$ rpki-client -vvf rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/04281A2C6E8211F0A2E51335C4F9AE02.roa File: 04281A2C6E8211F0A2E51335C4F9AE02.roa (raw, json) Hash identifier: FqfsCDqHHflh/fqCgX2tuvENvAYV0R+3DD33J6tFfuE= Subject key identifier: 17:69:19:A1:19:14:E6:BF:76:8E:F8:89:93:22:3E:6E:54:E9:8A:18 Certificate issuer: /CN=A916B795/serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Certificate serial: 0AC5 Authority key identifier: 49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/04281A2C6E8211F0A2E51335C4F9AE02.roa Signing time: Fri 01 Aug 2025 02:48:34 +0000 ROA not before: Fri 01 Aug 2025 02:48:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 4764 IP address blocks: 203.24.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2757 (0xac5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B795, serialNumber=493339547B33003A58599836FB4C99E79449CDF2 Validity Not Before: Aug 1 02:48:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=688c2b02-2f24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1f:9d:28:08:e1:2e:24:fe:3b:91:f1:29:aa: f0:e3:92:84:3b:60:e1:73:d8:2b:58:5c:96:77:97: 3a:99:f4:a3:82:cd:e8:de:d7:99:b1:5b:e6:ca:f4: 46:2a:a6:f4:67:81:e9:e6:59:4d:c2:85:a1:4f:89: 81:e9:af:79:c2:81:b2:8e:e8:65:f0:b5:91:fe:ce: 30:b5:4b:fc:3f:51:46:5d:fb:64:ad:70:e8:2a:d5: b8:d5:0f:a1:1b:a6:38:f8:74:cb:d0:40:f0:f6:ae: aa:33:70:e0:27:8d:c1:4e:e2:3d:11:05:e5:e1:ab: 54:25:b6:3c:85:e5:11:47:97:03:cb:55:0a:32:2c: 5c:c8:25:96:50:a2:f4:1f:47:c2:45:b8:30:c8:47: 10:01:68:98:10:c9:1a:9f:95:73:fc:a7:d4:7c:42: 1f:bb:cd:b7:49:a9:15:b0:25:7b:b2:f8:17:4e:9a: 0e:f1:1b:0a:8a:9a:6a:3c:57:46:40:cc:12:8a:7d: 0d:87:2d:4d:22:af:94:52:3c:84:29:0f:0f:65:61: c2:39:e0:bf:b0:59:12:de:a8:89:df:94:d5:fa:18: f3:4f:36:3a:1b:b4:ca:2b:45:a4:b3:1f:65:cc:c7: a5:85:52:64:67:e1:78:77:a0:24:0b:7c:70:6b:5b: a3:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:69:19:A1:19:14:E6:BF:76:8E:F8:89:93:22:3E:6E:54:E9:8A:18 X509v3 Authority Key Identifier: keyid:49:33:39:54:7B:33:00:3A:58:59:98:36:FB:4C:99:E7:94:49:CD:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/STM5VHszADpYWZg2-0yZ55RJzfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/STM5VHszADpYWZg2-0yZ55RJzfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B795/BD032E04634011EAACCF0262C4F9AE02/04281A2C6E8211F0A2E51335C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.22.0/24 Signature Algorithm: sha256WithRSAEncryption c3:66:52:c7:a8:6e:76:9b:25:bb:16:d6:7a:98:d6:b4:61:14: bb:5b:47:95:c3:1f:9b:6a:3c:33:69:0f:75:46:73:0c:f8:35: 06:10:cd:f8:b9:ca:ba:c6:b2:ec:34:0b:48:a0:c5:07:19:86: 81:32:66:96:56:7b:e4:83:5a:de:57:5f:a4:01:c1:48:01:94: 2b:0a:d6:21:21:b2:db:65:0b:79:be:2b:bc:af:2b:f1:99:98: 3f:ea:96:0a:5b:bc:04:f4:05:dd:0c:ee:9b:f8:41:3a:4d:e0: e8:f3:d5:8a:70:75:f9:2e:39:0f:64:cf:76:f8:61:91:64:a5: 54:df:3b:06:63:29:b0:43:02:9a:97:59:6f:d3:84:bf:f7:3a: 43:82:51:12:17:5d:fa:a7:18:c0:d5:7d:b3:9c:92:d4:2e:c0: fb:33:72:bd:8e:a3:a1:b3:33:11:9b:36:1b:66:fa:be:8b:95: 71:14:31:8e:83:68:f4:b5:31:26:ea:da:24:34:4e:a4:d8:dc: cf:3b:88:69:47:a1:af:3f:fb:03:27:8e:27:c0:e9:37:6d:07: 04:b9:ec:b0:b1:e0:40:1b:97:88:3c:16:e0:56:15:a6:5c:e3: 7f:43:1f:ca:b1:7d:bc:49:ea:bc:1f:ba:0b:98:a5:14:d9:8d: 59:71:30:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3OTUxMTAvBgNVBAUTKDQ5MzMzOTU0N0IzMzAwM0E1ODU5OTgzNkZCNEM5OUU3 OTQ0OUNERjIwHhcNMjUwODAxMDI0ODM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjMmIwMi0yZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1x+dKAjhLiT+O5HxKarw45KEO2Dhc9grWFyWd5c6mfSjgs3o3teZsVvmyvRG Kqb0Z4Hp5llNwoWhT4mB6a95woGyjuhl8LWR/s4wtUv8P1FGXftkrXDoKtW41Q+h G6Y4+HTL0EDw9q6qM3DgJ43BTuI9EQXl4atUJbY8heURR5cDy1UKMixcyCWWUKL0 H0fCRbgwyEcQAWiYEMkan5Vz/KfUfEIfu823SakVsCV7svgXTpoO8RsKippqPFdG QMwSin0Nhy1NIq+UUjyEKQ8PZWHCOeC/sFkS3qiJ35TV+hjzTzY6G7TKK0Wksx9l zMelhVJkZ+F4d6AkC3xwa1ujGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBdpGaEZ FOa/do74iZMiPm5U6YoYMB8GA1UdIwQYMBaAFEkzOVR7MwA6WFmYNvtMmeeUSc3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjc5NS9CRDAzMkUwNDYz NDAxMUVBQUNDRjAyNjJDNEY5QUUwMi9TVE01VkhzekFEcFlXWmcyLTB5WjU1Ukp6 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUTTVWSHN6QURwWVdaZzItMHlaNTVSSnpmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI3OTUvQkQwMzJFMDQ2MzQwMTFFQUFDQ0YwMjYyQzRGOUFFMDIvMDQyODFBMkM2 RTgyMTFGMEEyRTUxMzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLGBYwDQYJKoZIhvcNAQELBQADggEBAMNmUseobnabJbsW 1nqY1rRhFLtbR5XDH5tqPDNpD3VGcwz4NQYQzfi5yrrGsuw0C0igxQcZhoEyZpZW e+SDWt5XX6QBwUgBlCsK1iEhsttlC3m+K7yvK/GZmD/qlgpbvAT0Bd0M7pv4QTpN 4Ojz1YpwdfkuOQ9kz3b4YZFkpVTfOwZjKbBDApqXWW/ThL/3OkOCURIXXfqnGMDV fbOcktQuwPszcr2Oo6GzMxGbNhtm+r6LlXEUMY6DaPS1MSbq2iQ0TqTY3M87iGlH oa8/+wMnjifA6TdtBwS57LCx4EAbl4g8FuBWFaZc439DH8qxfbxJ6rwfuguYpRTZ jVlxMLs= -----END CERTIFICATE-----Generated at Sun Aug 10 18:19:28 2025 by rpki-client