$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/248A6CEA4A8611F0A25A1157C4F9AE02.roa File: 248A6CEA4A8611F0A25A1157C4F9AE02.roa (raw, json) Hash identifier: ciPuwXvDJnxfTSOuaqjvu4/srjMYa/gs+zRsxwhbhY0= Subject key identifier: 06:A5:12:FB:DB:0C:1F:00:33:75:E3:7E:33:41:66:AA:D2:43:C6:CA Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 07E7 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/248A6CEA4A8611F0A25A1157C4F9AE02.roa Signing time: Mon 16 Jun 2025 07:47:25 +0000 ROA not before: Mon 16 Jun 2025 07:47:25 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 202736 IP address blocks: 150.107.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 23:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2023 (0x7e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412, serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Jun 16 07:47:25 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=684fcc0d-1c9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b7:97:72:1b:a3:c6:e4:ef:4f:5d:b8:94:ea: 19:c0:0d:18:6a:03:a3:a9:73:83:1b:24:4d:3b:d0: 95:e5:dd:df:18:0f:06:02:a2:95:2b:f3:da:2d:eb: 24:2c:5a:12:14:23:2a:e6:ba:9e:84:e8:7f:2c:78: e0:79:27:62:bb:92:ff:f5:24:73:a3:38:b0:ec:d0: 9d:a0:e9:03:97:09:6d:74:93:ae:c5:7d:66:e1:b0: 19:8d:0c:a4:51:50:83:fd:a8:e0:8a:1c:2e:c3:61: f5:93:85:a1:06:d1:a8:c9:e2:92:bc:d0:5c:c1:fd: fb:f9:31:dc:b1:06:56:e0:c7:8b:48:df:6b:20:08: 77:f3:a0:09:84:12:8f:42:5a:43:91:cf:55:5b:e6: fe:c6:cd:46:67:96:55:81:7b:e6:ff:56:e4:98:a9: f1:ae:db:69:fe:66:b9:dc:20:b3:8c:81:d1:ef:df: c7:c6:e0:cb:fd:7c:dc:fe:e0:e5:1b:64:92:41:13: 8c:f9:a5:3f:f4:68:6f:58:76:28:d9:0c:a1:57:68: 2f:e0:87:cc:8b:59:61:b4:f9:67:90:d6:ee:1b:94: f4:5f:0d:3c:1c:eb:39:47:28:cf:1e:c5:21:3d:48: 62:59:66:fc:23:9b:a5:bd:0d:1b:e7:e7:9c:08:68: 4c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A5:12:FB:DB:0C:1F:00:33:75:E3:7E:33:41:66:AA:D2:43:C6:CA X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/248A6CEA4A8611F0A25A1157C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.107.1.0/24 Signature Algorithm: sha256WithRSAEncryption 15:c9:03:93:27:da:e6:ef:24:06:93:b6:3c:cd:4c:ce:e6:90: ee:b2:95:45:ab:59:5c:c7:01:89:48:89:cb:92:ae:79:e6:af: ee:dd:0a:cb:0d:5c:cb:75:83:fb:f0:76:b2:52:a2:e6:67:4d: 9b:94:5a:3b:7e:e5:67:2f:fe:6a:43:e6:11:24:4c:32:44:5c: 14:ec:80:a5:ac:d0:47:73:8f:81:59:db:cc:37:35:b2:da:3e: 5d:07:29:df:43:ba:58:73:60:f8:c7:6a:27:a7:b2:77:2d:c3: 89:d4:4b:64:15:be:a3:53:f2:a5:c7:11:eb:d2:ad:41:17:60: 77:93:75:4f:56:44:d3:af:7a:6a:1d:98:0f:5c:ea:ce:56:6f: 3a:81:96:2c:95:47:8e:94:b7:9f:0d:47:52:0e:16:c6:5e:49: f3:4a:ed:a3:11:d3:96:2d:32:3f:fd:54:ae:f5:0b:e4:59:4e: 77:5f:57:a1:0f:01:cf:b2:fb:6d:8a:bf:a2:a3:26:45:f2:a1: e0:eb:cc:9b:7e:33:73:6f:05:2d:05:c2:c5:b1:89:bf:12:2f: 81:36:f6:a8:ec:ae:7e:06:c7:ac:d3:85:37:45:b9:46:05:89: 94:08:f8:33:4c:ce:8f:bb:1c:42:aa:23:3b:49:14:d5:e7:e8: 7a:0b:26:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjUwNjE2MDc0NzI1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRmY2MwZC0xYzliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0reXchujxuTvT124lOoZwA0YagOjqXODGyRNO9CV5d3fGA8GAqKVK/PaLesk LFoSFCMq5rqehOh/LHjgeSdiu5L/9SRzoziw7NCdoOkDlwltdJOuxX1m4bAZjQyk UVCD/ajgihwuw2H1k4WhBtGoyeKSvNBcwf37+THcsQZW4MeLSN9rIAh386AJhBKP QlpDkc9VW+b+xs1GZ5ZVgXvm/1bkmKnxrttp/ma53CCzjIHR79/HxuDL/Xzc/uDl G2SSQROM+aU/9GhvWHYo2QyhV2gv4IfMi1lhtPlnkNbuG5T0Xw08HOs5RyjPHsUh PUhiWWb8I5ulvQ0b5+ecCGhMdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAalEvvb DB8AM3XjfjNBZqrSQ8bKMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvMjQ4QTZDRUE0 QTg2MTFGMEEyNUExMTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACWawEwDQYJKoZIhvcNAQELBQADggEBABXJA5Mn2ubvJAaT tjzNTM7mkO6ylUWrWVzHAYlIicuSrnnmr+7dCssNXMt1g/vwdrJSouZnTZuUWjt+ 5Wcv/mpD5hEkTDJEXBTsgKWs0Edzj4FZ28w3NbLaPl0HKd9DulhzYPjHaiensnct w4nUS2QVvqNT8qXHEevSrUEXYHeTdU9WRNOvemodmA9c6s5WbzqBliyVR46Ut58N R1IOFsZeSfNK7aMR05YtMj/9VK71C+RZTndfV6EPAc+y+22Kv6KjJkXyoeDrzJt+ M3NvBS0FwsWxib8SL4E29qjsrn4Gx6zThTdFuUYFiZQI+DNMzo+7HEKqIztJFNXn 6HoLJoI= -----END CERTIFICATE-----Generated at Thu Jul 3 09:49:10 2025 by rpki-client