$ rpki-client -vvf rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/4B3E4A0693DE11EE81D1045FC4F9AE02.roa File: 4B3E4A0693DE11EE81D1045FC4F9AE02.roa (raw, json) Hash identifier: Lg11zjVs27vb2oJIfdyoCpLaTBOQjwIoy8A24z6T1mQ= Subject key identifier: 96:C0:85:61:EC:49:34:82:CB:52:B1:80:D2:6D:EF:34:0E:87:29:81 Certificate issuer: /CN=A919B20D/serialNumber=E556DC86B94E91CF9B2E2944A85F71692DA094D2 Certificate serial: 0128 Authority key identifier: E5:56:DC:86:B9:4E:91:CF:9B:2E:29:44:A8:5F:71:69:2D:A0:94:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5VbchrlOkc-bLilEqF9xaS2glNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/4B3E4A0693DE11EE81D1045FC4F9AE02.roa Signing time: Wed 18 Jun 2025 02:46:01 +0000 ROA not before: Wed 18 Jun 2025 02:46:01 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55785 IP address blocks: 202.37.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/5VbchrlOkc-bLilEqF9xaS2glNI.crl rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/5VbchrlOkc-bLilEqF9xaS2glNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5VbchrlOkc-bLilEqF9xaS2glNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B20D, serialNumber=E556DC86B94E91CF9B2E2944A85F71692DA094D2 Validity Not Before: Jun 18 02:46:01 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68522869-6fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:dc:23:ee:f8:87:ed:08:f9:94:5c:0b:9f:3a: 4a:69:44:f5:26:98:81:8e:1e:0d:69:4e:08:a4:57: e2:82:53:6b:34:03:9e:c9:07:d7:ad:fa:c3:16:06: 9b:67:7c:6b:bf:d8:28:d0:73:dd:c0:16:98:e6:a0: 39:09:d4:04:fe:11:4d:db:aa:e4:e8:35:26:62:15: 8f:b9:63:f6:04:45:6d:2c:b3:d5:51:53:54:35:cb: 88:14:09:56:93:30:20:d0:fa:e2:7b:02:82:c2:73: 82:72:40:cd:c6:4b:05:74:24:e7:14:05:34:ca:09: 74:d6:39:09:6e:a3:65:3c:31:33:e5:d3:ce:e5:6c: dc:ae:93:a3:59:8e:c4:35:c3:05:38:af:d7:df:fc: 58:bc:c5:1f:d1:57:64:5d:13:ca:70:fe:e6:72:a2: 5c:98:e9:7c:cc:f1:e8:b9:ef:53:7b:9d:65:61:81: c1:c7:07:13:5d:ba:1b:f3:e9:3b:99:ef:e6:3e:11: f0:a4:40:91:15:11:71:f4:eb:e7:3b:c2:6c:93:cc: 79:19:5d:d2:ba:20:1b:bc:a6:73:54:f6:73:01:f7: 61:60:e5:e0:f3:f2:1d:68:c9:26:47:5b:49:07:ec: 6a:ce:d1:8b:34:87:8e:6b:86:9c:9c:96:93:4a:f3: eb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:C0:85:61:EC:49:34:82:CB:52:B1:80:D2:6D:EF:34:0E:87:29:81 X509v3 Authority Key Identifier: keyid:E5:56:DC:86:B9:4E:91:CF:9B:2E:29:44:A8:5F:71:69:2D:A0:94:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/5VbchrlOkc-bLilEqF9xaS2glNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5VbchrlOkc-bLilEqF9xaS2glNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B20D/61ACBF4693A911EE9149E354C4F9AE02/4B3E4A0693DE11EE81D1045FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.198.0/24 