$ rpki-client -vvf rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/233E4D90309811ECAED04B4AC4F9AE02.roa File: 233E4D90309811ECAED04B4AC4F9AE02.roa (raw, json) Hash identifier: CZ7WkBrqTyJNM4Pw1sCP57Phckm4MGOWnQm76XtbNLI= Subject key identifier: 08:28:04:29:41:8A:C4:FB:49:6F:E5:8D:AA:95:69:ED:63:15:EC:79 Certificate issuer: /CN=A918A0B8/serialNumber=D7DC0490D8EE73EB9653E8E2476FFCFB8974AADF Certificate serial: 04B6 Authority key identifier: D7:DC:04:90:D8:EE:73:EB:96:53:E8:E2:47:6F:FC:FB:89:74:AA:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/19wEkNjuc-uWU-jiR2_8-4l0qt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/233E4D90309811ECAED04B4AC4F9AE02.roa Signing time: Tue 03 Jun 2025 00:33:49 +0000 ROA not before: Tue 03 Jun 2025 00:33:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45753 IP address blocks: 110.173.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.crl rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/19wEkNjuc-uWU-jiR2_8-4l0qt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 23:42:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1206 (0x4b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A0B8, serialNumber=D7DC0490D8EE73EB9653E8E2476FFCFB8974AADF Validity Not Before: Jun 3 00:33:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683e42ed-ec76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:28:0f:19:d9:55:71:21:0d:65:6b:57:2f:9a: bf:0a:80:db:17:7e:5f:33:05:40:80:29:58:0f:af: 00:c0:f7:30:0f:68:ba:b3:71:ba:5a:99:2b:89:d2: 12:30:e9:c2:87:e6:e3:d0:04:0c:af:cf:e8:3d:66: c2:b9:7b:8c:5d:d4:59:85:3d:eb:65:a0:84:b2:af: d4:67:22:36:87:eb:83:54:dc:6e:c4:68:0d:a1:5e: 3b:9a:ab:66:a7:78:ee:0f:32:3d:d7:1a:c1:33:2d: d3:c1:ef:2d:59:a1:ec:4d:d8:c8:af:f7:43:83:df: a8:c9:14:0a:af:77:04:f7:c9:2b:8e:d6:65:ca:16: 38:ad:75:c6:d8:35:20:ec:d8:63:ef:9d:c1:85:8c: 69:d3:7f:cb:1b:9d:9d:ba:1d:a5:ca:62:fa:28:5a: d6:a6:08:32:59:c6:55:cd:08:95:f8:e3:c3:e4:a1: 4a:96:f3:fa:23:e5:5a:88:b0:84:35:28:d8:39:e5: 3f:e7:e7:b6:5d:2e:f5:25:01:50:55:a9:cd:fa:7d: d5:6a:9c:7f:88:d1:1f:2f:d5:51:05:d5:7e:8f:7b: 5d:c8:e0:27:4d:81:65:67:04:10:05:09:58:4f:8a: b1:d6:1d:fb:67:ba:aa:96:5a:19:1b:22:d7:96:fe: ae:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:28:04:29:41:8A:C4:FB:49:6F:E5:8D:AA:95:69:ED:63:15:EC:79 X509v3 Authority Key Identifier: keyid:D7:DC:04:90:D8:EE:73:EB:96:53:E8:E2:47:6F:FC:FB:89:74:AA:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/19wEkNjuc-uWU-jiR2_8-4l0qt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/19wEkNjuc-uWU-jiR2_8-4l0qt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A0B8/17DEFF142FF611EC9047A243C4F9AE02/233E4D90309811ECAED04B4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.173.48.0/20 