$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/696CCB682A4311EBBD69BE46C4F9AE02.roa File: 696CCB682A4311EBBD69BE46C4F9AE02.roa (raw, json) Hash identifier: S9g/XqrkQ3EKwy6SH+loLjPtlBRwhe3c36A/g6yjOOI= Subject key identifier: 09:AA:AF:5C:C2:64:81:8B:E6:E0:9B:EF:8E:D9:FD:63:5F:A8:C5:32 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0890 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/696CCB682A4311EBBD69BE46C4F9AE02.roa Signing time: Tue 20 May 2025 21:51:02 +0000 ROA not before: Tue 20 May 2025 21:51:02 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 56223 IP address blocks: 203.150.250.0/24 maxlen: 24 203.151.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:51:02 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf946-2e69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ab:9d:4f:e5:82:f2:f6:ba:cb:e0:ee:98:a1: dc:7a:e4:11:ca:c5:90:89:14:e3:27:6b:06:2b:b2: 63:e2:8b:e6:d5:88:24:ac:87:c3:e5:41:0a:35:06: 0c:21:75:e6:6d:cc:e5:78:6a:e8:5a:25:ed:a4:fb: 86:68:6e:a1:11:98:e3:88:fd:51:92:ae:39:c3:c7: 01:90:d1:12:4f:2b:7b:d4:c7:5d:7d:57:ff:53:58: 5f:c0:d1:df:4e:8c:d8:11:47:80:78:fa:ea:8d:14: 9c:17:cb:6f:ea:ea:a0:3c:cb:c2:39:cd:e7:07:6e: c9:4d:db:df:e0:47:df:c1:cc:2a:3a:2e:51:d8:65: 21:b6:88:3c:03:ca:5c:60:d9:07:d7:4f:45:cf:a1: f0:d8:fd:a1:6a:21:93:b4:a8:3f:4d:78:b8:66:3f: 50:d7:10:8b:d3:e9:bb:61:68:83:3e:13:25:9f:e4: 1b:41:79:32:8a:31:8c:86:3f:eb:2c:7b:56:0b:3c: 1d:4c:9b:da:e2:3d:63:3a:02:97:b1:67:24:4a:d1: 44:7f:bf:08:53:63:3b:9f:fe:91:cd:d1:26:ad:74: c8:4d:e6:1b:aa:1a:c9:dd:99:ed:fb:01:16:e3:8b: 9b:dc:fe:b3:5a:fe:07:fa:91:8c:e2:26:98:82:a9: 3b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:AA:AF:5C:C2:64:81:8B:E6:E0:9B:EF:8E:D9:FD:63:5F:A8:C5:32 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/696CCB682A4311EBBD69BE46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.150.250.0/24 203.151.111.0/24 Signature Algorithm: sha256WithRSAEncryption 39:40:3e:0d:40:a7:df:7f:c7:4d:2f:2c:78:81:93:e0:0a:c8: 68:4e:cf:35:6a:ef:d1:1d:3a:da:e2:21:d6:95:2a:30:de:fa: 14:b1:e5:0d:a9:9c:74:86:41:5a:67:3e:65:3c:34:aa:9f:1c: ef:08:8e:4b:9d:8c:fe:31:3b:db:c1:08:b6:4e:3c:0b:c4:56: 69:36:be:ed:13:6c:91:44:ee:4f:a2:44:9f:66:80:99:6c:91: 76:70:9e:0d:69:1d:a6:40:f8:9c:57:3f:63:7b:bf:e9:5f:07: 8a:1f:de:c7:e3:09:d3:9d:57:65:8f:c7:29:92:ef:58:29:fc: 0b:49:26:e9:3c:c0:d5:29:ef:b9:02:7c:3d:65:16:2f:ca:f6: 01:8a:bd:e5:ca:38:03:ac:b6:0a:7a:ae:11:32:3b:5f:f3:79: b0:1a:75:22:8a:42:e5:44:72:b0:b0:e5:c6:4a:b5:ad:37:d1: 82:d7:74:59:18:1a:93:72:b7:54:65:85:a9:df:6d:ed:af:be: e9:4a:22:b5:60:fc:2b:ae:a0:c4:ed:ba:cd:0f:5f:cc:52:ba: a3:5d:2b:cb:44:c1:9b:74:3b:d9:6b:07:9d:43:0f:4d:2f:3a: 73:68:2a:62:31:a8:d6:e8:15:98:20:27:7e:60:51:2e:9e:96: 4a:7d:10:37 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MTAyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjk0Ni0yZTY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5audT+WC8va6y+DumKHceuQRysWQiRTjJ2sGK7Jj4ovm1YgkrIfD5UEKNQYM IXXmbczleGroWiXtpPuGaG6hEZjjiP1Rkq45w8cBkNESTyt71MddfVf/U1hfwNHf TozYEUeAePrqjRScF8tv6uqgPMvCOc3nB27JTdvf4EffwcwqOi5R2GUhtog8A8pc YNkH109Fz6Hw2P2haiGTtKg/TXi4Zj9Q1xCL0+m7YWiDPhMln+QbQXkyijGMhj/r LHtWCzwdTJva4j1jOgKXsWckStFEf78IU2M7n/6RzdEmrXTITeYbqhrJ3Znt+wEW 44ub3P6zWv4H+pGM4iaYgqk7/QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAmqr1zC ZIGL5uCb747Z/WNfqMUyMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvNjk2Q0NCNjgy QTQzMTFFQkJENjlCRTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLlvoDBADLl28wDQYJKoZIhvcNAQELBQADggEBADlAPg1A p99/x00vLHiBk+AKyGhOzzVq79EdOtriIdaVKjDe+hSx5Q2pnHSGQVpnPmU8NKqf HO8IjkudjP4xO9vBCLZOPAvEVmk2vu0TbJFE7k+iRJ9mgJlskXZwng1pHaZA+JxX P2N7v+lfB4of3sfjCdOdV2WPxymS71gp/AtJJuk8wNUp77kCfD1lFi/K9gGKveXK OAOstgp6rhEyO1/zebAadSKKQuVEcrCw5cZKta030YLXdFkYGpNyt1Rlhanfbe2v vulKIrVg/CuuoMTtus0PX8xSuqNdK8tEwZt0O9lrB51DD00vOnNoKmIxqNboFZgg J35gUS6elkp9EDc= -----END CERTIFICATE-----Generated at Wed Jun 4 00:04:28 2025 by rpki-client