$ rpki-client -vvf rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/63C97CBAC49E11EBAC936D7AC4F9AE02.roa File: 63C97CBAC49E11EBAC936D7AC4F9AE02.roa (raw, json) Hash identifier: Z5qSs34sPKp/u0MZu0MdqYO0kmHEtkJPsT5iKOnHCCM= Subject key identifier: 40:6C:BE:30:92:FC:B6:8A:BB:5E:A8:06:80:1C:4D:48:EF:DB:26:66 Certificate issuer: /CN=A915EE53/serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Certificate serial: 2654 Authority key identifier: F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/63C97CBAC49E11EBAC936D7AC4F9AE02.roa Signing time: Fri 04 Jul 2025 16:22:59 +0000 ROA not before: Fri 04 Jul 2025 16:22:59 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4657 IP address blocks: 202.156.4.0/24 maxlen: 24 202.156.8.0/24 maxlen: 24 202.156.9.0/24 maxlen: 24 202.156.10.0/24 maxlen: 24 202.156.16.0/20 maxlen: 24 202.156.32.0/19 maxlen: 24 2404:e800:de00::/48 maxlen: 48 2404:e800:de00::/64 maxlen: 64 2404:e800:de00:1::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9812 (0x2654) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915EE53, serialNumber=F8AA70916B6CA583C0363EB7A9A5F7F2627D7360 Validity Not Before: Jul 4 16:22:59 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6867ffe3-2b18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4d:50:15:c7:f8:fa:3f:ba:ea:65:fd:ff:87: 3e:ad:c0:43:b4:9e:f6:c2:ac:a6:61:d8:59:d9:b7: 14:ea:c8:e6:39:9b:af:07:ac:95:79:2f:81:69:92: e4:c4:17:33:c7:fb:7a:8b:f3:9c:4b:e7:35:ef:1e: 66:d6:e1:a3:c6:66:8c:f4:a6:f3:e8:02:31:cd:38: aa:71:34:97:3d:48:06:a1:59:a5:e7:50:46:17:6e: 30:aa:47:3e:a3:2b:54:05:07:67:a0:86:f0:b4:42: 7e:db:85:4c:0c:11:91:08:f5:b6:86:8e:dc:f6:4c: 2c:b2:9f:74:3a:f9:78:a5:c0:6c:0e:1f:bb:4e:7d: 84:89:a6:59:fc:d7:21:9d:e0:d0:0b:d3:e0:36:d6: 68:5f:bf:6b:26:db:a7:42:1c:1c:37:49:6c:cc:d9: 1c:3e:f1:14:e4:93:c0:97:bb:a7:33:81:6b:dd:13: c8:4f:13:15:7a:1a:6a:ec:59:b6:e1:21:19:98:17: 9d:ab:c9:15:23:c8:ca:14:25:9f:6f:92:4d:f9:b1: 17:52:43:ba:07:f5:cb:3f:15:fc:b8:c1:af:84:40: 67:0b:09:85:2c:d8:7f:19:36:c0:56:40:40:23:51: b5:a7:6f:18:40:8c:45:0b:c3:4c:95:76:63:b5:01: 8a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:6C:BE:30:92:FC:B6:8A:BB:5E:A8:06:80:1C:4D:48:EF:DB:26:66 X509v3 Authority Key Identifier: keyid:F8:AA:70:91:6B:6C:A5:83:C0:36:3E:B7:A9:A5:F7:F2:62:7D:73:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/-KpwkWtspYPANj63qaX38mJ9c2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-KpwkWtspYPANj63qaX38mJ9c2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915EE53/38511840458811E59B2D8371C4F9AE02/63C97CBAC49E11EBAC936D7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.156.4.0/24 202.156.8.0-202.156.10.255 