$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa File: AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: ru4CDY9kB7xpZ7Gn5BJCqXlyrSix5gXPE9YTTMWfsno= Subject key identifier: F2:BB:59:0B:94:57:57:6B:95:56:4B:F2:CE:D7:88:DA:7E:0B:2F:75 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0885 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 20 May 2025 21:50:51 +0000 ROA not before: Tue 20 May 2025 21:50:51 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 23644 IP address blocks: 203.151.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 21:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2181 (0x885) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:51 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf93b-4dc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:6f:c4:f2:c5:97:0c:11:16:49:53:2a:6a:59: f7:44:70:51:f2:63:5e:73:ce:81:60:cd:8c:1b:3e: 3c:d7:ea:df:7c:9f:47:7a:f8:9b:95:b4:08:7c:7c: b1:82:93:fd:72:fe:68:28:d6:84:be:c4:67:40:8e: 31:ea:9f:21:e5:9b:8d:b5:23:96:7b:84:d1:7e:35: 5f:06:ad:d5:1b:c1:4b:6b:59:73:56:6a:a3:7c:a4: 24:c5:03:f0:ee:0d:7f:aa:e6:d2:16:49:4f:b1:66: 95:30:43:f4:be:6e:cc:c8:99:82:05:9c:9f:47:28: 43:2e:e7:11:e9:9b:5d:30:54:83:d1:ee:5f:64:af: 40:0b:87:4a:63:fe:03:a1:b4:df:3d:83:d9:f0:df: 44:75:80:47:0b:22:a8:b2:2c:b1:d6:80:56:a8:b0: f7:db:55:9e:91:9e:b2:70:2e:6d:58:f5:3f:d0:ef: 10:f5:82:be:69:ae:7c:44:b2:70:df:d3:19:06:ed: 31:6d:77:5e:d4:d6:f1:b2:a3:0c:d8:b5:74:b8:9f: ee:d1:5e:48:29:7e:71:27:1c:ac:14:81:e1:11:3f: b0:7f:1e:96:63:c0:8f:b3:0d:0f:48:be:52:dc:82: b8:19:64:b7:cb:93:c6:b5:df:fd:4f:95:69:23:82: 10:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BB:59:0B:94:57:57:6B:95:56:4B:F2:CE:D7:88:DA:7E:0B:2F:75 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AEF56D7C2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.151.18.0/24 Signature Algorithm: sha256WithRSAEncryption 96:5f:fb:7d:ec:be:d2:04:b8:fe:3c:69:30:78:05:d8:9b:24: 08:e2:c3:af:5a:29:65:c1:0e:8d:e1:f2:9e:90:b2:91:1b:a8: db:55:2f:b2:78:bc:c5:91:fa:58:89:f2:37:01:0c:23:ce:01: f0:eb:3e:a0:6f:08:97:4d:3d:a1:4d:bf:54:93:3e:2f:dd:fb: 1b:ee:cd:4a:3d:f5:1b:e9:28:a3:03:ee:e0:4c:53:67:8d:d8: f4:4b:8c:7d:98:90:20:5d:5f:cb:4a:90:ec:f6:48:0f:a5:70: fa:89:40:09:6c:a6:f8:82:66:2e:12:9b:70:26:fd:45:f2:1a: 20:50:80:62:cb:f8:dd:77:02:51:fd:1f:f2:5f:71:e5:e2:cb: 8e:d9:e0:43:a1:5a:d8:82:18:63:86:5a:c4:c9:6d:fb:de:e1: d0:af:af:e2:51:71:81:9b:ee:92:a4:03:17:88:f5:3d:11:fa: 3d:50:f4:06:be:89:52:dc:db:eb:38:8c:56:c3:61:34:4d:69: bf:a5:84:4f:de:d2:e0:fe:c8:75:f3:0d:f6:6c:55:76:4a:d7: 5c:62:77:18:2a:e3:c3:b5:21:fa:a0:7e:13:33:41:43:cc:7a: be:72:80:cb:e8:dd:84:02:a5:3a:fd:2e:07:8d:63:95:e6:be: f5:1c:5c:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDUxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjkzYi00ZGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2G/E8sWXDBEWSVMqaln3RHBR8mNec86BYM2MGz481+rffJ9HeviblbQIfHyx gpP9cv5oKNaEvsRnQI4x6p8h5ZuNtSOWe4TRfjVfBq3VG8FLa1lzVmqjfKQkxQPw 7g1/qubSFklPsWaVMEP0vm7MyJmCBZyfRyhDLucR6ZtdMFSD0e5fZK9AC4dKY/4D obTfPYPZ8N9EdYBHCyKosiyx1oBWqLD321WekZ6ycC5tWPU/0O8Q9YK+aa58RLJw 39MZBu0xbXde1NbxsqMM2LV0uJ/u0V5IKX5xJxysFIHhET+wfx6WY8CPsw0PSL5S 3IK4GWS3y5PGtd/9T5VpI4IQ/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPK7WQuU V1drlVZL8s7XiNp+Cy91MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUVGNTZEN0My QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLlxIwDQYJKoZIhvcNAQELBQADggEBAJZf+33svtIEuP48 aTB4BdibJAjiw69aKWXBDo3h8p6QspEbqNtVL7J4vMWR+liJ8jcBDCPOAfDrPqBv CJdNPaFNv1STPi/d+xvuzUo99RvpKKMD7uBMU2eN2PRLjH2YkCBdX8tKkOz2SA+l cPqJQAlspviCZi4Sm3Am/UXyGiBQgGLL+N13AlH9H/JfceXiy47Z4EOhWtiCGGOG WsTJbfve4dCvr+JRcYGb7pKkAxeI9T0R+j1Q9Aa+iVLc2+s4jFbDYTRNab+lhE/e 0uD+yHXzDfZsVXZK11xidxgq48O1IfqgfhMzQUPMer5ygMvo3YQCpTr9LgeNY5Xm vvUcXEg= -----END CERTIFICATE-----Generated at Mon Jun 2 07:13:47 2025 by rpki-client