$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/A42AF5D0559111F08D8D0584C4F9AE02.roa File: A42AF5D0559111F08D8D0584C4F9AE02.roa (raw, json) Hash identifier: gcoXO6c7kE45x7btPnm/u11PIgCHfTR850hXGjwycmE= Subject key identifier: 25:FF:39:36:69:1D:8B:13:4C:6E:2D:49:29:13:D3:32:AE:3B:94:CE Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F12 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/A42AF5D0559111F08D8D0584C4F9AE02.roa Signing time: Mon 30 Jun 2025 09:07:26 +0000 ROA not before: Mon 30 Jun 2025 09:07:26 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151058 IP address blocks: 124.225.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7954 (0x1f12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jun 30 09:07:26 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=686253ce-d586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3c:7c:f2:a4:fe:3d:27:da:70:98:4b:be:2c: 83:55:0f:fd:67:35:b2:57:dd:fd:1a:a1:71:f5:a5: 17:10:92:fc:f6:24:57:4d:47:8f:bd:cd:01:56:06: 30:b3:dd:e6:3b:2f:9a:68:2d:74:2b:ed:ed:64:d8: f0:d8:5b:21:a9:f1:7b:d5:94:02:a7:04:4a:39:67: 4c:a7:7c:92:c6:94:d7:de:6d:0a:cc:96:59:2c:70: b1:f6:66:d2:68:1e:6c:08:5c:23:74:fa:53:52:9c: f4:5d:ee:98:a9:3c:10:68:ea:03:c2:d4:2d:13:b7: 57:e3:34:72:4a:c7:c2:52:a9:c1:1a:ef:a5:e8:9f: 8f:72:7b:8b:63:f7:c2:24:59:04:84:dd:35:e1:a0: 5b:5c:bc:f5:ac:45:7a:be:c5:fb:fb:0c:53:19:fe: 0a:1d:4c:dc:17:72:5c:a5:39:fd:51:eb:b8:55:98: 05:9a:dd:dd:40:96:98:89:74:6e:64:29:20:54:91: 68:91:01:92:3d:b4:3e:ab:fc:18:8c:b6:8d:60:b9: 9e:39:03:5c:85:46:49:be:e6:82:7f:e0:0e:71:ac: de:29:d5:56:a0:c0:c4:b3:4d:94:0a:b4:bf:7c:7c: ac:9a:66:56:52:c5:e6:70:59:3c:1c:f2:a6:19:cc: a6:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:FF:39:36:69:1D:8B:13:4C:6E:2D:49:29:13:D3:32:AE:3B:94:CE X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/A42AF5D0559111F08D8D0584C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.225.0.0/16 Signature Algorithm: sha256WithRSAEncryption 87:43:4a:24:69:f3:ef:92:0f:14:4e:32:4e:dc:e4:02:e6:bf: e9:16:8e:6f:e0:28:96:2a:7c:c5:fb:b9:17:a6:29:d3:88:f0: 10:c5:ca:4c:c8:5e:0c:bb:6c:b3:8f:f0:dd:e5:04:da:22:df: 7c:2c:7a:5b:76:fe:ca:19:2e:74:a6:26:89:54:b5:ee:43:96: 04:34:b1:9c:0a:34:4e:62:86:8b:1e:70:fc:6e:84:a3:b5:95: b6:67:5e:20:3e:c8:35:e9:f0:86:e0:00:50:fe:59:73:61:b7: b2:53:b1:91:f3:c4:41:54:f8:06:dd:ca:7f:4f:4e:19:2c:c3: 02:79:f1:06:bb:ad:ec:4e:21:e5:d0:f4:0f:27:51:1f:3c:9e: da:28:98:9a:6d:29:17:b8:99:0a:ab:d6:b7:74:77:be:05:e4: ed:31:a2:3f:9a:cc:50:a2:51:22:02:de:0e:24:83:c6:95:5b: 15:5f:af:5d:83:8d:91:7d:5c:4d:58:3a:13:f8:58:28:09:84: 4e:b6:f9:d3:22:78:ee:43:2f:b3:fc:4a:df:42:8e:9b:9d:d7: 16:fc:5a:93:dd:46:75:66:b6:59:4d:5d:5b:12:93:e8:4e:ee: 72:42:71:22:c7:d2:f1:47:38:92:d0:c6:bc:b7:04:a5:63:ae: 28:df:8a:f8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICHxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwNjMwMDkwNzI2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyNTNjZS1kNTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Tx88qT+PSfacJhLviyDVQ/9ZzWyV939GqFx9aUXEJL89iRXTUePvc0BVgYw s93mOy+aaC10K+3tZNjw2FshqfF71ZQCpwRKOWdMp3ySxpTX3m0KzJZZLHCx9mbS aB5sCFwjdPpTUpz0Xe6YqTwQaOoDwtQtE7dX4zRySsfCUqnBGu+l6J+PcnuLY/fC JFkEhN014aBbXLz1rEV6vsX7+wxTGf4KHUzcF3JcpTn9Ueu4VZgFmt3dQJaYiXRu ZCkgVJFokQGSPbQ+q/wYjLaNYLmeOQNchUZJvuaCf+AOcazeKdVWoMDEs02UCrS/ fHysmmZWUsXmcFk8HPKmGcym0QIDAQABo4IClDCCApAwHQYDVR0OBBYEFCX/OTZp HYsTTG4tSSkT0zKuO5TOMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQTQyQUY1RDA1 NTkxMTFGMDhEOEQwNTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwB84TANBgkqhkiG9w0BAQsFAAOCAQEAh0NKJGnz75IPFE4y TtzkAua/6RaOb+Aolip8xfu5F6Yp04jwEMXKTMheDLtss4/w3eUE2iLffCx6W3b+ yhkudKYmiVS17kOWBDSxnAo0TmKGix5w/G6Eo7WVtmdeID7INenwhuAAUP5Zc2G3 slOxkfPEQVT4Bt3Kf09OGSzDAnnxBrut7E4h5dD0DydRHzye2iiYmm0pF7iZCqvW t3R3vgXk7TGiP5rMUKJRIgLeDiSDxpVbFV+vXYONkX1cTVg6E/hYKAmETrb50yJ4 7kMvs/xK30KOm53XFvxak91GdWa2WU1dWxKT6E7uckJxIsfS8Uc4ktDGvLcEpWOu KN+K+A== -----END CERTIFICATE-----Generated at Thu Jul 3 05:48:05 2025 by rpki-client