$ rpki-client -vvf rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/3E60217E42D211EC956C7F65C4F9AE02.roa File: 3E60217E42D211EC956C7F65C4F9AE02.roa (raw, json) Hash identifier: uugn7/J2yz2AlJqn3GxqBNZUwmGZ4weF3jg7XtTcTNs= Subject key identifier: 03:BB:05:55:A9:1D:56:0E:64:02:42:C5:6D:42:15:F5:A2:AE:78:DA Certificate issuer: /CN=A918196D/serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Certificate serial: 049B Authority key identifier: 68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/3E60217E42D211EC956C7F65C4F9AE02.roa Signing time: Sun 08 Jun 2025 21:26:49 +0000 ROA not before: Sun 08 Jun 2025 21:26:49 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 137267 IP address blocks: 203.27.18.0/24 maxlen: 24 203.33.188.0/24 maxlen: 24 2400:1360::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1179 (0x49b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918196D, serialNumber=68511981FCB9DAFAD8E3D30304BB41A96FB9A76F Validity Not Before: Jun 8 21:26:49 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68460019-fc77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:fc:4e:f6:99:07:e1:02:12:0c:0a:63:5b:92: a2:b7:bb:05:b9:17:3b:77:c1:b6:0a:3d:07:63:21: a4:8c:08:1c:d1:94:cd:cb:39:c2:b8:73:a0:eb:42: ab:b6:4d:e8:fb:ba:dc:c6:29:0f:8b:6e:00:5d:73: 30:eb:64:5d:d8:c4:c8:52:fc:ac:81:c0:d3:50:6e: 4c:e2:f0:7e:bb:7f:20:a7:68:2f:47:84:c0:d8:7d: eb:15:87:e5:48:e8:b7:ec:91:8f:92:a7:5b:44:e6: f5:4d:16:ac:5f:20:ef:90:f6:68:23:50:b6:54:7a: 83:82:ce:ac:cb:3c:af:e5:c1:ee:60:66:65:87:33: 11:6b:84:ec:c1:0d:2f:90:5d:5f:e9:bd:5c:c1:ff: ad:d8:f3:e5:09:c5:14:4e:f7:c7:89:1f:85:55:f6: 69:7c:dd:c3:ce:cf:d3:0c:aa:ab:26:6b:56:32:36: c1:e1:b8:d0:c8:e2:5e:48:6a:58:fa:fa:97:87:30: 4f:c4:0b:44:bf:18:73:6f:bc:f8:a0:d9:1c:c4:76: 46:76:64:9a:f2:5f:76:0e:6b:0c:4c:c8:87:5f:ec: 14:66:c8:27:a6:7f:09:6c:5b:1e:7d:f5:3c:61:67: ac:17:de:ac:70:13:01:32:50:af:1f:8a:d6:0f:d2: 59:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:BB:05:55:A9:1D:56:0E:64:02:42:C5:6D:42:15:F5:A2:AE:78:DA X509v3 Authority Key Identifier: keyid:68:51:19:81:FC:B9:DA:FA:D8:E3:D3:03:04:BB:41:A9:6F:B9:A7:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/aFEZgfy52vrY49MDBLtBqW-5p28.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFEZgfy52vrY49MDBLtBqW-5p28.