$ rpki-client -vvf rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/552D155464A711ED99D40117C4F9AE02.roa File: 552D155464A711ED99D40117C4F9AE02.roa (raw, json) Hash identifier: 23rCyoR4WnNChFU7ymH391h0HiIrF4JQy1l5v2pbquM= Subject key identifier: 89:D1:07:49:0D:8F:79:EB:C0:3D:74:95:7A:66:3C:7C:61:83:C0:0A Certificate issuer: /CN=A9153D75/serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Certificate serial: 01DE Authority key identifier: 2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/552D155464A711ED99D40117C4F9AE02.roa Signing time: Sat 31 May 2025 02:30:25 +0000 ROA not before: Sat 31 May 2025 02:30:25 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137816 IP address blocks: 103.114.192.0/22 maxlen: 24 2402:d1c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:03:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153D75, serialNumber=2DBC465DA681B5B311897AB6C468C254706E5D2F Validity Not Before: May 31 02:30:25 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a69c1-95ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1d:b5:31:20:76:d1:1e:3e:fc:bc:c0:b4:1d: 5c:88:8e:94:c7:bc:3c:4c:66:97:63:d9:fb:2c:37: 96:64:b7:9b:1b:d2:cb:15:f8:ad:bd:b7:8a:db:62: ae:7f:60:ca:3d:22:1a:95:93:80:59:65:db:39:2f: e0:d5:bf:24:1e:ac:ac:0c:57:89:84:63:4a:c2:5f: 13:c0:35:31:b8:bd:e3:08:16:dc:7d:d6:fc:fc:8f: be:d2:5b:8c:26:13:34:1f:9e:13:c3:63:c2:3d:14: dd:1f:b4:12:f9:01:90:9a:c5:f0:14:a5:37:66:da: db:6b:c9:03:fa:b3:6f:e2:4d:0f:2a:d2:8f:a8:6d: de:2c:33:6d:d7:ce:a0:05:3a:8a:3f:d5:7d:b0:00: 0d:de:ac:92:50:a9:0b:0b:45:48:db:8b:71:d8:a7: 78:a8:a9:eb:7d:4b:d3:2e:42:26:9b:9b:f3:25:93: 35:f4:3c:07:aa:55:f2:d7:1a:8c:66:9d:0f:da:a0: 6a:4f:fa:fa:83:f3:79:f0:ac:6b:c9:97:ef:d6:3c: ac:5c:d2:4f:f7:24:63:32:1b:53:b7:58:2f:b1:e6: 91:9c:69:70:58:96:5c:bb:56:9e:8f:1a:02:f8:64: 03:17:f5:cb:45:38:1f:0d:3c:4c:6c:9d:66:d0:fc: 08:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:D1:07:49:0D:8F:79:EB:C0:3D:74:95:7A:66:3C:7C:61:83:C0:0A X509v3 Authority Key Identifier: keyid:2D:BC:46:5D:A6:81:B5:B3:11:89:7A:B6:C4:68:C2:54:70:6E:5D:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/LbxGXaaBtbMRiXq2xGjCVHBuXS8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LbxGXaaBtbMRiXq2xGjCVHBuXS8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153D75/52DE4C4A64A311ED82202412C4F9AE02/552D155464A711ED99D40117C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.192.0/22 IPv6: 2402:d1c0::/32 Signature Algorithm: sha256WithRSAEncryption 2c:fe:8e:00:e5:4e:99:45:00:c9:7e:c6:2a:12:02:6b:a6:76: 32:72:80:6d:65:56:01:59:95:53:c4:09:2b:52:7a:7b:3b:7b: 4f:36:f5:42:d1:e4:08:ff:7f:d8:17:7c:3b:58:f4:a9:32:ba: 1a:8b:1b:de:0f:f1:39:b3:16:13:b6:5c:e9:40:d9:8a:cd:14: 38:ed:85:7f:e1:8b:23:3a:b4:2c:02:3b:63:9f:9a:e1:99:9d: 40:28:f9:49:3a:e7:e9:91:02:a8:92:5f:df:f0:7e:6e:d8:15: 95:14:52:4d:8f:28:cd:ee:0c:57:6a:8e:11:fb:87:17:7c:f7: da:05:89:db:44:90:d9:53:d8:f9:a8:34:fa:fc:71:07:1c:b4: f7:bb:e8:89:40:21:96:de:d8:15:22:78:ee:2e:48:65:f5:a8: 2e:1e:77:29:ca:40:aa:40:8f:54:1c:59:79:e5:4c:43:91:f4: b6:2e:4e:18:9d:47:6a:2d:16:5d:91:cf:50:26:6b:82:72:b4: b3:4e:76:2e:96:ba:d0:90:0e:54:b5:9e:75:f8:bb:a0:32:e6: 71:5d:76:8b:89:87:0e:aa:d4:9f:43:5f:96:cc:af:86:1e:57: c2:c8:95:18:1e:b2:fb:51:9e:7a:04:13:ff:02:6b:a1:ce:3e: 90:61:ca:20 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNENzUxMTAvBgNVBAUTKDJEQkM0NjVEQTY4MUI1QjMxMTg5N0FCNkM0NjhDMjU0 NzA2RTVEMkYwHhcNMjUwNTMxMDIzMDI1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhNjljMS05NWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsx21MSB20R4+/LzAtB1ciI6Ux7w8TGaXY9n7LDeWZLebG9LLFfitvbeK22Ku f2DKPSIalZOAWWXbOS/g1b8kHqysDFeJhGNKwl8TwDUxuL3jCBbcfdb8/I++0luM JhM0H54Tw2PCPRTdH7QS+QGQmsXwFKU3Ztrba8kD+rNv4k0PKtKPqG3eLDNt186g BTqKP9V9sAAN3qySUKkLC0VI24tx2Kd4qKnrfUvTLkImm5vzJZM19DwHqlXy1xqM Zp0P2qBqT/r6g/N58KxryZfv1jysXNJP9yRjMhtTt1gvseaRnGlwWJZcu1aejxoC +GQDF/XLRTgfDTxMbJ1m0PwIxwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFInRB0kN j3nrwD10lXpmPHxhg8AKMB8GA1UdIwQYMBaAFC28Rl2mgbWzEYl6tsRowlRwbl0v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0Q3NS81MkRFNEM0QTY0 QTMxMUVEODIyMDI0MTJDNEY5QUUwMi9MYnhHWGFhQnRiTVJpWHEyeEdqQ1ZIQnVY UzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xieEdYYWFCdGJNUmlYcTJ4R2pDVkhCdVhTOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNENzUvNTJERTRDNEE2NEEzMTFFRDgyMjAyNDEyQzRGOUFFMDIvNTUyRDE1NTQ2 NEE3MTFFRDk5RDQwMTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJncsAwDQQCAAIwBwMFACQC0cAwDQYJKoZIhvcNAQELBQAD ggEBACz+jgDlTplFAMl+xioSAmumdjJygG1lVgFZlVPECStSens7e0829ULR5Aj/ f9gXfDtY9KkyuhqLG94P8TmzFhO2XOlA2YrNFDjthX/hiyM6tCwCO2OfmuGZnUAo +Uk65+mRAqiSX9/wfm7YFZUUUk2PKM3uDFdqjhH7hxd899oFidtEkNlT2PmoNPr8 cQcctPe76IlAIZbe2BUieO4uSGX1qC4edynKQKpAj1QcWXnlTEOR9LYuThidR2ot Fl2Rz1Ama4JytLNOdi6WutCQDlS1nnX4u6Ay5nFddouJhw6q1J9DX5bMr4YeV8LI lRgesvtRnnoEE/8Ca6HOPpBhyiA= -----END CERTIFICATE-----Generated at Wed Nov 5 12:07:17 2025 by rpki-client