$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/689E513E2A4311EBBD69BE46C4F9AE02.roa File: 689E513E2A4311EBBD69BE46C4F9AE02.roa (raw, json) Hash identifier: FezbKF9kO0jDnIHasf+ZGAxTpu3bLao4gPSsw3YsObk= Subject key identifier: 86:78:A1:F0:DF:C0:F8:30:F3:0C:8B:5F:29:8D:AC:86:9A:F5:E7:D7 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 088F Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/689E513E2A4311EBBD69BE46C4F9AE02.roa Signing time: Tue 20 May 2025 21:51:01 +0000 ROA not before: Tue 20 May 2025 21:51:01 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 56018 IP address blocks: 203.150.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2191 (0x88f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:51:01 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf945-a1db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:81:0f:99:70:37:63:cf:b5:8b:41:f8:35:e0: fe:41:20:26:cc:3e:5c:be:63:ea:42:02:4b:f5:d4: 77:f8:6e:e7:0c:81:92:78:49:8a:a8:68:35:a1:e7: ae:c8:1f:12:9a:db:7c:9e:19:5d:e4:13:ea:6b:25: 2e:75:bb:92:56:d0:4f:26:c7:f4:63:79:35:37:27: 89:5a:e6:12:02:9b:c2:d0:42:53:86:a5:e2:e2:b8: f2:83:db:7d:f0:cd:53:a1:11:ac:fa:f9:22:7a:e6: ff:83:fc:2e:82:6c:83:a4:0b:10:66:f8:4b:02:fe: 71:7c:8d:38:18:6c:8e:10:21:5c:6d:fd:cf:d2:45: 5f:35:4c:0c:ad:f6:91:23:b8:72:2f:7e:60:1c:72: 73:5f:55:6e:52:30:e9:77:a4:be:ce:27:04:c4:bc: a8:8c:b2:ed:c5:08:74:df:73:e7:e4:cc:dc:43:95: 89:15:0e:0d:90:9f:f0:f1:cc:f0:ef:17:2a:fd:98: 47:b6:56:ce:9a:f1:d8:a5:3e:66:f3:c4:9e:84:c9: 08:7c:67:56:43:ba:f8:f5:5b:10:b0:38:93:ac:e3: 93:60:89:7d:64:52:f6:1f:de:75:59:63:f9:1f:72: 54:cd:47:dc:d8:69:87:1d:b6:2f:14:5b:bf:d6:cc: 97:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:78:A1:F0:DF:C0:F8:30:F3:0C:8B:5F:29:8D:AC:86:9A:F5:E7:D7 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/689E513E2A4311EBBD69BE46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.150.42.0/24 Signature Algorithm: sha256WithRSAEncryption 99:2c:e5:84:e8:bc:e1:a0:1f:a2:71:f3:56:49:a3:a5:9c:e6: 80:50:b1:e6:d3:3a:3f:52:04:27:75:a3:54:a2:81:40:25:8b: 8c:4e:47:1a:5c:d0:7a:8a:d1:7a:c0:00:6d:39:87:71:bf:dc: 12:4b:15:c9:dd:ef:6f:e1:35:f8:c5:68:70:96:bd:66:f9:ac: 28:e6:92:e4:91:21:ba:77:c0:f6:b0:1d:52:67:0e:18:67:c4: 44:65:12:d3:6e:0c:4d:ec:d4:1d:28:4a:ff:5e:c7:78:21:c9: fd:03:97:46:12:ba:f6:d2:6c:43:99:4c:b5:1d:f9:39:f0:0b: c0:9c:b9:4b:26:40:98:5d:71:99:64:2f:fa:7e:f7:6c:d9:dd: 92:88:f4:80:88:0c:88:a3:e2:bc:9c:d7:cf:87:4f:ee:cf:26: 1d:60:39:fa:5c:aa:d3:e4:25:89:91:fa:68:9e:41:38:9a:73: c3:dc:15:b6:98:e1:7f:e3:30:3a:2f:4e:f3:cd:0d:3f:e6:e4: 41:b7:ec:f2:9a:e0:42:86:a5:05:0e:45:40:a0:40:88:f4:6c: 42:f1:a7:79:a7:9f:b3:4e:d1:0a:2e:49:f3:2e:1e:bc:52:86: f0:2c:69:7f:23:d6:c7:46:7d:b1:37:fb:66:2c:81:8d:76:6c: 7b:74:81:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MTAxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjk0NS1hMWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtoEPmXA3Y8+1i0H4NeD+QSAmzD5cvmPqQgJL9dR3+G7nDIGSeEmKqGg1oeeu yB8Smtt8nhld5BPqayUudbuSVtBPJsf0Y3k1NyeJWuYSApvC0EJThqXi4rjyg9t9 8M1ToRGs+vkieub/g/wugmyDpAsQZvhLAv5xfI04GGyOECFcbf3P0kVfNUwMrfaR I7hyL35gHHJzX1VuUjDpd6S+zicExLyojLLtxQh033Pn5MzcQ5WJFQ4NkJ/w8czw 7xcq/ZhHtlbOmvHYpT5m88SehMkIfGdWQ7r49VsQsDiTrOOTYIl9ZFL2H951WWP5 H3JUzUfc2GmHHbYvFFu/1syXTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIZ4ofDf wPgw8wyLXymNrIaa9efXMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvNjg5RTUxM0Uy QTQzMTFFQkJENjlCRTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLliowDQYJKoZIhvcNAQELBQADggEBAJks5YTovOGgH6Jx 81ZJo6Wc5oBQsebTOj9SBCd1o1SigUAli4xORxpc0HqK0XrAAG05h3G/3BJLFcnd 72/hNfjFaHCWvWb5rCjmkuSRIbp3wPawHVJnDhhnxERlEtNuDE3s1B0oSv9ex3gh yf0Dl0YSuvbSbEOZTLUd+TnwC8CcuUsmQJhdcZlkL/p+92zZ3ZKI9ICIDIij4ryc 18+HT+7PJh1gOfpcqtPkJYmR+mieQTiac8PcFbaY4X/jMDovTvPNDT/m5EG37PKa 4EKGpQUORUCgQIj0bELxp3mnn7NO0QouSfMuHrxShvAsaX8j1sdGfbE3+2YsgY12 bHt0gaM= -----END CERTIFICATE-----Generated at Wed Jun 4 00:09:35 2025 by rpki-client