$ rpki-client -vvf rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/FDE510BCC2E511EBBDB1B180C4F9AE02.roa File: FDE510BCC2E511EBBDB1B180C4F9AE02.roa (raw, json) Hash identifier: +oczTLjRD/tYfsYBFtIa6eRmdxZaKTBLayvz3HoGlWU= Subject key identifier: 1D:B7:63:28:9F:DD:91:7C:11:CC:CE:4B:F6:BD:03:30:4F:ED:87:BA Certificate issuer: /CN=A9191FA5/serialNumber=AB11E809F2BC66B0D1E60B8A31F86B5B82E00E39 Certificate serial: 366C Authority key identifier: AB:11:E8:09:F2:BC:66:B0:D1:E6:0B:8A:31:F8:6B:5B:82:E0:0E:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/FDE510BCC2E511EBBDB1B180C4F9AE02.roa Signing time: Wed 16 Jul 2025 14:50:31 +0000 ROA not before: Wed 16 Jul 2025 14:50:31 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 17495 IP address blocks: 203.124.128.0/20 maxlen: 24 203.124.144.0/20 maxlen: 24 203.124.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.crl rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13932 (0x366c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191FA5, serialNumber=AB11E809F2BC66B0D1E60B8A31F86B5B82E00E39 Validity Not Before: Jul 16 14:50:31 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6877bc36-6878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2d:85:b5:0d:5f:0c:19:1b:1c:34:08:09:c1: 20:88:0a:4c:68:f8:45:c6:42:d4:ec:84:6a:11:85: 81:25:f7:b6:d9:37:cf:1b:fa:8c:eb:f8:bd:ea:a7: e7:8c:0f:78:6a:65:49:2e:9c:6f:cc:72:58:f4:0f: 46:1a:b1:66:d4:d2:1f:8b:35:9e:c4:0b:65:48:f6: 18:74:c5:ea:72:f4:a0:05:51:6b:bc:de:e1:c5:fb: 7c:15:36:46:f8:89:9d:8e:6b:19:46:a6:f9:69:34: 66:32:d2:0f:d4:85:09:e8:6a:34:dc:c0:7d:47:02: 12:bc:ec:81:bf:99:88:db:c8:6d:83:a9:00:aa:7a: 0b:0c:09:dd:2d:51:d5:2a:af:ee:0e:dd:5f:93:18: 27:da:64:d8:dd:e0:02:e8:9e:4b:21:7b:f9:e9:b0: c1:f1:7e:ea:1e:b5:98:70:bd:43:57:aa:4b:20:5b: df:e0:13:fc:e8:0a:cb:80:86:8a:c5:cd:c9:13:05: 29:84:98:06:a4:d6:86:24:6f:89:90:56:54:c6:97: 44:a1:49:2b:b4:3e:3f:84:4f:73:9a:c3:3c:0a:ae: ce:3d:02:95:4e:4d:e0:8a:e0:08:a8:34:38:3f:b5: ca:25:e3:63:ee:e3:30:dd:26:7b:c1:af:fa:ad:67: 03:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:B7:63:28:9F:DD:91:7C:11:CC:CE:4B:F6:BD:03:30:4F:ED:87:BA X509v3 Authority Key Identifier: keyid:AB:11:E8:09:F2:BC:66:B0:D1:E6:0B:8A:31:F8:6B:5B:82:E0:0E:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qxHoCfK8ZrDR5guKMfhrW4LgDjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191FA5/08056CE41D8711E29DD3C6DE08B02CD2/FDE510BCC2E511EBBDB1B180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.124.128.0-203.124.175.255 Signature