$ rpki-client -vvf rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/C21DA992E83B11EBB3231D5EC4F9AE02.roa File: C21DA992E83B11EBB3231D5EC4F9AE02.roa (raw, json) Hash identifier: XAx1J/DLce82S0DJ6QETMIUPs/8svCL35NE1zYijtJ8= Subject key identifier: 8B:89:6E:C2:E7:23:01:57:C6:9E:D6:27:54:A7:C8:6F:D5:F5:9F:69 Certificate issuer: /CN=A914A64F/serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Certificate serial: 08B3 Authority key identifier: D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/C21DA992E83B11EBB3231D5EC4F9AE02.roa Signing time: Fri 20 Jun 2025 21:18:31 +0000 ROA not before: Fri 20 Jun 2025 21:18:31 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135794 IP address blocks: 45.249.55.0/24 maxlen: 24 103.16.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2227 (0x8b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A64F, serialNumber=D4D7DD25C713E7A9554CF352D932BF80DA652DE4 Validity Not Before: Jun 20 21:18:31 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6855d027-133c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:87:14:2c:fc:26:6e:ae:1e:21:e9:1e:ca:c8: 29:05:5d:79:a7:36:7c:d7:14:2e:c4:48:40:dd:3a: ba:61:86:39:41:20:74:f5:a5:61:9f:f2:30:bd:a0: 44:3a:07:0f:9f:89:1f:56:b0:f5:92:fb:70:d9:d3: ed:0a:26:30:9a:22:35:b4:2e:23:50:0c:3a:8d:22: 85:b4:04:dd:4d:97:93:5e:78:b5:4e:2d:63:a6:da: f7:2e:76:93:f5:32:be:e1:6c:5c:08:a0:5e:e1:a5: aa:8e:de:bc:23:a6:83:0f:97:d4:ec:b3:74:f6:19: 55:61:a1:27:09:68:b7:d5:7b:85:42:32:db:cb:44: d9:e2:13:81:be:0a:88:63:24:4e:d0:50:70:85:40: 4e:4c:2f:1e:93:da:9a:ee:47:65:8b:c0:b9:b8:77: 12:03:59:7c:aa:57:67:b8:ab:0c:79:c1:4f:91:13: 5f:3f:ad:bf:8e:91:b9:1a:66:ed:0b:cd:d8:f6:28: e3:4e:5c:35:5a:be:f4:ad:a2:03:29:22:5e:9c:d3: 81:46:bd:d4:40:66:7f:fa:b1:9d:8d:10:f1:0b:ec: 70:e1:16:a8:08:86:02:b8:3b:34:91:56:a6:2b:f2: 7c:0d:f9:5f:24:80:5f:81:f8:9a:3e:4d:58:1f:1f: ad:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:89:6E:C2:E7:23:01:57:C6:9E:D6:27:54:A7:C8:6F:D5:F5:9F:69 X509v3 Authority Key Identifier: keyid:D4:D7:DD:25:C7:13:E7:A9:55:4C:F3:52:D9:32:BF:80:DA:65:2D:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/1NfdJccT56lVTPNS2TK_gNplLeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1NfdJccT56lVTPNS2TK_gNplLeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A64F/3C9E2B5CC01411EA81689065C4F9AE02/C21DA992E83B11EBB3231D5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.55.0/24 103.16.57.0/24 Signature Algorithm: sha256WithRSAEncryption a5:70:ab:4d:32:9c:df:cc:9b:8c:60:1c:d1:21:69:d5:0b:7e: 56:ee:71:3a:82:86:3d:d1:3e:4e:06:83:67:f3:7c:94:e5:aa: 55:67:cd:ef:23:2c:83:45:ab:75:b4:95:1b:0e:a5:ac:b5:07: 9a:8c:ce:08:3b:a0:23:aa:0d:f8:d2:1a:18:ad:a3:af:7c:7e: 25:44:c2:68:21:b3:0d:31:e6:a1:03:ba:42:a2:d5:7b:fd:41: f2:dd:cf:0e:f5:cc:b9:9e:e2:0c:63:0d:c1:f4:76:af:e1:cb: c7:43:9b:fa:44:0d:8c:15:ea:f0:cf:a4:82:f0:2c:da:44:4b: 45:1a:16:05:5a:35:c4:9d:13:91:4c:c0:2f:9f:7a:f6:07:7e: b4:8b:80:4a:29:aa:e1:c4:58:c8:3a:22:53:f0:f8:19:da:6a: 2d:76:59:34:9d:5f:47:d9:fd:fe:41:77:a3:5a:1d:da:08:36: 6c:01:1e:d5:f6:e1:80:fb:76:f1:2e:40:3d:6f:0e:ae:74:4d: d9:2f:6a:e0:96:99:c8:b4:9f:5d:39:2c:0f:d3:7e:09:15:c7: 2e:84:f5:ff:8e:ad:43:5f:74:d9:35:78:de:bd:53:31:10:2e: a3:6f:fa:10:26:50:00:bb:15:54:37:da:05:59:de:17:12:de: df:db:09:af -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE2NEYxMTAvBgNVBAUTKEQ0RDdERDI1QzcxM0U3QTk1NTRDRjM1MkQ5MzJCRjgw REE2NTJERTQwHhcNMjUwNjIwMjExODMxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU1ZDAyNy0xMzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoIcULPwmbq4eIekeysgpBV15pzZ81xQuxEhA3Tq6YYY5QSB09aVhn/IwvaBE OgcPn4kfVrD1kvtw2dPtCiYwmiI1tC4jUAw6jSKFtATdTZeTXni1Ti1jptr3LnaT 9TK+4WxcCKBe4aWqjt68I6aDD5fU7LN09hlVYaEnCWi31XuFQjLby0TZ4hOBvgqI YyRO0FBwhUBOTC8ek9qa7kdli8C5uHcSA1l8qldnuKsMecFPkRNfP62/jpG5Gmbt C83Y9ijjTlw1Wr70raIDKSJenNOBRr3UQGZ/+rGdjRDxC+xw4RaoCIYCuDs0kVam K/J8DflfJIBfgfiaPk1YHx+tfwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIuJbsLn IwFXxp7WJ1SnyG/V9Z9pMB8GA1UdIwQYMBaAFNTX3SXHE+epVUzzUtkyv4DaZS3k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTY0Ri8zQzlFMkI1Q0Mw MTQxMUVBODE2ODkwNjVDNEY5QUUwMi8xTmZkSmNjVDU2bFZUUE5TMlRLX2dOcGxM ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFOZmRKY2NUNTZsVlRQTlMyVEtfZ05wbExlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE2NEYvM0M5RTJCNUNDMDE0MTFFQTgxNjg5MDY1QzRGOUFFMDIvQzIxREE5OTJF ODNCMTFFQkIzMjMxRDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAt+TcDBABnEDkwDQYJKoZIhvcNAQELBQADggEBAKVwq00y nN/Mm4xgHNEhadULflbucTqChj3RPk4Gg2fzfJTlqlVnze8jLINFq3W0lRsOpay1 B5qMzgg7oCOqDfjSGhito698fiVEwmghsw0x5qEDukKi1Xv9QfLdzw71zLme4gxj DcH0dq/hy8dDm/pEDYwV6vDPpILwLNpES0UaFgVaNcSdE5FMwC+fevYHfrSLgEop quHEWMg6IlPw+Bnaai12WTSdX0fZ/f5Bd6NaHdoINmwBHtX24YD7dvEuQD1vDq50 TdkvauCWmci0n105LA/TfgkVxy6E9f+OrUNfdNk1eN69UzEQLqNv+hAmUAC7FVQ3 2gVZ3hcS3t/bCa8= -----END CERTIFICATE-----Generated at Fri Jul 4 02:20:32 2025 by rpki-client