$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/A8B7D7567D5211F09C93DD70C4F9AE02.roa File: A8B7D7567D5211F09C93DD70C4F9AE02.roa (raw, json) Hash identifier: FbjN4dnguZO3w4higjYMr5q5ehUNU/NaKQb8NUscA34= Subject key identifier: A1:9F:EC:BA:8C:81:EE:74:B4:50:3B:E1:3F:6F:9C:AC:B0:08:32:5E Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 04C6 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/A8B7D7567D5211F09C93DD70C4F9AE02.roa Signing time: Tue 19 Aug 2025 23:17:22 +0000 ROA not before: Tue 19 Aug 2025 23:17:22 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 150110 IP address blocks: 203.32.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 01:19:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1222 (0x4c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Aug 19 23:17:22 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68a50602-5d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:36:0b:99:2b:f2:66:05:a3:9e:4e:d0:4c:49: 72:0a:da:96:28:c0:a4:13:11:8a:f2:52:ef:9b:cd: b2:cf:c3:e0:b1:03:b0:67:70:1d:e8:2d:30:45:c0: 99:84:71:3a:99:07:03:12:3f:62:cc:93:0b:d6:81: 2d:e4:a8:32:4c:a7:28:20:65:ca:43:61:c7:27:a9: 57:b2:a6:ac:ca:60:af:23:ed:6b:d0:b6:7b:cf:0a: b5:0c:f4:d1:16:f0:e7:b6:ad:6a:c0:83:76:56:e2: 9b:9a:d5:d8:e0:5c:a8:8a:ea:9f:7e:e2:75:df:fe: 90:2e:82:82:e1:d0:69:e6:b5:7b:49:e7:9d:42:1b: f9:ad:55:e2:15:b9:73:cc:45:86:77:d9:21:2f:79: 38:92:fa:93:c3:e4:7b:bd:ad:a4:98:25:6c:9c:b7: d3:5a:92:20:e2:33:9d:90:9b:d9:76:09:30:4c:b9: 1d:d8:b2:55:50:5c:f7:a5:f3:97:71:ac:1d:59:8e: 23:ef:b8:9f:cc:be:7c:3f:04:21:86:82:c0:e0:c9: 3d:48:0a:ee:b7:7b:60:b0:b7:1d:7b:24:58:8c:17: b6:4a:66:aa:b0:95:92:73:d3:be:12:ea:34:4f:23: f8:b7:2d:d5:d4:1c:54:1d:42:29:9c:37:0f:46:46: bd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9F:EC:BA:8C:81:EE:74:B4:50:3B:E1:3F:6F:9C:AC:B0:08:32:5E X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/A8B7D7567D5211F09C93DD70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.32.0/24 Signature Algorithm: sha256WithRSAEncryption 82:ec:84:0b:a8:dd:fd:7f:85:2c:2a:d7:07:86:2c:d7:96:59: 8d:55:01:c3:19:21:5b:49:21:3c:7e:0d:66:f4:c2:fe:dd:53: 87:70:36:14:16:74:5f:fd:05:75:97:1e:26:ee:a5:3e:27:6b: e3:d4:a4:3a:56:35:76:b3:91:cc:90:94:1d:d9:0f:10:01:88: 4f:f9:6a:29:de:ae:62:fc:81:75:93:bf:4b:d5:b4:7f:ba:57: 8a:9e:e0:18:82:9a:b5:7d:48:18:f6:41:f1:b4:ab:64:5c:a0: 38:fa:0f:ea:b8:22:5e:ab:d6:b0:af:be:12:ec:6a:b6:4f:51: 38:d7:79:47:e1:4d:7b:c0:e0:b8:54:01:46:15:55:d7:7f:33: 88:7b:30:53:c9:3e:32:4b:2c:78:15:3c:67:45:2b:24:f7:42: 83:f3:8b:26:25:53:8f:b1:03:cb:9d:cf:36:95:ea:74:54:ed: 1d:1a:24:20:25:0b:c3:9a:27:ae:35:3b:d5:bd:ee:60:3d:51: b5:99:67:ef:40:6d:93:d6:d6:d5:38:55:7b:54:6b:4c:9d:44: db:6c:54:78:58:b2:90:89:be:ee:47:a2:37:b3:81:c0:63:3c: 4d:43:89:5b:69:f2:59:44:20:42:e5:62:66:a0:70:ce:06:43: da:1e:90:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUwODE5MjMxNzIyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE1MDYwMi01ZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDYLmSvyZgWjnk7QTElyCtqWKMCkExGK8lLvm82yz8PgsQOwZ3Ad6C0wRcCZ hHE6mQcDEj9izJML1oEt5KgyTKcoIGXKQ2HHJ6lXsqasymCvI+1r0LZ7zwq1DPTR FvDntq1qwIN2VuKbmtXY4FyoiuqffuJ13/6QLoKC4dBp5rV7SeedQhv5rVXiFblz zEWGd9khL3k4kvqTw+R7va2kmCVsnLfTWpIg4jOdkJvZdgkwTLkd2LJVUFz3pfOX cawdWY4j77ifzL58PwQhhoLA4Mk9SArut3tgsLcdeyRYjBe2SmaqsJWSc9O+Euo0 TyP4ty3V1BxUHUIpnDcPRka9EwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKGf7LqM ge50tFA74T9vnKywCDJeMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvQThCN0Q3NTY3 RDUyMTFGMDlDOTNERDcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLICAwDQYJKoZIhvcNAQELBQADggEBAILshAuo3f1/hSwq 1weGLNeWWY1VAcMZIVtJITx+DWb0wv7dU4dwNhQWdF/9BXWXHibupT4na+PUpDpW NXazkcyQlB3ZDxABiE/5ainermL8gXWTv0vVtH+6V4qe4BiCmrV9SBj2QfG0q2Rc oDj6D+q4Il6r1rCvvhLsarZPUTjXeUfhTXvA4LhUAUYVVdd/M4h7MFPJPjJLLHgV PGdFKyT3QoPziyYlU4+xA8udzzaV6nRU7R0aJCAlC8OaJ641O9W97mA9UbWZZ+9A bZPW1tU4VXtUa0ydRNtsVHhYspCJvu5HojezgcBjPE1DiVtp8llEIELlYmagcM4G Q9oekJw= -----END CERTIFICATE-----Generated at Thu Aug 21 10:31:16 2025 by rpki-client