$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/7354ACC0472811F0ADE2D44BC4F9AE02.roa File: 7354ACC0472811F0ADE2D44BC4F9AE02.roa (raw, json) Hash identifier: wcclgPl4R6E/Zzr/USbPvSIER4uFng9U6618g1EWkBk= Subject key identifier: 0B:EC:FC:9D:51:2A:8F:13:BF:E3:92:7B:49:5F:D7:D1:AC:AF:E4:CB Certificate issuer: /CN=A917E1FA/serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Certificate serial: 06 Authority key identifier: C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/7354ACC0472811F0ADE2D44BC4F9AE02.roa Signing time: Thu 12 Jun 2025 00:59:11 +0000 ROA not before: Thu 12 Jun 2025 00:59:11 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137474 IP address blocks: 202.93.248.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 07:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FA, serialNumber=C912B054CA43A934C1775733D84BF16E4856BEF0 Validity Not Before: Jun 12 00:59:11 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=684a265f-fd17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:31:7e:0e:bd:fe:ec:75:91:95:ae:35:d0:31: 7d:2b:dd:cb:ab:32:44:0c:b5:5b:55:e6:86:1d:7e: fa:f2:b6:f7:87:23:97:54:db:cd:a1:11:dd:0a:26: b4:fd:f2:a9:fa:86:82:2f:cf:ab:b7:d8:78:35:44: c9:60:07:76:c5:76:c8:5a:14:46:03:b8:6d:d9:77: a0:5f:b0:de:92:94:9f:26:b5:01:7f:6f:a9:d8:70: a9:68:c5:30:cb:cb:95:d4:54:18:db:e3:e0:84:e5: 3f:a8:43:59:2c:7e:d9:e3:68:8d:e7:1f:bf:cb:2d: a2:43:99:1d:10:00:99:7d:dc:43:7f:44:02:d0:72: e3:2e:2b:4c:63:47:3d:87:7f:c8:03:73:13:c2:72: 81:6b:73:4e:51:b9:03:9d:43:e6:d7:38:ff:29:76: 90:67:c4:c0:e2:49:0d:fd:b3:00:a4:83:74:d0:f9: b0:04:41:5b:bd:57:49:82:0f:96:ad:26:3c:df:af: 71:6b:ba:46:88:34:b5:34:43:f5:b0:13:f7:9b:ed: cc:54:c3:eb:da:1f:68:7e:6c:8b:59:ed:13:31:86: 8e:b1:1f:cd:c9:c8:81:6b:8a:30:db:a6:aa:1c:6d: 2e:e4:8b:38:93:08:71:74:1d:81:18:87:2c:63:9e: 85:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:EC:FC:9D:51:2A:8F:13:BF:E3:92:7B:49:5F:D7:D1:AC:AF:E4:CB X509v3 Authority Key Identifier: keyid:C9:12:B0:54:CA:43:A9:34:C1:77:57:33:D8:4B:F1:6E:48:56:BE:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/yRKwVMpDqTTBd1cz2EvxbkhWvvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yRKwVMpDqTTBd1cz2EvxbkhWvvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FA/A2D5EE5E45A311F095EFFD48C4F9AE02/7354ACC0472811F0ADE2D44BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.93.248.0/22 Signature Algorithm: sha256WithRSAEncryption 62:de:0b:95:e6:29:d7:99:1c:9b:7e:19:21:92:a5:5d:14:c9: a5:8c:3d:05:03:73:61:85:d0:05:73:a7:6a:13:2e:61:00:af: 34:5b:05:2a:c0:7d:a1:fc:f4:44:a4:61:6a:7d:95:eb:87:da: 8a:e9:03:28:f7:8a:77:cf:4c:8e:31:9b:b8:1a:70:c2:b6:78: 64:4d:c2:4c:4a:dd:0e:6d:e2:de:fc:85:88:e2:e4:9a:8e:e7: 79:f4:07:fc:d3:34:4b:f0:dd:9b:8e:cc:85:d3:fd:f1:3e:93: fd:fd:a2:22:59:13:79:2b:9f:f0:29:b6:0e:90:5e:f6:7f:18: ef:7b:46:21:85:55:af:8c:1d:ab:69:44:53:80:ef:1f:77:49: dc:b2:35:e9:48:c9:ca:28:4f:81:b6:21:77:26:3c:49:68:7a: 22:7e:58:b8:22:34:a6:02:91:9a:80:fd:bf:10:ac:49:04:b6: 74:89:89:0e:7d:02:92:cb:21:25:be:81:52:02:1b:38:03:98: 88:ab:f6:11:bc:70:97:38:b2:b4:40:ff:ea:58:af:8c:51:ed: dd:68:97:68:7d:de:cb:25:29:91:6d:12:20:d6:31:fe:55:82: 7b:1f:9b:c1:9e:ee:5b:8d:e1:34:8a:70:ad:15:19:b7:89:d9: 25:d2:97:4f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTFGQTExMC8GA1UEBRMoQzkxMkIwNTRDQTQzQTkzNEMxNzc1NzMzRDg0QkYxNkU0 ODU2QkVGMDAeFw0yNTA2MTIwMDU5MTFaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGEyNjVmLWZkMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxMX4Ovf7sdZGVrjXQMX0r3curMkQMtVtV5oYdfvrytveHI5dU282hEd0KJrT9 8qn6hoIvz6u32Hg1RMlgB3bFdshaFEYDuG3Zd6BfsN6SlJ8mtQF/b6nYcKloxTDL y5XUVBjb4+CE5T+oQ1ksftnjaI3nH7/LLaJDmR0QAJl93EN/RALQcuMuK0xjRz2H f8gDcxPCcoFrc05RuQOdQ+bXOP8pdpBnxMDiSQ39swCkg3TQ+bAEQVu9V0mCD5at Jjzfr3FrukaINLU0Q/WwE/eb7cxUw+vaH2h+bItZ7RMxho6xH83JyIFrijDbpqoc bS7kiziTCHF0HYEYhyxjnoWLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUC+z8nVEq jxO/45J7SV/X0ayv5MswHwYDVR0jBBgwFoAUyRKwVMpDqTTBd1cz2EvxbkhWvvAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMUZBL0EyRDVFRTVFNDVB MzExRjA5NUVGRkQ0OEM0RjlBRTAyL3lSS3dWTXBEcVRUQmQxY3oyRXZ4YmtoV3Z2 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveVJLd1ZNcERxVFRCZDFjejJFdnhia2hXdnZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTFGQS9BMkQ1RUU1RTQ1QTMxMUYwOTVFRkZENDhDNEY5QUUwMi83MzU0QUNDMDQ3 MjgxMUYwQURFMkQ0NEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAspd+DANBgkqhkiG9w0BAQsFAAOCAQEAYt4LleYp15kcm34Z IZKlXRTJpYw9BQNzYYXQBXOnahMuYQCvNFsFKsB9ofz0RKRhan2V64faiukDKPeK d89MjjGbuBpwwrZ4ZE3CTErdDm3i3vyFiOLkmo7nefQH/NM0S/Ddm47MhdP98T6T /f2iIlkTeSuf8Cm2DpBe9n8Y73tGIYVVr4wdq2lEU4DvH3dJ3LI16UjJyihPgbYh dyY8SWh6In5YuCI0pgKRmoD9vxCsSQS2dImJDn0CksshJb6BUgIbOAOYiKv2Ebxw lziytED/6livjFHt3WiXaH3eyyUpkW0SINYx/lWCex+bwZ7uW43hNIpwrRUZt4nZ JdKXTw== -----END CERTIFICATE-----Generated at Sun Jun 15 05:25:15 2025 by rpki-client