$ rpki-client -vvf rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/35C008E818C811F0BF9E881FC4F9AE02.roa File: 35C008E818C811F0BF9E881FC4F9AE02.roa (raw, json) Hash identifier: bwDdjXPrVZtmIClbo9xqwN/iM/s96nIFHCKB+Vl9Hlk= Subject key identifier: BD:31:48:D4:41:2A:C6:58:80:2F:40:85:EF:E8:F7:97:94:A4:CF:4A Certificate issuer: /CN=A919D3F9/serialNumber=3362AC58EDB189CF25783C27D90A7D2FA32977C5 Certificate serial: 34 Authority key identifier: 33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/35C008E818C811F0BF9E881FC4F9AE02.roa Signing time: Sat 19 Jul 2025 08:14:33 +0000 ROA not before: Sat 19 Jul 2025 08:14:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 149872 IP address blocks: 203.4.164.0/22 maxlen: 22 203.4.164.0/24 maxlen: 24 203.4.165.0/24 maxlen: 24 203.4.166.0/24 maxlen: 24 203.4.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 08:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D3F9, serialNumber=3362AC58EDB189CF25783C27D90A7D2FA32977C5 Validity Not Before: Jul 19 08:14:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687b53e8-b8c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:26:bb:da:ef:6b:b6:85:15:84:67:4d:7e:15: 93:3b:d1:db:03:0a:34:59:5c:16:11:7d:9b:50:39: 50:76:5e:52:48:1b:f2:7e:64:3a:7f:18:7a:a0:3b: 8c:fe:b0:65:2a:d0:33:25:93:b6:05:00:43:96:ff: 86:44:31:97:c3:ab:40:8f:a2:00:04:38:c4:97:53: 3b:d7:9f:34:97:1e:89:88:6c:82:13:76:8c:77:4e: 9b:c0:da:e0:22:2d:49:13:a4:90:28:c2:de:7c:fb: ae:e3:92:ad:68:0a:cd:ec:de:47:80:94:07:9a:d7: 46:ea:23:19:2a:aa:db:3e:9b:bd:ae:b4:dd:e9:bc: 69:f5:08:bb:c7:71:32:04:94:3d:50:59:b9:9f:1b: 5d:66:80:5b:91:75:06:a9:d9:9c:22:57:32:6b:b5: b5:7a:fc:9f:1d:ed:2f:aa:3f:57:29:4f:54:e9:24: 28:ae:9c:69:f3:fd:e8:84:75:71:c6:91:85:7f:0a: 1d:f7:be:9f:20:ea:44:8b:fa:12:ae:c8:e7:94:36: 86:a8:52:7b:49:bc:05:bf:96:70:b6:29:f4:e7:9f: da:51:10:b4:dd:71:28:d1:dc:a5:ec:cb:8e:d4:2d: 33:e7:2d:0d:e2:43:3a:0e:c2:98:00:70:f2:e8:e9: b0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:31:48:D4:41:2A:C6:58:80:2F:40:85:EF:E8:F7:97:94:A4:CF:4A X509v3 Authority Key Identifier: keyid:33:62:AC:58:ED:B1:89:CF:25:78:3C:27:D9:0A:7D:2F:A3:29:77:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/M2KsWO2xic8leDwn2Qp9L6Mpd8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M2KsWO2xic8leDwn2Qp9L6Mpd8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D3F9/122236E618C711F08054177EC4F9AE02/35C008E818C811F0BF9E881FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.164.0/22 