$ rpki-client -vvf rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/D358B3804F3611F0BF36F00EC4F9AE02.roa File: D358B3804F3611F0BF36F00EC4F9AE02.roa (raw, json) Hash identifier: 5ulq+1QknQJTgHvfsWDJiaY0hEFpf2cI+46jrEBDVEY= Subject key identifier: EB:91:64:CF:78:3C:7B:B6:8A:DA:6F:AC:AF:3A:AE:7B:8F:3D:4A:72 Certificate issuer: /CN=A912FCD6/serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Certificate serial: 2258 Authority key identifier: 53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/D358B3804F3611F0BF36F00EC4F9AE02.roa Signing time: Sun 22 Jun 2025 07:02:14 +0000 ROA not before: Sun 22 Jun 2025 07:02:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 59.153.30.0/24 maxlen: 24 180.210.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8792 (0x2258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FCD6, serialNumber=53BF0DD780DB038ECE14D40459BAB9C68F69853B Validity Not Before: Jun 22 07:02:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6857aa76-1398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8f:2b:99:36:a0:ab:3c:ec:24:f6:3e:0d:88: 1b:d4:f3:35:29:e0:05:91:9f:7f:0a:31:b3:5b:47: ae:7c:e8:7d:4e:99:6f:27:e6:52:1c:8e:16:c7:90: b7:14:6c:0c:11:8e:47:09:b7:a4:4a:f9:07:18:11: 8e:a5:3f:d6:99:96:a5:8f:cf:87:12:92:01:fb:56: f0:dc:7d:7d:95:47:ed:d0:1f:4d:1c:c0:9a:fb:d9: 37:6c:50:b3:20:73:f4:77:f6:cc:89:71:c3:ea:89: 30:40:1b:8e:9a:1d:cf:a2:82:fd:b4:85:36:a5:ed: a6:49:de:46:5b:f2:84:6d:67:7f:2c:9e:4c:c7:f1: 6d:d2:67:df:2e:52:30:cb:a1:e7:64:b5:69:01:40: c4:ee:46:06:3b:b8:bd:cd:a0:41:f1:77:eb:4c:d5: 0c:55:d4:ec:ca:c1:77:cd:ee:71:a8:ce:a7:e0:9c: ca:b5:41:01:53:8b:de:cd:41:ca:c5:81:fa:34:b4: 2c:66:de:ba:7e:17:2a:7b:8b:92:ca:02:83:79:3d: cf:a9:f6:fa:d6:bb:a7:e3:d9:18:20:47:9f:d0:d7: e8:53:49:14:da:24:46:8d:ea:20:3f:c7:28:44:87: 60:f6:8e:ce:11:c8:ad:62:29:ce:aa:5a:aa:2c:9a: 57:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:91:64:CF:78:3C:7B:B6:8A:DA:6F:AC:AF:3A:AE:7B:8F:3D:4A:72 X509v3 Authority Key Identifier: keyid:53:BF:0D:D7:80:DB:03:8E:CE:14:D4:04:59:BA:B9:C6:8F:69:85:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/U78N14DbA47OFNQEWbq5xo9phTs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U78N14DbA47OFNQEWbq5xo9phTs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FCD6/1E9E1AACD2EA11E5AFB1E24CC4F9AE02/D358B3804F3611F0BF36F00EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.30.0/24 180.210.223.0/24 Signature Algorithm: sha256WithRSAEncryption 