$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa File: 4F7540B64BE311F096B8CE67C4F9AE02.roa (raw, json) Hash identifier: 42wtHPLx0JrkQKTrCFLyZY4pDRcmXa+t+VZA3lR/+FQ= Subject key identifier: E5:A3:C6:78:71:8C:B1:6B:F3:32:8C:3C:5B:CB:54:5B:A6:63:AE:23 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0A6F Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa Signing time: Wed 18 Jun 2025 01:26:51 +0000 ROA not before: Wed 18 Jun 2025 01:26:51 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149175 IP address blocks: 203.168.244.0/24 maxlen: 24 203.168.245.0/24 maxlen: 24 203.168.246.0/24 maxlen: 24 203.168.247.0/24 maxlen: 24 203.168.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:27:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2671 (0xa6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Jun 18 01:26:51 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=685215db-61ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:55:14:cb:1a:73:8e:04:33:bb:a7:9e:9e:ad: 15:a2:24:54:90:ca:5b:92:0c:3a:d7:30:d3:6d:49: 3c:db:5f:31:a1:e1:d0:27:e5:30:af:24:4c:b7:33: f7:3a:6a:bf:ad:f8:ae:b2:e9:91:e8:ed:b6:49:8a: 5c:da:ff:eb:12:62:91:0a:e0:78:7b:c6:2f:3b:fd: e0:22:15:b9:98:75:5a:53:cb:4f:64:c5:93:26:64: 37:bb:23:71:ba:4f:fc:ed:ef:26:b7:53:e9:a0:06: 60:86:a4:8c:bd:17:26:13:30:48:12:5b:29:8c:49: 55:34:20:79:c7:3c:c3:16:e7:f1:0c:61:1b:f0:a5: f7:b5:98:7d:22:ff:f5:a5:58:ef:fe:07:bb:d1:c2: c4:94:88:11:d5:fe:f3:1f:81:a5:02:95:19:f1:de: 3e:5e:47:a0:f7:e2:69:7c:3c:4f:7d:26:b4:e5:cc: 66:fe:cf:00:68:0b:ec:4a:ac:28:80:0c:4e:04:21: f3:0f:d8:37:20:10:5b:d2:4d:9a:c5:c1:b3:36:e5: 1a:eb:6c:53:0c:60:de:fb:73:1c:f9:99:51:e8:7e: 7b:73:f1:77:07:d0:6b:b7:fd:5a:e2:a5:bd:f2:d7: 4e:61:fd:dc:3f:e4:c3:8b:4d:ef:6c:7d:d6:1d:aa: 5c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A3:C6:78:71:8C:B1:6B:F3:32:8C:3C:5B:CB:54:5B:A6:63:AE:23 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.168.244.0/22 203.168.253.0/24 Signature Algorithm: sha256WithRSAEncryption 95:99:5e:2f:22:f8:70:73:49:56:82:26:9c:43:c6:32:ec:17: f7:75:f9:63:3c:64:11:e6:ac:ea:e2:1e:af:a1:d1:e8:7a:80: 0e:86:5d:7a:39:46:40:f5:bf:95:2d:23:51:a8:78:d9:c1:d2: bd:31:e9:14:0f:40:d9:f1:47:96:2f:aa:2d:d0:af:2c:e6:6a: c1:f0:0a:23:ec:52:32:88:7b:6c:2c:0d:9d:f8:ff:6d:db:57: ef:50:ea:77:95:08:5e:ef:ea:60:12:60:9f:73:95:c3:75:11: 29:14:4f:24:dc:42:79:4e:53:4f:d8:0e:b8:80:89:36:32:a5: 0e:11:ed:2a:16:1c:58:6b:ab:91:e7:31:a5:ea:82:77:af:9b: ab:a2:1d:89:5f:57:c8:59:6f:b4:0b:b3:70:53:60:f4:fa:cf: 2a:23:31:3f:2b:93:60:71:26:c1:c8:50:d8:aa:97:68:f3:95: 95:54:cc:01:6f:1a:59:a2:54:f3:5e:18:a7:42:43:38:fe:de: d8:6c:59:97:0e:61:5a:94:8f:05:03:05:3c:3e:73:c9:fb:cc: 8a:90:07:e2:70:78:39:50:c3:f3:16:55:a1:89:1f:40:3b:1b: 7f:02:22:a9:1e:9c:50:87:65:4a:3f:9c:91:ed:50:a6:a9:73: 7c:d5:a6:f3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCm8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUwNjE4MDEyNjUxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODUyMTVkYi02MWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApVUUyxpzjgQzu6eenq0VoiRUkMpbkgw61zDTbUk8218xoeHQJ+UwryRMtzP3 Omq/rfiusumR6O22SYpc2v/rEmKRCuB4e8YvO/3gIhW5mHVaU8tPZMWTJmQ3uyNx uk/87e8mt1PpoAZghqSMvRcmEzBIElspjElVNCB5xzzDFufxDGEb8KX3tZh9Iv/1 pVjv/ge70cLElIgR1f7zH4GlApUZ8d4+Xkeg9+JpfDxPfSa05cxm/s8AaAvsSqwo gAxOBCHzD9g3IBBb0k2axcGzNuUa62xTDGDe+3Mc+ZlR6H57c/F3B9Brt/1a4qW9 8tdOYf3cP+TDi03vbH3WHapcjQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOWjxnhx jLFr8zKMPFvLVFumY64jMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvNEY3NTQwQjY0 QkUzMTFGMDk2QjhDRTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALLqPQDBADLqP0wDQYJKoZIhvcNAQELBQADggEBAJWZXi8i +HBzSVaCJpxDxjLsF/d1+WM8ZBHmrOriHq+h0eh6gA6GXXo5RkD1v5UtI1GoeNnB 0r0x6RQPQNnxR5Yvqi3QryzmasHwCiPsUjKIe2wsDZ34/23bV+9Q6neVCF7v6mAS YJ9zlcN1ESkUTyTcQnlOU0/YDriAiTYypQ4R7SoWHFhrq5HnMaXqgnevm6uiHYlf V8hZb7QLs3BTYPT6zyojMT8rk2BxJsHIUNiql2jzlZVUzAFvGlmiVPNeGKdCQzj+ 3thsWZcOYVqUjwUDBTw+c8n7zIqQB+JweDlQw/MWVaGJH0A7G38CIqkenFCHZUo/ nJHtUKapc3zVpvM= -----END CERTIFICATE-----Generated at Thu Jul 3 20:04:58 2025 by rpki-client