Signature Algorithm: sha256WithRSAEncryption 18:0d:95:24:0d:1f:c2:68:30:49:51:8e:ee:32:d7:6c:81:39: 81:5d:f6:db:c7:a7:04:0a:62:30:1d:a8:74:5a:5f:52:61:5e: 1a:13:f3:9c:71:23:d0:ee:37:bb:9c:55:11:30:7e:77:31:e3: 86:62:a5:62:c9:59:4c:37:38:29:0d:9a:76:67:d3:bc:19:70: 4f:bb:ff:74:26:9e:98:ba:7e:a0:42:c9:01:bc:1b:6e:27:37: 0b:b9:f3:14:df:58:a4:ec:6f:bf:07:50:b0:b4:ae:ab:93:ac: 93:2f:ce:0a:04:5f:e0:15:cb:d9:f0:a2:21:a0:58:85:ec:5a: 0b:df:5e:e7:97:4e:cc:95:1b:f5:a5:04:9f:a2:ed:a6:7f:02: 8a:39:f7:a8:f7:d5:19:52:a5:5d:ee:bc:15:a1:c8:1c:46:88: 2e:a3:8f:ee:ca:5d:02:9c:1e:cd:f0:3d:e1:3a:19:92:56:b7: 9c:9a:5e:30:ae:f1:b2:0a:67:a4:91:bb:5a:c7:a4:00:b7:1c: df:c8:0c:26:18:f6:e6:04:8b:23:f2:b6:2a:c8:bd:e2:37:01: c8:b5:4b:40:7f:1e:e8:89:5d:fb:84:0e:1c:bd:10:52:51:dd: 11:eb:21:07:78:f5:00:3f:7a:6e:85:46:56:be:91:e6:3f:aa: 31:96:3e:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUIyMEQxMTAvBgNVBAUTKEU1NTZEQzg2Qjk0RTkxQ0Y5QjJFMjk0NEE4NUY3MTY5 MkRBMDk0RDIwHhcNMjUwNjE4MDI0NjAxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUyMjg2OS02ZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNwj7viH7Qj5lFwLnzpKaUT1JpiBjh4NaU4IpFfiglNrNAOeyQfXrfrDFgab Z3xrv9go0HPdwBaY5qA5CdQE/hFN26rk6DUmYhWPuWP2BEVtLLPVUVNUNcuIFAlW kzAg0PriewKCwnOCckDNxksFdCTnFAU0ygl01jkJbqNlPDEz5dPO5WzcrpOjWY7E NcMFOK/X3/xYvMUf0VdkXRPKcP7mcqJcmOl8zPHoue9Te51lYYHBxwcTXbob8+k7 me/mPhHwpECRFRFx9OvnO8Jsk8x5GV3SuiAbvKZzVPZzAfdhYOXg8/IdaMkmR1tJ B+xqztGLNIeOa4acnJaTSvPrOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJbAhWHs STSCy1KxgNJt7zQOhymBMB8GA1UdIwQYMBaAFOVW3Ia5TpHPmy4pRKhfcWktoJTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjIwRC82MUFDQkY0Njkz QTkxMUVFOTE0OUUzNTRDNEY5QUUwMi81VmJjaHJsT2tjLWJMaWxFcUY5eGFTMmds TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVWYmNocmxPa2MtYkxpbEVxRjl4YVMyZ2xOSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUIyMEQvNjFBQ0JGNDY5M0E5MTFFRTkxNDlFMzU0QzRGOUFFMDIvNEIzRTRBMDY5 M0RFMTFFRTgxRDEwNDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJcYwDQYJKoZIhvcNAQELBQADggEBABgNlSQNH8JoMElR ju4y12yBOYFd9tvHpwQKYjAdqHRaX1JhXhoT85xxI9DuN7ucVREwfncx44ZipWLJ WUw3OCkNmnZn07wZcE+7/3Qmnpi6fqBCyQG8G24nNwu58xTfWKTsb78HULC0rquT rJMvzgoEX+AVy9nwoiGgWIXsWgvfXueXTsyVG/WlBJ+i7aZ/Aoo596j31RlSpV3u vBWhyBxGiC6jj+7KXQKcHs3wPeE6GZJWt5yaXjCu8bIKZ6SRu1rHpAC3HN/IDCYY 9uYEiyPytirIveI3Aci1S0B/HuiJXfuEDhy9EFJR3RHrIQd49QA/em6FRla+keY/ qjGWPms= -----END CERTIFICATE-----Generated at Fri Jun 20 08:12:14 2025 by rpki-client