$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B18D8C2C2A4111EBA1B1BB3DC4F9AE02.roa File: B18D8C2C2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: lBS8kvbF9qc+MDE0imJFbA2HjjKTcdMHa+qxsQV+XxU= Subject key identifier: 80:BD:D5:C5:48:54:9C:A5:DC:CD:EF:1D:5E:58:9B:BD:6A:F2:1C:7F Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0888 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B18D8C2C2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 20 May 2025 21:50:54 +0000 ROA not before: Tue 20 May 2025 21:50:54 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38296 IP address blocks: 203.151.104.0/24 maxlen: 24 203.151.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2184 (0x888) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:54 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf93e-d314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:24:f0:bb:8f:fb:aa:b7:e1:e5:51:83:54:41: de:5b:a4:b7:a5:5c:a6:1e:5b:e6:4e:2f:a3:a1:25: 8b:c7:3b:7e:02:5b:18:fa:75:0c:a5:3e:8e:0a:50: c3:99:7a:85:f6:dc:19:09:e2:04:d3:e7:28:1f:ac: 39:4e:90:a0:ac:37:92:50:d5:58:c1:45:a3:02:bd: 13:9e:07:52:29:70:32:92:39:b8:a4:15:f2:c7:c1: 1b:5f:5b:28:78:15:5c:f9:05:39:41:9d:3b:cd:8a: b7:a5:d8:fc:a2:79:fe:e0:51:a4:d2:1e:64:46:0c: ab:2a:35:77:fa:ce:cf:b5:d7:13:f0:7d:9b:43:0c: 8a:c3:a6:f5:65:43:f8:5e:86:64:39:bd:14:cd:31: 5e:1e:05:e9:3b:3f:23:1a:14:c1:7d:66:aa:bf:89: a2:33:6e:54:a3:1e:a1:f2:c7:d2:27:98:ec:6a:47: 75:0a:10:1d:db:8f:be:e3:26:f1:a9:72:2b:4b:3b: 04:f8:ae:4b:7d:d3:b1:6b:fe:f1:c6:aa:35:92:61: c1:ec:d2:32:a0:64:82:8d:9e:4f:2e:d5:29:34:84: e7:4c:0a:d8:ff:21:dc:09:ac:2e:c9:57:ec:bb:06: f0:1f:73:e2:b5:8b:26:cf:26:9e:06:7f:11:94:01: e7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:BD:D5:C5:48:54:9C:A5:DC:CD:EF:1D:5E:58:9B:BD:6A:F2:1C:7F X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B18D8C2C2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.151.104.0/23 Signature Algorithm: sha256WithRSAEncryption af:df:33:f2:16:50:a0:45:d0:b1:8a:f6:29:b7:9d:f3:16:cb: 03:ee:58:c0:c3:8b:2d:c8:dc:ab:f2:78:fc:c7:3c:3e:1b:24: 54:34:58:ff:73:d0:86:67:82:6c:23:2f:82:60:9d:f3:3e:26: c1:32:23:55:b6:50:49:4c:c8:15:ae:66:3a:3e:6c:6f:ca:2f: 62:9f:f8:e1:ba:26:f1:b9:ab:51:98:2f:d6:18:b5:1b:6a:07: a5:08:7c:55:ce:15:3e:a9:2b:ec:84:e9:f8:4c:c3:57:0d:4e: 50:cf:d6:38:5c:0d:53:40:a5:46:bd:68:38:da:28:30:03:42: 9e:ce:66:ed:51:c4:99:7e:8d:f9:06:e5:fd:e2:7e:51:1d:02: 63:0e:a8:72:8f:8e:35:a3:e1:54:8d:a5:52:a4:0b:65:18:e4: fe:77:ae:46:95:4f:ce:4c:c1:62:6e:73:16:ad:86:97:6c:d5: 56:22:3a:10:b5:c1:86:06:9a:f2:76:0a:f7:0a:dc:53:57:b1: 2a:a9:35:e8:a0:c0:6e:03:6c:c0:40:72:8e:c2:79:70:5a:dc: 25:4f:08:ad:fc:ce:45:68:c5:33:20:f8:e7:94:d0:0c:16:ee: 69:74:d1:c5:65:fd:5d:cc:b2:93:c1:1e:77:01:74:23:5e:23: 00:79:11:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDU0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjkzZS1kMzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0STwu4/7qrfh5VGDVEHeW6S3pVymHlvmTi+joSWLxzt+AlsY+nUMpT6OClDD mXqF9twZCeIE0+coH6w5TpCgrDeSUNVYwUWjAr0TngdSKXAykjm4pBXyx8EbX1so eBVc+QU5QZ07zYq3pdj8onn+4FGk0h5kRgyrKjV3+s7PtdcT8H2bQwyKw6b1ZUP4 XoZkOb0UzTFeHgXpOz8jGhTBfWaqv4miM25Uox6h8sfSJ5jsakd1ChAd24++4ybx qXIrSzsE+K5LfdOxa/7xxqo1kmHB7NIyoGSCjZ5PLtUpNITnTArY/yHcCawuyVfs uwbwH3PitYsmzyaeBn8RlAHnJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIC91cVI VJyl3M3vHV5Ym71q8hx/MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQjE4RDhDMkMy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLl2gwDQYJKoZIhvcNAQELBQADggEBAK/fM/IWUKBF0LGK 9im3nfMWywPuWMDDiy3I3KvyePzHPD4bJFQ0WP9z0IZngmwjL4JgnfM+JsEyI1W2 UElMyBWuZjo+bG/KL2Kf+OG6JvG5q1GYL9YYtRtqB6UIfFXOFT6pK+yE6fhMw1cN TlDP1jhcDVNApUa9aDjaKDADQp7OZu1RxJl+jfkG5f3iflEdAmMOqHKPjjWj4VSN pVKkC2UY5P53rkaVT85MwWJucxathpds1VYiOhC1wYYGmvJ2CvcK3FNXsSqpNeig wG4DbMBAco7CeXBa3CVPCK38zkVoxTMg+OeU0AwW7ml00cVl/V3MspPBHncBdCNe IwB5ESk= -----END CERTIFICATE-----Generated at Wed Jun 4 00:15:15 2025 by rpki-client