$ rpki-client -vvf rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D24316B48D6D11EB9DB49A32C4F9AE02.roa File: D24316B48D6D11EB9DB49A32C4F9AE02.roa (raw, json) Hash identifier: bQSq5ulDmleOdsxLvtgc5ASW2V63/ouOWZ5o5ZVuoR4= Subject key identifier: FB:8A:B4:F7:19:2B:34:38:B6:0A:04:A8:BB:32:E0:D7:EC:F3:37:66 Certificate issuer: /CN=A916988B/serialNumber=BA49F2E02A635DD075F564166F111F5FADE5A7CB Certificate serial: 069D Authority key identifier: BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D24316B48D6D11EB9DB49A32C4F9AE02.roa Signing time: Fri 18 Jul 2025 23:04:59 +0000 ROA not before: Fri 18 Jul 2025 23:04:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139862 IP address blocks: 203.5.33.0/24 maxlen: 24 203.5.34.0/24 maxlen: 24 203.5.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.crl rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1693 (0x69d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916988B, serialNumber=BA49F2E02A635DD075F564166F111F5FADE5A7CB Validity Not Before: Jul 18 23:04:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687ad31b-e891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:de:bf:16:96:9c:a4:e1:94:db:6f:3c:03:94: 84:9f:5a:a0:91:8b:e9:3a:b6:50:72:fb:b9:39:b6: 49:55:e0:b5:60:d7:23:99:c2:57:fd:d1:1f:89:1c: 1a:64:53:16:9e:51:2b:76:4f:0c:b9:d6:25:77:b2: 80:6d:4e:46:e8:b4:04:a3:06:62:f2:35:02:4b:0a: d6:51:cc:2a:01:11:e7:b9:63:f5:83:ac:66:88:99: 6a:57:83:f3:ee:24:d3:39:f1:6e:a6:3f:7e:9e:e4: a0:3e:a6:86:de:e7:19:12:3d:0d:72:b3:fb:a3:ca: ea:43:ff:12:2f:95:c4:d4:f9:98:20:bf:3d:08:d4: f1:de:0c:f5:26:8d:fe:f7:6a:06:60:c4:7a:2a:88: 86:80:f1:4d:2b:8f:c5:26:ad:d2:7a:7d:6b:06:74: ab:c2:f5:d8:f7:75:c9:ac:d9:6d:21:f5:8f:85:3b: 0c:72:65:79:ba:88:ca:eb:aa:a8:9d:41:db:01:1b: 46:89:b1:65:06:36:fb:e3:84:26:ce:5b:8f:ca:e4: 87:c3:89:e7:75:5a:74:2f:33:99:5e:c4:f9:4d:77: 3c:72:29:88:02:82:6e:c1:f8:6f:cf:b6:bf:2f:24: 52:2f:f2:d9:8b:ad:c1:dc:62:58:27:21:e1:cf:33: 1e:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8A:B4:F7:19:2B:34:38:B6:0A:04:A8:BB:32:E0:D7:EC:F3:37:66 X509v3 Authority Key Identifier: keyid:BA:49:F2:E0:2A:63:5D:D0:75:F5:64:16:6F:11:1F:5F:AD:E5:A7:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/ukny4CpjXdB19WQWbxEfX63lp8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukny4CpjXdB19WQWbxEfX63lp8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916988B/F36B79B0807711EBB925F154C4F9AE02/D24316B48D6D11EB9DB49A32C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.33.0-203.5.35.255 