$ rpki-client -vvf rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/F561A3BE935811EF97E1194EC4F9AE02.roa File: F561A3BE935811EF97E1194EC4F9AE02.roa (raw, json) Hash identifier: CBRfaNleeLhQbkhZ9Y/Gyu8j+qS/vePZy+tfvqG3Iy0= Subject key identifier: 74:DA:D3:53:E4:06:A8:92:AF:1E:85:73:22:00:90:1F:D2:BC:34:6A Certificate issuer: /CN=A914A554/serialNumber=7920F8CA84EC913C69A98D54371209B434C33191 Certificate serial: 8E Authority key identifier: 79:20:F8:CA:84:EC:91:3C:69:A9:8D:54:37:12:09:B4:34:C3:31:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSD4yoTskTxpqY1UNxIJtDTDMZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/F561A3BE935811EF97E1194EC4F9AE02.roa Signing time: Mon 07 Jul 2025 07:13:14 +0000 ROA not before: Mon 07 Jul 2025 07:13:14 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 62654 IP address blocks: 203.104.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/eSD4yoTskTxpqY1UNxIJtDTDMZE.crl rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/eSD4yoTskTxpqY1UNxIJtDTDMZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSD4yoTskTxpqY1UNxIJtDTDMZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 142 (0x8e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A554, serialNumber=7920F8CA84EC913C69A98D54371209B434C33191 Validity Not Before: Jul 7 07:13:14 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686b738a-75c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:37:aa:0b:ff:fe:4a:2e:28:e3:96:69:be:37: f5:ed:57:07:4d:3b:20:46:28:a3:a4:1a:ab:8e:48: 39:91:a1:21:24:b2:97:da:7b:33:89:e8:ba:e3:0b: ac:c1:86:7c:c7:91:77:52:ba:1e:a1:0d:95:11:79: 73:49:0e:e5:83:fd:89:6c:c5:b1:a1:c1:78:7e:28: d4:4b:cb:97:ef:de:d2:65:8f:0c:10:ad:7e:17:9e: 82:18:ea:f3:6a:b3:a7:bd:0b:72:04:e5:e9:a8:6a: 7f:ea:0f:36:88:5f:1c:55:df:cb:bf:c3:db:4f:67: 90:2b:d0:d5:0f:64:71:06:3d:9d:78:05:0b:b7:82: a8:d6:e8:3d:83:71:d7:7f:4a:6a:f7:c5:3c:d6:04: 95:3b:39:02:78:d9:2c:8c:5d:5a:73:94:5e:dd:e6: 67:96:ca:13:9d:7e:95:58:17:74:a6:b9:f5:7a:15: 6e:82:d3:e5:b2:a3:e2:eb:f9:19:db:42:16:45:c4: 0b:93:25:33:70:0c:a1:b9:1e:c3:64:61:aa:53:c9: 6c:82:9e:34:88:7b:0a:0f:8d:22:a9:cd:9d:64:f2: 4e:b9:fa:94:50:c6:fd:8c:f9:b1:f6:30:cf:ee:9e: 41:c8:8f:2a:70:8b:94:0e:66:45:cc:a5:4c:cb:65: 91:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:DA:D3:53:E4:06:A8:92:AF:1E:85:73:22:00:90:1F:D2:BC:34:6A X509v3 Authority Key Identifier: keyid:79:20:F8:CA:84:EC:91:3C:69:A9:8D:54:37:12:09:B4:34:C3:31:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/eSD4yoTskTxpqY1UNxIJtDTDMZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eSD4yoTskTxpqY1UNxIJtDTDMZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A554/79F89982935611EFA8EDEB33C4F9AE02/F561A3BE935811EF97E1194EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.104.70.