$ rpki-client -vvf rpki.apnic.net/member_repository/A9185456/052E2C48D46211EDA7DC6E51C4F9AE02/7E156BA0D46511EDBFC00C87C4F9AE02.roa File: 7E156BA0D46511EDBFC00C87C4F9AE02.roa (raw, json) Hash identifier: FRRfK4hKeTw9lsBnsIsSbgs7rIXetSWQ2flb/qNJQ7k= Subject key identifier: 97:30:61:CA:A3:E6:82:47:45:C6:5B:87:27:C4:20:1E:70:FD:E5:7A Certificate issuer: /CN=A9185456/serialNumber=EB25FEF8FF8FFC71444037369CADAFAF6CD89252 Certificate serial: 018A Authority key identifier: EB:25:FE:F8:FF:8F:FC:71:44:40:37:36:9C:AD:AF:AF:6C:D8:92:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6yX--P-P_HFEQDc2nK2vr2zYklI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185456/052E2C48D46211EDA7DC6E51C4F9AE02/7E156BA0D46511EDBFC00C87C4F9AE02.roa Signing time: Thu 01 May 2025 03:09:28 +0000 ROA not before: Thu 01 May 2025 03:09:28 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4739 IP address blocks: 203.15.107.0/24 maxlen: 24 203.15.107.0/26 maxlen: 26 203.15.107.64/26 maxlen: 26 203.15.107.128/26 maxlen: 26 203.15.107.192/26 maxlen: 26 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185456/052E2C48D46211EDA7DC6E51C4F9AE02/6yX--P-P_HFEQDc2nK2vr2zYklI.crl rsync://rpki.apnic.net/member_repository/A9185456/052E2C48D46211EDA7DC6E51C4F9AE02/6yX--P-P_HFEQDc2nK2vr2zYklI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6yX--P-P_HFEQDc2nK2vr2zYklI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 03:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 394 (0x18a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185456, serialNumber=EB25FEF8FF8FFC71444037369CADAFAF6CD89252 Validity Not Before: May 1 03:09:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812e5e8-c0b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0e:38:a2:81:89:6d:cd:a9:ec:37:5b:c5:5e: 0b:a0:a8:31:d6:2a:d4:9d:fd:d5:13:50:e7:e8:4e: 57:74:22:1f:e7:ef:17:42:c6:f8:73:55:a4:2f:4d: da:2e:32:06:8a:7e:b7:b9:3c:0e:24:3f:90:ad:e2: 76:00:42:55:7e:85:3b:f2:64:c3:8c:7d:aa:29:bb: 52:be:da:a9:52:0b:11:fe:13:d8:ae:b6:c3:55:4b: 33:51:50:65:0a:b8:a8:1a:00:31:38:51:59:43:f7: 37:f7:e1:0d:05:b2:26:1f:5c:46:73:cb:98:c1:78: d7:e1:5d:24:f5:a1:46:36:c7:ba:e7:d0:fa:23:5d: 92:04:31:b8:58:16:d5:2a:57:ef:fd:dc:f9:6a:d0: 6d:7d:a1:37:c6:ed:90:41:e6:a2:75:b8:b1:51:15: dd:8a:51:81:8b:94:53:6f:cb:a0:c3:b6:69:a1:6f: e7:d6:3b:2d:01:ed:8c:c3:b9:2e:3b:f7:82:61:7c: aa:c8:40:f7:f0:6e:81:84:20:99:3b:29:04:af:bc: 69:29:70:3f:40:0e:3b:04:5e:fb:47:30:30:a8:44: 6b:c1:9a:d6:8a:8d:e6:2b:3a:0a:3d:40:12:10:9a: c4:00:ad:52:df:2e:b2:db:35:10:f2:78:86:a8:d4: 6f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:30:61:CA:A3:E6:82:47:45:C6:5B:87:27:C4:20:1E:70:FD:E5:7A X509v3 Authority Key Identifier: keyid:EB:25:FE:F8:FF:8F:FC:71:44:40:37:36:9C:AD:AF:AF:6C:D8:92:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185456/052E2C48D46211EDA7DC6E51C4F9AE02/6yX--P-P_HFEQDc2nK2vr2zYklI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6yX--P-P_HFEQDc2nK2vr2zYklI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185456/052E2C48D46211EDA7DC6E51C4F9AE02/7E156BA0D46511EDBFC00C87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.15.107.