$ rpki-client -vvf rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/7F4ED0A0B83011EFA5108619C4F9AE02.roa File: 7F4ED0A0B83011EFA5108619C4F9AE02.roa (raw, json) Hash identifier: fc1mmSSRqzCuGE7h3o2YcW/Wc0vCR2x5Y/Ca8guGROk= Subject key identifier: E7:0A:DA:F6:B1:67:0F:5A:6E:14:0C:C8:81:4E:D3:A8:73:AC:13:7E Certificate issuer: /CN=A918DEF0/serialNumber=61141AB53FD4AF1DB2A86AFE7EC8FEC97D5EA1D5 Certificate serial: 0171 Authority key identifier: 61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/7F4ED0A0B83011EFA5108619C4F9AE02.roa Signing time: Thu 15 May 2025 03:22:44 +0000 ROA not before: Thu 15 May 2025 03:22:44 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 137582 IP address blocks: 203.11.73.0/24 maxlen: 24 203.32.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:06:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DEF0, serialNumber=61141AB53FD4AF1DB2A86AFE7EC8FEC97D5EA1D5 Validity Not Before: May 15 03:22:44 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68255e04-b63c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:05:ea:9c:70:96:da:9f:3a:ee:e2:a2:18:3d: 87:fb:0e:c6:53:72:85:30:2f:65:10:83:bc:8b:6e: a8:08:cb:c9:9e:6c:64:50:8e:c8:3f:9c:0a:db:9e: 67:d0:33:7f:9b:8c:67:44:33:b6:9f:1b:77:a1:48: ce:b1:ca:97:71:2e:75:2f:c8:cc:30:f9:97:ef:f4: 56:34:1e:78:78:c1:0f:29:57:01:58:23:43:cd:db: 9f:10:7e:d4:dd:c2:54:8a:a3:e4:f9:74:06:db:4c: a3:80:7a:b6:1c:6a:fa:50:a9:f4:6c:3f:fc:40:1c: 45:d6:aa:ea:c7:d0:ca:e4:5f:63:37:fb:8c:bb:90: bf:b6:13:c8:52:0a:ff:bf:92:cd:e6:f6:c5:dd:c0: 1b:09:61:3c:79:0f:94:f7:f9:95:d3:ee:99:ae:30: af:87:b0:49:f6:3b:9e:0b:3f:11:7a:9e:4a:7e:56: 06:01:28:76:14:33:62:e0:ba:70:4a:7d:d2:d0:45: 65:83:46:06:79:57:3e:11:43:a7:63:49:a2:9b:8a: cd:33:15:40:52:51:da:f4:6e:1b:09:b2:2c:42:f8: bf:0e:37:91:ed:ce:fc:20:ac:21:fb:ac:0a:d0:83: c5:d9:3d:01:2d:09:27:75:81:26:2b:9a:f2:24:d3: 81:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0A:DA:F6:B1:67:0F:5A:6E:14:0C:C8:81:4E:D3:A8:73:AC:13:7E X509v3 Authority Key Identifier: keyid:61:14:1A:B5:3F:D4:AF:1D:B2:A8:6A:FE:7E:C8:FE:C9:7D:5E:A1:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/YRQatT_Urx2yqGr-fsj-yX1eodU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRQatT_Urx2yqGr-fsj-yX1eodU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DEF0/820309C20A5F11EEB4FED265C4F9AE02/7F4ED0A0B83011EFA5108619C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.11.73.0/24 203.32.223.0/24 Signature Algorithm: