$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/2227B66CF97B11EFA2B83631C4F9AE02.roa File: 2227B66CF97B11EFA2B83631C4F9AE02.roa (raw, json) Hash identifier: x6GId7866GEm2yx9Alj41gMxCnlfSK7cwtQgE9xlFPo= Subject key identifier: C0:39:83:A1:23:97:CA:DA:EB:ED:0C:99:C1:9F:EA:55:57:CF:AE:5A Certificate issuer: /CN=A916A983/serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Certificate serial: 1343 Authority key identifier: 71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/2227B66CF97B11EFA2B83631C4F9AE02.roa Signing time: Wed 06 Aug 2025 17:26:36 +0000 ROA not before: Wed 06 Aug 2025 17:26:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4632 IP address blocks: 203.50.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4931 (0x1343) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983, serialNumber=71565F2D7B924CD72B455B68B667194010BB1A9F Validity Not Before: Aug 6 17:26:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6893904c-ebd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1c:33:d8:b7:55:03:36:e2:c7:1d:8d:9a:df: 04:39:19:8f:1b:9b:ab:74:6d:14:2e:46:73:66:85: c7:8d:89:6c:1e:c7:af:9a:a6:48:51:85:d3:2e:e6: 3c:23:2d:9d:f8:10:37:da:27:c2:58:a2:57:d4:f6: 6a:f3:a3:c0:73:9f:b1:0f:05:01:7e:a1:e5:b3:c4: f3:ce:e8:f9:c8:f1:8e:0c:e8:f7:22:c2:50:68:61: 65:4f:1f:58:8f:31:77:14:c2:9e:0a:b0:43:87:38: 02:9c:3b:46:39:7a:2f:18:bc:75:c0:c0:f3:81:a5: 32:8f:64:0c:b9:01:56:aa:0d:1e:23:44:9b:0b:3b: a1:22:80:77:c6:01:31:42:56:c8:ad:d0:b2:a5:a7: c9:c6:91:7c:ee:45:54:6d:27:cd:d8:65:86:de:3c: 8e:05:f3:79:b6:7b:d7:21:93:45:50:97:e9:b7:01: c9:1c:4a:fa:20:31:49:05:20:3d:be:9a:ef:3e:e2: 81:b4:e9:72:79:b7:63:16:77:20:32:51:8b:24:1a: c2:60:e9:80:e3:d1:2f:99:32:5c:cf:92:2d:2d:2c: 72:b9:11:6d:24:bf:97:f3:e1:ea:ff:aa:60:54:32: 3a:b5:5b:46:d1:d1:4d:83:4f:d1:fd:71:84:e2:ed: eb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:39:83:A1:23:97:CA:DA:EB:ED:0C:99:C1:9F:EA:55:57:CF:AE:5A X509v3 Authority Key Identifier: keyid:71:56:5F:2D:7B:92:4C:D7:2B:45:5B:68:B6:67:19:40:10:BB:1A:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/cVZfLXuSTNcrRVtotmcZQBC7Gp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cVZfLXuSTNcrRVtotmcZQBC7Gp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/16730D20CD0F11E89D9FF165C4F9AE02/2227B66CF97B11EFA2B83631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.50.251.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:61:a1:2f:cc:7f:32:dc:23:1d:eb:c7:8e:15:fb:88:d6:4d: be:8a:fa:64:9f:d1:f9:1e:b8:b8:22:db:74:c9:1f:d6:23:7c: 8c:33:26:39:d1:45:e5:de:ac:ca:f1:8d:25:e4:ff:ee:dc:ed: 84:32:a7:51:ac:6b:be:9f:1c:f5:46:2e:0b:46:84:d9:1f:bb: 18:fc:e4:f5:66:cc:77:08:0b:29:88:b4:10:d7:7b:66:64:f4: 20:07:97:44:8a:4e:56:72:1e:b9:ad:38:7c:e3:3c:53:4f:6f: 78:99:4f:c0:ad:95:fd:d6:44:30:30:60:8b:40:c1:d5:48:49: a4:10:9d:ba:8d:18:1d:6c:21:f5:f0:4b:cc:6d:83:a5:7d:5f: 8a:c0:28:23:05:85:38:74:59:a3:9c:21:80:43:da:e9:fe:3d: 4a:5d:d3:79:5c:59:be:8c:97:11:1e:ce:4f:f4:87:25:b7:8e: a3:1c:d0:f8:29:fd:20:ab:85:fa:62:b9:d0:db:b8:3e:41:71: 37:4b:9f:5d:6d:ce:f1:19:92:3b:2d:79:e0:d5:20:f2:56:4c: a3:da:9f:64:bf:36:e1:36:a5:61:b0:fe:89:f2:b6:64:0c:2a: 48:2b:f3:83:f7:ff:5f:83:ba:05:a7:e8:f8:62:60:d5:53:74: d9:1c:f1:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICE0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDcxNTY1RjJEN0I5MjRDRDcyQjQ1NUI2OEI2NjcxOTQw MTBCQjFBOUYwHhcNMjUwODA2MTcyNjM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkzOTA0Yy1lYmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Rwz2LdVAzbixx2Nmt8EORmPG5urdG0ULkZzZoXHjYlsHsevmqZIUYXTLuY8 Iy2d+BA32ifCWKJX1PZq86PAc5+xDwUBfqHls8Tzzuj5yPGODOj3IsJQaGFlTx9Y jzF3FMKeCrBDhzgCnDtGOXovGLx1wMDzgaUyj2QMuQFWqg0eI0SbCzuhIoB3xgEx QlbIrdCypafJxpF87kVUbSfN2GWG3jyOBfN5tnvXIZNFUJfptwHJHEr6IDFJBSA9 vprvPuKBtOlyebdjFncgMlGLJBrCYOmA49EvmTJcz5ItLSxyuRFtJL+X8+Hq/6pg VDI6tVtG0dFNg0/R/XGE4u3r6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMA5g6Ej l8ra6+0MmcGf6lVXz65aMB8GA1UdIwQYMBaAFHFWXy17kkzXK0VbaLZnGUAQuxqf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8xNjczMEQyMENE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9jVlpmTFh1U1ROY3JSVnRvdG1jWlFCQzdH cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NWWmZMWHVTVE5jclJWdG90bWNaUUJDN0dwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMTY3MzBEMjBDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvMjIyN0I2NkNG OTdCMTFFRkEyQjgzNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLMvswDQYJKoZIhvcNAQELBQADggEBAF9hoS/MfzLcIx3r x44V+4jWTb6K+mSf0fkeuLgi23TJH9YjfIwzJjnRReXerMrxjSXk/+7c7YQyp1Gs a76fHPVGLgtGhNkfuxj85PVmzHcICymItBDXe2Zk9CAHl0SKTlZyHrmtOHzjPFNP b3iZT8Ctlf3WRDAwYItAwdVISaQQnbqNGB1sIfXwS8xtg6V9X4rAKCMFhTh0WaOc IYBD2un+PUpd03lcWb6MlxEezk/0hyW3jqMc0Pgp/SCrhfpiudDbuD5BcTdLn11t zvEZkjsteeDVIPJWTKPan2S/NuE2pWGw/onytmQMKkgr84P3/1+DugWn6PhiYNVT dNkc8fk= -----END CERTIFICATE-----Generated at Mon Aug 11 08:47:59 2025 by rpki-client