$ rpki-client -vvf rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/29D600062C3311EEBFF69B6CC4F9AE02.roa File: 29D600062C3311EEBFF69B6CC4F9AE02.roa (raw, json) Hash identifier: hskv6e7Ag+5HAqH/N4O5ItTvOGPOLGR+/yJDzJO0d+k= Subject key identifier: 0D:8C:68:40:AC:3D:0C:0C:72:A4:20:F4:D5:AF:62:E2:99:B6:6B:9B Certificate issuer: /CN=A9159DCD/serialNumber=5793436D22A96A06136851203BB725984D70B017 Certificate serial: 016F Authority key identifier: 57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/29D600062C3311EEBFF69B6CC4F9AE02.roa Signing time: Tue 01 Jul 2025 04:40:13 +0000 ROA not before: Tue 01 Jul 2025 04:40:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4778 IP address blocks: 203.20.218.0/24 maxlen: 24 203.20.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:57:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159DCD, serialNumber=5793436D22A96A06136851203BB725984D70B017 Validity Not Before: Jul 1 04:40:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686366ad-5e35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cf:e0:e4:dc:5b:8a:6b:1c:c3:e5:7b:88:aa: 26:1f:15:c0:3d:31:05:d8:a4:d3:39:8f:87:a9:1c: 99:5d:b8:53:88:08:78:1f:06:2d:c1:53:6d:6c:29: 50:e5:dc:4d:b1:02:d6:f7:85:eb:35:33:22:dc:20: f8:1f:01:ba:c1:9b:ea:45:3d:ea:e7:2a:d7:f3:20: 5e:9d:31:cc:0d:36:78:e5:d3:90:11:fb:58:9c:8e: 19:69:96:0c:74:a8:27:19:34:e2:df:7a:11:f8:34: cb:e1:db:97:bd:70:12:3a:28:6d:94:08:07:a5:e4: c3:43:7c:ba:e0:7b:38:6e:f1:17:84:8e:ee:e5:51: a8:51:b6:50:28:cf:1d:f4:c7:15:6d:71:16:19:6b: ef:c9:8f:43:d3:ff:bb:ab:f8:b4:06:9d:02:c2:a6: 24:31:e8:1c:76:53:56:a2:a1:02:4c:10:a4:e0:1f: e8:7f:98:be:b8:6c:7b:0f:7a:d1:d2:a6:25:ab:bf: 30:f0:01:42:7a:f7:4d:ee:bb:0b:fc:b7:8a:ce:20: 31:74:8c:b9:f5:25:99:34:7b:38:36:dd:38:6b:da: da:da:14:ad:ab:76:bf:96:73:02:ad:ac:52:b7:c4: 77:49:41:d0:bc:e8:3c:18:90:cb:c5:ce:d6:87:00: 79:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:8C:68:40:AC:3D:0C:0C:72:A4:20:F4:D5:AF:62:E2:99:B6:6B:9B X509v3 Authority Key Identifier: keyid:57:93:43:6D:22:A9:6A:06:13:68:51:20:3B:B7:25:98:4D:70:B0:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/V5NDbSKpagYTaFEgO7clmE1wsBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V5NDbSKpagYTaFEgO7clmE1wsBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159DCD/A00D70062C2411EEAB978F0FC4F9AE02/29D600062C3311EEBFF69B6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.218.0/23 Signature