$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/D97AC950ABDD11EDAE837666C4F9AE02.roa File: D97AC950ABDD11EDAE837666C4F9AE02.roa (raw, json) Hash identifier: SilbnDSMyvFBaNxXZnHVsn7YIdcJKbT+9vzuxU+MumM= Subject key identifier: CE:90:41:A4:52:D2:DD:B8:EE:37:D4:7C:06:60:2D:F7:4D:B4:A1:B8 Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 048D Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/D97AC950ABDD11EDAE837666C4F9AE02.roa Signing time: Thu 05 Jun 2025 01:47:43 +0000 ROA not before: Thu 05 Jun 2025 01:47:43 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17819 IP address blocks: 203.32.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1165 (0x48d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Jun 5 01:47:43 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6840f73e-7b19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5e:87:cc:f2:15:f3:74:60:19:7c:23:0f:44: c2:fc:66:27:b3:e9:e0:6d:08:47:79:99:a4:71:2b: cd:2d:60:da:24:ab:3f:f0:c3:2e:56:4e:95:db:29: be:fd:4f:fc:83:10:00:1c:15:73:a2:69:f9:00:76: 39:11:95:82:2e:c4:df:a1:b5:74:4f:03:85:bf:ab: 1d:8e:dc:46:0c:c3:ff:e9:f0:2e:63:62:6b:ac:4b: 0d:dc:48:20:37:84:ed:21:4b:d6:92:4e:89:a2:4a: 81:8c:9a:79:3a:2f:44:ed:c0:ce:45:88:5e:9b:0d: 01:5d:0b:4c:da:b9:3f:de:a8:7a:08:04:61:3f:4d: fc:d3:58:ab:10:f4:fa:bc:c9:a6:91:61:06:12:91: 66:99:0a:60:9c:fa:31:60:31:e2:d2:4d:2b:b0:bb: 83:4d:bd:44:74:3e:ac:c9:58:9f:99:12:34:ea:9e: b8:26:40:72:4b:23:8c:69:74:f2:ce:52:42:dd:a3: 01:a4:38:7a:ba:2d:13:fe:67:8d:6e:4d:7b:c2:7b: a3:14:32:56:82:97:a4:af:e4:77:ba:39:49:c4:87: bc:94:c9:89:e8:2c:6a:ac:ec:ed:18:16:36:26:60: e1:b2:f5:8d:38:79:21:a0:63:91:c5:e2:ee:c2:35: 40:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:90:41:A4:52:D2:DD:B8:EE:37:D4:7C:06:60:2D:F7:4D:B4:A1:B8 X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/D97AC950ABDD11EDAE837666C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.41.0/24 Signature Algorithm: sha256WithRSAEncryption 87:02:71:3d:e7:a0:33:77:4e:b8:b6:3c:a0:3f:3c:4e:b1:14: bb:d7:39:ca:8b:d4:41:f2:48:69:8c:fb:4b:06:49:3b:77:da: 9b:51:7d:96:33:c1:f7:fe:02:cf:f9:c4:0b:dc:b2:a5:c2:78: 14:b3:79:a8:fd:9b:d3:dc:eb:c0:70:4e:bb:f6:46:34:d0:76: 07:d8:1d:95:06:65:ea:28:6b:94:cd:75:4b:41:26:5c:cd:af: c7:c1:94:5b:07:b2:15:ab:11:54:c6:7a:94:d2:dc:cb:61:87: b0:b9:3a:3c:e9:33:a5:44:04:16:5d:8a:7b:81:17:67:0a:ff: b1:42:7f:a4:be:39:b2:21:c0:48:d8:4c:51:af:a9:70:84:bc: f3:82:9d:55:ca:2e:cb:ca:59:2b:b7:01:50:7f:9d:a9:0b:61: 94:88:4d:32:40:44:1a:e0:7a:0f:a3:cc:31:64:fc:fc:3f:84: 45:d8:e8:d8:f0:cf:b8:ef:92:92:dd:0f:a4:bb:ad:86:17:a4: 0e:1b:6f:4c:9b:b3:a5:ea:46:30:64:56:a7:be:f0:94:eb:8c: b7:16:07:8c:d6:e5:52:74:07:c4:eb:2a:50:4f:1b:a9:ae:d8: 80:90:ef:41:57:6a:29:49:5e:39:c9:17:34:d8:07:36:18:0d: 0f:36:eb:db -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBI0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUwNjA1MDE0NzQzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZjczZS03YjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA216HzPIV83RgGXwjD0TC/GYns+ngbQhHeZmkcSvNLWDaJKs/8MMuVk6V2ym+ /U/8gxAAHBVzomn5AHY5EZWCLsTfobV0TwOFv6sdjtxGDMP/6fAuY2JrrEsN3Egg N4TtIUvWkk6JokqBjJp5Oi9E7cDORYhemw0BXQtM2rk/3qh6CARhP03801irEPT6 vMmmkWEGEpFmmQpgnPoxYDHi0k0rsLuDTb1EdD6syVifmRI06p64JkBySyOMaXTy zlJC3aMBpDh6ui0T/meNbk17wnujFDJWgpekr+R3ujlJxIe8lMmJ6CxqrOztGBY2 JmDhsvWNOHkhoGORxeLuwjVAfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFM6QQaRS 0t247jfUfAZgLfdNtKG4MB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvRDk3QUM5NTBB QkREMTFFREFFODM3NjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLICkwDQYJKoZIhvcNAQELBQADggEBAIcCcT3noDN3Tri2 PKA/PE6xFLvXOcqL1EHySGmM+0sGSTt32ptRfZYzwff+As/5xAvcsqXCeBSzeaj9 m9Pc68BwTrv2RjTQdgfYHZUGZeooa5TNdUtBJlzNr8fBlFsHshWrEVTGepTS3Mth h7C5OjzpM6VEBBZdinuBF2cK/7FCf6S+ObIhwEjYTFGvqXCEvPOCnVXKLsvKWSu3 AVB/nakLYZSITTJARBrgeg+jzDFk/Pw/hEXY6Njwz7jvkpLdD6S7rYYXpA4bb0yb s6XqRjBkVqe+8JTrjLcWB4zW5VJ0B8TrKlBPG6mu2ICQ70FXailJXjnJFzTYBzYY DQ8269s= -----END CERTIFICATE-----Generated at Sun Jun 15 09:51:45 2025 by rpki-client