$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/49FEE4EA83CC11F09BE0565EC4F9AE02.roa File: 49FEE4EA83CC11F09BE0565EC4F9AE02.roa (raw, json) Hash identifier: 4ydKeIYhxRWj9VQ3bZF8Gr1cN244ryelD9eyYIk71Nw= Subject key identifier: 9C:52:1A:A9:2C:CB:40:21:9F:CF:A8:BA:4D:8F:58:E2:2D:6C:37:A9 Certificate issuer: /CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D Certificate serial: 353F Authority key identifier: 4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/49FEE4EA83CC11F09BE0565EC4F9AE02.roa Signing time: Thu 28 Aug 2025 05:03:09 +0000 ROA not before: Thu 28 Aug 2025 05:03:09 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 24042 IP address blocks: 203.130.136.0/24 maxlen: 24 203.156.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13631 (0x353f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914781A, serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D Validity Not Before: Aug 28 05:03:09 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68afe30c-61e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9d:05:ae:a1:82:24:3a:f2:6c:75:3d:21:45: 80:e9:47:b8:e3:9f:1e:11:5a:8e:0b:75:98:8c:13: 55:89:9b:4d:2b:92:25:f1:82:e5:fd:2b:b6:84:29: 13:27:b4:49:0a:01:9b:91:1e:d7:6c:c0:e7:37:33: 70:87:d9:6a:40:54:0a:75:f2:16:9b:f6:38:23:0d: e2:e0:ec:b2:df:d4:bb:d7:4d:a1:a6:ea:8b:1e:2f: f3:54:19:99:73:cd:ae:06:0f:2b:05:b8:6c:ae:5f: 15:9e:36:ab:e6:38:40:4d:7c:09:d0:de:44:52:db: 2f:78:c7:e9:e1:c9:fa:c6:2c:6a:91:aa:f9:62:d9: 21:be:ec:24:50:4e:7d:c2:db:07:86:cc:81:b6:38: 3a:d9:4d:58:ed:61:3a:b9:9e:db:63:c2:8c:98:b6: 05:3d:f8:2e:ab:a9:fb:c3:2f:fd:97:84:9a:24:bd: 8e:4c:61:6b:ba:cf:fd:d0:b0:3e:76:c4:ad:f4:77: ce:0b:a7:bd:be:9a:17:75:47:23:64:ae:8d:b6:8d: 93:2e:9b:76:86:7f:39:4d:1d:90:02:b0:10:fe:31: 5c:7d:e3:72:50:91:9d:b9:a2:44:48:63:3f:2f:48: 2c:8d:51:8d:42:e0:5f:89:f7:fd:88:f5:59:3b:78: 47:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:52:1A:A9:2C:CB:40:21:9F:CF:A8:BA:4D:8F:58:E2:2D:6C:37:A9 X509v3 Authority Key Identifier: keyid:4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/49FEE4EA83CC11F09BE0565EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.130.136.0/24 203.156.154.0/24 Signature Algorithm: sha256WithRSAEncryption a7:6a:ec:9c:fd:48:8b:90:a2:5a:43:d7:ac:9c:29:e2:9d:8b: e4:15:32:7d:80:66:81:6e:5e:2a:3a:37:61:d1:7b:ff:73:ef: b0:e3:f0:74:38:61:19:cf:0a:15:74:05:d6:b2:8b:62:8d:8a: 55:cf:02:8f:9a:7e:70:c4:32:a3:4e:b0:dd:c5:97:cb:0e:c7: 0d:e9:c2:bb:b7:6c:42:43:52:68:6a:73:04:66:e8:d3:45:47: 12:cb:a2:43:71:59:a3:dd:cb:58:b9:e8:b6:cf:48:26:cf:5c: f0:b7:ad:4c:45:be:a4:15:ca:08:e5:90:5d:87:d4:56:d6:af: f0:e7:72:0d:52:75:29:83:1f:97:a7:96:ed:ec:af:a3:b1:ba: cb:2f:64:f8:74:df:99:df:93:e4:d9:b5:7d:03:f7:21:35:e4: 39:39:0d:0d:a6:0b:8d:60:13:c2:a7:10:54:a9:e4:6a:f4:87: 82:bd:e3:4c:4a:68:d7:4e:84:0a:cb:20:ff:b4:00:1a:6e:d3: d0:d5:6e:b1:8c:2d:a3:0b:f7:95:93:e1:f6:d9:00:da:96:79: 18:da:56:e4:87:2a:ca:91:68:9f:09:05:5f:14:32:d4:c9:5d: 8e:28:0c:88:4d:82:1b:19:d1:50:33:a2:ce:40:a9:2b:6e:0e: 14:2a:67:e2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4MUExMTAvBgNVBAUTKDRENzIzOTU1MjQzQUU4OEQ1NTI0MzlBRjhFNEUwQTA5 QzhGNjU5MEQwHhcNMjUwODI4MDUwMzA5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFmZTMwYy02MWU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAop0FrqGCJDrybHU9IUWA6Ue4458eEVqOC3WYjBNViZtNK5Il8YLl/Su2hCkT J7RJCgGbkR7XbMDnNzNwh9lqQFQKdfIWm/Y4Iw3i4Oyy39S7102hpuqLHi/zVBmZ c82uBg8rBbhsrl8Vnjar5jhATXwJ0N5EUtsveMfp4cn6xixqkar5YtkhvuwkUE59 wtsHhsyBtjg62U1Y7WE6uZ7bY8KMmLYFPfguq6n7wy/9l4SaJL2OTGFrus/90LA+ dsSt9HfOC6e9vpoXdUcjZK6Nto2TLpt2hn85TR2QArAQ/jFcfeNyUJGduaJESGM/ L0gsjVGNQuBfiff9iPVZO3hHDQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJxSGqks y0Ahn8+ouk2PWOItbDepMB8GA1UdIwQYMBaAFE1yOVUkOuiNVSQ5r45OCgnI9lkN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzgxQS9ENTIxNDI3MDFE OUIxMUUyQjgyMUZEODkwOEIwMkNEMi9UWEk1VlNRNjZJMVZKRG12ams0S0NjajJX UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RYSTVWU1E2NkkxVkpEbXZqazRLQ2NqMldRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc4MUEvRDUyMTQyNzAxRDlCMTFFMkI4MjFGRDg5MDhCMDJDRDIvNDlGRUU0RUE4 M0NDMTFGMDlCRTA1NjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLgogDBADLnJowDQYJKoZIhvcNAQELBQADggEBAKdq7Jz9 SIuQolpD16ycKeKdi+QVMn2AZoFuXio6N2HRe/9z77Dj8HQ4YRnPChV0Bdayi2KN ilXPAo+afnDEMqNOsN3Fl8sOxw3pwru3bEJDUmhqcwRm6NNFRxLLokNxWaPdy1i5 6LbPSCbPXPC3rUxFvqQVygjlkF2H1FbWr/Dncg1SdSmDH5enlu3sr6OxussvZPh0 35nfk+TZtX0D9yE15Dk5DQ2mC41gE8KnEFSp5Gr0h4K940xKaNdOhArLIP+0ABpu 09DVbrGMLaML95WT4fbZANqWeRjaVuSHKsqRaJ8JBV8UMtTJXY4oDIhNghsZ0VAz os5AqStuDhQqZ+I= -----END CERTIFICATE-----Generated at Sat Sep 6 14:24:21 2025 by rpki-client