$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/70970B107C9811EEA876DA2DC4F9AE02.roa File: 70970B107C9811EEA876DA2DC4F9AE02.roa (raw, json) Hash identifier: xMiHMYItwXrD425Qd67NbjvjX4HrJ3EnpnA8c/QF/4k= Subject key identifier: 5C:BC:23:EB:2C:6D:F6:A9:36:D9:01:6B:E0:40:07:3F:B7:FC:98:FD Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 048E Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/70970B107C9811EEA876DA2DC4F9AE02.roa Signing time: Thu 05 Jun 2025 01:47:43 +0000 ROA not before: Thu 05 Jun 2025 01:47:43 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 200017 IP address blocks: 203.32.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1166 (0x48e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Jun 5 01:47:43 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6840f73f-2410 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:56:e8:40:1d:50:4d:df:77:04:6f:01:88:af: 5e:ce:20:2c:08:ee:e4:a4:82:71:e2:6f:45:7c:aa: 81:26:31:53:2f:18:b4:c0:9f:44:e7:0a:2a:bd:90: 1c:a9:42:e1:48:e1:a1:57:33:4c:73:a2:28:14:9c: f7:cf:51:a2:ff:7e:ed:8f:ef:c4:d7:2d:07:58:9d: d4:43:70:99:bf:ab:13:1f:f0:66:2e:39:e7:bf:85: 2f:9a:4d:bc:47:40:5d:44:2e:ed:e1:68:b4:d2:99: 03:7a:b5:17:c9:f8:73:a3:2b:f8:eb:79:a4:30:59: de:86:e3:5a:90:3c:fd:e9:56:42:01:c1:3d:48:21: 59:23:84:11:7c:54:5a:22:20:0f:f0:20:be:cf:f5: ff:9e:40:64:3d:d6:14:c2:f2:49:7a:43:57:26:e4: 89:26:6c:31:34:44:1c:9f:fe:a9:67:ff:ad:d5:59: 7b:a3:15:af:77:3d:25:d7:94:d6:74:1f:95:5f:9d: 6e:d0:2a:f2:b8:c1:ed:e8:89:2f:fc:19:cf:53:85: e3:ec:3b:af:5d:1c:e4:56:44:a6:a5:d8:8c:8e:64: f8:f1:1c:3f:9f:d6:1e:e2:34:e2:dc:b4:f5:10:a5: 72:7f:fd:af:50:f7:7d:a8:dd:e1:cc:eb:2f:6c:34: 23:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:BC:23:EB:2C:6D:F6:A9:36:D9:01:6B:E0:40:07:3F:B7:FC:98:FD X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/70970B107C9811EEA876DA2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.40.0/24 Signature Algorithm: sha256WithRSAEncryption 41:dc:35:57:fb:7f:ba:9e:97:a2:52:63:b5:6b:6d:4b:2d:9a: 83:4e:6e:f7:c0:2b:5a:e2:2d:19:57:dc:76:81:11:76:c7:6a: 3d:46:af:f1:d1:ba:73:20:c4:7b:27:a9:26:86:b0:4e:ab:59: 15:01:37:47:c2:54:1b:b7:f3:ac:cb:a8:cf:1c:3b:3c:08:0b: 76:59:c4:cb:81:c0:92:50:39:5a:0f:bd:81:00:a0:55:7b:24: a1:33:d5:b3:3c:62:2d:17:71:b7:d7:61:63:8b:86:01:ce:53: 81:92:c9:50:97:87:ff:8c:ae:4e:82:6d:7e:8b:75:ab:cd:70: 87:56:6c:64:30:92:f4:11:e9:ba:d5:92:ab:88:5d:37:ae:1d: 89:eb:4e:67:32:3f:ff:95:ab:32:04:c6:d2:01:a7:89:e7:6c: 89:38:9a:01:6a:c8:ff:65:bf:05:ed:0e:19:ab:83:57:d5:4b: e1:b6:87:51:60:f0:97:0f:ad:ca:5c:03:69:55:49:bb:e9:c9: 74:c3:35:95:5b:56:99:52:f3:f1:88:29:46:60:1e:f2:43:52: 62:01:d0:e7:d4:ce:08:ff:46:86:d9:86:51:c5:9c:09:3f:e0: 6d:9c:2a:65:36:53:cb:e5:e0:d7:c0:63:36:c0:53:f4:cb:ea: 68:79:b7:89 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUwNjA1MDE0NzQzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZjczZi0yNDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVboQB1QTd93BG8BiK9eziAsCO7kpIJx4m9FfKqBJjFTLxi0wJ9E5woqvZAc qULhSOGhVzNMc6IoFJz3z1Gi/37tj+/E1y0HWJ3UQ3CZv6sTH/BmLjnnv4Uvmk28 R0BdRC7t4Wi00pkDerUXyfhzoyv463mkMFnehuNakDz96VZCAcE9SCFZI4QRfFRa IiAP8CC+z/X/nkBkPdYUwvJJekNXJuSJJmwxNEQcn/6pZ/+t1Vl7oxWvdz0l15TW dB+VX51u0CryuMHt6Ikv/BnPU4Xj7DuvXRzkVkSmpdiMjmT48Rw/n9Ye4jTi3LT1 EKVyf/2vUPd9qN3hzOsvbDQjcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFy8I+ss bfapNtkBa+BABz+3/Jj9MB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvNzA5NzBCMTA3 Qzk4MTFFRUE4NzZEQTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLICgwDQYJKoZIhvcNAQELBQADggEBAEHcNVf7f7qel6JS Y7VrbUstmoNObvfAK1riLRlX3HaBEXbHaj1Gr/HRunMgxHsnqSaGsE6rWRUBN0fC VBu386zLqM8cOzwIC3ZZxMuBwJJQOVoPvYEAoFV7JKEz1bM8Yi0XcbfXYWOLhgHO U4GSyVCXh/+Mrk6CbX6LdavNcIdWbGQwkvQR6brVkquIXTeuHYnrTmcyP/+VqzIE xtIBp4nnbIk4mgFqyP9lvwXtDhmrg1fVS+G2h1Fg8JcPrcpcA2lVSbvpyXTDNZVb VplS8/GIKUZgHvJDUmIB0OfUzgj/RobZhlHFnAk/4G2cKmU2U8vl4NfAYzbAU/TL 6mh5t4k= -----END CERTIFICATE-----Generated at Wed Nov 5 10:29:30 2025 by rpki-client