$ rpki-client -vvf rpki.apnic.net/member_repository/A912F62D/2DA57C3CEA7011EF8154C36BC4F9AE02/6DAFB1EAEA7E11EF93A91726C4F9AE02.roa File: 6DAFB1EAEA7E11EF93A91726C4F9AE02.roa (raw, json) Hash identifier: RGby5CWUvljyTQmbtKXFF+09T5sv2LL/jpj1mhUT/QE= Subject key identifier: 92:4A:BF:47:E3:17:8D:2C:50:78:45:DB:A6:F4:8C:68:24:C6:9D:CA Certificate issuer: /CN=A912F62D/serialNumber=5492462105CEB052DBA9DAE8BB635F05F777161D Certificate serial: 49 Authority key identifier: 54:92:46:21:05:CE:B0:52:DB:A9:DA:E8:BB:63:5F:05:F7:77:16:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VJJGIQXOsFLbqdrou2NfBfd3Fh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F62D/2DA57C3CEA7011EF8154C36BC4F9AE02/6DAFB1EAEA7E11EF93A91726C4F9AE02.roa Signing time: Fri 27 Jun 2025 07:21:49 +0000 ROA not before: Fri 27 Jun 2025 07:21:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4764 IP address blocks: 203.31.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F62D/2DA57C3CEA7011EF8154C36BC4F9AE02/VJJGIQXOsFLbqdrou2NfBfd3Fh0.crl rsync://rpki.apnic.net/member_repository/A912F62D/2DA57C3CEA7011EF8154C36BC4F9AE02/VJJGIQXOsFLbqdrou2NfBfd3Fh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VJJGIQXOsFLbqdrou2NfBfd3Fh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F62D, serialNumber=5492462105CEB052DBA9DAE8BB635F05F777161D Validity Not Before: Jun 27 07:21:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e468d-5b11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d4:3c:36:38:28:d9:4f:00:18:7d:85:19:80: 04:16:1b:28:56:9f:1d:fe:ea:9d:77:85:cb:51:fc: 4d:ae:2e:16:a4:c0:ee:b5:37:9f:6a:fe:85:22:9d: 0b:f2:75:3f:05:7c:e1:ac:7f:d7:45:e0:b2:6b:21: 28:c7:d6:19:15:b1:18:87:56:0e:ae:d7:f8:1e:11: ed:ce:cc:cb:2b:08:33:be:9d:7a:d0:2a:40:2f:d3: f0:b4:1b:2e:eb:70:e9:9a:78:c2:11:70:ea:87:ac: 10:33:e9:35:c6:41:97:6d:d4:51:fa:2a:b8:71:83: 7c:0b:6c:ad:cc:ea:1b:ae:85:25:1b:b5:2f:34:cc: f8:40:47:ab:2e:64:ed:a0:82:f4:ed:87:a1:48:ae: 0d:06:ea:bd:d6:37:be:cb:0f:44:c9:99:7e:40:45: 8b:6b:0e:f7:b4:8c:8b:ba:88:c6:75:f9:0e:22:a0: 72:8f:38:f2:a5:50:5b:68:0b:86:53:df:57:d7:bb: 56:00:db:86:fa:df:c8:8b:28:c6:7e:07:0c:14:19: 06:38:ba:3d:f3:99:f0:51:08:ab:2f:e2:78:f8:46: 76:0f:63:d9:44:c2:dd:0c:6c:8a:a2:36:34:89:12: 78:bf:64:f4:a5:d7:a6:47:22:0c:ce:6e:18:9f:71: 93:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:4A:BF:47:E3:17:8D:2C:50:78:45:DB:A6:F4:8C:68:24:C6:9D:CA X509v3 Authority Key Identifier: keyid:54:92:46:21:05:CE:B0:52:DB:A9:DA:E8:BB:63:5F:05:F7:77:16:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F62D/2DA57C3CEA7011EF8154C36BC4F9AE02/VJJGIQXOsFLbqdrou2NfBfd3Fh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VJJGIQXOsFLbqdrou2NfBfd3Fh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F62D/2DA57C3CEA7011EF8154C36BC4F9AE02/6DAFB1EAEA7E11EF93A91726C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.31.96.