69:46:c7:61:fe:53:ee:cd:62:a2:f1:b5:cf:b1:b5:ac:b8:00: d5:02:73:5b:10:66:95:96:a3:b8:3c:30:2d:38:1d:9a:54:1e: 0f:fc:6c:22:49:11:2a:ac:b5:bc:20:0d:3f:68:16:c1:fc:e7: 43:62:e4:2d:11:52:04:20:0c:fd:cb:fb:cb:8b:62:38:80:4b: ed:5f:a4:10:db:91:95:1b:49:31:99:3c:ae:2f:6e:5f:be:42: 90:d5:4e:c8:ce:97:ca:5a:90:55:e3:14:9b:5a:21:58:d6:02: ae:4c:a1:f1:d5:c1:90:4a:f9:26:78:b6:d9:3e:99:da:94:54: f6:6c:d6:44:98:24:ff:cb:8b:6c:26:fe:7a:fd:c0:96:0c:00: d8:70:60:b8:73:a1:cb:71:86:d8:37:f2:49:1e:9e:57:0d:c1: a3:ae:3f:69:3c:8d:7d:d5:34:22:11:f3:88:ef:0e:49:77:61: 6e:02:05:bf:16:05:14:ba:fd:ae:81:d6:1a:39:27:ec:ee:14: 4e:b3:f5:73:62:60:12:1b:ed:b5:5b:5b:53:0a:4e:8c:0c:0c: 6e:a3:b1:7c:fa:65:45:48:7b:5c:29:af:df:51:a0:05:22:d2: b9:ae:31:29:62:b8:0e:87:20:1d:79:e1:71:82:7e:97:ae:29: 1b:c7:fa:7a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICIlgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDRDYxMTAvBgNVBAUTKDUzQkYwREQ3ODBEQjAzOEVDRTE0RDQwNDU5QkFCOUM2 OEY2OTg1M0IwHhcNMjUwNjIyMDcwMjE0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU3YWE3Ni0xMzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsY8rmTagqzzsJPY+DYgb1PM1KeAFkZ9/CjGzW0eufOh9TplvJ+ZSHI4Wx5C3 FGwMEY5HCbekSvkHGBGOpT/WmZalj8+HEpIB+1bw3H19lUft0B9NHMCa+9k3bFCz IHP0d/bMiXHD6okwQBuOmh3PooL9tIU2pe2mSd5GW/KEbWd/LJ5Mx/Ft0mffLlIw y6HnZLVpAUDE7kYGO7i9zaBB8XfrTNUMVdTsysF3ze5xqM6n4JzKtUEBU4vezUHK xYH6NLQsZt66fhcqe4uSygKDeT3Pqfb61run49kYIEef0NfoU0kU2iRGjeogP8co RIdg9o7OEcitYinOqlqqLJpXlQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOuRZM94 PHu2itpvrK86rnuPPUpyMB8GA1UdIwQYMBaAFFO/DdeA2wOOzhTUBFm6ucaPaYU7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkNENi8xRTlFMUFBQ0Qy RUExMUU1QUZCMUUyNENDNEY5QUUwMi9VNzhOMTREYkE0N09GTlFFV2JxNXhvOXBo VHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U3OE4xNERiQTQ3T0ZOUUVXYnE1eG85cGhUcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDRDYvMUU5RTFBQUNEMkVBMTFFNUFGQjFFMjRDQzRGOUFFMDIvRDM1OEIzODA0 RjM2MTFGMEJGMzZGMDBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAA7mR4DBAC00t8wDQYJKoZIhvcNAQELBQADggEBAGlGx2H+ U+7NYqLxtc+xtay4ANUCc1sQZpWWo7g8MC04HZpUHg/8bCJJESqstbwgDT9oFsH8 50Ni5C0RUgQgDP3L+8uLYjiAS+1fpBDbkZUbSTGZPK4vbl++QpDVTsjOl8pakFXj FJtaIVjWAq5MofHVwZBK+SZ4ttk+mdqUVPZs1kSYJP/Li2wm/nr9wJYMANhwYLhz octxhtg38kkenlcNwaOuP2k8jX3VNCIR84jvDkl3YW4CBb8WBRS6/a6B1ho5J+zu FE6z9XNiYBIb7bVbW1MKTowMDG6jsXz6ZUVIe1wpr99RoAUi0rmuMSliuA6HIB15 4XGCfpeuKRvH+no= -----END CERTIFICATE-----Generated at Thu Jul 3 03:04:25 2025 by rpki-client