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:2b:43:c1:21:8e:22:6d:a9:95:58:4e:30:7d:6f:ae:c8:f4: 52:c8:5b:14:a2:1f:ba:56:d8:54:73:c5:e5:d7:03:b2:75:3b: 76:a7:be:8d:20:bf:ec:72:c0:89:a6:9b:af:8e:0e:4a:1d:cd: eb:2f:79:3e:40:81:c2:30:87:70:b0:34:c6:2e:c7:93:29:d1: 44:1f:92:ec:b8:9f:74:48:bd:84:0a:b0:8a:4e:19:68:59:fd: 56:ea:d3:93:ba:4f:56:1f:11:18:ee:80:b7:43:85:05:22:55: 28:45:93:d9:c8:8c:df:7e:76:e6:8f:62:9a:8e:84:b0:53:44: 8f:96:23:6e:be:f0:6c:41:db:08:10:0b:35:37:1f:69:9d:b3: cb:a7:ed:6d:76:e6:dd:7e:50:1d:7a:93:57:7e:ad:f5:28:00: b1:3f:e4:3e:6e:c4:b0:9d:f1:b6:ad:3c:03:00:a2:d3:f1:e2: 6f:7f:9e:71:26:1d:f6:16:4b:cd:b4:74:7d:64:bb:f5:71:fe: 47:c0:0a:5a:a6:02:89:13:fd:e0:7e:bc:09:8f:30:46:ab:36: 78:e5:87:29:b1:1b:28:34:1d:c7:ea:04:8b:75:6d:d2:87:bf: fc:66:08:5a:e8:04:16:bc:d3:07:b5:22:57:8e:4c:80:03:56: e0:39:72:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODU0NTYxMTAvBgNVBAUTKEVCMjVGRUY4RkY4RkZDNzE0NDQwMzczNjlDQURBRkFG NkNEODkyNTIwHhcNMjUwNTAxMDMwOTI4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyZTVlOC1jMGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvA44ooGJbc2p7DdbxV4LoKgx1irUnf3VE1Dn6E5XdCIf5+8XQsb4c1WkL03a LjIGin63uTwOJD+QreJ2AEJVfoU78mTDjH2qKbtSvtqpUgsR/hPYrrbDVUszUVBl CrioGgAxOFFZQ/c39+ENBbImH1xGc8uYwXjX4V0k9aFGNse659D6I12SBDG4WBbV Klfv/dz5atBtfaE3xu2QQeaidbixURXdilGBi5RTb8ugw7ZpoW/n1jstAe2Mw7ku O/eCYXyqyED38G6BhCCZOykEr7xpKXA/QA47BF77RzAwqERrwZrWio3mKzoKPUAS EJrEAK1S3y6y2zUQ8niGqNRv9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJcwYcqj 5oJHRcZbhyfEIB5w/eV6MB8GA1UdIwQYMBaAFOsl/vj/j/xxREA3Npytr69s2JJS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTQ1Ni8wNTJFMkM0OEQ0 NjIxMUVEQTdEQzZFNTFDNEY5QUUwMi82eVgtLVAtUF9IRkVRRGMybksydnIyellr bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ5WC0tUC1QX0hGRVFEYzJuSzJ2cjJ6WWtsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODU0NTYvMDUyRTJDNDhENDYyMTFFREE3REM2RTUxQzRGOUFFMDIvN0UxNTZCQTBE NDY1MTFFREJGQzAwQzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLD2swDQYJKoZIhvcNAQELBQADggEBAH8rQ8EhjiJtqZVY TjB9b67I9FLIWxSiH7pW2FRzxeXXA7J1O3anvo0gv+xywImmm6+ODkodzesveT5A gcIwh3CwNMYux5Mp0UQfkuy4n3RIvYQKsIpOGWhZ/Vbq05O6T1YfERjugLdDhQUi VShFk9nIjN9+duaPYpqOhLBTRI+WI26+8GxB2wgQCzU3H2mds8un7W125t1+UB16 k1d+rfUoALE/5D5uxLCd8batPAMAotPx4m9/nnEmHfYWS820dH1ku/Vx/kfAClqm AokT/eB+vAmPMEarNnjlhymxGyg0HcfqBIt1bdKHv/xmCFroBBa80we1IleOTIAD VuA5cls= -----END CERTIFICATE-----Generated at Mon Jun 2 07:08:37 2025 by rpki-client