$ rpki-client -vvf rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/C49CE482BEA411EB85828650C4F9AE02.roa File: C49CE482BEA411EB85828650C4F9AE02.roa (raw, json) Hash identifier: tWGIt1j5EvwGUw+Sd+nJTxQY0ACb+5Zewj9NqITpqME= Subject key identifier: 6D:25:17:18:C7:7A:55:4A:31:9E:16:3D:47:30:4F:EA:42:B8:8A:EA Certificate issuer: /CN=A918524B/serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Certificate serial: 05EB Authority key identifier: 87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/C49CE482BEA411EB85828650C4F9AE02.roa Signing time: Wed 02 Jul 2025 23:35:21 +0000 ROA not before: Wed 02 Jul 2025 23:35:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.19.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:19:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1515 (0x5eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918524B, serialNumber=87E80C0E463310A9D3038CE013CF185374A5C722 Validity Not Before: Jul 2 23:35:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6865c239-d9d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:99:d2:38:04:c0:a9:dd:8c:19:1e:12:73:25: dd:31:47:44:ed:12:d7:67:d6:fb:66:a3:40:6e:12: d0:6e:e7:18:a4:7e:f0:33:df:ae:ea:7b:2b:18:b8: a8:44:58:04:17:48:67:ed:ec:23:40:71:cf:3a:6b: 92:7e:86:7f:23:bc:62:a9:98:4f:72:3e:4b:3c:3a: 52:96:6f:06:38:cc:25:c7:08:2b:4e:1f:87:9a:48: 65:91:21:39:b6:04:77:4e:8d:9e:f8:7d:6f:f7:d5: 48:d2:c8:ec:2f:3e:7a:87:21:7c:6c:6f:60:a9:51: c8:93:8d:4a:54:f6:d2:ae:51:78:21:37:2d:34:b5: 26:1d:e9:10:79:1d:10:5b:4f:1b:6c:fd:4b:47:71: 18:07:db:34:7b:ad:27:a2:a7:82:78:2c:3c:99:37: 74:48:23:a6:5f:ac:db:bf:57:46:64:d4:b5:48:f5: 39:6d:c6:94:fe:23:50:6f:c3:57:84:1c:cf:ec:71: b0:de:1e:d5:4c:45:51:d9:d3:8a:7f:a5:14:c0:df: 7a:03:dc:a5:cd:c7:97:42:1f:9e:0c:9d:aa:7b:be: 1b:09:23:91:d5:a1:44:cc:e2:59:c1:6d:31:25:2f: c3:07:22:15:90:6b:97:6b:6d:61:f6:3d:fb:da:cb: fd:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:25:17:18:C7:7A:55:4A:31:9E:16:3D:47:30:4F:EA:42:B8:8A:EA X509v3 Authority Key Identifier: keyid:87:E8:0C:0E:46:33:10:A9:D3:03:8C:E0:13:CF:18:53:74:A5:C7:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/h-gMDkYzEKnTA4zgE88YU3SlxyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h-gMDkYzEKnTA4zgE88YU3SlxyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918524B/92406A06BEA211EBAD6EF44FC4F9AE02/C49CE482BEA411EB85828650C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.140.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:8c:e3:62:55:bc:ce:e7:a6:db:11:d5:3a:44:d8:b8:93:06: 7b:bf:de:79:3a:31:7b:57:87:95:16:63:1f:f4:78:3d:d9:21: 35:b9:f6:d3:58:73:75:d4:e6:a6:55:13:d2:ec:1c:8c:4d:5b: 8c:63:e6:97:24:32:72:ce:14:29:34:90:60:96:58:7b:af:af: 02:d1:f9:1b:04:f8:28:d0:8a:4d:9a:ee:c9:24:d2:43:dd:a5: 6b:10:4d:8d:8d:9d:3c:bf:0a:c3:c7:21:eb:b4:b8:9e:52:e0: 32:c9:db:f3:95:a8:18:d2:7b:c8:c4:1f:ae:07:10:0d:97:0c: 08:fe:6d:5b:57:90:ab:98:44:68:af:2d:a7:62:6f:b8:13:71: 0a:53:1e:d7:e9:b0:0e:ea:72:6e:bf:df:1d:47:be:7e:d0:56: 35:55:3d:1e:e4:8d:58:89:88:a8:2b:77:0b:3f:61:3c:c5:16: 29:ee:79:fd:9f:68:9a:24:e6:ed:49:28:f4:c9:2e:15:ce:48: 61:8d:3b:f5:99:16:1b:1f:79:0a:32:69:7c:f4:df:38:36:a0: 82:2e:36:86:b6:54:f8:bb:47:a0:25:e8:d3:ad:c3:7a:14:75: 2a:7a:42:38:44:f9:af:c9:95:bf:f3:7d:e0:72:f3:a4:52:b8: cc:7d:b7:31 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUyNEIxMTAvBgNVBAUTKDg3RTgwQzBFNDYzMzEwQTlEMzAzOENFMDEzQ0YxODUz NzRBNUM3MjIwHhcNMjUwNzAyMjMzNTIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YzIzOS1kOWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo5nSOATAqd2MGR4ScyXdMUdE7RLXZ9b7ZqNAbhLQbucYpH7wM9+u6nsrGLio RFgEF0hn7ewjQHHPOmuSfoZ/I7xiqZhPcj5LPDpSlm8GOMwlxwgrTh+HmkhlkSE5 tgR3To2e+H1v99VI0sjsLz56hyF8bG9gqVHIk41KVPbSrlF4ITctNLUmHekQeR0Q W08bbP1LR3EYB9s0e60noqeCeCw8mTd0SCOmX6zbv1dGZNS1SPU5bcaU/iNQb8NX hBzP7HGw3h7VTEVR2dOKf6UUwN96A9ylzceXQh+eDJ2qe74bCSOR1aFEzOJZwW0x JS/DByIVkGuXa21h9j372sv9bwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG0lFxjH elVKMZ4WPUcwT+pCuIrqMB8GA1UdIwQYMBaAFIfoDA5GMxCp0wOM4BPPGFN0pcci MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTI0Qi85MjQwNkEwNkJF QTIxMUVCQUQ2RUY0NEZDNEY5QUUwMi9oLWdNRGtZekVLblRBNHpnRTg4WVUzU2x4 eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gtZ01Ea1l6RUtuVEE0emdFODhZVTNTbHh5SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUyNEIvOTI0MDZBMDZCRUEyMTFFQkFENkVGNDRGQzRGOUFFMDIvQzQ5Q0U0ODJC RUE0MTFFQjg1ODI4NjUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLE4wwDQYJKoZIhvcNAQELBQADggEBAB6M42JVvM7nptsR 1TpE2LiTBnu/3nk6MXtXh5UWYx/0eD3ZITW59tNYc3XU5qZVE9LsHIxNW4xj5pck MnLOFCk0kGCWWHuvrwLR+RsE+CjQik2a7skk0kPdpWsQTY2NnTy/CsPHIeu0uJ5S 4DLJ2/OVqBjSe8jEH64HEA2XDAj+bVtXkKuYRGivLadib7gTcQpTHtfpsA7qcm6/ 3x1Hvn7QVjVVPR7kjViJiKgrdws/YTzFFinuef2faJok5u1JKPTJLhXOSGGNO/WZ FhsfeQoyaXz03zg2oIIuNoa2VPi7R6Al6NOtw3oUdSp6QjhE+a/Jlb/zfeBy86RS uMx9tzE= -----END CERTIFICATE-----Generated at Sun Jul 20 07:42:57 2025 by rpki-client