$ rpki-client -vvf rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/73EF25545DDE11EFBCDB7463C4F9AE02.roa File: 73EF25545DDE11EFBCDB7463C4F9AE02.roa (raw, json) Hash identifier: MZgkuhZaLuaH742l5Nmqx23G0Q6+kgWllUIicpxtkRE= Subject key identifier: C7:25:A9:A3:66:D2:D5:64:F2:A4:CA:E2:CF:05:31:1A:E6:19:CA:C6 Certificate issuer: /CN=A919C6E7/serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Certificate serial: A6 Authority key identifier: 71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/73EF25545DDE11EFBCDB7463C4F9AE02.roa Signing time: Thu 03 Jul 2025 06:41:43 +0000 ROA not before: Thu 03 Jul 2025 06:41:43 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 26658 IP address blocks: 45.120.204.0/22 maxlen: 22 103.61.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C6E7, serialNumber=711617002D9F0C9EB65B4EDD61F7A1C91FCDB83E Validity Not Before: Jul 3 06:41:43 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68662627-bce0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b2:a3:89:65:93:dd:e7:61:53:78:24:f0:d9: 17:19:f7:7c:74:3a:2c:ed:6d:89:5b:64:44:9e:48: fd:61:28:a0:b3:50:13:e2:2c:f5:3d:b4:9a:96:14: 03:3c:cb:de:76:92:6b:90:8b:1f:57:ab:1e:4f:14: d5:8e:aa:6c:cf:f8:a2:2b:7c:e1:08:db:97:f2:e3: 37:ff:c3:65:bf:8d:a0:66:38:d5:09:7a:cb:20:ab: aa:c5:ff:ad:ae:67:69:ae:88:e9:d4:dc:a3:eb:44: 4a:77:d4:15:0c:70:14:a1:0a:1d:ec:ef:c2:7c:63: a7:d3:36:f7:fd:86:96:51:c6:be:6f:d3:1e:29:26: be:0d:96:6c:4e:4b:fc:64:f0:2c:df:3a:87:f4:dd: f0:f5:f9:e0:dc:eb:eb:2e:f3:7e:e2:8f:ca:29:1f: 6c:e0:66:8a:24:f3:62:23:39:7c:69:19:ea:51:5d: 60:4e:c3:5a:a5:59:52:c2:2c:71:85:38:c5:38:69: fd:d9:d3:e4:e6:8a:58:cd:1e:51:53:d7:8e:e5:c0: eb:93:89:2b:98:c2:0b:63:a7:19:ad:ac:2b:9f:10: de:8d:85:9b:19:84:9d:67:75:b5:61:83:14:1a:f3: d8:99:c3:1e:73:30:51:f6:ad:95:4f:9e:5c:9a:9f: be:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:25:A9:A3:66:D2:D5:64:F2:A4:CA:E2:CF:05:31:1A:E6:19:CA:C6 X509v3 Authority Key Identifier: keyid:71:16:17:00:2D:9F:0C:9E:B6:5B:4E:DD:61:F7:A1:C9:1F:CD:B8:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/cRYXAC2fDJ62W07dYfehyR_NuD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cRYXAC2fDJ62W07dYfehyR_NuD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C6E7/E4A0CCAE5DDD11EF830DF561C4F9AE02/73EF25545DDE11EFBCDB7463C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.120.204.0/22 103.61.20.