$ rpki-client -vvf rpki.apnic.net/member_repository/A916B95C/272647A25D3811EBA202DF1EC4F9AE02/2428B7AE5D3A11EBA0F5C625C4F9AE02.roa File: 2428B7AE5D3A11EBA0F5C625C4F9AE02.roa (raw, json) Hash identifier: KSEgT/i8xCr3TdP6rdnmHk4ouCMeLo961EV+y4SnRdE= Subject key identifier: DB:C6:07:9B:FD:E4:4D:C1:F4:AA:DB:CC:B4:9B:E6:FB:DC:F1:17:84 Certificate issuer: /CN=A916B95C/serialNumber=5BADFED330D65CA0BAB3F73901CB95305A207DC3 Certificate serial: 06D9 Authority key identifier: 5B:AD:FE:D3:30:D6:5C:A0:BA:B3:F7:39:01:CB:95:30:5A:20:7D:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W63-0zDWXKC6s_c5AcuVMFogfcM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B95C/272647A25D3811EBA202DF1EC4F9AE02/2428B7AE5D3A11EBA0F5C625C4F9AE02.roa Signing time: Tue 08 Jul 2025 23:03:27 +0000 ROA not before: Tue 08 Jul 2025 23:03:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4825 IP address blocks: 202.61.4.0/24 maxlen: 24 202.61.5.0/24 maxlen: 24 202.61.6.0/24 maxlen: 24 202.61.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B95C/272647A25D3811EBA202DF1EC4F9AE02/W63-0zDWXKC6s_c5AcuVMFogfcM.crl rsync://rpki.apnic.net/member_repository/A916B95C/272647A25D3811EBA202DF1EC4F9AE02/W63-0zDWXKC6s_c5AcuVMFogfcM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W63-0zDWXKC6s_c5AcuVMFogfcM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B95C, serialNumber=5BADFED330D65CA0BAB3F73901CB95305A207DC3 Validity Not Before: Jul 8 23:03:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686da3be-93ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ce:55:c7:0a:5b:01:78:d4:ce:c0:2d:c0:f9: 2b:eb:d9:57:24:84:c2:06:b2:c2:00:82:2b:b5:c9: 78:0c:7f:89:74:b5:da:3b:de:d8:68:72:18:0b:97: 18:1f:9f:1d:c1:d8:0d:38:a5:19:9c:82:6b:69:45: 49:78:cd:47:18:cd:4e:50:ab:5b:e0:bc:fe:c0:30: 82:0e:e3:c5:9e:3f:05:24:f8:93:5f:c5:8b:c4:6f: 77:39:dd:d7:7a:da:1e:72:00:79:23:e1:60:b5:6c: cf:6d:b2:5d:c1:75:e0:18:5a:3b:10:5e:6c:bf:e2: 0d:39:f6:bf:bd:4d:3a:e1:8c:d6:c5:cc:02:87:80: de:76:66:72:e3:71:0f:55:09:b7:d1:c0:7d:4f:fe: a3:9e:12:16:54:09:f6:63:20:e4:ad:80:79:9f:c2: b2:78:1e:d2:6d:e4:30:e9:21:9d:c4:cc:b7:5d:78: 80:1e:64:39:20:50:90:35:2f:8f:11:a9:b0:c2:20: 90:04:0c:2b:88:c4:72:a7:f2:92:e3:67:49:7c:2a: 36:b5:3a:d1:e2:58:03:5b:93:3c:bd:cf:0f:91:81: d8:5f:16:f8:b5:36:16:2f:80:02:12:85:13:5f:36: 7a:36:96:30:fe:41:c8:45:14:dd:a2:14:b4:73:10: d4:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C6:07:9B:FD:E4:4D:C1:F4:AA:DB:CC:B4:9B:E6:FB:DC:F1:17:84 X509v3 Authority Key Identifier: keyid:5B:AD:FE:D3:30:D6:5C:A0:BA:B3:F7:39:01:CB:95:30:5A:20:7D:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B95C/272647A25D3811EBA202DF1EC4F9AE02/W63-0zDWXKC6s_c5AcuVMFogfcM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W63-0zDWXKC6s_c5AcuVMFogfcM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B95C/272647A25D3811EBA202DF1EC4F9AE02/2428B7AE5D3A11EBA0F5C625C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.61.4.0/22 Signature Algorithm: sha256WithRSAEncryption 96:9c:45:84:97:92:b1:cc:df:aa:db:a3:c5:6b:24:57:4c:1f: 87:31:45:4d:24:08:8a:d7:88:c1:fd:11:de:32:d1:e7:a6:8e: 9d:bd:44:59:8f:60:f3:fc:a2:ca:be:be:83:9d:74:9c:96:a4: 7a:ef:19:cd:5c:e5:5f:a3:56:91:8f:1b:e1:af:72:7c:cc:93: 1d:ba:ff:d4:34:87:ff:8a:e8:d0:ed:29:86:52:fe:4b:a2:ac: 2d:d4:bd:83:0c:f5:6d:9a:1b:c1:51:94:00:4c:47:3e:0c:c2: 90:9a:df:b6:d3:5a:f9:c9:e7:0c:66:07:ff:45:d7:74:bf:5b: d5:f9:27:e9:d7:d2:33:20:75:aa:a8:65:81:96:c9:30:48:66: be:39:09:2d:a9:f6:ba:42:9a:bc:b2:8b:e9:eb:fc:97:f2:82: ff:72:05:94:f3:e2:45:b5:94:7b:b8:64:73:72:46:16:aa:8d: b0:61:a9:da:fc:2c:6b:f7:c0:1e:8e:88:a2:17:75:91:44:8f: 62:e5:0b:fc:98:60:dc:2d:47:86:3f:fe:bc:c8:b5:fa:9e:35: 18:25:89:23:6d:8e:88:f6:6c:65:00:ef:f4:35:78:3a:c7:fa: ae:fc:44:3e:aa:dc:10:bd:5a:07:bb:68:6b:fb:7d:aa:0f:59: b7:5f:d6:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI5NUMxMTAvBgNVBAUTKDVCQURGRUQzMzBENjVDQTBCQUIzRjczOTAxQ0I5NTMw NUEyMDdEQzMwHhcNMjUwNzA4MjMwMzI3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkYTNiZS05M2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr85VxwpbAXjUzsAtwPkr69lXJITCBrLCAIIrtcl4DH+JdLXaO97YaHIYC5cY H58dwdgNOKUZnIJraUVJeM1HGM1OUKtb4Lz+wDCCDuPFnj8FJPiTX8WLxG93Od3X etoecgB5I+FgtWzPbbJdwXXgGFo7EF5sv+INOfa/vU064YzWxcwCh4DedmZy43EP VQm30cB9T/6jnhIWVAn2YyDkrYB5n8KyeB7SbeQw6SGdxMy3XXiAHmQ5IFCQNS+P EamwwiCQBAwriMRyp/KS42dJfCo2tTrR4lgDW5M8vc8PkYHYXxb4tTYWL4ACEoUT XzZ6NpYw/kHIRRTdohS0cxDUsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNvGB5v9 5E3B9KrbzLSb5vvc8ReEMB8GA1UdIwQYMBaAFFut/tMw1lygurP3OQHLlTBaIH3D MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Qjk1Qy8yNzI2NDdBMjVE MzgxMUVCQTIwMkRGMUVDNEY5QUUwMi9XNjMtMHpEV1hLQzZzX2M1QWN1Vk1Gb2dm Y00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c2My0wekRXWEtDNnNfYzVBY3VWTUZvZ2ZjTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI5NUMvMjcyNjQ3QTI1RDM4MTFFQkEyMDJERjFFQzRGOUFFMDIvMjQyOEI3QUU1 RDNBMTFFQkEwRjVDNjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKPQQwDQYJKoZIhvcNAQELBQADggEBAJacRYSXkrHM36rb o8VrJFdMH4cxRU0kCIrXiMH9Ed4y0eemjp29RFmPYPP8osq+voOddJyWpHrvGc1c 5V+jVpGPG+GvcnzMkx26/9Q0h/+K6NDtKYZS/kuirC3UvYMM9W2aG8FRlABMRz4M wpCa37bTWvnJ5wxmB/9F13S/W9X5J+nX0jMgdaqoZYGWyTBIZr45CS2p9rpCmryy i+nr/Jfygv9yBZTz4kW1lHu4ZHNyRhaqjbBhqdr8LGv3wB6OiKIXdZFEj2LlC/yY YNwtR4Y//rzItfqeNRgliSNtjoj2bGUA7/Q1eDrH+q78RD6q3BC9Wge7aGv7faoP Wbdf1jU= -----END CERTIFICATE-----Generated at Sat Aug 9 15:11:05 2025 by rpki-client