$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/FD6654402CE811F09CFACA77C4F9AE02.roa File: FD6654402CE811F09CFACA77C4F9AE02.roa (raw, json) Hash identifier: qR0vgVsthXSQ06r0wB61gunfbPLyFy3vjQySYEWQxgg= Subject key identifier: 13:57:71:0D:DB:BD:B7:89:F4:84:18:B1:1D:CE:4C:DE:FB:2F:9D:64 Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 37F0 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/FD6654402CE811F09CFACA77C4F9AE02.roa Signing time: Fri 09 May 2025 15:19:24 +0000 ROA not before: Fri 09 May 2025 15:19:24 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55414 IP address blocks: 115.186.14.0/23 maxlen: 23 115.186.15.0/24 maxlen: 24 115.186.20.0/24 maxlen: 24 115.186.22.0/23 maxlen: 23 115.186.22.0/24 maxlen: 24 115.186.24.0/23 maxlen: 23 115.186.24.0/24 maxlen: 24 115.186.26.0/23 maxlen: 24 115.186.28.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 14:30:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14320 (0x37f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B, serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: May 9 15:19:24 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681e1cfc-d4fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ed:15:16:03:cc:f4:b4:63:b5:d8:56:a0:a5: d8:61:7b:8e:38:86:bd:7b:ab:2b:be:f8:15:f8:4e: bd:e4:58:fb:45:bb:a9:d0:90:71:39:70:6e:76:38: 2c:fb:82:10:73:e2:1f:cf:ad:7a:3f:5c:a3:cd:6a: 68:bd:0b:3b:d2:1f:43:31:aa:c9:52:67:30:a2:ab: 5c:44:94:d3:b0:7a:b2:41:c2:80:88:c6:29:6a:ed: dd:73:22:2a:34:e0:3b:c4:ef:1f:94:9b:08:a9:e0: e1:fb:1d:36:fb:d1:f8:6d:cb:40:de:23:07:8e:cc: b7:0d:1b:b5:9c:5c:a3:a6:8c:10:aa:6b:9b:c3:4b: de:16:52:8d:46:e8:d9:a2:c5:fb:8d:ce:11:17:cf: 91:db:78:c6:ec:2c:1e:fa:81:3d:6e:63:68:99:e8: 1e:20:34:95:a8:bf:9e:30:0c:34:08:02:30:9b:95: 0f:72:79:6f:1c:9a:88:1b:77:c4:97:a5:27:c9:e4: 4b:90:7e:3b:ca:ae:dd:84:eb:70:7b:a8:31:ab:1c: a3:c4:11:1b:16:ac:5a:d1:e3:84:d9:a1:25:36:36: 96:f2:97:7c:3d:19:f7:cd:bc:9b:0f:57:8f:40:2c: 63:da:0a:32:05:89:64:26:b0:00:48:e5:6c:4d:d2: d4:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:57:71:0D:DB:BD:B7:89:F4:84:18:B1:1D:CE:4C:DE:FB:2F:9D:64 X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/FD6654402CE811F09CFACA77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.186.14.0/23 115.186.20.0/24 115.186.22.0-115.186.29.255 Signature Algorithm: sha256WithRSAEncryption 25:4a:f9:ab:b6:dd:2f:fb:cb:f0:43:88:95:c5:ad:f0:84:85: df:9a:1c:43:59:4c:3f:a7:b7:47:f4:a0:3d:67:31:19:de:81: 82:2d:8f:88:17:5c:cf:a3:3c:c8:aa:b9:31:84:59:fb:36:84: 65:a3:df:1a:84:6f:bc:2e:5d:73:0f:07:e3:65:6a:94:fb:a1: 42:14:7d:e9:1f:9a:a3:e0:4c:1b:e1:c6:fa:a3:4e:9b:56:1d: fe:3e:42:b3:06:6d:0f:e4:99:a2:46:63:af:10:31:2e:54:8c: b2:db:9d:e8:5d:58:53:49:3b:08:56:49:ce:fc:8d:4b:04:52: c4:97:b5:36:d4:c0:f3:45:cc:c5:5f:1e:c8:fe:85:48:4e:69: 9e:86:7b:c1:c1:4a:d3:69:13:8a:b8:4f:0f:fe:e6:6a:71:e1: 12:4b:dc:a9:b2:50:23:46:fd:3a:83:fe:b2:5f:c2:24:e7:20: ed:45:f9:b0:3a:34:8d:27:6c:a9:31:bd:70:b5:15:a5:f2:c3: 8b:84:35:6a:07:f9:30:fb:da:d3:06:7e:2a:31:b0:95:49:53: 9a:4f:1c:5c:3d:89:b7:63:03:d9:c9:5b:41:99:37:3f:6c:30: 60:f2:41:41:96:06:99:28:69:9a:8c:b5:26:75:3b:7e:f0:4d: 89:73:1c:65 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICN/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjUwNTA5MTUxOTI0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFlMWNmYy1kNGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+0VFgPM9LRjtdhWoKXYYXuOOIa9e6srvvgV+E695Fj7Rbup0JBxOXBudjgs +4IQc+Ifz616P1yjzWpovQs70h9DMarJUmcwoqtcRJTTsHqyQcKAiMYpau3dcyIq NOA7xO8flJsIqeDh+x02+9H4bctA3iMHjsy3DRu1nFyjpowQqmubw0veFlKNRujZ osX7jc4RF8+R23jG7Cwe+oE9bmNomegeIDSVqL+eMAw0CAIwm5UPcnlvHJqIG3fE l6UnyeRLkH47yq7dhOtwe6gxqxyjxBEbFqxa0eOE2aElNjaW8pd8PRn3zbybD1eP QCxj2goyBYlkJrAASOVsTdLUlwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFBNXcQ3b vbeJ9IQYsR3OTN77L51kMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvRkQ2NjU0NDAy Q0U4MTFGMDlDRkFDQTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAFzug4DBABzuhQwDAMEAXO6FgMEAXO6HDANBgkqhkiG9w0B AQsFAAOCAQEAJUr5q7bdL/vL8EOIlcWt8ISF35ocQ1lMP6e3R/SgPWcxGd6Bgi2P iBdcz6M8yKq5MYRZ+zaEZaPfGoRvvC5dcw8H42VqlPuhQhR96R+ao+BMG+HG+qNO m1Yd/j5CswZtD+SZokZjrxAxLlSMstud6F1YU0k7CFZJzvyNSwRSxJe1NtTA80XM xV8eyP6FSE5pnoZ7wcFK02kTirhPD/7manHhEkvcqbJQI0b9OoP+sl/CJOcg7UX5 sDo0jSdsqTG9cLUVpfLDi4Q1agf5MPva0wZ+KjGwlUlTmk8cXD2Jt2MD2clbQZk3 P2wwYPJBQZYGmShpmoy1JnU7fvBNiXMcZQ== -----END CERTIFICATE-----Generated at Mon May 12 00:25:05 2025 by rpki-client