$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/7538A8FC275211F0A14FD328C4F9AE02.roa File: 7538A8FC275211F0A14FD328C4F9AE02.roa (raw, json) Hash identifier: 1L8lUrtPjTnoEjcERsj866aTFLWQJPYnWRL13TGRub4= Subject key identifier: 65:3B:C6:54:F2:07:C8:BA:E6:34:A8:5A:E4:20:78:E9:09:18:4C:22 Certificate issuer: /CN=A91E7A75/serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Certificate serial: 03 Authority key identifier: 97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/7538A8FC275211F0A14FD328C4F9AE02.roa Signing time: Fri 02 May 2025 12:39:16 +0000 ROA not before: Fri 02 May 2025 12:39:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45736 IP address blocks: 203.123.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7A75, serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Validity Not Before: May 2 12:39:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6814bcf3-7901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9f:65:af:4c:7d:a4:bd:8b:2a:07:fe:50:ad: 78:d2:01:07:bd:e2:e3:5e:62:97:fb:ea:e5:dd:04: 77:87:59:28:6c:80:21:fb:b7:63:c5:0a:7a:0c:dd: 79:f6:4d:e9:e2:55:25:6a:70:96:83:ac:56:77:55: b4:50:69:1d:de:7b:6d:88:f8:db:fc:c9:56:48:25: 53:da:4f:70:19:fa:89:e4:11:7e:8c:c7:c2:35:4a: 7e:e1:21:e4:e7:f7:e5:c8:77:28:2b:b9:76:e1:a6: 45:36:e4:e5:81:5f:2f:7d:cc:4e:bd:08:e6:8a:64: d6:2a:d5:01:42:1d:31:2c:9c:94:73:68:6c:9a:35: 78:91:a0:01:44:69:cc:e9:c3:f9:f8:fe:46:0b:93: a9:33:94:7c:57:87:b4:b2:57:58:b8:67:66:a1:cc: f2:92:ac:34:5e:d7:2a:7a:51:15:5c:ca:43:6d:d5: 7c:98:14:c3:58:7f:96:57:bd:35:d4:73:65:2b:63: 15:81:e7:c6:4d:1b:53:75:5e:73:cc:a8:fb:66:51: 62:e3:3c:b9:b6:b1:50:be:d1:a2:8f:7c:91:7e:9f: 80:a8:1c:a1:e4:a8:55:ad:b1:31:0e:d3:1a:29:71: 8b:2f:70:8b:9e:bf:83:5e:41:ac:d6:97:04:1e:4b: c9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3B:C6:54:F2:07:C8:BA:E6:34:A8:5A:E4:20:78:E9:09:18:4C:22 X509v3 Authority Key Identifier: keyid:97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/7538A8FC275211F0A14FD328C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.123.55.0/24 Signature Algorithm: sha256WithRSAEncryption b0:94:7f:95:a4:98:7d:fd:60:9e:96:24:0f:a2:fe:b2:86:a0: e8:20:48:22:a7:f8:09:58:76:23:2b:a3:02:46:f9:1c:42:74: d3:ec:14:2e:7d:01:bc:e7:fb:a7:71:75:08:a1:15:bc:68:28: 0b:24:57:7d:a7:cc:d1:b4:b1:0f:4a:b2:26:fa:c8:af:60:81: 14:06:98:6b:88:1c:71:ff:eb:36:7f:61:b5:0b:67:a4:57:3f: 55:b1:ea:c1:22:ef:bd:f5:b0:d8:8b:54:7b:89:b1:d3:7f:e8: bb:c6:25:f9:38:f5:7c:5e:4f:f0:44:f9:7d:d4:ba:3a:23:73: fb:38:b7:e4:ac:4d:ff:ac:46:96:10:38:fb:cd:5c:79:b2:a9: cf:d3:a7:4b:58:c1:d8:c2:e2:fe:c3:e0:3e:c4:6b:98:99:61: 47:3d:a9:7a:2f:ee:6a:51:9b:94:17:8c:56:be:c6:2d:95:3a: 28:7e:cf:e0:c4:cc:b9:94:a1:ab:e1:20:d0:a1:58:ae:a6:4e: 77:64:ce:be:b1:68:1d:63:74:71:1d:8f:fc:f3:32:45:87:45: 62:d3:0c:d1:e7:f5:e7:5b:0e:e6:be:07:ad:78:eb:4a:6c:04: 38:df:29:ce:2c:39:33:da:5e:2f:48:37:bf:8a:f0:01:c2:87: cc:ac:fc:76 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0E3NTExMC8GA1UEBRMoOTdBQ0RERTI5MTFBMDlGMzkzNUYxODYwREIwNTdENENG RjQ2QjJDNTAeFw0yNTA1MDIxMjM5MTVaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTRiY2YzLTc5MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8n2WvTH2kvYsqB/5QrXjSAQe94uNeYpf76uXdBHeHWShsgCH7t2PFCnoM3Xn2 TeniVSVqcJaDrFZ3VbRQaR3ee22I+Nv8yVZIJVPaT3AZ+onkEX6Mx8I1Sn7hIeTn 9+XIdygruXbhpkU25OWBXy99zE69COaKZNYq1QFCHTEsnJRzaGyaNXiRoAFEaczp w/n4/kYLk6kzlHxXh7SyV1i4Z2ahzPKSrDRe1yp6URVcykNt1XyYFMNYf5ZXvTXU c2UrYxWB58ZNG1N1XnPMqPtmUWLjPLm2sVC+0aKPfJF+n4CoHKHkqFWtsTEO0xop cYsvcIuev4NeQazWlwQeS8nBAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZTvGVPIH yLrmNKha5CB46QkYTCIwHwYDVR0jBBgwFoAUl6zd4pEaCfOTXxhg2wV9TP9GssUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3QTc1L0U2RjRCNkRBMjc1 MTExRjBBQ0YwQUYyNEM0RjlBRTAyL2w2emQ0cEVhQ2ZPVFh4aGcyd1Y5VFA5R3Nz VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbDZ6ZDRwRWFDZk9UWHhoZzJ3VjlUUDlHc3NVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0E3NS9FNkY0QjZEQTI3NTExMUYwQUNGMEFGMjRDNEY5QUUwMi83NTM4QThGQzI3 NTIxMUYwQTE0RkQzMjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMt7NzANBgkqhkiG9w0BAQsFAAOCAQEAsJR/laSYff1gnpYk D6L+soag6CBIIqf4CVh2IyujAkb5HEJ00+wULn0BvOf7p3F1CKEVvGgoCyRXfafM 0bSxD0qyJvrIr2CBFAaYa4gccf/rNn9htQtnpFc/VbHqwSLvvfWw2ItUe4mx03/o u8Yl+Tj1fF5P8ET5fdS6OiNz+zi35KxN/6xGlhA4+81cebKpz9OnS1jB2MLi/sPg PsRrmJlhRz2pei/ualGblBeMVr7GLZU6KH7P4MTMuZShq+Eg0KFYrqZOd2TOvrFo HWN0cR2P/PMyRYdFYtMM0ef151sO5r4HrXjrSmwEON8pziw5M9peL0g3v4rwAcKH zKz8dg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:50:00 2025 by rpki-client