$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/152F1A54621C11F0AAE4E551C4F9AE02.roa File: 152F1A54621C11F0AAE4E551C4F9AE02.roa (raw, json) Hash identifier: pV0qjKBN1/SZd3T3cx6as8LbKLeoJAKlH8F8Bw4z47A= Subject key identifier: D8:6E:43:6B:6D:A5:77:07:8F:56:14:58:F9:BC:C1:49:E0:DB:3A:AB Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 04B2 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/152F1A54621C11F0AAE4E551C4F9AE02.roa Signing time: Wed 16 Jul 2025 08:08:40 +0000 ROA not before: Wed 16 Jul 2025 08:08:40 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150110 IP address blocks: 203.32.21.0/24 maxlen: 24 203.32.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1202 (0x4b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Jul 16 08:08:40 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68775e08-e55e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:08:32:d7:8b:70:c5:6a:b0:fd:f3:3c:06:c7: 39:ce:47:f1:a7:31:06:1c:ed:c9:09:4c:6f:a3:19: d1:53:48:9e:cd:85:3f:3e:12:3e:c8:1b:e7:6f:8c: 48:86:d0:8d:aa:d5:5a:ae:88:08:f5:d5:5e:06:23: 6d:91:2b:ce:b5:ed:16:ab:85:8d:96:88:84:6f:a9: 2c:4c:b3:5f:86:48:28:e3:bb:c7:13:4d:bd:27:2d: b7:ae:d9:8d:fe:e9:0a:30:72:0b:a9:dd:26:a8:1f: 7b:0f:7d:0e:53:44:06:77:8e:a2:5d:ab:da:58:a1: 26:8e:5f:19:1a:81:3f:2e:8d:db:43:54:9a:44:0e: b8:e8:e2:70:97:2d:ff:30:f6:fa:48:49:59:88:96: ca:df:25:8d:c9:d9:da:50:70:73:87:02:b6:16:94: af:e1:09:6a:01:c4:93:36:7e:7a:a7:50:74:89:9d: 04:31:ce:72:dc:42:df:f4:7c:28:6a:f9:83:3f:f1: ab:5a:6f:df:a7:ad:b3:22:83:c0:67:d6:b9:5e:bc: e3:85:cb:db:83:c7:05:8c:01:15:33:27:69:11:55: 62:ea:18:90:de:bf:3a:93:8f:d6:28:f4:6a:84:d5: 29:63:70:2f:29:96:99:03:7a:e1:4c:a2:67:67:fc: d1:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:6E:43:6B:6D:A5:77:07:8F:56:14:58:F9:BC:C1:49:E0:DB:3A:AB X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/152F1A54621C11F0AAE4E551C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.21.0/24 203.32.32.0/24 Signature Algorithm: sha256WithRSAEncryption 21:74:27:c6:80:e6:0a:bc:3b:4e:b5:9b:ec:fb:72:86:5f:c6: d0:10:6e:61:44:72:dd:b9:43:5e:0f:50:dd:55:a9:ab:3b:c7: bc:96:67:2c:d2:93:ee:55:e0:78:60:53:ff:fe:92:10:44:02: 68:b5:a4:79:72:11:b4:8e:70:d1:4d:57:7a:68:b8:99:67:b6: 54:56:fa:1d:c5:e2:81:0d:8a:bd:59:17:b8:a9:09:8d:50:aa: 58:b5:75:39:ec:7c:7e:12:4d:3a:c8:73:c7:27:7e:e6:d6:cb: b7:2e:b8:5a:fb:b0:e8:60:37:bd:31:0f:2f:ca:de:6a:c3:d5: 76:6f:a5:66:28:22:af:37:49:35:1f:38:44:03:46:f0:fb:35: 57:09:93:4a:53:74:10:95:9b:d9:41:9a:8e:0f:c4:5d:9d:7a: 55:13:73:5b:48:de:52:cb:a6:ce:9e:4b:d6:2d:41:7e:4a:e4: e6:3d:0e:9f:9e:4f:a6:d9:34:d0:2d:f8:d0:2d:01:c3:4e:0d: 8c:f3:b4:de:91:93:78:75:24:03:d1:78:f6:b2:ae:73:4e:a1: d2:46:8b:80:89:62:f6:3a:c3:ae:e2:52:15:71:f3:c7:0e:e9: fa:62:f3:c1:d0:0d:be:40:76:30:ce:f8:dd:e3:49:14:61:77: 16:b9:0e:f9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBLIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUwNzE2MDgwODQwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3NWUwOC1lNTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1wgy14twxWqw/fM8Bsc5zkfxpzEGHO3JCUxvoxnRU0iezYU/PhI+yBvnb4xI htCNqtVarogI9dVeBiNtkSvOte0Wq4WNloiEb6ksTLNfhkgo47vHE029Jy23rtmN /ukKMHILqd0mqB97D30OU0QGd46iXavaWKEmjl8ZGoE/Lo3bQ1SaRA646OJwly3/ MPb6SElZiJbK3yWNydnaUHBzhwK2FpSv4QlqAcSTNn56p1B0iZ0EMc5y3ELf9Hwo avmDP/GrWm/fp62zIoPAZ9a5Xrzjhcvbg8cFjAEVMydpEVVi6hiQ3r86k4/WKPRq hNUpY3AvKZaZA3rhTKJnZ/zRswIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNhuQ2tt pXcHj1YUWPm8wUng2zqrMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvMTUyRjFBNTQ2 MjFDMTFGMEFBRTRFNTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLIBUDBADLICAwDQYJKoZIhvcNAQELBQADggEBACF0J8aA 5gq8O061m+z7coZfxtAQbmFEct25Q14PUN1Vqas7x7yWZyzSk+5V4HhgU//+khBE Ami1pHlyEbSOcNFNV3pouJlntlRW+h3F4oENir1ZF7ipCY1Qqli1dTnsfH4STTrI c8cnfubWy7cuuFr7sOhgN70xDy/K3mrD1XZvpWYoIq83STUfOEQDRvD7NVcJk0pT dBCVm9lBmo4PxF2delUTc1tI3lLLps6eS9YtQX5K5OY9Dp+eT6bZNNAt+NAtAcNO DYzztN6Rk3h1JAPRePayrnNOodJGi4CJYvY6w67iUhVx88cO6fpi88HQDb5AdjDO +N3jSRRhdxa5Dvk= -----END CERTIFICATE-----Generated at Mon Aug 11 07:30:32 2025 by rpki-client