$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B374E3E62A4111EBA1B1BB3DC4F9AE02.roa File: B374E3E62A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: 2eG1w6WyySFQyTBuUnlx+QPyjc5U3cUmwkkEHL8GJmA= Subject key identifier: 56:DC:85:9C:6F:FC:9C:92:FC:84:B4:F2:42:23:EE:2F:05:0E:FB:37 Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 088B Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B374E3E62A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 20 May 2025 21:50:57 +0000 ROA not before: Tue 20 May 2025 21:50:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 46013 IP address blocks: 203.150.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2187 (0x88b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf940-a85e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:c6:b9:78:1f:0a:1d:48:bb:93:99:e2:9a:a9: 2c:81:70:ca:02:45:30:e0:e0:6a:29:4a:e3:a7:02: 38:be:a3:13:72:91:fc:e5:65:59:be:dc:6c:88:eb: 44:d4:68:b3:5a:01:45:51:0f:e5:65:7d:d3:eb:12: f0:1d:25:a9:81:88:69:20:cf:b7:4a:6b:5f:59:e3: 86:ae:45:40:32:9c:44:1d:41:37:a7:e8:92:eb:95: ec:28:af:bd:ec:cc:cd:00:00:da:c0:e3:b0:2a:34: 9b:1e:c7:03:d0:05:4c:d1:74:67:5d:77:07:aa:dc: 2b:0f:cb:a9:18:1f:76:a5:6f:4c:ce:6c:6f:1a:d2: 50:f8:19:86:76:01:df:c2:59:54:69:34:70:f3:83: ff:93:05:6a:87:74:69:2d:c6:9a:0f:bc:44:85:2b: 82:24:bb:ff:12:29:d0:cc:f5:1e:dd:0d:c7:d8:39: fa:73:16:d4:15:a0:6d:d5:60:ea:67:18:d3:01:4a: 22:b3:1a:43:a4:28:22:aa:a5:7d:05:66:35:61:14: 12:2e:73:48:fb:da:d8:bd:97:ae:e0:48:75:04:db: 19:a0:2b:d9:28:dc:92:22:8d:f5:9a:00:6e:06:28: 86:03:94:29:14:09:82:83:c5:8c:ea:5d:b3:94:34: 10:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DC:85:9C:6F:FC:9C:92:FC:84:B4:F2:42:23:EE:2F:05:0E:FB:37 X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/B374E3E62A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.150.247.0/24 Signature Algorithm: sha256WithRSAEncryption 17:6c:d7:85:8e:4d:d5:87:00:20:f2:fb:d2:80:f2:77:c2:a6: 36:d0:f4:4d:bb:59:98:8d:df:74:4b:5b:36:22:01:33:9f:47: 2c:b6:96:c5:6e:38:6b:61:88:18:a2:52:69:12:21:9b:dd:62: 5e:e4:79:cb:db:66:06:66:6a:da:32:9d:a1:43:67:66:b5:df: 62:2e:71:01:77:d5:97:f7:be:f4:39:1f:74:4e:37:76:45:21: b1:51:e6:6c:f5:ad:e3:88:d5:d2:68:76:8b:10:bd:ae:a5:9c: de:27:14:46:b3:a7:89:30:36:01:a2:8e:24:5b:df:8e:12:03: cd:b1:46:04:bc:af:db:dd:6c:f5:3e:e7:ed:b4:c5:c7:47:87: 3a:d0:7b:1d:2a:a0:66:11:e3:cc:47:57:1a:64:c6:f0:4d:9e: 5e:6b:8b:5b:98:55:d4:8a:1c:05:09:43:63:f8:d4:80:6b:21: 75:e6:61:b7:3f:a1:5d:ae:88:d5:60:c5:5d:e7:b0:64:19:3a: 69:99:b5:0a:11:e2:67:8f:6a:66:17:0c:08:78:5b:9e:5b:3e: 96:d1:a0:fe:a4:70:c8:3c:c7:c3:98:2d:7d:6d:99:14:c8:94: b5:2f:2c:58:86:a1:e9:74:1d:b8:37:67:a5:a5:49:19:9e:7b: 17:a7:bd:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjk0MC1hODVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsa5eB8KHUi7k5nimqksgXDKAkUw4OBqKUrjpwI4vqMTcpH85WVZvtxsiOtE 1GizWgFFUQ/lZX3T6xLwHSWpgYhpIM+3SmtfWeOGrkVAMpxEHUE3p+iS65XsKK+9 7MzNAADawOOwKjSbHscD0AVM0XRnXXcHqtwrD8upGB92pW9MzmxvGtJQ+BmGdgHf wllUaTRw84P/kwVqh3RpLcaaD7xEhSuCJLv/EinQzPUe3Q3H2Dn6cxbUFaBt1WDq ZxjTAUoisxpDpCgiqqV9BWY1YRQSLnNI+9rYvZeu4Eh1BNsZoCvZKNySIo31mgBu BiiGA5QpFAmCg8WM6l2zlDQQFQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFbchZxv /JyS/IS08kIj7i8FDvs3MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQjM3NEUzRTYy QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLlvcwDQYJKoZIhvcNAQELBQADggEBABds14WOTdWHACDy +9KA8nfCpjbQ9E27WZiN33RLWzYiATOfRyy2lsVuOGthiBiiUmkSIZvdYl7kecvb ZgZmatoynaFDZ2a132IucQF31Zf3vvQ5H3RON3ZFIbFR5mz1reOI1dJodosQva6l nN4nFEazp4kwNgGijiRb344SA82xRgS8r9vdbPU+5+20xcdHhzrQex0qoGYR48xH VxpkxvBNnl5ri1uYVdSKHAUJQ2P41IBrIXXmYbc/oV2uiNVgxV3nsGQZOmmZtQoR 4mePamYXDAh4W55bPpbRoP6kcMg8x8OYLX1tmRTIlLUvLFiGoel0Hbg3Z6WlSRme exenvcw= -----END CERTIFICATE-----Generated at Wed Jun 4 00:08:46 2025 by rpki-client