$ rpki-client -vvf rpki.apnic.net/member_repository/A913860A/B50A3C248B5411EF94747249C4F9AE02/74D48D868CED11EF820CF762C4F9AE02.roa File: 74D48D868CED11EF820CF762C4F9AE02.roa (raw, json) Hash identifier: bCPjZwZmlHBgCs+Qm1ne0zrJBjSqfGieGVaydzDqyrg= Subject key identifier: 7B:E9:4F:56:E5:B1:F0:31:36:C3:37:18:18:0E:63:B7:13:B5:15:E8 Certificate issuer: /CN=A913860A/serialNumber=65627112EAE7B2C92F89F7A78A71A2A4FA95F53D Certificate serial: BD Authority key identifier: 65:62:71:12:EA:E7:B2:C9:2F:89:F7:A7:8A:71:A2:A4:FA:95:F5:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZWJxEurnsskvifeninGipPqV9T0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913860A/B50A3C248B5411EF94747249C4F9AE02/74D48D868CED11EF820CF762C4F9AE02.roa Signing time: Tue 19 Aug 2025 05:48:38 +0000 ROA not before: Tue 19 Aug 2025 05:48:38 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 24046 IP address blocks: 203.10.24.0/24 maxlen: 24 203.10.25.0/24 maxlen: 24 203.10.26.0/24 maxlen: 24 203.10.27.0/24 maxlen: 24 203.10.28.0/24 maxlen: 24 203.10.29.0/24 maxlen: 24 203.10.30.0/24 maxlen: 24 203.10.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913860A/B50A3C248B5411EF94747249C4F9AE02/ZWJxEurnsskvifeninGipPqV9T0.crl rsync://rpki.apnic.net/member_repository/A913860A/B50A3C248B5411EF94747249C4F9AE02/ZWJxEurnsskvifeninGipPqV9T0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZWJxEurnsskvifeninGipPqV9T0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913860A, serialNumber=65627112EAE7B2C92F89F7A78A71A2A4FA95F53D Validity Not Before: Aug 19 05:48:38 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68a41035-617f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:e3:f8:13:d6:61:87:8a:d6:ba:fb:f0:3c:f7: 15:f1:1c:d7:e7:a5:ea:2b:b2:e4:1b:bd:1d:b1:94: 59:df:9c:ac:b0:97:dd:0f:1c:cb:fa:34:af:ac:42: 76:67:4c:8b:10:ac:3f:42:8f:ea:34:90:f8:b5:51: 35:90:56:0c:0c:3b:80:91:95:be:8f:7d:aa:67:a3: aa:77:c7:69:82:49:80:db:5d:6b:e4:a5:aa:b9:d3: ed:7c:ec:b3:4e:b1:05:07:b2:0e:7d:96:6d:19:f0: 48:0a:71:bb:09:cc:d9:41:e3:f8:ef:da:06:3a:e4: e2:32:0d:dc:88:f7:30:eb:91:14:34:40:7d:b3:09: cd:9a:6d:eb:83:b2:b2:7a:65:d9:65:06:0e:d0:d4: 3a:35:11:72:df:c3:c5:26:eb:8e:35:49:6a:32:3d: 18:ae:aa:60:32:e8:af:69:2e:ff:36:1d:c5:a5:ae: da:62:e1:b9:6a:e4:32:9e:83:45:d7:4b:fc:05:fb: 41:d9:48:48:06:01:74:eb:70:b3:27:1f:88:f0:69: 21:fc:a7:0a:11:8b:0f:be:fc:c3:a2:af:b8:b0:ff: 0b:5c:39:3b:44:e6:d2:e9:8f:32:16:3f:71:6c:2c: bd:95:6c:7b:09:b6:19:71:c9:3f:08:16:f8:a7:fd: 50:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:E9:4F:56:E5:B1:F0:31:36:C3:37:18:18:0E:63:B7:13:B5:15:E8 X509v3 Authority Key Identifier: keyid:65:62:71:12:EA:E7:B2:C9:2F:89:F7:A7:8A:71:A2:A4:FA:95:F5:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913860A/B50A3C248B5411EF94747249C4F9AE02/ZWJxEurnsskvifeninGipPqV9T0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZWJxEurnsskvifeninGipPqV9T0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913860A/B50A3C248B5411EF94747249C4F9AE02/74D48D868CED11EF820CF762C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.10.24.0/21 Signature Algorithm: sha256WithRSAEncryption ca:97:b4:6a:aa:f6:82:ff:a6:23:e2:18:73:42:9e:18:ff:bd: 29:86:78:da:61:4e:27:10:41:c6:21:13:66:cf:db:c7:50:8f: 67:9f:b8:4b:70:26:b7:9f:32:65:d7:8a:0e:2b:ee:85:19:d2: 1b:a8:55:f7:d2:ad:f6:a8:61:b8:3c:84:d9:62:b9:8b:fb:df: 8a:b2:12:a5:d4:aa:e4:99:34:ff:4f:47:72:af:83:6f:da:2c: 8c:07:99:84:65:57:87:77:08:14:28:5e:43:1c:8b:f7:9d:6c: 43:8c:9f:49:a5:a1:9a:30:4d:25:f0:1a:78:87:6f:33:c1:51: 67:17:19:2d:34:63:ce:9f:6c:cd:b6:0a:a6:0b:ee:3f:b6:86: b6:f3:f0:98:39:23:87:5d:4f:49:4e:eb:ff:86:62:3c:36:96: c8:92:4b:f1:8e:39:7d:cd:24:dc:30:58:fe:a8:f4:c7:39:51: 0b:56:95:20:ab:e8:d6:4d:e5:a9:ea:68:52:48:7a:20:53:40: e6:ee:7f:98:77:ef:03:70:ee:70:7b:67:da:0d:be:d3:f3:a5: d9:0c:8e:08:12:9f:3c:69:b5:2f:93:94:04:a4:61:b0:c4:a6: 32:a7:c8:11:54:ac:4a:f6:ae:8e:ed:be:30:5b:80:b6:71:0d: 56:54:a7:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg2MEExMTAvBgNVBAUTKDY1NjI3MTEyRUFFN0IyQzkyRjg5RjdBNzhBNzFBMkE0 RkE5NUY1M0QwHhcNMjUwODE5MDU0ODM4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE0MTAzNS02MTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+P4E9Zhh4rWuvvwPPcV8RzX56XqK7LkG70dsZRZ35yssJfdDxzL+jSvrEJ2 Z0yLEKw/Qo/qNJD4tVE1kFYMDDuAkZW+j32qZ6Oqd8dpgkmA211r5KWqudPtfOyz TrEFB7IOfZZtGfBICnG7CczZQeP479oGOuTiMg3ciPcw65EUNEB9swnNmm3rg7Ky emXZZQYO0NQ6NRFy38PFJuuONUlqMj0YrqpgMuivaS7/Nh3Fpa7aYuG5auQynoNF 10v8BftB2UhIBgF063CzJx+I8Gkh/KcKEYsPvvzDoq+4sP8LXDk7RObS6Y8yFj9x bCy9lWx7CbYZcck/CBb4p/1QnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHvpT1bl sfAxNsM3GBgOY7cTtRXoMB8GA1UdIwQYMBaAFGVicRLq57LJL4n3p4pxoqT6lfU9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODYwQS9CNTBBM0MyNDhC NTQxMUVGOTQ3NDcyNDlDNEY5QUUwMi9aV0p4RXVybnNza3ZpZmVuaW5HaXBQcVY5 VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pXSnhFdXJuc3NrdmlmZW5pbkdpcFBxVjlUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzg2MEEvQjUwQTNDMjQ4QjU0MTFFRjk0NzQ3MjQ5QzRGOUFFMDIvNzRENDhEODY4 Q0VEMTFFRjgyMENGNzYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLChgwDQYJKoZIhvcNAQELBQADggEBAMqXtGqq9oL/piPi GHNCnhj/vSmGeNphTicQQcYhE2bP28dQj2efuEtwJrefMmXXig4r7oUZ0huoVffS rfaoYbg8hNliuYv734qyEqXUquSZNP9PR3Kvg2/aLIwHmYRlV4d3CBQoXkMci/ed bEOMn0mloZowTSXwGniHbzPBUWcXGS00Y86fbM22CqYL7j+2hrbz8Jg5I4ddT0lO 6/+GYjw2lsiSS/GOOX3NJNwwWP6o9Mc5UQtWlSCr6NZN5anqaFJIeiBTQObuf5h3 7wNw7nB7Z9oNvtPzpdkMjggSnzxptS+TlASkYbDEpjKnyBFUrEr2ro7tvjBbgLZx DVZUp/I= -----END CERTIFICATE-----Generated at Sun Aug 24 00:48:58 2025 by rpki-client