$ rpki-client -vvf rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/FD6286EA22B611EFBF5D3960C4F9AE02.roa File: FD6286EA22B611EFBF5D3960C4F9AE02.roa (raw, json) Hash identifier: M93I+sdFWlIBfdq9LG68VSm5ThgyN+STMXDJdl1g8Sg= Subject key identifier: F3:0F:AC:E6:46:C7:C7:D7:FE:61:35:7D:50:48:4E:9A:09:ED:9D:3A Certificate issuer: /CN=A915B8D0/serialNumber=254EAF6490754F507DB81CE90DDB629B622F4660 Certificate serial: D8 Authority key identifier: 25:4E:AF:64:90:75:4F:50:7D:B8:1C:E9:0D:DB:62:9B:62:2F:46:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JU6vZJB1T1B9uBzpDdtim2IvRmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/FD6286EA22B611EFBF5D3960C4F9AE02.roa Signing time: Sun 27 Apr 2025 04:42:05 +0000 ROA not before: Sun 27 Apr 2025 04:42:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 29802 IP address blocks: 203.26.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/JU6vZJB1T1B9uBzpDdtim2IvRmA.crl rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/JU6vZJB1T1B9uBzpDdtim2IvRmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JU6vZJB1T1B9uBzpDdtim2IvRmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 04:40:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B8D0, serialNumber=254EAF6490754F507DB81CE90DDB629B622F4660 Validity Not Before: Apr 27 04:42:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680db59d-efe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:f0:88:a6:86:de:dd:c8:90:98:7f:bb:99: 1c:27:7f:a4:29:01:31:19:43:39:49:2f:6c:ed:89: be:13:9b:7b:6d:53:44:b1:42:a5:93:7e:66:63:fc: 66:76:44:46:b7:6c:40:a4:99:bf:88:8a:d0:12:91: 47:a1:33:18:a9:a7:b6:1f:ce:81:a4:c1:28:6f:22: 8c:dd:e9:54:64:90:c6:fa:a5:61:b7:31:38:5d:a4: e5:89:34:13:06:41:ed:ab:3c:81:96:f6:e6:00:e0: e0:74:61:d8:81:96:d3:7d:90:d1:e0:3c:52:63:94: 3f:40:1d:ad:86:45:61:b2:10:84:cc:cf:0a:c8:50: 92:68:d9:42:58:04:be:ee:5b:40:46:65:47:3e:60: 93:47:0b:23:96:0e:0a:28:01:4e:59:59:59:b8:d2: e2:f7:0f:14:c7:d6:98:fb:50:5d:08:51:c0:cb:fa: 57:11:60:7f:01:dc:28:95:b5:c1:1b:c8:b8:e5:1d: c3:f6:b6:ec:c0:d3:6d:36:a3:6b:26:47:58:2d:46: ae:60:8e:91:61:78:e9:f9:84:09:e8:97:4e:58:fa: 74:16:fa:ba:7b:89:f5:06:e6:2e:d2:8f:41:93:d9: 66:0d:85:d0:eb:b7:b1:de:7b:d3:d3:ac:fe:c2:15: e1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:0F:AC:E6:46:C7:C7:D7:FE:61:35:7D:50:48:4E:9A:09:ED:9D:3A X509v3 Authority Key Identifier: keyid:25:4E:AF:64:90:75:4F:50:7D:B8:1C:E9:0D:DB:62:9B:62:2F:46:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/JU6vZJB1T1B9uBzpDdtim2IvRmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JU6vZJB1T1B9uBzpDdtim2IvRmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B8D0/41E2BE28EB6E11EE83E3AE51C4F9AE02/FD6286EA22B611EFBF5D3960C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.26.150.0/24 