$ rpki-client -vvf rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/4AF78A4AFEC611EF86B4765BC4F9AE02.roa File: 4AF78A4AFEC611EF86B4765BC4F9AE02.roa (raw, json) Hash identifier: fSvzoyKPYxxU75rpRzS9/7MEh8nKxr1lS94jPbqL5BE= Subject key identifier: 54:70:60:1C:94:3E:76:33:B7:14:CF:5A:21:56:F0:05:C8:8C:9E:F4 Certificate issuer: /CN=A9156971/serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Certificate serial: 3464 Authority key identifier: 29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/4AF78A4AFEC611EF86B4765BC4F9AE02.roa Signing time: Tue 11 Mar 2025 22:15:09 +0000 ROA not before: Tue 11 Mar 2025 22:15:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 55580 IP address blocks: 203.30.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 14:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13412 (0x3464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156971, serialNumber=2905FB3212BD61646FB7AF633EA1A257BC3A3DEC Validity Not Before: Mar 11 22:15:09 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=67d0b5ec-f3b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e0:ec:2c:88:d2:e2:60:5d:45:34:ac:f2:2f: 78:63:bd:37:16:f3:13:7d:5a:f9:ca:0e:2b:f2:9e: 6c:45:38:70:be:2a:76:8e:4f:8d:18:ae:40:b6:ec: e8:db:d4:b1:a4:ad:cb:07:4f:e6:79:ac:e2:e2:51: 53:2d:ec:73:66:dd:da:30:f3:44:7a:56:03:5d:95: 3a:0b:99:9b:d6:e6:e5:91:71:ce:54:1a:27:28:32: df:b6:55:2b:b2:c7:c4:f4:44:6d:d2:90:5f:80:93: 05:5b:e0:7e:3d:24:ee:e3:7a:14:13:02:4d:ec:30: 79:38:08:38:91:da:88:67:ea:2c:37:95:52:b0:1b: ed:0f:55:f6:68:15:01:f6:a9:35:c4:a4:1c:70:03: fd:9c:7a:7a:e5:77:91:a7:58:a0:54:e8:f7:40:61: b6:0e:4c:a2:fd:6b:56:81:1f:10:86:ea:e0:f7:6a: e8:fa:e9:ed:64:be:25:95:8b:81:13:c5:f6:a0:30: 77:24:c6:9b:b2:3d:04:25:68:57:d2:8d:15:20:a7: 3d:e3:fd:69:70:84:5b:9a:4f:f2:90:dd:e7:3d:ba: cc:c4:7a:4b:f3:44:96:50:00:79:4c:19:84:a2:4e: bb:71:0b:2c:ee:5f:44:d3:3c:1b:48:ff:5b:ac:96: 68:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:70:60:1C:94:3E:76:33:B7:14:CF:5A:21:56:F0:05:C8:8C:9E:F4 X509v3 Authority Key Identifier: keyid:29:05:FB:32:12:BD:61:64:6F:B7:AF:63:3E:A1:A2:57:BC:3A:3D:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/KQX7MhK9YWRvt69jPqGiV7w6Pew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQX7MhK9YWRvt69jPqGiV7w6Pew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156971/48C221861D9211E2ADB30BF508B02CD2/4AF78A4AFEC611EF86B4765BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.30.245.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:21:d1:ea:ae:18:96:74:62:88:67:3a:50:ee:e1:c5:64:4a: 72:52:f6:19:78:97:d7:da:69:1e:6f:15:ad:88:ef:08:2e:86: b5:f5:c1:3c:f9:99:ee:33:78:65:26:eb:23:c4:41:d2:75:1f: 7f:e1:0a:50:3b:b1:22:25:bd:d0:bc:dd:0b:96:c4:dd:e6:67: dc:5e:55:7a:6b:9c:0b:73:42:05:30:08:e5:59:e8:cf:d8:75: 68:9f:99:4c:08:fa:02:c4:a9:ea:57:c6:56:8a:50:5d:5e:cb: 31:bd:b8:27:90:56:76:2c:41:6d:5d:c1:fa:79:3c:5b:3b:6b: b8:14:a5:a3:18:fd:fa:ab:da:c8:52:06:ca:b4:5c:8b:28:8d: 81:c8:8f:2a:37:30:27:a4:96:9c:4b:30:21:76:0a:bc:ed:f5: cd:fc:fc:cf:1d:62:0d:55:90:a0:6e:cc:6c:d7:b4:c7:78:ee: 0c:93:f9:23:72:3b:58:1c:4d:bc:29:68:f6:3f:d1:fa:80:66: 5c:e9:ed:e2:a6:6d:06:4d:fd:86:83:a4:f0:7e:04:46:eb:a4: c3:0d:9e:b2:ec:a6:c6:b9:72:49:0e:9b:d3:de:b2:97:44:11: 16:57:86:f5:b1:a7:69:2e:3c:41:28:b6:77:9d:b3:8a:31:67: 55:6d:66:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY5NzExMTAvBgNVBAUTKDI5MDVGQjMyMTJCRDYxNjQ2RkI3QUY2MzNFQTFBMjU3 QkMzQTNERUMwHhcNMjUwMzExMjIxNTA5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2QwYjVlYy1mM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7uDsLIjS4mBdRTSs8i94Y703FvMTfVr5yg4r8p5sRThwvip2jk+NGK5Atuzo 29SxpK3LB0/meazi4lFTLexzZt3aMPNEelYDXZU6C5mb1ublkXHOVBonKDLftlUr ssfE9ERt0pBfgJMFW+B+PSTu43oUEwJN7DB5OAg4kdqIZ+osN5VSsBvtD1X2aBUB 9qk1xKQccAP9nHp65XeRp1igVOj3QGG2Dkyi/WtWgR8Qhurg92ro+untZL4llYuB E8X2oDB3JMabsj0EJWhX0o0VIKc94/1pcIRbmk/ykN3nPbrMxHpL80SWUAB5TBmE ok67cQss7l9E0zwbSP9brJZohQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFRwYByU PnYztxTPWiFW8AXIjJ70MB8GA1UdIwQYMBaAFCkF+zISvWFkb7evYz6hole8Oj3s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njk3MS80OEMyMjE4NjFE OTIxMUUyQURCMzBCRjUwOEIwMkNEMi9LUVg3TWhLOVlXUnZ0NjlqUHFHaVY3dzZQ ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRWDdNaEs5WVdSdnQ2OWpQcUdpVjd3NlBldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY5NzEvNDhDMjIxODYxRDkyMTFFMkFEQjMwQkY1MDhCMDJDRDIvNEFGNzhBNEFG RUM2MTFFRjg2QjQ3NjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHvUwDQYJKoZIhvcNAQELBQADggEBADsh0equGJZ0Yohn OlDu4cVkSnJS9hl4l9faaR5vFa2I7wguhrX1wTz5me4zeGUm6yPEQdJ1H3/hClA7 sSIlvdC83QuWxN3mZ9xeVXprnAtzQgUwCOVZ6M/YdWifmUwI+gLEqepXxlaKUF1e yzG9uCeQVnYsQW1dwfp5PFs7a7gUpaMY/fqr2shSBsq0XIsojYHIjyo3MCeklpxL MCF2Crzt9c38/M8dYg1VkKBuzGzXtMd47gyT+SNyO1gcTbwpaPY/0fqAZlzp7eKm bQZN/YaDpPB+BEbrpMMNnrLspsa5ckkOm9PespdEERZXhvWxp2kuPEEotneds4ox Z1VtZuE= -----END CERTIFICATE-----Generated at Wed Jun 11 22:36:52 2025 by rpki-client