$ rpki-client -vvf rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/5690A2AE42F211F08EF7F447C4F9AE02.roa File: 5690A2AE42F211F08EF7F447C4F9AE02.roa (raw, json) Hash identifier: YSTVbPDZioqtpOco7Ph6NOqKpT2t+CRy3f0/vpMDDFA= Subject key identifier: 41:EB:B1:7C:CC:27:B7:4A:29:76:8F:83:E1:E4:DB:1E:3D:12:57:FA Certificate issuer: /CN=A916807A/serialNumber=729E2F9C1D87C214735078CFD21C638E07157B5D Certificate serial: 024A Authority key identifier: 72:9E:2F:9C:1D:87:C2:14:73:50:78:CF:D2:1C:63:8E:07:15:7B:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/5690A2AE42F211F08EF7F447C4F9AE02.roa Signing time: Sun 15 Jun 2025 13:37:24 +0000 ROA not before: Sun 15 Jun 2025 13:37:24 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 212238 IP address blocks: 202.155.72.0/21 maxlen: 24 202.155.80.0/21 maxlen: 24 202.155.104.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.crl rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 02:23:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 586 (0x24a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916807A, serialNumber=729E2F9C1D87C214735078CFD21C638E07157B5D Validity Not Before: Jun 15 13:37:24 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=684ecc93-03f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b8:e3:b1:ed:25:89:75:cc:5c:39:3f:39:67: 55:e2:10:c8:f9:8e:2e:5c:7f:4b:0f:6c:d1:b5:bf: 2b:9e:29:21:8a:35:6a:61:3f:8b:ea:a4:6d:cb:c8: fe:d6:d2:07:d8:38:f7:59:9f:2c:83:1b:98:34:32: 3d:f0:78:52:38:ac:aa:34:d7:be:a2:c7:00:99:0d: 9a:9f:cd:41:cb:0d:32:ac:8a:ba:32:78:02:d3:23: 78:ae:0e:d1:4f:c4:41:96:1f:39:a3:f0:b5:61:61: 20:f1:0d:1c:e9:47:22:1c:1f:86:33:9a:e9:ca:14: c8:d7:7e:af:17:34:66:a6:77:3a:0d:69:93:a4:7e: 0c:31:90:39:94:5c:4a:ee:d3:0f:c1:f9:85:95:b8: 0c:7e:63:83:fa:35:21:15:27:04:81:ed:ff:ba:19: 92:80:9f:8f:ab:58:36:fb:f1:4d:65:92:f9:54:81: 85:3b:b4:3d:eb:8e:41:75:14:0f:7b:0d:d7:40:9d: 6f:ba:5d:79:33:8d:b4:0e:ce:ba:99:da:48:5f:c2: 8a:49:7f:e9:9c:8c:61:9b:96:ee:a5:3b:14:b8:22: 31:f7:e6:94:84:18:be:d6:46:20:a6:03:5c:d8:5e: 36:65:8e:51:c2:b1:83:0a:1a:49:36:d2:36:fa:2e: be:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:EB:B1:7C:CC:27:B7:4A:29:76:8F:83:E1:E4:DB:1E:3D:12:57:FA X509v3 Authority Key Identifier: keyid:72:9E:2F:9C:1D:87:C2:14:73:50:78:CF:D2:1C:63:8E:07:15:7B:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/cp4vnB2HwhRzUHjP0hxjjgcVe10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cp4vnB2HwhRzUHjP0hxjjgcVe10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916807A/0263AB483E8811EDA61A9B2AC4F9AE02/5690A2AE42F211F08EF7F447C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.155.72.0-202.155.87.255 