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918196D/6202AA3E411011EC9939C00FC4F9AE02/3E60217E42D211EC956C7F65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.18.0/24 203.33.188.0/24 IPv6: 2400:1360::/34 Signature Algorithm: sha256WithRSAEncryption a6:0c:b1:59:00:73:b0:a0:56:59:83:94:a3:b8:b6:6f:fa:f6: ba:7d:6b:9e:33:75:bf:ab:45:ea:c1:3d:a8:cc:4d:77:bb:93: 6d:2f:7d:20:b4:28:46:8e:db:b2:f4:2a:24:cd:df:a8:ae:67: e8:12:57:cc:80:a6:f9:a5:f6:86:b5:1b:da:28:29:27:57:de: 6b:8c:1e:cf:c8:c0:ec:ce:90:5c:a0:20:b2:27:a1:6a:1a:80: c9:55:40:34:d0:f1:72:2e:10:9e:57:cf:96:21:f4:ad:d5:2a: 71:0b:23:c5:e7:86:1b:42:b2:00:83:16:69:de:2f:38:03:8a: 1c:de:86:f9:af:10:db:79:e1:ac:e3:f2:26:8f:a1:98:47:eb: a1:4a:62:3a:da:2b:3d:48:92:1c:b2:d3:4b:dc:56:bf:76:42: 16:2d:4c:18:0e:e3:5a:7b:b4:37:92:2c:6b:3e:fa:71:7f:b1: 33:0c:5f:fd:39:c1:38:35:c2:6d:00:eb:69:d4:81:9d:4d:d0: fd:81:b8:53:52:f9:87:cb:30:fd:a9:4f:7d:55:54:a8:eb:87: 92:70:cd:94:0b:7a:6b:d2:47:b3:97:e5:17:a0:93:a9:56:4d: 0c:dc:02:95:50:82:fc:d5:6c:57:22:5e:93:bb:76:38:cb:8d: 53:5f:91:07 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICBJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE5NkQxMTAvBgNVBAUTKDY4NTExOTgxRkNCOURBRkFEOEUzRDMwMzA0QkI0MUE5 NkZCOUE3NkYwHhcNMjUwNjA4MjEyNjQ5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ2MDAxOS1mYzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx/xO9pkH4QISDApjW5Kit7sFuRc7d8G2Cj0HYyGkjAgc0ZTNyznCuHOg60Kr tk3o+7rcxikPi24AXXMw62Rd2MTIUvysgcDTUG5M4vB+u38gp2gvR4TA2H3rFYfl SOi37JGPkqdbROb1TRasXyDvkPZoI1C2VHqDgs6syzyv5cHuYGZlhzMRa4TswQ0v kF1f6b1cwf+t2PPlCcUUTvfHiR+FVfZpfN3Dzs/TDKqrJmtWMjbB4bjQyOJeSGpY +vqXhzBPxAtEvxhzb7z4oNkcxHZGdmSa8l92DmsMTMiHX+wUZsgnpn8JbFseffU8 YWesF96scBMBMlCvH4rWD9JZbwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFAO7BVWp HVYOZAJCxW1CFfWirnjaMB8GA1UdIwQYMBaAFGhRGYH8udr62OPTAwS7Qalvuadv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTk2RC82MjAyQUEzRTQx MTAxMUVDOTkzOUMwMEZDNEY5QUUwMi9hRkVaZ2Z5NTJ2clk0OU1EQkx0QnFXLTVw MjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGRVpnZnk1MnZyWTQ5TURCTHRCcVctNXAyOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE5NkQvNjIwMkFBM0U0MTEwMTFFQzk5MzlDMDBGQzRGOUFFMDIvM0U2MDIxN0U0 MkQyMTFFQzk1NkM3RjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBIEAgABMAwDBADLGxIDBADLIbwwDgQCAAIwCAMGBiQAE2AAMA0GCSqGSIb3 DQEBCwUAA4IBAQCmDLFZAHOwoFZZg5SjuLZv+va6fWueM3W/q0XqwT2ozE13u5Nt L30gtChGjtuy9Cokzd+ormfoElfMgKb5pfaGtRvaKCknV95rjB7PyMDszpBcoCCy J6FqGoDJVUA00PFyLhCeV8+WIfSt1SpxCyPF54YbQrIAgxZp3i84A4oc3ob5rxDb eeGs4/Imj6GYR+uhSmI62is9SJIcstNL3Fa/dkIWLUwYDuNae7Q3kixrPvpxf7Ez DF/9OcE4NcJtAOtp1IGdTdD9gbhTUvmHyzD9qU99VVSo64eScM2UC3pr0kezl+UX oJOpVk0M3AKVUIL81WxXIl6Tu3Y4y41TX5EH -----END CERTIFICATE-----Generated at Tue Jun 17 04:00:52 2025 by rpki-client