Signature Algorithm: sha256WithRSAEncryption 02:36:74:49:36:6e:3b:2a:5a:49:7d:0f:42:7b:7c:19:c8:7b: 33:3c:f4:12:85:5a:50:6d:bc:87:55:33:45:4d:e5:6f:03:c0: 6d:b0:0b:89:74:77:62:d8:fd:28:24:e3:67:8b:58:3d:c7:30: 95:04:1c:5f:8b:f7:49:d5:93:70:64:6f:34:7c:80:5f:d2:03: b4:96:01:4a:c2:3b:7d:54:3c:43:32:29:5c:6b:7c:7e:2f:eb: e7:cb:82:4a:fb:bf:23:6e:46:91:d5:84:d3:c6:aa:50:c6:ea: d4:67:21:ec:5f:13:65:11:18:4a:83:d3:e4:ee:ce:44:97:33: 15:99:a4:7c:4e:98:4b:5b:ed:79:75:1e:72:2a:8f:95:30:4f: 4c:d2:93:db:5c:d7:a6:45:bc:3b:c6:a2:f8:8c:77:0e:5d:2f: 23:e0:e6:7c:05:ff:d5:8f:9f:74:11:a4:5b:03:c5:44:59:7f: 11:f5:a5:0f:5a:f5:37:b1:7e:15:67:da:fc:2a:20:f6:b1:4a: 98:14:a1:d4:0b:60:68:5f:06:9e:c6:01:a0:e2:74:c2:01:fd: d6:00:51:34:fd:7a:bc:7e:7d:ad:aa:d0:e4:ea:41:09:76:4c: 0f:78:78:11:de:36:2d:37:62:df:fd:7d:48:9b:e5:a0:9e:25: 0c:c7:0b:8b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RDNGOTExMC8GA1UEBRMoMzM2MkFDNThFREIxODlDRjI1NzgzQzI3RDkwQTdEMkZB MzI5NzdDNTAeFw0yNTA3MTkwODE0MzNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2I1M2U4LWI4YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+Jrva72u2hRWEZ01+FZM70dsDCjRZXBYRfZtQOVB2XlJIG/J+ZDp/GHqgO4z+ sGUq0DMlk7YFAEOW/4ZEMZfDq0CPogAEOMSXUzvXnzSXHomIbIITdox3TpvA2uAi LUkTpJAowt58+67jkq1oCs3s3keAlAea10bqIxkqqts+m72utN3pvGn1CLvHcTIE lD1QWbmfG11mgFuRdQap2ZwiVzJrtbV6/J8d7S+qP1cpT1TpJCiunGnz/eiEdXHG kYV/Ch33vp8g6kSL+hKuyOeUNoaoUntJvAW/lnC2KfTnn9pRELTdcSjR3KXsy47U LTPnLQ3iQzoOwpgAcPLo6bAlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUvTFI1EEq xliAL0CF7+j3l5Skz0owHwYDVR0jBBgwFoAUM2KsWO2xic8leDwn2Qp9L6Mpd8Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlEM0Y5LzEyMjIzNkU2MThD NzExRjA4MDU0MTc3RUM0RjlBRTAyL00yS3NXTzJ4aWM4bGVEd24yUXA5TDZNcGQ4 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTTJLc1dPMnhpYzhsZUR3bjJRcDlMNk1wZDhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RDNGOS8xMjIyMzZFNjE4QzcxMUYwODA1NDE3N0VDNEY5QUUwMi8zNUMwMDhFODE4 QzgxMUYwQkY5RTg4MUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAssEpDANBgkqhkiG9w0BAQsFAAOCAQEAAjZ0STZuOypaSX0P Qnt8Gch7Mzz0EoVaUG28h1UzRU3lbwPAbbALiXR3Ytj9KCTjZ4tYPccwlQQcX4v3 SdWTcGRvNHyAX9IDtJYBSsI7fVQ8QzIpXGt8fi/r58uCSvu/I25GkdWE08aqUMbq 1Gch7F8TZREYSoPT5O7ORJczFZmkfE6YS1vteXUeciqPlTBPTNKT21zXpkW8O8ai +Ix3Dl0vI+DmfAX/1Y+fdBGkWwPFRFl/EfWlD1r1N7F+FWfa/Cog9rFKmBSh1Atg aF8GnsYBoOJ0wgH91gBRNP16vH59rarQ5OpBCXZMD3h4Ed42LTdi3/19SJvloJ4l DMcLiw== -----END CERTIFICATE-----Generated at Sun Jul 20 07:09:41 2025 by rpki-client