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:3e:00:5a:24:4b:97:d8:6b:40:01:01:39:ec:46:df:e5:e8: 2f:43:fa:c4:25:6b:10:a3:69:0c:b9:3f:6b:f1:90:50:38:63: 25:c1:4e:3f:80:b7:13:50:64:c8:74:f6:ec:95:06:f6:8c:b1: 0a:9a:3c:f9:d1:ba:4d:33:35:75:03:e8:9b:ba:6a:c4:03:11: 11:00:f3:14:b8:51:8b:23:04:9a:23:4b:71:c3:4a:1e:5b:e9: 6e:b9:50:ec:0b:7f:99:a1:f2:6f:9b:22:22:7f:fe:e9:19:b7: f7:f6:0f:eb:65:df:b6:cc:1c:ca:b6:65:b3:45:2d:5a:09:5a: 0e:80:0a:a8:92:7e:ff:68:72:7e:7a:7d:81:00:4c:be:c5:18: 4f:73:b2:3d:ad:0b:de:55:63:4c:f4:9e:8c:11:dc:b9:e2:dc: 92:83:af:67:b2:4d:46:fa:ab:c7:f1:bb:af:b1:6b:19:6e:9c: 1e:b1:8a:81:7d:b1:e1:7e:e2:de:59:c7:44:28:09:26:a2:12: 70:cb:08:95:3c:1f:49:5f:f0:e7:ff:02:60:3e:82:27:fa:e2: 83:9d:07:ed:01:9e:12:49:64:7c:e6:88:ea:72:cd:b0:81:9c: 9c:95:5e:f7:1b:9c:04:4b:49:f2:07:6c:45:0e:36:50:89:35: fe:58:9b:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAI4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE1NTQxMTAvBgNVBAUTKDc5MjBGOENBODRFQzkxM0M2OUE5OEQ1NDM3MTIwOUI0 MzRDMzMxOTEwHhcNMjUwNzA3MDcxMzE0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZiNzM4YS03NWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1DeqC//+Si4o45Zpvjf17VcHTTsgRiijpBqrjkg5kaEhJLKX2nsziei64wus wYZ8x5F3UroeoQ2VEXlzSQ7lg/2JbMWxocF4fijUS8uX797SZY8MEK1+F56CGOrz arOnvQtyBOXpqGp/6g82iF8cVd/Lv8PbT2eQK9DVD2RxBj2deAULt4Ko1ug9g3HX f0pq98U81gSVOzkCeNksjF1ac5Re3eZnlsoTnX6VWBd0prn1ehVugtPlsqPi6/kZ 20IWRcQLkyUzcAyhuR7DZGGqU8lsgp40iHsKD40iqc2dZPJOufqUUMb9jPmx9jDP 7p5ByI8qcIuUDmZFzKVMy2WR3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHTa01Pk BqiSrx6FcyIAkB/SvDRqMB8GA1UdIwQYMBaAFHkg+MqE7JE8aamNVDcSCbQ0wzGR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTU1NC83OUY4OTk4Mjkz NTYxMUVGQThFREVCMzNDNEY5QUUwMi9lU0Q0eW9Uc2tUeHBxWTFVTnhJSnREVERN WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VTRDR5b1Rza1R4cHFZMVVOeElKdERURE1aRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE1NTQvNzlGODk5ODI5MzU2MTFFRkE4RURFQjMzQzRGOUFFMDIvRjU2MUEzQkU5 MzU4MTFFRjk3RTExOTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLaEYwDQYJKoZIhvcNAQELBQADggEBAB0+AFokS5fYa0AB ATnsRt/l6C9D+sQlaxCjaQy5P2vxkFA4YyXBTj+AtxNQZMh09uyVBvaMsQqaPPnR uk0zNXUD6Ju6asQDEREA8xS4UYsjBJojS3HDSh5b6W65UOwLf5mh8m+bIiJ//ukZ t/f2D+tl37bMHMq2ZbNFLVoJWg6ACqiSfv9ocn56fYEATL7FGE9zsj2tC95VY0z0 nowR3Lni3JKDr2eyTUb6q8fxu6+xaxlunB6xioF9seF+4t5Zx0QoCSaiEnDLCJU8 H0lf8Of/AmA+gif64oOdB+0BnhJJZHzmiOpyzbCBnJyVXvcbnARLSfIHbEUONlCJ Nf5Ym7w= -----END CERTIFICATE-----Generated at Mon Jul 21 08:06:02 2025 by rpki-client