202.155.104.0/21 Signature Algorithm: sha256WithRSAEncryption 2a:fb:f6:53:47:59:07:e4:1e:10:4a:35:0c:6c:4d:bc:ea:c4: 1d:75:4c:b4:59:ff:9a:60:96:5b:9a:bb:a7:1a:9c:33:ad:fe: 0b:72:76:73:4b:80:4e:d9:02:9a:28:d7:97:14:ce:b3:bc:d7: b9:2f:e8:f4:97:f1:af:12:e6:e8:e6:c7:7b:18:5b:4f:01:ea: 17:56:2e:00:31:a6:ca:69:f3:b9:ce:9d:3d:ff:61:f1:9f:e6: 04:12:5e:89:32:3d:8c:eb:ec:c4:23:3a:06:ea:b1:eb:35:84: e3:3c:11:39:9d:ca:21:86:0e:59:f0:fd:74:6d:31:e9:16:55: c4:61:d6:cb:39:3f:2f:28:82:13:fa:86:9c:3b:b8:48:60:ba: fd:62:5e:34:d1:64:a8:7b:42:fb:4c:d3:dd:cb:47:d0:e9:58: 7d:31:ea:b4:83:49:66:42:f7:91:5a:8c:5f:84:87:63:46:ec: f8:69:4c:bd:55:18:32:a3:f2:98:52:e5:9f:8e:99:77:7c:71: 80:50:46:32:8f:26:1e:ae:d7:c3:70:25:ab:80:f9:ad:2e:ab: f7:e1:34:dc:bb:ae:2a:c9:fe:4c:d1:86:6c:11:65:ac:11:6f: 7d:d4:ae:5a:2c:12:81:4d:b5:04:4f:79:f9:d7:e2:6b:27:52: f7:17:bd:23 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgwN0ExMTAvBgNVBAUTKDcyOUUyRjlDMUQ4N0MyMTQ3MzUwNzhDRkQyMUM2MzhF MDcxNTdCNUQwHhcNMjUwNjE1MTMzNzI0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRlY2M5My0wM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLjjse0liXXMXDk/OWdV4hDI+Y4uXH9LD2zRtb8rnikhijVqYT+L6qRty8j+ 1tIH2Dj3WZ8sgxuYNDI98HhSOKyqNNe+oscAmQ2an81Byw0yrIq6MngC0yN4rg7R T8RBlh85o/C1YWEg8Q0c6UciHB+GM5rpyhTI136vFzRmpnc6DWmTpH4MMZA5lFxK 7tMPwfmFlbgMfmOD+jUhFScEge3/uhmSgJ+Pq1g2+/FNZZL5VIGFO7Q9645BdRQP ew3XQJ1vul15M420Ds66mdpIX8KKSX/pnIxhm5bupTsUuCIx9+aUhBi+1kYgpgNc 2F42ZY5RwrGDChpJNtI2+i6+hQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFEHrsXzM J7dKKXaPg+Hk2x49Elf6MB8GA1UdIwQYMBaAFHKeL5wdh8IUc1B4z9IcY44HFXtd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODA3QS8wMjYzQUI0ODNF ODgxMUVEQTYxQTlCMkFDNEY5QUUwMi9jcDR2bkIySHdoUnpVSGpQMGh4ampnY1Zl MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NwNHZuQjJId2hSelVIalAwaHhqamdjVmUxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgwN0EvMDI2M0FCNDgzRTg4MTFFREE2MUE5QjJBQzRGOUFFMDIvNTY5MEEyQUU0 MkYyMTFGMDhFRjdGNDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEA8qbSAMEA8qbUAMEA8qbaDANBgkqhkiG9w0BAQsFAAOC AQEAKvv2U0dZB+QeEEo1DGxNvOrEHXVMtFn/mmCWW5q7pxqcM63+C3J2c0uATtkC mijXlxTOs7zXuS/o9JfxrxLm6ObHexhbTwHqF1YuADGmymnzuc6dPf9h8Z/mBBJe iTI9jOvsxCM6Buqx6zWE4zwROZ3KIYYOWfD9dG0x6RZVxGHWyzk/LyiCE/qGnDu4 SGC6/WJeNNFkqHtC+0zT3ctH0OlYfTHqtINJZkL3kVqMX4SHY0bs+GlMvVUYMqPy mFLln46Zd3xxgFBGMo8mHq7Xw3Alq4D5rS6r9+E03LuuKsn+TNGGbBFlrBFvfdSu WiwSgU21BE95+dfiaydS9xe9Iw== -----END CERTIFICATE-----Generated at Thu Jul 3 14:16:00 2025 by rpki-client