$ rpki-client -vvf rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D1B6FD008D6D11EB9DB49A32C4F9AE02.roa File: D1B6FD008D6D11EB9DB49A32C4F9AE02.roa (raw, json) Hash identifier: B5LAg04dviX2z0y/fP3YPZo7B9FlYxyAimnZWCXnG6o= Subject key identifier: 6E:25:D9:40:21:39:D8:4C:83:31:B8:3D:85:38:1F:11:8F:03:9A:28 Certificate issuer: /CN=A916988B/serialNumber=BA49F2E02A635DD075F564166F111F5FADE5A7CB Certificate serial: 069C Authority key identifier: BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D1B6FD008D6D11EB9DB49A32C4F9AE02.roa Signing time: Fri 18 Jul 2025 23:04:58 +0000 ROA not before: Fri 18 Jul 2025 23:04:58 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.5.32.0/24 maxlen: 24 203.5.33.0/24 maxlen: 24 203.5.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.crl rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1692 (0x69c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916988B, serialNumber=BA49F2E02A635DD075F564166F111F5FADE5A7CB Validity Not Before: Jul 18 23:04:58 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687ad31a-f7ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:47:d3:56:a6:88:a6:2f:00:08:bb:56:d5:10: 66:da:f9:34:93:ad:58:52:c3:87:38:cf:dc:81:67: 8c:d5:c4:e6:a6:b4:6a:87:bc:4d:14:1f:fb:20:24: c0:40:10:52:f9:40:c9:26:3a:fd:a2:ed:58:e5:43: f7:4a:f0:e8:16:72:21:aa:61:c0:ed:3d:b0:a3:cf: 18:22:e9:eb:ef:5f:29:0b:0c:44:26:a7:cf:06:79: 33:7a:07:da:03:ef:f1:3b:da:42:22:4f:9f:ba:38: 48:85:ec:6b:1c:79:8c:32:16:78:05:c2:f3:c2:ba: 44:c3:ca:a9:77:d6:96:ae:8c:fa:56:b2:05:f3:a4: ac:b0:21:05:10:98:5b:f1:fa:6f:de:6a:79:d1:21: 19:0c:5e:58:08:85:19:e3:ff:6d:74:04:4a:91:ff: a9:8c:5f:ee:55:c3:f7:06:be:fa:64:2a:b1:21:f1: 8e:c4:66:08:26:27:e0:37:01:5c:f5:3f:bf:61:62: 67:32:7b:7f:86:8f:12:17:16:f6:fe:c8:2f:92:63: da:98:2e:fe:30:57:9e:db:bd:ce:ea:7f:55:24:b3: ad:16:75:9b:42:af:f1:cc:40:ce:93:a1:f1:3b:ce: 13:77:18:0a:ad:f5:76:40:df:96:e1:91:ce:2a:e9: 40:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:25:D9:40:21:39:D8:4C:83:31:B8:3D:85:38:1F:11:8F:03:9A:28 X509v3 Authority Key Identifier: keyid:BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D1B6FD008D6D11EB9DB49A32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.32.0/23 203.5.37.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:92:6c:dc:70:4e:55:e1:cc:7a:6f:70:b0:49:df:11:cf:4a: da:af:57:2f:53:64:21:e7:87:e4:72:cd:24:78:c1:71:55:c3: aa:2e:41:9b:54:c5:cc:7d:b0:d1:c6:d5:97:2b:fe:0a:42:50: 4d:ba:9c:71:9d:52:fa:e4:c5:c8:80:a2:67:fc:5a:f8:5a:44: 04:67:fc:65:98:d7:22:a9:03:8e:54:4f:28:c3:8f:5c:7f:01: bc:e8:15:cb:97:3f:af:0c:64:3c:21:1a:29:cb:b8:e8:13:55: ba:42:3f:46:b5:19:5c:4d:56:88:29:30:32:14:ed:3e:53:ed: d3:c5:29:c9:a5:e9:1e:54:14:b6:de:b2:7e:f1:d0:96:af:28: d5:0c:f8:be:cb:f2:1c:32:46:c5:b1:95:57:8c:f6:cc:b5:e8: 3d:92:b4:67:66:a2:04:b2:a8:38:d8:d5:0d:32:59:cd:4e:a5: bb:8d:99:15:2b:30:a1:16:2b:a1:4c:e7:b7:f0:4b:13:45:be: ba:b5:a2:36:92:25:b2:6c:1a:80:d2:c0:bf:ff:c4:95:6e:2d: fa:54:44:50:08:64:3f:03:2b:ca:c7:06:20:ad:de:40:90:d0: 20:99:db:2b:01:b1:01:46:59:94:e4:84:02:ab:6b:dd:dc:4f: 13:53:5d:dd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4OEIxMTAvBgNVBAUTKEJBNDlGMkUwMkE2MzVERDA3NUY1NjQxNjZGMTExRjVG QURFNUE3Q0IwHhcNMjUwNzE4MjMwNDU4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdhZDMxYS1mN2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UfTVqaIpi8ACLtW1RBm2vk0k61YUsOHOM/cgWeM1cTmprRqh7xNFB/7ICTA QBBS+UDJJjr9ou1Y5UP3SvDoFnIhqmHA7T2wo88YIunr718pCwxEJqfPBnkzegfa A+/xO9pCIk+fujhIhexrHHmMMhZ4BcLzwrpEw8qpd9aWroz6VrIF86SssCEFEJhb 8fpv3mp50SEZDF5YCIUZ4/9tdARKkf+pjF/uVcP3Br76ZCqxIfGOxGYIJifgNwFc 9T+/YWJnMnt/ho8SFxb2/sgvkmPamC7+MFee273O6n9VJLOtFnWbQq/xzEDOk6Hx O84TdxgKrfV2QN+W4ZHOKulA6wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG4l2UAh OdhMgzG4PYU4HxGPA5ooMB8GA1UdIwQYMBaAFLpJ8uAqY13QdfVkFm8RH1+t5afL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTg4Qi9GMzZCNzlCMDgw NzcxMUVCQjkyNUYxNTRDNEY5QUUwMi91a255NENwalhkQjE5V1FXYnhFZlg2M2xw OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vrbnk0Q3BqWGRCMTlXUVdieEVmWDYzbHA4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk4OEIvRjM2Qjc5QjA4MDc3MTFFQkI5MjVGMTU0QzRGOUFFMDIvRDFCNkZEMDA4 RDZEMTFFQjlEQjQ5QTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHLBSADBADLBSUwDQYJKoZIhvcNAQELBQADggEBABqSbNxw TlXhzHpvcLBJ3xHPStqvVy9TZCHnh+RyzSR4wXFVw6ouQZtUxcx9sNHG1Zcr/gpC UE26nHGdUvrkxciAomf8WvhaRARn/GWY1yKpA45UTyjDj1x/AbzoFcuXP68MZDwh GinLuOgTVbpCP0a1GVxNVogpMDIU7T5T7dPFKcml6R5UFLbesn7x0JavKNUM+L7L 8hwyRsWxlVeM9sy16D2StGdmogSyqDjY1Q0yWc1OpbuNmRUrMKEWK6FM57fwSxNF vrq1ojaSJbJsGoDSwL//xJVuLfpURFAIZD8DK8rHBiCt3kCQ0CCZ2ysBsQFGWZTk hAKra93cTxNTXd0= -----END CERTIFICATE-----Generated at Sun Jul 20 22:47:39 2025 by rpki-client