$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/5E775F6644CE11F09A370919C4F9AE02.roa File: 5E775F6644CE11F09A370919C4F9AE02.roa (raw, json) Hash identifier: CV0j95RqvFk5vdn0PU1qSmljoaTpS4bQLUN+bT3PTXI= Subject key identifier: 75:87:F4:DD:D2:A7:E5:7B:B6:8F:9C:F9:10:75:D7:FD:F9:E6:B2:35 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3915 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/5E775F6644CE11F09A370919C4F9AE02.roa Signing time: Fri 04 Jul 2025 14:50:32 +0000 ROA not before: Fri 04 Jul 2025 14:50:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17579 IP address blocks: 203.230.1.0/24 maxlen: 24 210.119.23.0/24 maxlen: 24 210.119.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14613 (0x3915) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Jul 4 14:50:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6867ea37-d9bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a4:a4:f5:57:53:51:25:f8:bd:7d:97:2e:73: 3b:6a:13:c0:4f:9f:9e:39:47:5e:89:06:ce:a3:0e: b3:d6:24:a5:ad:00:77:45:72:fc:1d:82:09:a9:3d: 6e:73:60:0f:a6:8f:c5:91:75:6a:0f:17:94:ce:bd: 5d:aa:e6:cf:b7:3e:23:69:5c:bb:23:81:9c:ad:41: 47:13:42:a2:c4:54:6a:74:74:cb:8e:12:ee:1e:5d: e4:26:7d:4d:a4:00:03:b2:75:b1:a8:f9:c3:86:90: 1c:24:cb:0e:11:86:a2:6e:f4:cf:ba:5a:dc:dd:0a: 3c:c0:e2:03:d2:c7:5b:fd:ac:ee:88:8d:b8:57:d4: 69:d8:3a:72:10:f1:ba:37:fe:6e:95:f6:4c:11:1a: 21:7a:61:18:b3:14:b7:13:77:55:54:fc:98:36:50: a1:e3:79:45:0c:da:b5:6c:2e:1a:4a:27:52:4d:ec: 6f:6c:e1:04:cc:82:d7:cb:9f:0b:16:9f:fc:2e:60: 03:8b:72:c4:05:7f:d2:55:67:3b:af:9e:f7:b1:cc: 45:f3:c3:3c:82:17:11:60:52:43:59:56:a5:a3:d8: 28:9e:ec:65:fe:ec:b1:8e:2d:98:e5:41:89:1d:c3: ef:34:4b:42:b8:8b:6d:c2:cf:a0:7a:44:65:9f:40: 7e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:87:F4:DD:D2:A7:E5:7B:B6:8F:9C:F9:10:75:D7:FD:F9:E6:B2:35 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/5E775F6644CE11F09A370919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.230.1.0/24 210.119.23.0/24 210.119.127.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:de:99:43:b8:01:61:14:a1:de:b5:77:e0:dd:7e:16:a9:a3: 73:d7:35:13:d5:1e:ac:e5:f7:85:14:b2:3c:bd:a7:00:9c:2e: 2c:a3:1f:a5:a0:88:5e:5b:4a:36:74:20:c0:3b:ee:b9:17:42: 23:e2:09:d1:95:ac:90:c3:6b:bf:05:76:3d:a2:64:c1:62:78: 7e:7d:11:72:92:25:3a:95:f2:18:07:81:73:18:06:44:99:17: 6b:72:ee:7d:73:4a:7a:0b:3b:97:5e:04:f7:69:c7:bf:64:d5: df:f0:f8:13:69:25:b8:85:f9:60:e2:c8:21:3a:b8:0f:5f:4e: 85:5c:50:b3:a9:d7:ec:66:2b:44:da:88:bb:ac:ca:ea:a2:e1: ca:16:b3:ea:86:4c:cc:b3:4e:ac:37:d0:f7:bd:c2:d6:8f:67: 24:07:cf:63:b0:d6:48:d2:fd:28:a8:20:68:61:3f:ae:6e:c9: 31:05:5b:8b:f6:8f:44:2f:1c:8b:d1:ee:26:cd:7f:df:ec:d2: 2b:c9:92:78:dd:e3:1c:26:13:04:e7:eb:b2:6d:0d:a1:74:70: 1f:40:0e:52:6d:94:72:d4:8e:01:c9:97:0a:7a:e5:99:63:b9: 09:44:7a:7d:05:23:e2:45:ee:bf:bc:41:af:af:7e:53:73:1b: 4e:93:a4:0f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICORUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUwNzA0MTQ1MDMyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3ZWEzNy1kOWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyKSk9VdTUSX4vX2XLnM7ahPAT5+eOUdeiQbOow6z1iSlrQB3RXL8HYIJqT1u c2APpo/FkXVqDxeUzr1dqubPtz4jaVy7I4GcrUFHE0KixFRqdHTLjhLuHl3kJn1N pAADsnWxqPnDhpAcJMsOEYaibvTPulrc3Qo8wOID0sdb/azuiI24V9Rp2DpyEPG6 N/5ulfZMERohemEYsxS3E3dVVPyYNlCh43lFDNq1bC4aSidSTexvbOEEzILXy58L Fp/8LmADi3LEBX/SVWc7r573scxF88M8ghcRYFJDWValo9gonuxl/uyxji2Y5UGJ HcPvNEtCuIttws+gekRln0B+lwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHWH9N3S p+V7to+c+RB11/355rI1MB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNUU3NzVGNjY0 NENFMTFGMDlBMzcwOTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADL5gEDBADSdxcDBADSd38wDQYJKoZIhvcNAQELBQADggEB AF7emUO4AWEUod61d+Ddfhapo3PXNRPVHqzl94UUsjy9pwCcLiyjH6WgiF5bSjZ0 IMA77rkXQiPiCdGVrJDDa78Fdj2iZMFieH59EXKSJTqV8hgHgXMYBkSZF2ty7n1z SnoLO5deBPdpx79k1d/w+BNpJbiF+WDiyCE6uA9fToVcULOp1+xmK0TaiLusyuqi 4coWs+qGTMyzTqw30Pe9wtaPZyQHz2Ow1kjS/SioIGhhP65uyTEFW4v2j0QvHIvR 7ibNf9/s0ivJknjd4xwmEwTn67JtDaF0cB9ADlJtlHLUjgHJlwp65ZljuQlEen0F I+JF7r+8Qa+vflNzG06TpA8= -----END CERTIFICATE-----Generated at Tue Jul 22 11:51:14 2025 by rpki-client