$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/D3A8EA649F0911EE98065E23C4F9AE02.roa File: D3A8EA649F0911EE98065E23C4F9AE02.roa (raw, json) Hash identifier: R2/WUKzxoHuFFd/QsgqeEUvYq+HCK78+7w9Z8fUIsWc= Subject key identifier: 4B:60:46:1A:77:81:83:B3:EC:88:E7:CF:46:8F:96:95:B1:C5:71:F5 Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 0495 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/D3A8EA649F0911EE98065E23C4F9AE02.roa Signing time: Thu 05 Jun 2025 01:47:49 +0000 ROA not before: Thu 05 Jun 2025 01:47:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9443 IP address blocks: 203.32.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:38:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1173 (0x495) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Jun 5 01:47:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6840f745-b168 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e9:c9:7b:49:73:02:f8:e1:25:18:32:70:f9: 5d:b1:63:01:4c:8c:3e:53:ee:57:4e:a2:d6:b7:c5: 2c:b1:03:86:12:65:a7:98:e3:ca:01:a1:30:6d:4e: 55:c1:2f:64:47:c1:7f:59:6e:f9:f4:8f:ab:06:1d: 2e:82:34:93:27:0d:5e:b1:18:f2:26:a9:50:92:47: bb:06:26:ac:02:0e:46:2b:19:09:de:62:3b:a2:dc: ad:68:e5:be:b0:10:a9:97:54:91:ca:a7:bb:97:2e: 67:51:fb:ff:77:6c:88:7b:b3:f2:6d:aa:59:ba:9a: 91:16:d1:45:6c:ae:75:3e:ae:cb:95:e9:12:82:fc: 7f:d5:fd:55:3c:0b:50:d2:f1:7a:5e:68:05:43:e6: 8b:38:bf:63:1a:19:02:60:14:ab:c4:bd:5f:b5:52: b3:d5:b3:b2:33:9e:27:b1:a8:23:60:de:d9:65:d8: 67:1b:ee:3c:f6:de:85:ed:f8:37:b2:75:f8:9e:d0: 3e:02:33:55:10:9b:5d:89:17:a7:52:f4:97:14:af: 0b:be:9b:ce:ce:2c:5e:d4:3e:42:68:0b:ed:c1:6f: e6:16:a9:44:6a:09:62:08:5a:13:a0:11:64:43:e7: 15:09:cf:ac:7a:4a:17:7d:1f:2f:c8:61:73:81:d5: 74:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:60:46:1A:77:81:83:B3:EC:88:E7:CF:46:8F:96:95:B1:C5:71:F5 X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/D3A8EA649F0911EE98065E23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.32.0/24 Signature Algorithm: sha256WithRSAEncryption 19:0d:72:91:4f:8f:c4:47:12:be:b9:51:da:2d:d2:8f:c2:37: 7d:95:1f:01:b0:ee:2f:71:5d:3c:47:ba:e4:eb:c0:5e:65:3e: 68:ea:4f:e9:6f:5c:2d:9a:03:df:19:1e:53:73:15:8b:b5:e9: c8:96:cc:7a:4e:b8:b3:47:0a:79:7e:a2:dd:f2:9d:66:62:86: ce:b9:3a:a3:f5:e9:af:7d:32:15:8c:d9:38:30:04:a8:aa:14: fa:1c:60:2e:6b:57:aa:61:5f:6d:4e:98:db:79:0b:da:b9:6e: a1:d8:ec:e1:87:ba:2e:21:72:58:c6:6b:28:19:ba:d4:f3:77: f8:4c:55:ad:9d:36:4f:1b:19:90:10:1b:7f:be:21:22:ad:f0: ed:2e:51:c6:44:6b:8e:5d:5a:80:e6:8c:1c:70:29:9e:57:a4: 2a:1e:f5:48:d4:1d:f2:0a:de:5d:75:de:e9:ba:ea:ac:1b:df: d9:bc:5e:c6:96:1e:d6:64:7b:e8:fd:d5:f2:33:8a:40:f6:df: 57:9c:4b:a8:88:f6:53:74:b6:46:a1:eb:02:c7:e1:2a:76:ba: 7f:cf:73:47:9d:fa:c5:64:49:30:5f:c8:6d:10:13:1c:6c:bd: a5:f4:eb:67:b7:13:87:0c:e8:ae:68:85:8b:3c:5c:ef:d0:0e: af:0d:da:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUwNjA1MDE0NzQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZjc0NS1iMTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqenJe0lzAvjhJRgycPldsWMBTIw+U+5XTqLWt8UssQOGEmWnmOPKAaEwbU5V wS9kR8F/WW759I+rBh0ugjSTJw1esRjyJqlQkke7BiasAg5GKxkJ3mI7otytaOW+ sBCpl1SRyqe7ly5nUfv/d2yIe7PybapZupqRFtFFbK51Pq7LlekSgvx/1f1VPAtQ 0vF6XmgFQ+aLOL9jGhkCYBSrxL1ftVKz1bOyM54nsagjYN7ZZdhnG+489t6F7fg3 snX4ntA+AjNVEJtdiRenUvSXFK8LvpvOzixe1D5CaAvtwW/mFqlEagliCFoToBFk Q+cVCc+sekoXfR8vyGFzgdV07QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEtgRhp3 gYOz7Ijnz0aPlpWxxXH1MB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvRDNBOEVBNjQ5 RjA5MTFFRTk4MDY1RTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLICAwDQYJKoZIhvcNAQELBQADggEBABkNcpFPj8RHEr65 Udot0o/CN32VHwGw7i9xXTxHuuTrwF5lPmjqT+lvXC2aA98ZHlNzFYu16ciWzHpO uLNHCnl+ot3ynWZihs65OqP16a99MhWM2TgwBKiqFPocYC5rV6phX21OmNt5C9q5 bqHY7OGHui4hcljGaygZutTzd/hMVa2dNk8bGZAQG3++ISKt8O0uUcZEa45dWoDm jBxwKZ5XpCoe9UjUHfIK3l113um66qwb39m8XsaWHtZke+j91fIzikD231ecS6iI 9lN0tkah6wLH4Sp2un/Pc0ed+sVkSTBfyG0QExxsvaX062e3E4cM6K5ohYs8XO/Q Dq8N2qQ= -----END CERTIFICATE-----Generated at Sun Jul 20 14:26:28 2025 by rpki-client