$ rpki-client -vvf rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/C48E5CA6EC5811EFB20A8A18C4F9AE02.roa File: C48E5CA6EC5811EFB20A8A18C4F9AE02.roa (raw, json) Hash identifier: 93C48aUyOvrcw03A3Tv7n2rRAvJ48I+je6JuY6BDvN8= Subject key identifier: 84:A9:5C:7A:64:2C:45:F7:49:3B:2A:59:25:14:78:B7:23:12:B1:1A Certificate issuer: /CN=A911F753/serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Certificate serial: 6B Authority key identifier: 2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/C48E5CA6EC5811EFB20A8A18C4F9AE02.roa Signing time: Wed 25 Jun 2025 06:02:40 +0000 ROA not before: Wed 25 Jun 2025 06:02:40 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 214571 IP address blocks: 160.250.224.0/24 maxlen: 24 160.250.225.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F753, serialNumber=2D49B3AE6DA18B63464A3177AB32101942E6A51A Validity Not Before: Jun 25 06:02:40 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=685b9100-74dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:89:3f:eb:25:1a:99:d1:78:d5:7a:e2:46:1c: a7:cb:9f:24:f3:81:4e:ab:a4:6d:09:55:81:16:ac: d9:58:9d:f9:22:c0:d4:94:77:d2:64:d4:ca:ba:00: dd:e6:f5:e6:5d:7a:a0:e6:e9:c6:9c:ca:2c:2a:26: a1:a9:c0:86:d2:96:c5:23:00:d4:61:13:53:d5:30: a6:b1:90:4f:ec:28:7d:a4:54:5c:90:85:c6:10:c1: f5:70:bb:23:e7:5a:ca:40:59:0a:a6:98:54:19:4b: 08:ae:8d:fd:3d:5b:27:6e:bb:12:22:93:9f:93:b1: 45:0c:4e:f8:6c:b3:8c:8e:dd:b6:e0:0c:6b:21:08: a3:58:8a:00:54:03:34:31:6d:e5:3d:2c:b3:12:7d: 6f:9c:85:37:c9:b1:ee:8b:57:f2:ad:77:fa:c0:b0: 5b:b6:d7:21:ad:e8:a5:b0:b4:17:05:4d:3f:f7:48: c5:66:f6:61:23:a7:01:24:51:f2:52:78:ff:09:43: 1c:ae:09:3d:4e:dd:e4:4d:2c:63:81:d2:25:1f:8d: 01:09:d7:42:66:3a:7e:91:a4:78:2c:1b:61:71:c3: 4a:3e:d1:b9:a8:1c:f2:54:be:4c:36:af:2a:c7:3b: 05:b3:a1:31:2c:b0:5d:c0:be:2a:11:4d:9f:7b:cc: bd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:A9:5C:7A:64:2C:45:F7:49:3B:2A:59:25:14:78:B7:23:12:B1:1A X509v3 Authority Key Identifier: keyid:2D:49:B3:AE:6D:A1:8B:63:46:4A:31:77:AB:32:10:19:42:E6:A5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/LUmzrm2hi2NGSjF3qzIQGULmpRo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/LUmzrm2hi2NGSjF3qzIQGULmpRo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F753/7809DA02BC0D11EF9B4AD649C4F9AE02/C48E5CA6EC5811EFB20A8A18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.224.0/23 Signature Algorithm: sha256WithRSAEncryption 