$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/4C0C96C6022E11EBA920EA37C4F9AE02.roa File: 4C0C96C6022E11EBA920EA37C4F9AE02.roa (raw, json) Hash identifier: K/ybxERnMroT+/HivxwCKoEx2WZjUMXQikxQf2o4Wtg= Subject key identifier: 7B:45:37:D0:FB:75:83:DB:88:A4:05:CE:BA:C5:19:84:45:D9:06:BE Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 17D7 Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/4C0C96C6022E11EBA920EA37C4F9AE02.roa Signing time: Thu 08 May 2025 17:17:50 +0000 ROA not before: Thu 08 May 2025 17:17:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9263 IP address blocks: 203.198.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6103 (0x17d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: May 8 17:17:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ce73e-5a74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ae:6a:30:71:63:55:b8:8b:5f:06:d5:9b:27: 2e:8c:5d:ff:18:f1:db:c1:b0:4f:22:3f:ab:c4:c4: fc:00:0b:13:95:8a:ca:db:54:f8:73:d4:91:fb:3e: b7:18:95:9e:a6:97:1a:0a:7e:69:60:88:d4:bc:31: dc:4c:7c:4a:a4:ab:31:77:60:26:8c:88:ad:a3:fe: 5f:62:3a:61:ea:a6:94:ee:67:55:f7:7a:40:07:bb: 9f:46:9f:c3:1e:6a:ba:1f:a9:9d:03:1a:51:43:ce: 47:74:8a:e7:b5:da:9c:ff:49:ad:cf:70:fa:82:e4: f9:5e:e3:b8:90:d8:88:6a:86:e2:95:ef:f6:0b:95: 2a:9d:97:37:ef:6d:7a:de:21:dc:da:5e:1d:69:f4: ed:33:6c:5f:30:3b:f7:5b:04:9f:5a:ec:2b:f1:6c: b6:68:4d:64:c9:28:2e:09:9b:8a:ba:5f:7d:57:18: 16:7b:b5:57:61:e6:c3:3d:e7:7d:f7:97:b6:ad:8f: 5a:26:d8:09:95:91:cf:9f:ff:e2:fa:22:df:fa:98: 9a:7c:77:4b:46:6f:50:ff:09:a5:3f:d0:22:5d:d7: 51:34:20:64:66:a8:fe:32:36:4c:d9:77:13:d0:d4: bc:f4:55:9e:2b:40:37:89:14:2b:45:e8:81:99:f1: d0:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:45:37:D0:FB:75:83:DB:88:A4:05:CE:BA:C5:19:84:45:D9:06:BE X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/4C0C96C6022E11EBA920EA37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.198.168.0/21 Signature Algorithm: sha256WithRSAEncryption 76:2e:02:b8:78:9d:50:5f:f7:4a:18:b6:fb:c8:9e:09:61:95: 62:bf:84:7b:c7:af:8c:8a:7e:66:47:e3:8e:ce:f2:0b:d6:21: 15:de:24:b5:e5:1f:87:cf:60:ff:bf:d6:06:81:64:88:4e:b4: 1b:92:a5:46:17:27:95:0f:8a:5c:eb:53:d7:cd:dc:8d:70:b9: 4b:db:3c:f3:66:4a:ce:1b:65:a6:c1:f5:2e:62:13:fe:d0:e2: 03:3b:e0:bc:b3:f3:3e:d3:ca:8c:95:a5:ce:44:42:80:07:fd: a1:9d:aa:5a:ea:a6:6f:a1:3b:3b:72:02:71:8e:9b:98:c1:5f: 0f:f1:3e:fa:32:44:1f:b2:1e:63:71:e1:47:9e:3b:08:a0:12: df:7f:f3:52:06:c5:27:e9:f7:75:2e:9d:d9:50:1d:89:f0:96: c8:c9:59:b1:32:59:2f:1f:a7:d4:7f:65:cf:67:ed:c9:17:73: 72:29:11:ff:c6:08:5c:cf:68:eb:02:98:2f:64:b1:ad:83:08: f4:31:f5:51:22:0b:e4:eb:f7:81:35:32:38:4b:b8:fe:dd:bc: 7c:4d:b1:7c:09:b9:1f:42:f5:47:c1:94:b6:7b:68:25:0d:7f: 66:a9:cb:6b:b1:77:8d:7a:48:da:57:42:38:d5:07:38:ca:89: cb:58:44:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjUwNTA4MTcxNzUwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZTczZS01YTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs65qMHFjVbiLXwbVmycujF3/GPHbwbBPIj+rxMT8AAsTlYrK21T4c9SR+z63 GJWeppcaCn5pYIjUvDHcTHxKpKsxd2AmjIito/5fYjph6qaU7mdV93pAB7ufRp/D Hmq6H6mdAxpRQ85HdIrntdqc/0mtz3D6guT5XuO4kNiIaobile/2C5UqnZc37216 3iHc2l4dafTtM2xfMDv3WwSfWuwr8Wy2aE1kySguCZuKul99VxgWe7VXYebDPed9 95e2rY9aJtgJlZHPn//i+iLf+piafHdLRm9Q/wmlP9AiXddRNCBkZqj+MjZM2XcT 0NS89FWeK0A3iRQrReiBmfHQsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHtFN9D7 dYPbiKQFzrrFGYRF2Qa+MB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvNEMwQzk2QzYw MjJFMTFFQkE5MjBFQTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLxqgwDQYJKoZIhvcNAQELBQADggEBAHYuArh4nVBf90oY tvvInglhlWK/hHvHr4yKfmZH447O8gvWIRXeJLXlH4fPYP+/1gaBZIhOtBuSpUYX J5UPilzrU9fN3I1wuUvbPPNmSs4bZabB9S5iE/7Q4gM74Lyz8z7TyoyVpc5EQoAH /aGdqlrqpm+hOztyAnGOm5jBXw/xPvoyRB+yHmNx4UeeOwigEt9/81IGxSfp93Uu ndlQHYnwlsjJWbEyWS8fp9R/Zc9n7ckXc3IpEf/GCFzPaOsCmC9ksa2DCPQx9VEi C+Tr94E1MjhLuP7dvHxNsXwJuR9C9UfBlLZ7aCUNf2apy2uxd416SNpXQjjVBzjK ictYRKg= -----END CERTIFICATE-----Generated at Tue Nov 4 22:21:18 2025 by rpki-client