202.156.16.0-202.156.63.255 IPv6: 2404:e800:de00::/48 Signature Algorithm: sha256WithRSAEncryption 17:8d:0f:77:28:f7:d0:a9:5a:80:c7:d6:62:35:cb:93:55:69: 5f:4a:d7:50:94:23:ca:4b:6d:67:04:d0:37:b0:1c:73:20:66: 9a:6d:33:d9:ee:ef:f9:ac:6c:57:64:70:56:58:ac:f0:65:bd: 53:90:17:48:eb:ab:9b:c9:49:8e:b6:04:2f:06:22:e6:a3:9f: 08:0e:e8:67:a1:5a:3c:67:d0:5c:7d:53:36:ea:e1:4c:c3:7c: 1b:ba:b9:03:cf:43:40:28:f9:dc:67:b7:f4:60:cd:61:87:c2: a3:1c:0a:85:ac:84:5c:22:6d:90:58:d7:dd:36:8d:35:e1:dd: da:0c:28:ba:57:10:d3:9e:97:0b:fa:1e:c9:0d:e6:11:47:fa: ff:b0:c0:b2:fe:ab:0d:c0:86:a1:4d:3d:64:2a:76:54:9d:d6: 2b:15:53:02:ff:7a:de:36:77:a8:b4:b1:4b:11:ba:f6:e0:4e: 37:56:14:3d:45:94:21:13:01:cf:14:e5:24:55:96:a1:7b:e6: d4:17:ea:a4:69:88:cb:fc:05:e8:c3:22:81:17:8a:00:b0:22: 3c:93:0a:e0:50:a0:fd:e0:1d:1e:7f:04:f9:54:05:6e:57:1b: 51:db:f3:c3:ab:cf:34:55:ed:1e:4f:1e:6c:59:fd:15:00:06: 99:72:fc:fa -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICJlQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUVFNTMxMTAvBgNVBAUTKEY4QUE3MDkxNkI2Q0E1ODNDMDM2M0VCN0E5QTVGN0Yy NjI3RDczNjAwHhcNMjUwNzA0MTYyMjU5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3ZmZlMy0yYjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArE1QFcf4+j+66mX9/4c+rcBDtJ72wqymYdhZ2bcU6sjmOZuvB6yVeS+BaZLk xBczx/t6i/OcS+c17x5m1uGjxmaM9Kbz6AIxzTiqcTSXPUgGoVml51BGF24wqkc+ oytUBQdnoIbwtEJ+24VMDBGRCPW2ho7c9kwssp90Ovl4pcBsDh+7Tn2EiaZZ/Nch neDQC9PgNtZoX79rJtunQhwcN0lszNkcPvEU5JPAl7unM4Fr3RPITxMVehpq7Fm2 4SEZmBedq8kVI8jKFCWfb5JN+bEXUkO6B/XLPxX8uMGvhEBnCwmFLNh/GTbAVkBA I1G1p28YQIxFC8NMlXZjtQGKHwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFEBsvjCS /LaKu16oBoAcTUjv2yZmMB8GA1UdIwQYMBaAFPiqcJFrbKWDwDY+t6ml9/JifXNg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RUU1My8zODUxMTg0MDQ1 ODgxMUU1OUIyRDgzNzFDNEY5QUUwMi8tS3B3a1d0c3BZUEFOajYzcWFYMzhtSjlj MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1LcHdrV3RzcFlQQU5qNjNxYVgzOG1KOWMyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUVFNTMvMzg1MTE4NDA0NTg4MTFFNTlCMkQ4MzcxQzRGOUFFMDIvNjNDOTdDQkFD NDlFMTFFQkFDOTM2RDdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCgEAgABMCIDBADKnAQwDAMEA8qcCAMEAMqcCjAMAwQEypwQAwQGypwAMA8E AgACMAkDBwAkBOgA3gAwDQYJKoZIhvcNAQELBQADggEBABeND3co99CpWoDH1mI1 y5NVaV9K11CUI8pLbWcE0DewHHMgZpptM9nu7/msbFdkcFZYrPBlvVOQF0jrq5vJ SY62BC8GIuajnwgO6GehWjxn0Fx9Uzbq4UzDfBu6uQPPQ0Ao+dxnt/RgzWGHwqMc CoWshFwibZBY1902jTXh3doMKLpXENOelwv6HskN5hFH+v+wwLL+qw3AhqFNPWQq dlSd1isVUwL/et42d6i0sUsRuvbgTjdWFD1FlCETAc8U5SRVlqF75tQX6qRpiMv8 BejDIoEXigCwIjyTCuBQoP3gHR5/BPlUBW5XG1Hb88OrzzRV7R5PHmxZ/RUABply /Po= -----END CERTIFICATE-----Generated at Sat Jul 5 08:20:18 2025 by rpki-client