58:df:03:ed:21:06:39:43:98:94:46:5c:f7:67:1a:59:2b:29: 9a:fb:49:82:55:bd:42:02:e4:a3:f0:b2:3a:5d:c2:e8:32:f5: 93:47:47:0c:cb:eb:9b:c2:87:62:1a:b7:4b:7e:a9:a7:31:46: ca:ac:e4:c1:9a:0f:c5:f0:12:8d:2d:f4:64:8a:9e:73:85:09: f4:5d:5d:76:07:a9:64:d7:66:57:31:39:ef:2d:5c:5e:59:6d: 68:14:c2:ce:bd:fc:83:0b:9f:bd:55:53:a4:2a:fc:8a:17:8b: 41:0e:66:1f:1e:10:e9:8f:2b:77:fd:e7:ad:b2:99:83:d9:db: 6f:1c:ec:6f:0c:45:1a:25:24:22:0f:a2:51:9a:c6:1f:85:7a: b7:34:e5:f9:61:35:ce:bd:f5:9a:c1:3d:4a:b8:de:98:47:32: fa:ae:97:43:ec:1b:14:6f:44:b0:60:22:b1:ff:5d:1e:64:f9: c4:7f:6c:67:1b:0b:d1:25:48:82:da:b3:39:b5:67:41:e2:3a: 7a:6f:3b:31:b4:0b:2b:cf:0f:b5:e4:08:ee:08:5f:83:ee:b0: cb:bc:e3:37:3a:09:9f:a3:eb:7a:fb:88:12:bb:43:93:10:1a: 0b:fc:7a:90:e6:b8:75:33:80:31:f5:6c:fe:32:93:13:ef:17: 50:af:f4:5d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx Rjc1MzExMC8GA1UEBRMoMkQ0OUIzQUU2REExOEI2MzQ2NEEzMTc3QUIzMjEwMTk0 MkU2QTUxQTAeFw0yNTA2MjUwNjAyNDBaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWI5MTAwLTc0ZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbiT/rJRqZ0XjVeuJGHKfLnyTzgU6rpG0JVYEWrNlYnfkiwNSUd9Jk1Mq6AN3m 9eZdeqDm6cacyiwqJqGpwIbSlsUjANRhE1PVMKaxkE/sKH2kVFyQhcYQwfVwuyPn WspAWQqmmFQZSwiujf09WyduuxIik5+TsUUMTvhss4yO3bbgDGshCKNYigBUAzQx beU9LLMSfW+chTfJse6LV/Ktd/rAsFu21yGt6KWwtBcFTT/3SMVm9mEjpwEkUfJS eP8JQxyuCT1O3eRNLGOB0iUfjQEJ10JmOn6RpHgsG2Fxw0o+0bmoHPJUvkw2ryrH OwWzoTEssF3AvioRTZ97zL13AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhKlcemQs RfdJOypZJRR4tyMSsRowHwYDVR0jBBgwFoAULUmzrm2hi2NGSjF3qzIQGULmpRow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNzUzLzc4MDlEQTAyQkMw RDExRUY5QjRBRDY0OUM0RjlBRTAyL0xVbXpybTJoaTJOR1NqRjNxeklRR1VMbXBS by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTFVtenJtMmhpMk5HU2pGM3F6SVFHVUxtcFJvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Rjc1My83ODA5REEwMkJDMEQxMUVGOUI0QUQ2NDlDNEY5QUUwMi9DNDhFNUNBNkVD NTgxMUVGQjIwQThBMThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD64DANBgkqhkiG9w0BAQsFAAOCAQEAWN8D7SEGOUOYlEZc 92caWSspmvtJglW9QgLko/CyOl3C6DL1k0dHDMvrm8KHYhq3S36ppzFGyqzkwZoP xfASjS30ZIqec4UJ9F1ddgepZNdmVzE57y1cXlltaBTCzr38gwufvVVTpCr8iheL QQ5mHx4Q6Y8rd/3nrbKZg9nbbxzsbwxFGiUkIg+iUZrGH4V6tzTl+WE1zr31msE9 SrjemEcy+q6XQ+wbFG9EsGAisf9dHmT5xH9sZxsL0SVIgtqzObVnQeI6em87MbQL K88PteQI7ghfg+6wy7zjNzoJn6PrevuIErtDkxAaC/x6kOa4dTOAMfVs/jKTE+8X UK/0XQ== -----END CERTIFICATE-----Generated at Fri Jul 4 14:53:38 2025 by rpki-client