$ rpki-client -vvf rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/750BDF94F14111EFB9ABEC6EC4F9AE02.roa File: 750BDF94F14111EFB9ABEC6EC4F9AE02.roa (raw, json) Hash identifier: tGgXIpGEi95/mHMqGxL/bJi/SqHukJyeasiHeM6qZF8= Subject key identifier: FD:CD:C4:F1:FC:7D:9D:05:71:CE:57:11:7D:4B:18:A1:46:44:94:01 Certificate issuer: /CN=A9168949/serialNumber=10E0502F3D382E8C1566ECCC2A121B6C439DE977 Certificate serial: FB Authority key identifier: 10:E0:50:2F:3D:38:2E:8C:15:66:EC:CC:2A:12:1B:6C:43:9D:E9:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/750BDF94F14111EFB9ABEC6EC4F9AE02.roa Signing time: Tue 13 May 2025 04:56:33 +0000 ROA not before: Tue 13 May 2025 04:56:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139642 IP address blocks: 203.20.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.crl rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 05:06:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168949, serialNumber=10E0502F3D382E8C1566ECCC2A121B6C439DE977 Validity Not Before: May 13 04:56:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6822d100-e875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:71:58:55:1b:e0:10:77:08:17:04:52:f3:7a: 56:7e:db:02:be:13:81:1e:26:18:d9:68:e1:96:39: 3a:45:67:fe:a3:ec:8f:a6:f1:27:33:6e:67:d7:16: 50:56:4f:6c:2e:53:cd:f0:ff:a4:4d:dd:b9:43:24: f3:4f:4f:6b:48:b3:3b:f4:25:ec:17:1e:ef:4b:64: 1b:f1:a1:ed:ef:e2:ec:0f:ce:9a:55:ec:3e:08:92: a7:68:b6:90:36:ee:07:a7:6a:38:e3:80:0e:63:62: 19:bf:f1:7a:4d:c3:43:61:32:b7:92:6f:72:a4:19: 0d:1f:56:17:21:fb:12:fd:53:38:79:c0:9e:2c:a8: 2d:bf:1a:3e:33:b7:3a:99:23:03:f1:09:43:02:b3: 39:e1:d7:f8:96:17:f6:c5:4c:df:f9:e0:53:30:8b: b3:24:73:c9:3f:d6:fa:8d:82:e2:db:04:75:2f:64: 1c:93:78:37:d4:2b:08:32:ab:fc:33:6c:f6:58:b1: b2:9f:54:8a:23:24:c6:63:76:fa:17:e4:b5:6b:f5: 51:69:f8:20:ed:f2:0f:55:bf:d3:ee:59:34:19:f3: 56:71:e6:37:54:85:d5:40:bb:6b:c6:ff:ec:45:89: 10:6a:8a:0e:b2:2b:cc:ea:ca:aa:98:f9:37:40:27: a8:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:CD:C4:F1:FC:7D:9D:05:71:CE:57:11:7D:4B:18:A1:46:44:94:01 X509v3 Authority Key Identifier: keyid:10:E0:50:2F:3D:38:2E:8C:15:66:EC:CC:2A:12:1B:6C:43:9D:E9:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/EOBQLz04LowVZuzMKhIbbEOd6Xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EOBQLz04LowVZuzMKhIbbEOd6Xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168949/3F242AC2E4F311EE99101438C4F9AE02/750BDF94F14111EFB9ABEC6EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.109.0/24 