Algorithm: sha256WithRSAEncryption 50:a2:fc:3a:ad:e7:4a:47:b6:d9:70:e3:15:26:ec:e5:6f:a7: 5a:17:6f:16:6c:93:5e:b4:2a:af:79:01:93:e8:ea:61:74:5d: 5c:aa:08:ff:5b:70:5b:3f:7d:4f:a0:7a:27:7b:79:1c:53:83: 20:31:c8:d0:b7:2e:4a:ff:53:41:1d:1a:63:22:e2:cf:4f:0d: aa:63:10:f9:7f:f8:4c:d6:ec:10:3e:89:61:7e:37:46:2e:60: 2f:2a:50:22:3c:1f:2b:c5:54:3c:ad:99:ec:fd:3c:5d:60:ac: 7b:ca:c3:e6:90:82:b5:98:1f:68:c2:9b:5c:30:b2:59:19:4e: ca:e8:63:a3:97:b2:86:9a:32:e1:1a:38:bb:0e:7e:f6:30:8a: 85:41:3c:bf:64:21:6a:7a:9e:34:7f:42:89:43:43:88:35:d5: 78:a1:38:7d:25:1e:d1:f8:4a:af:86:db:fe:2d:ae:64:36:f7: 6f:07:74:50:57:88:7f:e9:9b:7d:96:44:24:f3:cf:b6:aa:cd: 89:a4:62:d9:11:76:b3:62:21:65:fb:c6:9d:a0:ff:03:0c:b1: b4:0e:88:e4:c4:8c:d5:5d:9a:8c:e9:54:f0:21:82:f8:f9:85: 0c:ce:fc:d8:ca:ba:13:6d:56:a5:d4:06:d6:58:08:b9:37:eb: 7d:a1:d4:fb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlEQ0QxMTAvBgNVBAUTKDU3OTM0MzZEMjJBOTZBMDYxMzY4NTEyMDNCQjcyNTk4 NEQ3MEIwMTcwHhcNMjUwNzAxMDQ0MDEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNjZhZC01ZTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2s/g5Nxbimscw+V7iKomHxXAPTEF2KTTOY+HqRyZXbhTiAh4HwYtwVNtbClQ 5dxNsQLW94XrNTMi3CD4HwG6wZvqRT3q5yrX8yBenTHMDTZ45dOQEftYnI4ZaZYM dKgnGTTi33oR+DTL4duXvXASOihtlAgHpeTDQ3y64Hs4bvEXhI7u5VGoUbZQKM8d 9McVbXEWGWvvyY9D0/+7q/i0Bp0CwqYkMegcdlNWoqECTBCk4B/of5i+uGx7D3rR 0qYlq78w8AFCevdN7rsL/LeKziAxdIy59SWZNHs4Nt04a9ra2hStq3a/lnMCraxS t8R3SUHQvOg8GJDLxc7WhwB5PwIDAQABo4IClTCCApEwHQYDVR0OBBYEFA2MaECs PQwMcqQg9NWvYuKZtmubMB8GA1UdIwQYMBaAFFeTQ20iqWoGE2hRIDu3JZhNcLAX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OURDRC9BMDBENzAwNjJD MjQxMUVFQUI5NzhGMEZDNEY5QUUwMi9WNU5EYlNLcGFnWVRhRkVnTzdjbG1FMXdz QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Y1TkRiU0twYWdZVGFGRWdPN2NsbUUxd3NCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTlEQ0QvQTAwRDcwMDYyQzI0MTFFRUFCOTc4RjBGQzRGOUFFMDIvMjlENjAwMDYy QzMzMTFFRUJGRjY5QjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLFNowDQYJKoZIhvcNAQELBQADggEBAFCi/Dqt50pHttlw 4xUm7OVvp1oXbxZsk160Kq95AZPo6mF0XVyqCP9bcFs/fU+geid7eRxTgyAxyNC3 Lkr/U0EdGmMi4s9PDapjEPl/+EzW7BA+iWF+N0YuYC8qUCI8HyvFVDytmez9PF1g rHvKw+aQgrWYH2jCm1wwslkZTsroY6OXsoaaMuEaOLsOfvYwioVBPL9kIWp6njR/ QolDQ4g11XihOH0lHtH4Sq+G2/4trmQ2928HdFBXiH/pm32WRCTzz7aqzYmkYtkR drNiIWX7xp2g/wMMsbQOiOTEjNVdmozpVPAhgvj5hQzO/NjKuhNtVqXUBtZYCLk3 632h1Ps= -----END CERTIFICATE-----Generated at Sun Jul 20 06:23:16 2025 by rpki-client