$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/533744C46ECF11F0B2785815C4F9AE02.roa File: 533744C46ECF11F0B2785815C4F9AE02.roa (raw, json) Hash identifier: uUR+Mj6HGg21UkWJm4BYFdMGN66Z7qsc9O4hlsYytz4= Subject key identifier: 15:21:76:F6:EA:15:8B:DF:D0:7D:E4:CF:2F:00:66:7A:C4:03:B5:D3 Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 0566 Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/533744C46ECF11F0B2785815C4F9AE02.roa Signing time: Fri 01 Aug 2025 12:01:58 +0000 ROA not before: Fri 01 Aug 2025 12:01:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 7633 IP address blocks: 202.141.38.0/24 maxlen: 24 202.141.98.0/24 maxlen: 24 202.141.130.0/24 maxlen: 24 202.141.133.0/24 maxlen: 24 202.141.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1382 (0x566) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3, serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: Aug 1 12:01:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=688cacb6-2a20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:66:a4:d7:d6:52:88:aa:97:93:45:b3:b2:87: e1:4b:8b:42:62:11:a4:1c:fc:e2:f4:ac:ec:82:dd: 97:99:0c:59:a5:bc:3e:10:64:48:d3:33:39:bf:1f: 4e:97:7a:22:57:a3:c5:ed:69:fd:d4:63:25:07:37: 6a:66:08:e0:f5:11:5a:1e:54:5d:ed:34:4f:68:a6: 3b:63:5c:c8:70:5e:60:2c:cf:6d:df:21:74:18:1c: 14:fa:e3:d6:16:f2:23:25:70:f0:44:1e:ac:1c:b2: 05:99:33:8c:a5:da:26:6e:0f:d6:b7:e3:30:f0:94: 0e:ae:b7:69:e1:e4:8e:bd:a1:05:08:27:d9:f3:29: 96:0e:0c:91:ee:b5:97:6d:e2:59:05:c1:6c:0f:3d: 40:c2:68:c2:27:e1:e1:25:ad:34:1d:e5:bf:fe:0d: ff:22:5d:d9:4f:2c:af:b1:e4:8f:55:d3:ff:dc:97: b0:27:4a:fd:78:9d:76:54:c6:33:dd:c3:a3:96:f3: 95:1e:15:f0:10:37:94:dc:27:71:3d:00:40:c1:26: 4a:23:23:ab:47:28:ef:47:31:2d:58:0d:7f:df:e6: a6:bb:93:4f:1c:3f:27:ad:79:dc:66:1b:48:9e:4d: e0:d2:71:33:19:7a:57:9b:db:d4:fc:3c:88:30:49: 9b:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:21:76:F6:EA:15:8B:DF:D0:7D:E4:CF:2F:00:66:7A:C4:03:B5:D3 X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/533744C46ECF11F0B2785815C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.141.38.0/24 202.141.98.0/24 202.141.130.0/24 202.141.133.0/24 202.141.156.0/24 Signature Algorithm: sha256WithRSAEncryption 03:a1:5a:64:af:26:98:96:cd:28:27:01:7b:cb:ec:d7:73:e3: fd:6c:71:20:e2:98:7b:c6:d3:8d:53:c5:33:f6:66:1c:4e:05: 3e:76:db:28:76:5a:8f:0a:ff:c2:cb:66:3f:97:53:f9:5a:2f: b3:76:e9:12:8c:48:39:cb:0c:f6:80:fb:99:19:4f:1f:c2:ee: 02:cc:4b:7b:ed:89:fe:40:d7:ef:60:16:f3:3b:a6:96:a9:62: 80:d0:c1:7b:58:c0:ee:87:a8:b7:8b:57:af:82:45:32:a9:0c: 7c:59:d2:05:cd:e7:c0:41:a3:6f:d3:8c:79:5a:3f:9e:d0:c4: 68:05:97:f8:11:62:07:20:21:b7:e9:6c:6f:9f:94:93:2e:18: 85:1f:ab:2f:56:dd:02:df:e3:dc:fb:f1:19:b9:bd:fe:83:8a: b1:35:e8:7d:c4:f5:ea:48:ab:f1:96:d8:c2:ee:d9:28:af:c1: 39:47:b1:8f:fc:48:92:42:e4:47:49:dd:33:5e:2b:f7:a9:39: 9f:dc:4e:2f:79:32:9c:d7:d5:62:a4:89:cc:4d:3a:11:40:2b: 86:8e:79:e5:0e:e8:95:20:39:30:40:89:8b:19:d9:53:1d:37: 4b:5c:fb:11:fb:d3:a5:4e:1a:1b:66:68:c9:d8:00:f1:a9:19: c6:de:42:c4 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICBWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjUwODAxMTIwMTU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjYWNiNi0yYTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtWak19ZSiKqXk0WzsofhS4tCYhGkHPzi9Kzsgt2XmQxZpbw+EGRI0zM5vx9O l3oiV6PF7Wn91GMlBzdqZgjg9RFaHlRd7TRPaKY7Y1zIcF5gLM9t3yF0GBwU+uPW FvIjJXDwRB6sHLIFmTOMpdombg/Wt+Mw8JQOrrdp4eSOvaEFCCfZ8ymWDgyR7rWX beJZBcFsDz1AwmjCJ+HhJa00HeW//g3/Il3ZTyyvseSPVdP/3JewJ0r9eJ12VMYz 3cOjlvOVHhXwEDeU3CdxPQBAwSZKIyOrRyjvRzEtWA1/3+amu5NPHD8nrXncZhtI nk3g0nEzGXpXm9vU/DyIMEmb5wIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFBUhdvbq FYvf0H3kzy8AZnrEA7XTMB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUzRDMvNkVDMEUzNjgwMDBBMTFFQzhDMjg3MjUyQzRGOUFFMDIvNTMzNzQ0QzQ2 RUNGMTFGMEIyNzg1ODE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBADKjSYDBADKjWIDBADKjYIDBADKjYUDBADKjZwwDQYJKoZI hvcNAQELBQADggEBAAOhWmSvJpiWzSgnAXvL7Ndz4/1scSDimHvG041TxTP2ZhxO BT522yh2Wo8K/8LLZj+XU/laL7N26RKMSDnLDPaA+5kZTx/C7gLMS3vtif5A1+9g FvM7ppapYoDQwXtYwO6HqLeLV6+CRTKpDHxZ0gXN58BBo2/TjHlaP57QxGgFl/gR YgcgIbfpbG+flJMuGIUfqy9W3QLf49z78Rm5vf6DirE16H3E9epIq/GW2MLu2Siv wTlHsY/8SJJC5EdJ3TNeK/epOZ/cTi95MpzX1WKkicxNOhFAK4aOeeUO6JUgOTBA iYsZ2VMdN0tc+xH706VOGhtmaMnYAPGpGcbeQsQ= -----END CERTIFICATE-----Generated at Sun Aug 10 05:47:35 2025 by rpki-client