$ rpki-client -vvf rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/B7FDD0B031E711EF9FBC7372C4F9AE02.roa File: B7FDD0B031E711EF9FBC7372C4F9AE02.roa (raw, json) Hash identifier: 6k5p/IoEaHlPBZxEG5I/1TmRBsboDJLoq3IRABT/4wQ= Subject key identifier: 5C:B8:5C:A6:B6:60:BF:E4:00:63:1E:30:1A:20:2E:3E:13:F3:37:F3 Certificate issuer: /CN=A917D472/serialNumber=189F2DEC5A703F7D6CFD5F96AAB5A2E8A8DD9406 Certificate serial: B8 Authority key identifier: 18:9F:2D:EC:5A:70:3F:7D:6C:FD:5F:96:AA:B5:A2:E8:A8:DD:94:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJ8t7FpwP31s_V-WqrWi6KjdlAY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/B7FDD0B031E711EF9FBC7372C4F9AE02.roa Signing time: Fri 13 Jun 2025 05:15:28 +0000 ROA not before: Fri 13 Jun 2025 05:15:28 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152908 IP address blocks: 202.0.67.0/24 maxlen: 24 202.0.68.0/24 maxlen: 24 203.18.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/GJ8t7FpwP31s_V-WqrWi6KjdlAY.crl rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/GJ8t7FpwP31s_V-WqrWi6KjdlAY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJ8t7FpwP31s_V-WqrWi6KjdlAY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D472, serialNumber=189F2DEC5A703F7D6CFD5F96AAB5A2E8A8DD9406 Validity Not Before: Jun 13 05:15:28 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684bb3f0-d6ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e4:0d:6b:45:cf:55:7f:ab:a9:3c:67:4d:b1: 4e:92:62:72:24:be:ec:a0:93:c0:58:ce:3e:49:64: ff:63:38:8f:4b:1e:af:5f:3b:7f:cf:33:7c:54:e9: a1:93:fc:9c:49:ec:ce:36:83:c3:e9:d3:bc:be:b2: 8c:b1:2a:54:a1:66:c2:95:c8:ca:b2:0e:f7:51:e1: d0:41:20:5b:b8:e5:d9:cf:30:08:06:ae:99:d0:78: d0:5a:d7:d7:ed:c1:2c:6d:d8:89:6b:5a:08:1f:bb: 9e:71:aa:40:e5:20:b0:0e:5d:b0:e2:b8:ca:3e:a7: d9:be:b2:58:7b:9c:19:f4:1f:1e:d6:48:8c:0e:f2: ab:14:61:9d:af:3d:9c:71:b2:b2:d4:48:0f:1e:ff: a2:46:73:45:b0:9a:43:86:c9:d6:cf:6a:29:cf:68: 0b:e8:a2:ec:24:1c:99:93:c0:6a:64:e8:64:76:2f: f1:7e:0c:5f:47:89:7f:e3:9c:0e:49:5f:96:ee:0b: 9b:34:fe:da:fd:2b:5a:5b:17:b8:f6:7b:2c:6f:e6: 74:5f:2b:4f:14:03:3a:59:11:db:01:08:26:09:4c: 3d:f0:53:46:ec:e9:c4:86:35:4d:61:b2:d2:93:c0: dd:8a:cf:07:92:85:3b:3b:de:66:8c:d4:96:54:67: 76:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B8:5C:A6:B6:60:BF:E4:00:63:1E:30:1A:20:2E:3E:13:F3:37:F3 X509v3 Authority Key Identifier: keyid:18:9F:2D:EC:5A:70:3F:7D:6C:FD:5F:96:AA:B5:A2:E8:A8:DD:94:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/GJ8t7FpwP31s_V-WqrWi6KjdlAY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GJ8t7FpwP31s_V-WqrWi6KjdlAY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D472/13A8FB4431E611EFAE9EE460C4F9AE02/B7FDD0B031E711EF9FBC7372C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.67.0-202.0.68.255 