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:2d:f6:d7:30:32:15:4a:6b:45:f4:63:07:ba:f0:27:bd:79: bb:82:5c:65:f1:ed:b0:5b:6a:f5:76:04:87:19:47:11:fc:29: d0:5c:b8:ee:19:d6:67:8f:23:3d:54:f5:d5:56:34:91:26:db: a1:89:70:b6:9e:c9:b8:0e:ca:9a:24:78:6e:44:46:b9:e5:60: 07:6e:11:c0:42:cd:9e:7c:05:36:80:d9:50:77:cc:dd:63:5d: 9b:46:3f:01:67:f0:82:94:ad:cc:b8:be:84:e0:48:e3:0d:6d: dd:3d:96:2b:04:ec:d3:16:bc:08:0f:1e:d7:9c:82:ce:15:3c: fd:76:23:d4:53:bb:f7:f2:bc:25:1b:ce:98:e7:41:0c:65:5d: 94:94:85:82:5f:1d:bb:3c:d5:08:10:b5:ef:b5:8c:5c:b5:7f: 28:46:2c:76:36:09:34:47:29:b6:31:7a:59:f8:44:bf:88:ce: cb:01:0e:95:ca:3c:61:3e:a1:08:31:ce:a6:4a:df:3f:e5:e3: fd:b4:df:cb:da:87:7b:9b:9e:ae:03:a4:ab:b9:3d:fe:b1:e6: 20:e4:a3:95:46:27:2b:a2:5d:f2:9b:0c:a6:85:00:e0:f8:3c: f5:ef:be:77:78:1d:b6:8f:47:ec:a6:66:72:31:36:28:b6:fb: 00:47:3e:f2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUM2RTcxMTAvBgNVBAUTKDcxMTYxNzAwMkQ5RjBDOUVCNjVCNEVERDYxRjdBMUM5 MUZDREI4M0UwHhcNMjUwNzAzMDY0MTQzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY2MjYyNy1iY2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrKjiWWT3edhU3gk8NkXGfd8dDos7W2JW2REnkj9YSigs1AT4iz1PbSalhQD PMvedpJrkIsfV6seTxTVjqpsz/iiK3zhCNuX8uM3/8Nlv42gZjjVCXrLIKuqxf+t rmdprojp1Nyj60RKd9QVDHAUoQod7O/CfGOn0zb3/YaWUca+b9MeKSa+DZZsTkv8 ZPAs3zqH9N3w9fng3OvrLvN+4o/KKR9s4GaKJPNiIzl8aRnqUV1gTsNapVlSwixx hTjFOGn92dPk5opYzR5RU9eO5cDrk4krmMILY6cZrawrnxDejYWbGYSdZ3W1YYMU GvPYmcMeczBR9q2VT55cmp++LQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMclqaNm 0tVk8qTK4s8FMRrmGcrGMB8GA1UdIwQYMBaAFHEWFwAtnwyetltO3WH3ockfzbg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QzZFNy9FNEEwQ0NBRTVE REQxMUVGODMwREY1NjFDNEY5QUUwMi9jUllYQUMyZkRKNjJXMDdkWWZlaHlSX051 RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NSWVhBQzJmREo2MlcwN2RZZmVoeVJfTnVENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUM2RTcvRTRBMENDQUU1REREMTFFRjgzMERGNTYxQzRGOUFFMDIvNzNFRjI1NTQ1 RERFMTFFRkJDREI3NDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteMwDBAJnPRQwDQYJKoZIhvcNAQELBQADggEBAF0t9tcw MhVKa0X0Ywe68Ce9ebuCXGXx7bBbavV2BIcZRxH8KdBcuO4Z1mePIz1U9dVWNJEm 26GJcLaeybgOypokeG5ERrnlYAduEcBCzZ58BTaA2VB3zN1jXZtGPwFn8IKUrcy4 voTgSOMNbd09lisE7NMWvAgPHtecgs4VPP12I9RTu/fyvCUbzpjnQQxlXZSUhYJf Hbs81QgQte+1jFy1fyhGLHY2CTRHKbYxeln4RL+IzssBDpXKPGE+oQgxzqZK3z/l 4/2038vah3ubnq4DpKu5Pf6x5iDko5VGJyuiXfKbDKaFAOD4PPXvvnd4HbaPR+ym ZnIxNii2+wBHPvI= -----END CERTIFICATE-----Generated at Sun Jul 20 06:44:26 2025 by rpki-client