Signature Algorithm: sha256WithRSAEncryption 19:96:b4:8f:07:90:54:22:5d:e5:59:d8:31:e8:84:b9:22:6a: e0:ed:e9:22:6a:99:b6:df:1f:86:fa:02:a4:96:be:4e:12:d3: 74:30:f5:41:c4:a0:fb:90:cd:84:22:df:b5:a6:60:ec:ab:d1: 24:12:af:84:f2:ea:0c:db:c0:4c:5f:13:1e:db:32:ef:1c:41: c3:af:9c:38:48:0d:5d:f8:63:84:fb:b4:3f:a7:48:af:41:50: 92:a8:d4:a0:f9:c8:bd:b9:ea:73:4c:dc:e7:3a:9b:7e:d1:88: b1:a9:d6:9e:93:dc:db:83:3d:45:3d:f8:44:8b:2a:f3:df:04: ad:b7:5c:10:ac:ea:dc:ff:46:1a:a6:d5:23:d0:bb:a8:ea:c1: a7:62:fd:6f:90:7b:2f:45:3d:5e:37:ac:ee:31:5b:cb:39:fa: 5b:e6:0c:76:dd:7d:31:ca:73:da:3d:13:9e:70:38:bc:24:65: 65:d4:df:55:c5:ef:66:b0:29:b1:f8:a0:02:1c:08:8b:8b:d0: 44:3c:38:00:b7:b4:b7:00:be:65:b3:be:d7:ed:61:f9:94:f4: 0f:5d:41:11:8c:7d:bb:e5:0c:8a:22:74:71:ea:ae:3c:f1:23: 06:78:97:db:0d:38:b9:b2:42:a1:b7:ee:72:be:11:3d:32:d0: 5f:9e:2f:6c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUI4RDAxMTAvBgNVBAUTKDI1NEVBRjY0OTA3NTRGNTA3REI4MUNFOTBEREI2MjlC NjIyRjQ2NjAwHhcNMjUwNDI3MDQ0MjA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkYjU5ZC1lZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3vwiKaG3t3IkJh/u5kcJ3+kKQExGUM5SS9s7Ym+E5t7bVNEsUKlk35mY/xm dkRGt2xApJm/iIrQEpFHoTMYqae2H86BpMEobyKM3elUZJDG+qVhtzE4XaTliTQT BkHtqzyBlvbmAODgdGHYgZbTfZDR4DxSY5Q/QB2thkVhshCEzM8KyFCSaNlCWAS+ 7ltARmVHPmCTRwsjlg4KKAFOWVlZuNLi9w8Ux9aY+1BdCFHAy/pXEWB/AdwolbXB G8i45R3D9rbswNNtNqNrJkdYLUauYI6RYXjp+YQJ6JdOWPp0Fvq6e4n1BuYu0o9B k9lmDYXQ67ex3nvT06z+whXh5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPMPrOZG x8fX/mE1fVBITpoJ7Z06MB8GA1UdIwQYMBaAFCVOr2SQdU9Qfbgc6Q3bYptiL0Zg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjhEMC80MUUyQkUyOEVC NkUxMUVFODNFM0FFNTFDNEY5QUUwMi9KVTZ2WkpCMVQxQjl1QnpwRGR0aW0ySXZS bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pVNnZaSkIxVDFCOXVCenBEZHRpbTJJdlJtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUI4RDAvNDFFMkJFMjhFQjZFMTFFRTgzRTNBRTUxQzRGOUFFMDIvRkQ2Mjg2RUEy MkI2MTFFRkJGNUQzOTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLGpYwDQYJKoZIhvcNAQELBQADggEBABmWtI8HkFQiXeVZ 2DHohLkiauDt6SJqmbbfH4b6AqSWvk4S03Qw9UHEoPuQzYQi37WmYOyr0SQSr4Ty 6gzbwExfEx7bMu8cQcOvnDhIDV34Y4T7tD+nSK9BUJKo1KD5yL256nNM3Oc6m37R iLGp1p6T3NuDPUU9+ESLKvPfBK23XBCs6tz/Rhqm1SPQu6jqwadi/W+Qey9FPV43 rO4xW8s5+lvmDHbdfTHKc9o9E55wOLwkZWXU31XF72awKbH4oAIcCIuL0EQ8OAC3 tLcAvmWzvtftYfmU9A9dQRGMfbvlDIoidHHqrjzxIwZ4l9sNOLmyQqG37nK+ET0y 0F+eL2w= -----END CERTIFICATE-----Generated at Sat May 10 10:16:57 2025 by rpki-client