$ rpki-client -vvf rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/028640A8242B11ED9547B486C4F9AE02.roa File: 028640A8242B11ED9547B486C4F9AE02.roa (raw, json) Hash identifier: dsbPmjXp/oYWvfHXOZsMcI3WqL8KWucAeTqSoUbpKas= Subject key identifier: F8:55:CC:5B:E7:63:B6:2D:DD:C6:D1:07:33:0B:25:57:8F:6A:26:2A Certificate issuer: /CN=A915EA8F/serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Certificate serial: 0252 Authority key identifier: 2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/028640A8242B11ED9547B486C4F9AE02.roa Signing time: Thu 03 Jul 2025 02:36:51 +0000 ROA not before: Thu 03 Jul 2025 02:36:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17639 IP address blocks: 45.251.24.0/22 maxlen: 22 103.219.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:14:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 594 (0x252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EA8F, serialNumber=2CE084E01DAC6B4D634938D76CEADA596355BD53 Validity Not Before: Jul 3 02:36:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6865ecc3-a12f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:3a:58:d2:fa:7d:3a:e6:1a:2a:fb:45:b7:5c: b1:e5:a9:e4:5d:fc:ee:41:85:95:c2:61:e8:03:65: 0c:d8:00:83:83:a3:75:f7:80:7a:e8:b8:d3:50:e0: 2e:fb:30:59:1b:9f:e7:90:8c:43:e1:10:12:85:1c: 94:d3:ca:d2:7c:d8:96:f7:d5:66:f0:87:27:a4:4b: 49:09:d3:69:e6:6d:b5:45:2c:00:4d:ac:44:c1:6f: 29:f6:35:af:56:08:bb:b9:1e:34:53:a9:98:f7:b0: ed:2d:1f:76:91:a2:0e:0c:51:0f:33:8a:e4:e6:36: 59:c2:05:2c:c0:4c:73:f1:2a:1e:06:f2:74:42:5f: 67:fa:e1:4a:f8:2a:da:2c:56:69:16:d8:de:55:7f: a0:69:97:4a:ff:2d:2d:03:5f:92:f0:b4:f3:2b:dc: 02:3c:b1:dd:9c:7f:1a:98:98:75:3d:b6:98:88:9b: 2b:7f:4a:a9:9e:ed:49:c5:d3:b5:d3:5f:a4:05:f3: 1f:86:a7:30:3e:c1:84:c7:44:83:ba:39:48:c1:ee: 05:ae:45:35:19:02:16:61:70:c2:3e:75:c5:9f:ab: 46:53:29:33:af:c7:a0:aa:a6:54:50:32:83:29:7b: b0:ae:76:c6:d1:00:7b:32:f0:44:cd:f3:73:5c:90: 56:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:55:CC:5B:E7:63:B6:2D:DD:C6:D1:07:33:0B:25:57:8F:6A:26:2A X509v3 Authority Key Identifier: keyid:2C:E0:84:E0:1D:AC:6B:4D:63:49:38:D7:6C:EA:DA:59:63:55:BD:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/LOCE4B2sa01jSTjXbOraWWNVvVM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LOCE4B2sa01jSTjXbOraWWNVvVM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EA8F/E3A35BB4242811ED8FD24C86C4F9AE02/028640A8242B11ED9547B486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.251.24.0/22 103.219.188.