Signature Algorithm: sha256WithRSAEncryption b6:6f:8f:f5:91:80:d8:82:3e:45:e4:10:db:5e:51:ef:b1:62: 57:07:c6:fc:28:0f:83:de:39:8f:e3:f2:63:ae:ed:6d:58:b4: 84:e2:f8:e7:13:f9:58:9a:0d:8d:40:19:f5:5d:b0:a3:2d:0d: 64:32:b1:55:c6:c5:05:fd:19:99:97:95:3d:98:8d:8c:66:8a: 66:d3:69:17:fb:c4:c5:e1:44:e9:20:80:34:6a:14:aa:c7:9d: 68:d2:2a:0a:6d:bf:7c:84:63:4c:6c:1f:67:53:46:8a:ad:1f: db:20:64:ae:86:42:a4:f6:91:a3:51:ed:be:83:df:7e:22:f7: e7:44:03:7e:dc:cf:aa:02:8d:2b:36:66:8c:4e:69:3f:a3:08: b4:b6:73:de:2b:58:13:b5:34:02:56:c2:a3:1b:a9:b2:4e:12: 6d:39:33:b1:de:37:66:b8:76:b9:4f:9c:f2:25:ba:48:44:07: ce:b1:dd:65:6e:63:59:9e:0b:e7:30:15:ac:33:7b:23:90:b8: 6d:a6:ac:d2:64:1d:d8:7f:55:01:57:40:22:54:b2:99:fa:8f: 39:1f:37:7c:23:e4:5a:ec:a6:10:ac:3c:fa:36:99:17:4c:06: 59:5d:f5:55:c2:9f:e1:87:ef:c6:93:df:79:1e:44:be:db:16: 98:5c:a7:0c -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk4OEIxMTAvBgNVBAUTKEJBNDlGMkUwMkE2MzVERDA3NUY1NjQxNjZGMTExRjVG QURFNUE3Q0IwHhcNMjUwNzE4MjMwNDU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdhZDMxYi1lODkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl96/FpacpOGU2288A5SEn1qgkYvpOrZQcvu5ObZJVeC1YNcjmcJX/dEfiRwa ZFMWnlErdk8MudYld7KAbU5G6LQEowZi8jUCSwrWUcwqARHnuWP1g6xmiJlqV4Pz 7iTTOfFupj9+nuSgPqaG3ucZEj0NcrP7o8rqQ/8SL5XE1PmYIL89CNTx3gz1Jo3+ 92oGYMR6KoiGgPFNK4/FJq3Sen1rBnSrwvXY93XJrNltIfWPhTsMcmV5uojK66qo nUHbARtGibFlBjb744QmzluPyuSHw4nndVp0LzOZXsT5TXc8cimIAoJuwfhvz7a/ LyRSL/LZi63B3GJYJyHhzzMevwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFPuKtPcZ KzQ4tgoEqLsy4Nfs8zdmMB8GA1UdIwQYMBaAFLpJ8uAqY13QdfVkFm8RH1+t5afL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTg4Qi9GMzZCNzlCMDgw NzcxMUVCQjkyNUYxNTRDNEY5QUUwMi91a255NENwalhkQjE5V1FXYnhFZlg2M2xw OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vrbnk0Q3BqWGRCMTlXUVdieEVmWDYzbHA4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk4OEIvRjM2Qjc5QjA4MDc3MTFFQkI5MjVGMTU0QzRGOUFFMDIvRDI0MzE2QjQ4 RDZEMTFFQjlEQjQ5QTMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAMsFIQMEAssFIDANBgkqhkiG9w0BAQsFAAOCAQEAtm+P 9ZGA2II+ReQQ215R77FiVwfG/CgPg945j+PyY67tbVi0hOL45xP5WJoNjUAZ9V2w oy0NZDKxVcbFBf0ZmZeVPZiNjGaKZtNpF/vExeFE6SCANGoUqsedaNIqCm2/fIRj TGwfZ1NGiq0f2yBkroZCpPaRo1HtvoPffiL350QDftzPqgKNKzZmjE5pP6MItLZz 3itYE7U0AlbCoxupsk4SbTkzsd43Zrh2uU+c8iW6SEQHzrHdZW5jWZ4L5zAVrDN7 I5C4baas0mQd2H9VAVdAIlSymfqPOR83fCPkWuymEKw8+jaZF0wGWV31VcKf4Yfv xpPfeR5EvtsWmFynDA== -----END CERTIFICATE-----Generated at Sun Jul 20 19:00:12 2025 by rpki-client