$ rpki-client -vvf rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa File: 07EE827ADFEE11E7B0E71D1CC4F9AE02.roa (raw, json) Hash identifier: 6dC3vmSVGgmkSh9nUR6cyWb5UZYgtCMEtbXtHWZQ+Ms= Subject key identifier: F1:E5:FE:B3:85:7A:B6:07:98:D5:6F:54:78:E9:0A:14:15:DB:98:6C Certificate issuer: /CN=A918495F/serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Certificate serial: 17D4 Authority key identifier: 90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa Signing time: Thu 08 May 2025 17:17:46 +0000 ROA not before: Thu 08 May 2025 17:17:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 20940 IP address blocks: 203.198.20.0/24 maxlen: 24 219.76.11.0/24 maxlen: 24 2404:c800:8203::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6100 (0x17d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918495F, serialNumber=90C22F7393850E8ECF6B5F1E320D07B2D1ACD8FD Validity Not Before: May 8 17:17:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ce73a-52d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a3:10:1b:a3:ae:ce:bf:c1:7f:4a:cc:36:6b: c9:c0:98:99:73:5b:11:73:88:f2:85:eb:a0:b0:6e: 26:d5:79:98:17:8e:6a:6d:79:65:0a:21:46:c8:6a: c8:c1:f2:16:c7:6a:14:97:e1:a4:58:6e:75:c7:a7: 05:e1:c1:bd:98:6c:f0:d0:c3:d0:50:94:5c:97:b1: 16:46:b2:1d:6c:12:00:f3:cd:6f:dd:47:9f:7b:e2: 50:89:54:d2:f2:b0:81:63:ec:47:38:30:a6:c4:94: 4f:61:56:ad:9f:e5:14:99:27:e3:b8:51:0b:8d:7b: 2a:0e:d0:af:e8:13:3b:ab:cc:1b:b7:ac:d1:2e:35: 8e:90:bf:51:a5:73:f9:7a:68:94:e2:61:ab:10:5c: 7e:88:cb:24:dd:62:65:27:7a:25:98:43:e8:36:b0: 0e:bd:69:84:82:55:43:7e:27:97:79:3c:a9:7a:a2: 32:c1:c8:1f:89:3a:c3:02:0f:3a:c6:6f:b1:88:de: ae:4b:17:91:9e:dc:ba:48:16:1b:38:87:7c:c5:d1: 43:1f:98:36:2e:cc:29:47:8e:c1:e8:50:bb:45:30: cd:df:77:4b:45:c0:e5:70:73:a0:a0:9a:00:f1:a2: 06:a9:b2:38:ef:b2:c1:8f:f5:c2:65:c1:a4:ad:ac: 1d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:E5:FE:B3:85:7A:B6:07:98:D5:6F:54:78:E9:0A:14:15:DB:98:6C X509v3 Authority Key Identifier: keyid:90:C2:2F:73:93:85:0E:8E:CF:6B:5F:1E:32:0D:07:B2:D1:AC:D8:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/kMIvc5OFDo7Pa18eMg0HstGs2P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMIvc5OFDo7Pa18eMg0HstGs2P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918495F/848C857CDFEC11E7A27A2213C4F9AE02/07EE827ADFEE11E7B0E71D1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.198.20.0/24 219.76.11.0/24 IPv6: 2404:c800:8203::/48 Signature Algorithm: sha256WithRSAEncryption 