$ rpki-client -vvf rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/0634745A36D311F091108A4EC4F9AE02.roa File: 0634745A36D311F091108A4EC4F9AE02.roa (raw, json) Hash identifier: H4l27JSq8qMJJA6As00fhxpue9Mo/O0NE/Rm9knT++Q= Subject key identifier: 8B:4F:D1:C7:D4:22:5B:7D:F6:0A:9D:12:A3:70:68:5E:2C:8C:09:3F Certificate issuer: /CN=A916807A/serialNumber=729E2F9C1D87C214735078CFD21C638E07157B5D Certificate serial: 0238 Authority key identifier: 72:9E:2F:9C:1D:87:C2:14:73:50:78:CF:D2:1C:63:8E:07:15:7B:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/0634745A36D311F091108A4EC4F9AE02.roa Signing time: Thu 05 Jun 2025 00:40:17 +0000 ROA not before: Thu 05 Jun 2025 00:40:17 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 36530 IP address blocks: 202.155.112.0/22 maxlen: 24 202.155.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.crl rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 01:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 568 (0x238) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916807A, serialNumber=729E2F9C1D87C214735078CFD21C638E07157B5D Validity Not Before: Jun 5 00:40:17 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6840e771-71dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:69:cb:5d:09:86:18:05:c6:a2:f4:47:03:79: 95:b0:06:d3:20:e4:cf:6b:d2:26:04:54:71:60:32: d4:c6:c3:af:15:f7:82:e2:07:54:c7:65:ae:0a:12: 9f:9d:53:c5:80:8d:09:4e:5d:1e:b7:80:ac:e3:dc: dc:d6:73:a6:ba:4e:7d:aa:96:04:2e:8b:1b:02:7d: 13:bb:e9:8f:18:c4:84:41:f8:4b:a5:a1:9a:1a:b6: fa:cf:f6:91:22:fa:9e:c8:5d:6a:4f:9e:1f:8e:d6: 01:5c:94:bf:4a:26:bf:9c:6b:e7:88:ba:6b:0f:3e: 68:55:11:ba:82:1c:d1:83:ba:1c:a3:b8:64:80:4e: e1:3b:2c:fe:9d:f8:30:6e:8e:fd:b6:95:44:be:7e: c5:5b:77:73:c0:68:a4:2a:3d:40:28:c9:dc:23:c4: 89:a0:89:3a:15:31:2b:4f:8d:b0:fd:75:07:6d:9b: b8:58:da:ab:09:fd:76:09:6b:0c:0c:31:89:85:cb: 3c:eb:11:9d:b3:b2:ff:ee:3a:ba:89:96:4a:02:5c: 0a:6e:f8:98:ee:7e:9e:26:05:b4:a9:ee:be:74:f3: 52:c1:fc:be:5c:64:65:27:b1:df:c0:81:39:23:86: ac:f1:fd:95:7e:db:bb:8b:43:85:fe:fa:44:26:53: 95:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:4F:D1:C7:D4:22:5B:7D:F6:0A:9D:12:A3:70:68:5E:2C:8C:09:3F X509v3 Authority Key Identifier: keyid:72:9E:2F:9C:1D:87:C2:14:73:50:78:CF:D2:1C:63:8E:07:15:7B:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/0634745A36D311F091108A4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.112.0/22 202.155.120.0/22 Signature Algorithm: sha256WithRSAEncryption 55:32:1f:92:2d:23:51:93:89:01:ee:05:ce:95:69:65:30:cd: 82:b3:0b:e5:c4:5e:07:b7:38:53:ea:a1:42:1a:5b:01:64:83: 24:5a:45:33:b1:bf:21:54:16:34:9b:2c:4b:74:22:ae:bb:b5: f1:28:f2:57:fc:97:77:32:1e:80:19:03:53:9e:49:1a:dc:90: 6d:2f:95:a5:0c:b8:48:4e:20:e8:91:6d:ee:07:33:68:10:d8: 85:fa:9e:38:84:02:97:c4:4d:31:f8:51:40:ed:40:2e:ee:3b: fb:d8:77:fd:9e:9a:13:b9:f4:0e:4d:d9:ef:d9:e2:a3:8c:26: 5a:04:09:0d:7d:c9:9f:9c:46:ce:3f:38:b6:5d:18:7c:5e:e1: 6f:75:08:ea:f5:01:f2:6c:60:09:92:64:1e:bc:99:f4:78:97: 19:ea:75:45:8b:48:08:83:42:ea:01:ba:41:87:5f:8b:66:c5: 4c:a5:9d:75:3f:6a:2c:78:db:8b:fb:f6:b8:36:a4:c1:28:44: cb:8d:44:8e:10:48:db:bb:c9:57:07:e7:ee:0a:cb:6a:52:a5: dc:6f:c3:8b:05:a3:bc:05:75:b1:ee:53:53:07:e2:1e:3b:61: e8:ff:61:a5:ee:05:fa:86:1f:b9:4d:1f:d3:73:68:b1:e4:9d: 0d:fe:94:9e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgwN0ExMTAvBgNVBAUTKDcyOUUyRjlDMUQ4N0MyMTQ3MzUwNzhDRkQyMUM2MzhF MDcxNTdCNUQwHhcNMjUwNjA1MDA0MDE3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZTc3MS03MWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWnLXQmGGAXGovRHA3mVsAbTIOTPa9ImBFRxYDLUxsOvFfeC4gdUx2WuChKf nVPFgI0JTl0et4Cs49zc1nOmuk59qpYELosbAn0Tu+mPGMSEQfhLpaGaGrb6z/aR IvqeyF1qT54fjtYBXJS/Sia/nGvniLprDz5oVRG6ghzRg7oco7hkgE7hOyz+nfgw bo79tpVEvn7FW3dzwGikKj1AKMncI8SJoIk6FTErT42w/XUHbZu4WNqrCf12CWsM DDGJhcs86xGds7L/7jq6iZZKAlwKbviY7n6eJgW0qe6+dPNSwfy+XGRlJ7HfwIE5 I4as8f2Vftu7i0OF/vpEJlOViQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFItP0cfU Ilt99gqdEqNwaF4sjAk/MB8GA1UdIwQYMBaAFHKeL5wdh8IUc1B4z9IcY44HFXtd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODA3QS8wMjYzQUI0ODNF ODgxMUVEQTYxQTlCMkFDNEY5QUUwMi9jcDR2bkIySHdoUnpVSGpQMGh4ampnY1Zl MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NwNHZuQjJId2hSelVIalAwaHhqamdjVmUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgwN0EvMDI2M0FCNDgzRTg4MTFFREE2MUE5QjJBQzRGOUFFMDIvMDYzNDc0NUEz NkQzMTFGMDkxMTA4QTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALKm3ADBALKm3gwDQYJKoZIhvcNAQELBQADggEBAFUyH5It I1GTiQHuBc6VaWUwzYKzC+XEXge3OFPqoUIaWwFkgyRaRTOxvyFUFjSbLEt0Iq67 tfEo8lf8l3cyHoAZA1OeSRrckG0vlaUMuEhOIOiRbe4HM2gQ2IX6njiEApfETTH4 UUDtQC7uO/vYd/2emhO59A5N2e/Z4qOMJloECQ19yZ+cRs4/OLZdGHxe4W91COr1 AfJsYAmSZB68mfR4lxnqdUWLSAiDQuoBukGHX4tmxUylnXU/aix424v79rg2pMEo RMuNRI4QSNu7yVcH5+4Ky2pSpdxvw4sFo7wFdbHuU1MH4h47Yej/YaXuBfqGH7lN H9NzaLHknQ3+lJ4= -----END CERTIFICATE-----Generated at Sun Jun 15 10:19:03 2025 by rpki-client