$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa File: AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: o3tJcryC81c5rX1xhCkHjKVGZCjhtaRQoK8u6zdAIkI= Subject key identifier: A6:D4:A3:E2:20:D8:7B:E3:CC:0C:90:A6:3F:ED:A8:20:2B:FA:56:3B Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 087D Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 20 May 2025 21:50:44 +0000 ROA not before: Tue 20 May 2025 21:50:44 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132063 IP address blocks: 203.154.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2173 (0x87d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:44 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf934-5a1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:14:12:ca:85:f2:d1:14:df:5f:d0:8a:2b:f3: a9:9d:9b:2d:7f:7a:9e:57:64:c6:51:20:a5:28:47: 26:e9:19:c4:00:75:04:51:35:a0:b9:d4:12:3a:03: 2b:53:3f:06:6b:d3:92:02:66:d2:2e:af:62:cc:59: 77:41:8a:ab:e0:a3:17:24:89:e9:b5:6d:6c:1d:43: 94:ce:fb:84:b1:6d:6a:66:0c:15:40:40:c3:26:32: 85:11:46:d1:ce:61:6f:4a:2d:f2:e6:9e:93:60:3d: a6:cb:ea:f7:86:ac:70:52:73:6d:9a:cb:71:0b:db: b4:ed:7a:db:1c:7a:c2:a3:bd:47:cf:ed:45:2d:de: 30:85:27:3a:41:bd:e0:34:ec:d0:cf:4b:69:05:13: a4:bb:c8:4e:35:7c:a9:a7:95:9c:ae:7a:0c:d8:c6: 90:3e:22:40:a8:49:13:04:35:78:1c:86:9f:17:fc: f4:27:c0:0a:4e:5c:86:ec:63:1b:a6:c0:2c:2f:ec: 6a:7b:3a:2d:76:25:ef:e5:ab:d8:92:ad:23:6d:96: 43:9b:1f:76:b0:55:5f:0e:a9:fc:5c:4a:9f:c9:9b: 28:c6:df:c1:0f:75:34:ec:db:05:ca:e0:89:59:ed: 76:72:f1:45:df:13:02:b7:13:90:15:16:d8:bc:a3: f0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:D4:A3:E2:20:D8:7B:E3:CC:0C:90:A6:3F:ED:A8:20:2B:FA:56:3B X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AAD2DA9A2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.154.137.0/24 Signature Algorithm: sha256WithRSAEncryption 35:5d:a5:f5:01:be:c5:7b:c3:d6:c5:21:d3:23:90:7b:3e:45: 6c:41:08:2c:24:fe:0c:41:1c:8f:7c:00:16:cf:83:b7:8e:cb: f8:34:36:5b:f5:79:98:8c:a7:65:eb:29:c8:b7:15:72:bf:5e: 15:db:6f:63:85:22:a8:5d:9e:45:a2:89:d7:68:45:19:d4:df: 7f:dd:82:6b:8c:e3:eb:dd:78:51:0c:3f:90:3d:ef:96:6a:00: 44:09:47:37:9f:67:2f:d0:c5:95:d2:d1:12:31:e4:91:bd:8a: 15:1d:a2:6f:17:53:bf:71:de:c2:94:a6:89:69:41:cb:19:6e: e6:4b:cf:9a:3e:3e:7e:91:6f:04:59:a8:a2:a9:81:db:b0:93: fe:1a:98:cd:9e:25:57:6d:58:8e:eb:83:fd:63:a8:2e:51:7d: 3e:62:fa:1b:41:59:88:66:b8:57:42:fd:ff:c1:6e:eb:62:8d: 59:46:48:0d:37:ba:b7:85:b2:07:f0:c3:fd:2f:58:9b:63:8a: b0:a2:1c:f7:80:88:b0:40:13:51:c0:8e:eb:e0:10:8c:df:f5: a6:72:5b:dd:d7:9e:c6:f4:ab:3a:97:29:1d:d1:43:45:6d:e1: 9f:b5:7f:b9:81:37:c3:16:c0:52:a5:79:76:30:3e:71:65:75: 8c:00:52:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDQ0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjkzNC01YTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0RQSyoXy0RTfX9CKK/OpnZstf3qeV2TGUSClKEcm6RnEAHUEUTWgudQSOgMr Uz8Ga9OSAmbSLq9izFl3QYqr4KMXJInptW1sHUOUzvuEsW1qZgwVQEDDJjKFEUbR zmFvSi3y5p6TYD2my+r3hqxwUnNtmstxC9u07XrbHHrCo71Hz+1FLd4whSc6Qb3g NOzQz0tpBROku8hONXypp5WcrnoM2MaQPiJAqEkTBDV4HIafF/z0J8AKTlyG7GMb psAsL+xqezotdiXv5avYkq0jbZZDmx92sFVfDqn8XEqfyZsoxt/BD3U07NsFyuCJ We12cvFF3xMCtxOQFRbYvKPw1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKbUo+Ig 2HvjzAyQpj/tqCAr+lY7MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUFEMkRBOUEy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLmokwDQYJKoZIhvcNAQELBQADggEBADVdpfUBvsV7w9bF IdMjkHs+RWxBCCwk/gxBHI98ABbPg7eOy/g0Nlv1eZiMp2XrKci3FXK/XhXbb2OF IqhdnkWiiddoRRnU33/dgmuM4+vdeFEMP5A975ZqAEQJRzefZy/QxZXS0RIx5JG9 ihUdom8XU79x3sKUpolpQcsZbuZLz5o+Pn6RbwRZqKKpgduwk/4amM2eJVdtWI7r g/1jqC5RfT5i+htBWYhmuFdC/f/BbutijVlGSA03ureFsgfww/0vWJtjirCiHPeA iLBAE1HAjuvgEIzf9aZyW93Xnsb0qzqXKR3RQ0Vt4Z+1f7mBN8MWwFKleXYwPnFl dYwAUmk= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:49 2025 by rpki-client