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:d7:fb:fd:87:dd:59:f0:89:52:3e:ec:c0:22:d7:99:a8:59: c9:c3:77:7b:64:3a:b9:11:d5:20:12:6e:68:fb:d5:51:c7:e9: 29:61:47:b6:aa:a2:8c:87:0f:16:48:0f:88:e2:23:f0:5d:5e: a6:e3:b8:29:9e:43:e7:03:09:a8:3c:f1:f4:f6:f4:71:da:36: 64:e0:3c:b7:ff:18:a3:dd:f3:e3:47:33:c9:12:8d:03:f7:a3: c6:b7:70:29:2a:2a:34:88:ac:ed:98:3a:05:86:5b:fe:fc:c5: de:6e:bf:77:5c:6b:80:0e:cc:d1:5d:de:11:4f:57:b5:00:fa: 62:e0:a5:cb:23:ce:db:40:8c:ae:5f:9c:4e:af:8d:6d:aa:49: 24:d6:4e:c8:b6:a6:37:a6:9c:bd:44:83:18:31:40:a0:6c:6a: cf:1c:f2:cc:36:97:15:80:e4:1b:bc:ec:30:0a:ff:0f:01:65: cc:bd:9a:1f:a1:e2:b2:d2:35:ec:41:cb:01:60:31:98:08:f4: e1:b9:73:8c:25:17:fa:42:dd:ac:86:fa:fc:93:a8:b4:ca:87: 04:a5:18:e8:1a:22:33:3b:43:e9:f8:a8:83:15:85:21:59:5c: 12:68:da:e7:6b:68:45:aa:78:45:ea:78:7a:a9:a9:56:8c:0f: a1:e6:5d:4b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAlIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVBOEYxMTAvBgNVBAUTKDJDRTA4NEUwMURBQzZCNEQ2MzQ5MzhENzZDRUFEQTU5 NjM1NUJENTMwHhcNMjUwNzAzMDIzNjUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1ZWNjMy1hMTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszpY0vp9OuYaKvtFt1yx5ankXfzuQYWVwmHoA2UM2ACDg6N194B66LjTUOAu +zBZG5/nkIxD4RAShRyU08rSfNiW99Vm8IcnpEtJCdNp5m21RSwATaxEwW8p9jWv Vgi7uR40U6mY97DtLR92kaIODFEPM4rk5jZZwgUswExz8SoeBvJ0Ql9n+uFK+Cra LFZpFtjeVX+gaZdK/y0tA1+S8LTzK9wCPLHdnH8amJh1PbaYiJsrf0qpnu1JxdO1 01+kBfMfhqcwPsGEx0SDujlIwe4FrkU1GQIWYXDCPnXFn6tGUykzr8egqqZUUDKD KXuwrnbG0QB7MvBEzfNzXJBWZwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPhVzFvn Y7Yt3cbRBzMLJVePaiYqMB8GA1UdIwQYMBaAFCzghOAdrGtNY0k412zq2lljVb1T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUE4Ri9FM0EzNUJCNDI0 MjgxMUVEOEZEMjRDODZDNEY5QUUwMi9MT0NFNEIyc2EwMWpTVGpYYk9yYVdXTlZ2 Vk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xPQ0U0QjJzYTAxalNUalhiT3JhV1dOVnZWTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVBOEYvRTNBMzVCQjQyNDI4MTFFRDhGRDI0Qzg2QzRGOUFFMDIvMDI4NjQwQTgy NDJCMTFFRDk1NDdCNDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+xgDBAJn27wwDQYJKoZIhvcNAQELBQADggEBACvX+/2H 3VnwiVI+7MAi15moWcnDd3tkOrkR1SASbmj71VHH6SlhR7aqooyHDxZID4jiI/Bd XqbjuCmeQ+cDCag88fT29HHaNmTgPLf/GKPd8+NHM8kSjQP3o8a3cCkqKjSIrO2Y OgWGW/78xd5uv3dca4AOzNFd3hFPV7UA+mLgpcsjzttAjK5fnE6vjW2qSSTWTsi2 pjemnL1EgxgxQKBsas8c8sw2lxWA5Bu87DAK/w8BZcy9mh+h4rLSNexBywFgMZgI 9OG5c4wlF/pC3ayG+vyTqLTKhwSlGOgaIjM7Q+n4qIMVhSFZXBJo2udraEWqeEXq eHqpqVaMD6HmXUs= -----END CERTIFICATE-----Generated at Sun Jul 20 22:31:45 2025 by rpki-client