Signature Algorithm: sha256WithRSAEncryption 21:cc:64:1c:e0:e3:3a:a6:7a:e3:92:d6:26:c3:06:13:e0:a2: d4:20:9b:03:f2:22:99:78:6e:d5:b2:df:29:49:79:49:17:75: 81:7c:39:90:99:0f:a1:db:d2:1a:0f:7f:f6:2f:1e:60:4e:c0: 8d:62:0b:c4:9b:d9:d2:c7:5b:37:44:53:97:fb:05:03:c9:d8: 5f:5a:ec:47:06:8f:e6:76:8e:08:f5:e2:b4:de:3e:7f:f7:df: a2:4c:35:b3:30:99:21:69:3f:5d:78:85:95:9e:8c:7f:0b:41: e1:e2:ef:67:a9:27:a7:6e:a5:9a:73:de:52:4c:17:84:f3:a3: 31:42:c0:0b:60:1c:8a:47:79:20:0d:09:2f:95:1d:5e:78:08: da:34:65:0f:da:7e:47:95:a2:d2:63:c5:ac:bb:8e:77:20:c7: 13:af:25:2f:ad:87:61:74:3d:7e:08:cd:63:bd:7d:98:75:c8: d0:24:10:9b:fc:79:8a:f5:01:ea:88:cc:42:c9:85:21:12:f3: df:d8:54:c2:24:84:a3:2c:39:1a:1c:71:1e:90:89:14:1c:41: f5:8b:88:2e:72:9a:a8:4b:99:86:2c:af:2c:f5:c1:cd:f8:cc: 7d:c8:be:62:5c:09:f3:05:18:ad:e3:80:17:1e:6e:92:07:21: be:54:21:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5NDkxMTAvBgNVBAUTKDEwRTA1MDJGM0QzODJFOEMxNTY2RUNDQzJBMTIxQjZD NDM5REU5NzcwHhcNMjUwNTEzMDQ1NjMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyZDEwMC1lODc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/XFYVRvgEHcIFwRS83pWftsCvhOBHiYY2Wjhljk6RWf+o+yPpvEnM25n1xZQ Vk9sLlPN8P+kTd25QyTzT09rSLM79CXsFx7vS2Qb8aHt7+LsD86aVew+CJKnaLaQ Nu4Hp2o444AOY2IZv/F6TcNDYTK3km9ypBkNH1YXIfsS/VM4ecCeLKgtvxo+M7c6 mSMD8QlDArM54df4lhf2xUzf+eBTMIuzJHPJP9b6jYLi2wR1L2Qck3g31CsIMqv8 M2z2WLGyn1SKIyTGY3b6F+S1a/VRafgg7fIPVb/T7lk0GfNWceY3VIXVQLtrxv/s RYkQaooOsivM6sqqmPk3QCeo9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFP3NxPH8 fZ0Fcc5XEX1LGKFGRJQBMB8GA1UdIwQYMBaAFBDgUC89OC6MFWbszCoSG2xDnel3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk0OS8zRjI0MkFDMkU0 RjMxMUVFOTkxMDE0MzhDNEY5QUUwMi9FT0JRTHowNExvd1ZadXpNS2hJYmJFT2Q2 WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VPQlFMejA0TG93Vlp1ek1LaEliYkVPZDZYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg5NDkvM0YyNDJBQzJFNEYzMTFFRTk5MTAxNDM4QzRGOUFFMDIvNzUwQkRGOTRG MTQxMTFFRkI5QUJFQzZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFG0wDQYJKoZIhvcNAQELBQADggEBACHMZBzg4zqmeuOS 1ibDBhPgotQgmwPyIpl4btWy3ylJeUkXdYF8OZCZD6Hb0hoPf/YvHmBOwI1iC8Sb 2dLHWzdEU5f7BQPJ2F9a7EcGj+Z2jgj14rTePn/336JMNbMwmSFpP114hZWejH8L QeHi72epJ6dupZpz3lJMF4TzozFCwAtgHIpHeSANCS+VHV54CNo0ZQ/afkeVotJj xay7jncgxxOvJS+th2F0PX4IzWO9fZh1yNAkEJv8eYr1AeqIzELJhSES89/YVMIk hKMsORoccR6QiRQcQfWLiC5ymqhLmYYsryz1wc34zH3IvmJcCfMFGK3jgBcebpIH Ib5UIQ0= -----END CERTIFICATE-----Generated at Mon Jun 2 06:28:39 2025 by rpki-client