4f:40:43:db:8c:be:17:2c:a3:22:24:05:65:7e:b0:7d:7d:e8: 63:08:0d:b4:58:e0:df:00:60:d4:d3:c4:64:cf:59:2c:8f:6a: 85:18:c2:e8:f4:4c:06:ad:73:1a:fd:8d:ba:7a:83:d3:fe:9d: e6:61:c2:a5:d3:f3:95:c0:d7:6f:23:4a:32:fd:c8:d8:81:ff: 26:fd:12:07:45:9f:9a:da:bd:c6:e2:0f:04:ef:03:54:ee:2e: 83:d3:6a:c8:af:64:13:ff:8f:5c:f5:af:e4:10:8f:55:72:b5: 08:ac:31:24:67:9c:fa:cc:44:d3:40:a6:5d:62:db:17:94:a9: ad:08:58:20:c8:bf:a6:dc:91:70:3c:c7:fb:48:db:2e:20:a4: 86:db:08:62:ae:58:65:72:68:30:ef:7d:b3:05:c2:9a:d2:04: fc:2b:af:f6:16:18:6f:dd:20:a7:b5:dd:52:d4:3b:d5:9d:a9: 73:ba:7e:ac:18:84:46:60:16:c6:b2:84:01:59:e2:00:78:51: 0a:a4:0f:eb:7d:a4:cc:b8:f9:50:57:f9:b9:62:d3:db:b6:a0: 8c:66:74:e3:97:d4:71:03:6d:bf:45:b6:81:db:14:30:91:cd: 19:de:57:ad:23:f8:62:eb:b3:97:8a:07:d3:22:52:ee:c5:96: a8:42:0c:ec -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICF9QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ5NUYxMTAvBgNVBAUTKDkwQzIyRjczOTM4NTBFOEVDRjZCNUYxRTMyMEQwN0Iy RDFBQ0Q4RkQwHhcNMjUwNTA4MTcxNzQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjZTczYS01MmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6MQG6Ouzr/Bf0rMNmvJwJiZc1sRc4jyheugsG4m1XmYF45qbXllCiFGyGrI wfIWx2oUl+GkWG51x6cF4cG9mGzw0MPQUJRcl7EWRrIdbBIA881v3Uefe+JQiVTS 8rCBY+xHODCmxJRPYVatn+UUmSfjuFELjXsqDtCv6BM7q8wbt6zRLjWOkL9RpXP5 emiU4mGrEFx+iMsk3WJlJ3olmEPoNrAOvWmEglVDfieXeTypeqIywcgfiTrDAg86 xm+xiN6uSxeRnty6SBYbOId8xdFDH5g2LswpR47B6FC7RTDN33dLRcDlcHOgoJoA 8aIGqbI477LBj/XCZcGkrawdjQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPHl/rOF erYHmNVvVHjpChQV25hsMB8GA1UdIwQYMBaAFJDCL3OThQ6Oz2tfHjINB7LRrNj9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDk1Ri84NDhDODU3Q0RG RUMxMUU3QTI3QTIyMTNDNEY5QUUwMi9rTUl2YzVPRkRvN1BhMThlTWcwSHN0R3My UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNSXZjNU9GRG83UGExOGVNZzBIc3RHczJQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ5NUYvODQ4Qzg1N0NERkVDMTFFN0EyN0EyMjEzQzRGOUFFMDIvMDdFRTgyN0FE RkVFMTFFN0IwRTcxRDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBADLxhQDBADbTAswDwQCAAIwCQMHACQEyACCAzANBgkqhkiG 9w0BAQsFAAOCAQEAT0BD24y+FyyjIiQFZX6wfX3oYwgNtFjg3wBg1NPEZM9ZLI9q hRjC6PRMBq1zGv2NunqD0/6d5mHCpdPzlcDXbyNKMv3I2IH/Jv0SB0Wfmtq9xuIP BO8DVO4ug9NqyK9kE/+PXPWv5BCPVXK1CKwxJGec+sxE00CmXWLbF5SprQhYIMi/ ptyRcDzH+0jbLiCkhtsIYq5YZXJoMO99swXCmtIE/Cuv9hYYb90gp7XdUtQ71Z2p c7p+rBiERmAWxrKEAVniAHhRCqQP632kzLj5UFf5uWLT27agjGZ045fUcQNtv0W2 gdsUMJHNGd5XrSP4Yuuzl4oH0yJS7sWWqEIM7A== -----END CERTIFICATE-----Generated at Mon Jun 2 04:54:23 2025 by rpki-client