203.18.231.0/24 Signature Algorithm: sha256WithRSAEncryption 81:01:dc:88:1f:0a:54:e7:db:a9:f2:87:87:62:14:94:19:f1: cf:2b:d0:30:f4:5f:80:32:1b:c2:87:4b:09:38:47:68:21:64: bb:99:24:66:6e:c1:23:81:9c:80:3c:3b:e6:e8:b2:f5:19:2f: f8:65:3b:44:53:03:63:2a:7b:7a:51:21:da:ad:fb:79:84:eb: 13:e0:b8:3b:a7:16:3f:4c:8e:70:9e:ca:f6:2e:1d:85:5d:b8: bb:65:63:75:7c:52:59:5f:64:4c:e8:6f:85:a1:9e:ee:e0:99: 43:39:32:cc:ac:28:43:2f:49:f8:4f:fa:4f:64:6c:ac:4f:89: 2d:9a:03:8a:fc:5b:81:c3:ec:1e:7f:c7:7a:29:2b:a0:f4:cc: 6a:4c:fa:c2:1f:db:8e:c6:9a:9c:01:9d:5c:ed:52:b0:88:b7: 7d:04:da:ac:37:9a:70:9f:50:83:24:81:b7:83:f2:73:54:b4: 6a:18:3b:d2:b7:55:33:73:62:82:08:fa:4f:1f:35:ec:42:b0: 87:7c:29:f7:d3:05:cc:25:3a:01:d5:bb:3f:31:33:12:b3:6e: 39:98:44:b2:0c:84:94:aa:2a:a4:dc:39:a3:3a:19:e4:b4:fa: ab:86:f0:59:03:bd:10:9c:15:98:34:86:00:cc:bf:3a:d2:bb: 5d:bc:a1:0e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Q0NzIxMTAvBgNVBAUTKDE4OUYyREVDNUE3MDNGN0Q2Q0ZENUY5NkFBQjVBMkU4 QThERDk0MDYwHhcNMjUwNjEzMDUxNTI4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiYjNmMC1kNmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+QNa0XPVX+rqTxnTbFOkmJyJL7soJPAWM4+SWT/YziPSx6vXzt/zzN8VOmh k/ycSezONoPD6dO8vrKMsSpUoWbClcjKsg73UeHQQSBbuOXZzzAIBq6Z0HjQWtfX 7cEsbdiJa1oIH7uecapA5SCwDl2w4rjKPqfZvrJYe5wZ9B8e1kiMDvKrFGGdrz2c cbKy1EgPHv+iRnNFsJpDhsnWz2opz2gL6KLsJByZk8BqZOhkdi/xfgxfR4l/45wO SV+W7gubNP7a/StaWxe49nssb+Z0XytPFAM6WRHbAQgmCUw98FNG7OnEhjVNYbLS k8Ddis8HkoU7O95mjNSWVGd2OwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFFy4XKa2 YL/kAGMeMBogLj4T8zfzMB8GA1UdIwQYMBaAFBifLexacD99bP1flqq1ouio3ZQG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDQ3Mi8xM0E4RkI0NDMx RTYxMUVGQUU5RUU0NjBDNEY5QUUwMi9HSjh0N0Zwd1AzMXNfVi1XcXJXaTZLamRs QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dKOHQ3RnB3UDMxc19WLVdxcldpNktqZGxBWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0Q0NzIvMTNBOEZCNDQzMUU2MTFFRkFFOUVFNDYwQzRGOUFFMDIvQjdGREQwQjAz MUU3MTFFRjlGQkM3MzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAMoAQwMEAMoARAMEAMsS5zANBgkqhkiG9w0BAQsFAAOC AQEAgQHciB8KVOfbqfKHh2IUlBnxzyvQMPRfgDIbwodLCThHaCFku5kkZm7BI4Gc gDw75uiy9Rkv+GU7RFMDYyp7elEh2q37eYTrE+C4O6cWP0yOcJ7K9i4dhV24u2Vj dXxSWV9kTOhvhaGe7uCZQzkyzKwoQy9J+E/6T2RsrE+JLZoDivxbgcPsHn/Heikr oPTMakz6wh/bjsaanAGdXO1SsIi3fQTarDeacJ9QgySBt4Pyc1S0ahg70rdVM3Ni ggj6Tx817EKwh3wp99MFzCU6AdW7PzEzErNuOZhEsgyElKoqpNw5ozoZ5LT6q4bw WQO9EJwVmDSGAMy/OtK7XbyhDg== -----END CERTIFICATE-----Generated at Wed Nov 5 18:36:09 2025 by rpki-client