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:37:0d:bf:0f:a1:43:94:a6:65:08:f5:67:db:14:66:b9:ca: 28:b4:2c:41:82:aa:ce:9a:fc:4d:80:28:73:45:84:a6:8b:2c: 1d:ef:a3:b5:f5:a3:f5:2d:ef:cc:1b:36:f0:c2:58:39:28:34: 1e:8b:43:a1:e9:59:b1:c4:c6:73:8c:25:3f:6b:f0:53:a9:2a: 11:86:8f:43:05:7e:2d:5b:16:61:35:d9:10:0a:1f:4b:93:6a: 98:99:19:9d:80:f6:8c:57:83:83:4f:83:34:f9:22:d7:fc:a4: 6f:76:ba:8c:f0:27:75:21:6a:ee:d3:6f:bc:58:a9:27:99:ee: 57:af:d0:0a:37:61:d5:05:1c:b7:73:a7:e8:d6:cc:4c:4b:8a: 24:65:51:39:7f:6c:61:65:6a:00:1b:3a:3c:0e:15:cf:7b:d5: 67:80:ec:d6:38:85:90:c4:95:d9:a4:13:21:e1:43:07:df:aa: 2a:2c:23:2a:f1:f4:94:ac:cd:7a:45:2f:20:cd:6b:e8:ea:55: 74:15:09:bf:05:48:ee:60:4c:f9:7c:86:09:90:ac:a1:46:8f: 75:92:1d:82:e3:1d:05:80:2d:0b:92:d1:de:84:6e:5f:7d:f4: 42:a4:49:65:d6:a8:4d:69:57:15:04:cf:2d:2f:f1:7f:74:c7: 14:9c:34:bb -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjYyRDExMC8GA1UEBRMoNTQ5MjQ2MjEwNUNFQjA1MkRCQTlEQUU4QkI2MzVGMDVG Nzc3MTYxRDAeFw0yNTA2MjcwNzIxNDlaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NWU0NjhkLTViMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz1Dw2OCjZTwAYfYUZgAQWGyhWnx3+6p13hctR/E2uLhakwO61N59q/oUinQvy dT8FfOGsf9dF4LJrISjH1hkVsRiHVg6u1/geEe3OzMsrCDO+nXrQKkAv0/C0Gy7r cOmaeMIRcOqHrBAz6TXGQZdt1FH6Krhxg3wLbK3M6huuhSUbtS80zPhAR6suZO2g gvTth6FIrg0G6r3WN77LD0TJmX5ARYtrDve0jIu6iMZ1+Q4ioHKPOPKlUFtoC4ZT 31fXu1YA24b638iLKMZ+BwwUGQY4uj3zmfBRCKsv4nj4RnYPY9lEwt0MbIqiNjSJ Eni/ZPSl16ZHIgzObhifcZPLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUkkq/R+MX jSxQeEXbpvSMaCTGncowHwYDVR0jBBgwFoAUVJJGIQXOsFLbqdrou2NfBfd3Fh0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGNjJELzJEQTU3QzNDRUE3 MDExRUY4MTU0QzM2QkM0RjlBRTAyL1ZKSkdJUVhPc0ZMYnFkcm91Mk5mQmZkM0Zo MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVkpKR0lRWE9zRkxicWRyb3UyTmZCZmQzRmgwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjYyRC8yREE1N0MzQ0VBNzAxMUVGODE1NEMzNkJDNEY5QUUwMi82REFGQjFFQUVB N0UxMUVGOTNBOTE3MjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsfYDANBgkqhkiG9w0BAQsFAAOCAQEAjDcNvw+hQ5SmZQj1 Z9sUZrnKKLQsQYKqzpr8TYAoc0WEpossHe+jtfWj9S3vzBs28MJYOSg0HotDoelZ scTGc4wlP2vwU6kqEYaPQwV+LVsWYTXZEAofS5NqmJkZnYD2jFeDg0+DNPki1/yk b3a6jPAndSFq7tNvvFipJ5nuV6/QCjdh1QUct3On6NbMTEuKJGVROX9sYWVqABs6 PA4Vz3vVZ4Ds1jiFkMSV2aQTIeFDB9+qKiwjKvH0lKzNekUvIM1r6OpVdBUJvwVI 7mBM+XyGCZCsoUaPdZIdguMdBYAtC5LR3oRuX330QqRJZdaoTWlXFQTPLS/xf3TH FJw0uw== -----END CERTIFICATE-----Generated at Sat Jul 5 19:13:44 2025 by rpki-client