWmrIp47zvh+L4q +7sEfYx+SihV362Bmb2dVWQ6h9MUUSYiye/CPtPNvSG/aYISLvI9u2vhyQ3/ikLh Whwy/wHKU1MsAmFdZ/cXF1gBX36JqCSiSAkKra1DMS/SQBQm1QRhWyMhwW2TegKv m5KP0BqQTHKn+QkoCBJaC+wB8+2cDzEX17Qbunz6hgjqn/M/Y1DgvYFmlehYGhcl wxj/HPyjXIT7mX6/r9hTYszksDaabPYXWPfM/CPNnJNYFjYWiFFvGsJW9+Z0ZI3K mgg4JbgoHQIpmxHvDbdCJqLXNQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFAVY0ZtH EfealGeaawfpVx2pTGYaMB8GA1UdIwQYMBaAFLL4qwDVdGTdXQWkWkfEIPX4lrj8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkzRi8yRUQ3NzVEQUEz NkMxMUU4OTE0MDU5MjZDNEY5QUUwMi9zdmlyQU5WMFpOMWRCYVJhUjhRZzlmaVd1 UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2aXJBTlYwWk4xZEJhUmFSOFFnOWZpV3VQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5M0YvMkVENzc1REFBMzZDMTFFODkxNDA1OTI2QzRGOUFFMDIvM0M5MTZFQTY5 QTdEMTFFRjg0NTBCQjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAA7AMQMEAg7AMAMEAGdO8zANBgkqhkiG9w0BAQsFAAOC AQEAOanFsGYaeuWlojj910LQM+NrJGErDgJupK+jh2le0dSmrGnvRpzU9hYfSUnc yE4b+XvI+aTGW5efBKOs1eJSQuXexll37ACy11spOcngS6Tx1AlV4VmMAaf2ZYtq FmSnCHFz+nf560aZ1oaKLBKdWprAZeX7v0nkLs6oUjq57Ot6OXJxwR2+beQbpnRF UOszurJPLyoKblvwyPC0eEVM975SddlirwFC+c5cq2iO6jUjdb93dISX2VzoFw9+ sehx+cyp0bWTD+ZpNuE+tprvHJYt6pwps4VXRHU6E160CRP7QqfzrYIH26YunOwH 4loHBX6pu5UeQtZCwCRnvYvyog== -----END CERTIFICATE-----Generated at Fri Jun 20 22:54:45 2025 by rpki-client