Signature Algorithm: sha256WithRSAEncryption 2f:39:60:5a:31:24:18:7d:f5:98:34:9a:d4:9b:85:19:1d:72: 52:49:b7:a7:8b:1e:6f:3a:7a:16:1c:77:dc:65:6f:98:e5:46: 17:f0:41:c5:c2:5f:02:36:06:bf:75:33:f8:c5:35:5c:dd:fb: a8:82:3b:09:6e:6b:81:23:37:1e:3f:31:b9:6f:3c:d9:ab:03: fd:9c:35:8a:a7:e4:32:08:24:fa:bd:70:5f:2b:eb:56:e9:0b: 89:a8:4f:b3:18:98:44:3d:10:6b:ba:1a:b8:d1:8f:21:98:1b: 3d:da:34:e2:cc:35:35:44:c4:3b:57:9b:2e:29:e6:40:c5:89: 50:3d:92:77:6a:d0:b0:f7:60:87:e8:91:df:e1:2f:18:66:73: fe:3e:25:00:81:4d:ce:af:5e:17:cc:9a:a8:7c:61:76:b9:26: 8b:33:03:6a:89:28:9b:20:14:b3:8a:27:db:78:38:7d:15:1b: 7b:1e:1e:dc:1a:1e:ce:78:dd:07:f4:d2:0e:10:b9:31:64:73: 87:2d:08:47:fa:37:65:b6:a6:65:53:43:7f:1a:7e:f5:ce:5e: d1:21:09:c1:51:9e:2d:de:17:8b:98:a9:77:4c:a2:36:f7:87: 0f:cd:63:9a:71:d2:c9:4e:fa:3d:99:4e:06:f2:3f:90:4b:f5: 3d:9c:97:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEwQjgxMTAvBgNVBAUTKEQ3REMwNDkwRDhFRTczRUI5NjUzRThFMjQ3NkZGQ0ZC ODk3NEFBREYwHhcNMjUwNjAzMDAzMzQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNDJlZC1lYzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCgPGdlVcSENZWtXL5q/CoDbF35fMwVAgClYD68AwPcwD2i6s3G6WpkridIS MOnCh+bj0AQMr8/oPWbCuXuMXdRZhT3rZaCEsq/UZyI2h+uDVNxuxGgNoV47mqtm p3juDzI91xrBMy3Twe8tWaHsTdjIr/dDg9+oyRQKr3cE98krjtZlyhY4rXXG2DUg 7Nhj753BhYxp03/LG52duh2lymL6KFrWpggyWcZVzQiV+OPD5KFKlvP6I+VaiLCE NSjYOeU/5+e2XS71JQFQVanN+n3Vapx/iNEfL9VRBdV+j3tdyOAnTYFlZwQQBQlY T4qx1h37Z7qqlloZGyLXlv6uAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAgoBClB isT7SW/ljaqVae1jFex5MB8GA1UdIwQYMBaAFNfcBJDY7nPrllPo4kdv/PuJdKrf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTBCOC8xN0RFRkYxNDJG RjYxMUVDOTA0N0EyNDNDNEY5QUUwMi8xOXdFa05qdWMtdVdVLWppUjJfOC00bDBx dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzE5d0VrTmp1Yy11V1UtamlSMl84LTRsMHF0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEEwQjgvMTdERUZGMTQyRkY2MTFFQzkwNDdBMjQzQzRGOUFFMDIvMjMzRTREOTAz MDk4MTFFQ0FFRDA0QjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARurTAwDQYJKoZIhvcNAQELBQADggEBAC85YFoxJBh99Zg0 mtSbhRkdclJJt6eLHm86ehYcd9xlb5jlRhfwQcXCXwI2Br91M/jFNVzd+6iCOwlu a4EjNx4/MblvPNmrA/2cNYqn5DIIJPq9cF8r61bpC4moT7MYmEQ9EGu6GrjRjyGY Gz3aNOLMNTVExDtXmy4p5kDFiVA9kndq0LD3YIfokd/hLxhmc/4+JQCBTc6vXhfM mqh8YXa5JoszA2qJKJsgFLOKJ9t4OH0VG3seHtwaHs543Qf00g4QuTFkc4ctCEf6 N2W2pmVTQ38afvXOXtEhCcFRni3eF4uYqXdMojb3hw/NY5px0slO+j2ZTgbyP5BL 9T2clzQ= -----END CERTIFICATE-----Generated at Fri Jun 20 05:06:30 2025 by rpki-client