sha256WithRSAEncryption c0:ae:c7:6a:50:4e:21:b5:be:fe:49:3d:33:75:fa:cf:39:9d: ed:2b:e4:ea:c1:c2:0b:67:a1:be:db:2f:ba:80:7b:d3:e8:5d: f7:39:97:b4:5b:cb:eb:fd:b0:b7:09:8a:b5:4f:da:98:af:7d: 51:c1:70:a6:2c:8d:7e:b1:2e:7c:13:db:8b:7c:fb:dc:5a:83: 2e:60:03:08:4a:c9:0a:2f:46:79:8a:5d:43:32:5f:b7:e3:22: 5b:38:59:8c:cf:a4:10:bd:16:7f:49:1c:42:94:ca:e8:7e:b9: f3:bc:7e:8f:26:9d:3a:f2:63:39:4b:90:91:b6:b2:72:07:6c: dd:bc:0b:b1:db:a3:e8:bd:90:7a:74:83:10:41:a2:a8:0f:01: e7:d1:01:d8:3a:3e:01:95:5d:84:1b:51:dc:8e:84:eb:94:c9: c5:6f:be:6d:b4:38:44:7c:ec:b6:9e:13:fe:cd:cc:32:83:c0: 28:f2:72:68:fa:a9:49:b8:24:78:e3:8d:c7:d5:1c:da:7b:d5: 61:fa:a4:6f:86:0d:3b:ab:61:cd:e3:6d:70:2d:0e:5f:a2:ad: 51:f1:55:ce:ad:b1:76:63:2e:1f:22:c4:98:4a:79:c6:51:4b: 9a:94:7b:b1:82:cb:96:ec:bb:67:27:99:7e:5f:fc:37:eb:41: b3:ef:95:8b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERFRjAxMTAvBgNVBAUTKDYxMTQxQUI1M0ZENEFGMURCMkE4NkFGRTdFQzhGRUM5 N0Q1RUExRDUwHhcNMjUwNTE1MDMyMjQ0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1NWUwNC1iNjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxAXqnHCW2p867uKiGD2H+w7GU3KFMC9lEIO8i26oCMvJnmxkUI7IP5wK255n 0DN/m4xnRDO2nxt3oUjOscqXcS51L8jMMPmX7/RWNB54eMEPKVcBWCNDzdufEH7U 3cJUiqPk+XQG20yjgHq2HGr6UKn0bD/8QBxF1qrqx9DK5F9jN/uMu5C/thPIUgr/ v5LN5vbF3cAbCWE8eQ+U9/mV0+6ZrjCvh7BJ9jueCz8Rep5KflYGASh2FDNi4Lpw Sn3S0EVlg0YGeVc+EUOnY0mim4rNMxVAUlHa9G4bCbIsQvi/DjeR7c78IKwh+6wK 0IPF2T0BLQkndYEmK5ryJNOBewIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOcK2vax Zw9abhQMyIFO06hzrBN+MB8GA1UdIwQYMBaAFGEUGrU/1K8dsqhq/n7I/sl9XqHV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REVGMC84MjAzMDlDMjBB NUYxMUVFQjRGRUQyNjVDNEY5QUUwMi9ZUlFhdFRfVXJ4MnlxR3ItZnNqLXlYMWVv ZFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSUWF0VF9VcngyeXFHci1mc2oteVgxZW9kVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OERFRjAvODIwMzA5QzIwQTVGMTFFRUI0RkVEMjY1QzRGOUFFMDIvN0Y0RUQwQTBC ODMwMTFFRkE1MTA4NjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLC0kDBADLIN8wDQYJKoZIhvcNAQELBQADggEBAMCux2pQ TiG1vv5JPTN1+s85ne0r5OrBwgtnob7bL7qAe9PoXfc5l7Rby+v9sLcJirVP2piv fVHBcKYsjX6xLnwT24t8+9xagy5gAwhKyQovRnmKXUMyX7fjIls4WYzPpBC9Fn9J HEKUyuh+ufO8fo8mnTryYzlLkJG2snIHbN28C7Hbo+i9kHp0gxBBoqgPAefRAdg6 PgGVXYQbUdyOhOuUycVvvm20OER87LaeE/7NzDKDwCjycmj6qUm4JHjjjcfVHNp7 1WH6pG+GDTurYc3jbXAtDl+irVHxVc6tsXZjLh8ixJhKecZRS5qUe7GCy5bsu2cn mX5f/DfrQbPvlYs= -----END CERTIFICATE-----Generated at Thu Nov 6 00:27:21 2025 by rpki-client