Algorithm: sha256WithRSAEncryption 8b:bf:c6:56:5f:ff:1a:b6:fd:27:08:3c:ef:1f:84:14:c4:7d: 58:cf:84:9d:ea:0f:d7:62:26:f4:e7:84:c6:53:8c:96:7f:fa: af:f0:44:b4:d3:13:10:f9:14:8b:a3:84:60:6a:2b:dd:4d:c9: a8:30:5b:9c:0c:33:54:3c:fb:ad:60:7a:7d:31:b4:c6:9a:7a: 98:e9:c6:5a:d5:06:ab:e4:0f:41:41:da:09:af:45:2c:f7:d4: e1:6b:35:d2:70:18:24:ae:66:0a:aa:ca:43:a4:e5:cf:05:54: cb:7f:40:78:da:24:5c:27:28:2d:83:75:d5:3d:28:a8:ce:37: 0a:12:2f:8f:df:8d:e3:47:27:23:e7:5d:9e:a3:96:87:4f:10: cb:43:ad:40:aa:d6:68:04:a1:93:90:fd:00:8b:33:0d:84:bf: 7e:1f:0c:b5:37:58:59:1f:b0:1e:85:df:7d:c2:54:22:84:02: 16:f9:e3:98:36:8b:2e:cf:95:ca:6f:fe:00:50:6a:1f:1a:cf: 1c:e3:fa:09:e1:49:39:4c:dd:43:3f:91:27:16:b5:0f:d7:21: 3e:27:30:1b:29:ff:4f:24:2a:ca:fe:cc:86:81:2d:a7:1f:4d: c1:05:7f:f9:d8:d8:d4:12:be:83:f0:c4:b7:11:ec:c4:8a:98: 43:60:5d:fb -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICNmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFGQTUxMTAvBgNVBAUTKEFCMTFFODA5RjJCQzY2QjBEMUU2MEI4QTMxRjg2QjVC ODJFMDBFMzkwHhcNMjUwNzE2MTQ1MDMxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3YmMzNi02ODc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwi2FtQ1fDBkbHDQICcEgiApMaPhFxkLU7IRqEYWBJfe22TfPG/qM6/i96qfn jA94amVJLpxvzHJY9A9GGrFm1NIfizWexAtlSPYYdMXqcvSgBVFrvN7hxft8FTZG +ImdjmsZRqb5aTRmMtIP1IUJ6Go03MB9RwISvOyBv5mI28htg6kAqnoLDAndLVHV Kq/uDt1fkxgn2mTY3eAC6J5LIXv56bDB8X7qHrWYcL1DV6pLIFvf4BP86ArLgIaK xc3JEwUphJgGpNaGJG+JkFZUxpdEoUkrtD4/hE9zmsM8Cq7OPQKVTk3giuAIqDQ4 P7XKJeNj7uMw3SZ7wa/6rWcDxQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFB23Yyif 3ZF8EczOS/a9AzBP7Ye6MB8GA1UdIwQYMBaAFKsR6AnyvGaw0eYLijH4a1uC4A45 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUZBNS8wODA1NkNFNDFE ODcxMUUyOUREM0M2REUwOEIwMkNEMi9xeEhvQ2ZLOFpyRFI1Z3VLTWZoclc0TGdE amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F4SG9DZks4WnJEUjVndUtNZmhyVzRMZ0Rqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFGQTUvMDgwNTZDRTQxRDg3MTFFMjlERDNDNkRFMDhCMDJDRDIvRkRFNTEwQkND MkU1MTFFQkJEQjFCMTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEB8t8gAMEBMt8oDANBgkqhkiG9w0BAQsFAAOCAQEAi7/G Vl//Grb9Jwg87x+EFMR9WM+EneoP12Im9OeExlOMln/6r/BEtNMTEPkUi6OEYGor 3U3JqDBbnAwzVDz7rWB6fTG0xpp6mOnGWtUGq+QPQUHaCa9FLPfU4Ws10nAYJK5m CqrKQ6TlzwVUy39AeNokXCcoLYN11T0oqM43ChIvj9+N40cnI+ddnqOWh08Qy0Ot QKrWaAShk5D9AIszDYS/fh8MtTdYWR+wHoXffcJUIoQCFvnjmDaLLs+Vym/+AFBq HxrPHOP6CeFJOUzdQz+RJxa1D9chPicwGyn/TyQqyv7MhoEtpx9NwQV/+djY1BK+ g/DEtxHsxIqYQ2Bd+w== -----END CERTIFICATE-----Generated at Sun Jul 20 06:17:25 2025 by rpki-client