$ rpki-client -vvf rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB0532B2635411EF8B6D364BC4F9AE02.roa File: DB0532B2635411EF8B6D364BC4F9AE02.roa (raw, json) Hash identifier: xpU4YvMsifPhb0IGkIRTwpNd6P9gbkGB+l0mAvn3/+E= Subject key identifier: 93:44:2B:54:3D:41:C8:BF:B7:99:3D:DA:BA:A8:43:F3:AC:D0:9E:B9 Certificate issuer: /CN=A918E2A5/serialNumber=8CDCE578A239E58CE7FE7683BB4769F9DC5522BA Certificate serial: 013A Authority key identifier: 8C:DC:E5:78:A2:39:E5:8C:E7:FE:76:83:BB:47:69:F9:DC:55:22:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB0532B2635411EF8B6D364BC4F9AE02.roa Signing time: Fri 27 Jun 2025 04:22:47 +0000 ROA not before: Fri 27 Jun 2025 04:22:47 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134184 IP address blocks: 203.23.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.crl rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 314 (0x13a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E2A5, serialNumber=8CDCE578A239E58CE7FE7683BB4769F9DC5522BA Validity Not Before: Jun 27 04:22:47 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e1c97-7f9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:13:c8:ab:57:ca:dd:09:2c:ce:7a:b7:ad:b1: fa:bb:ed:f1:7a:af:c5:1b:28:18:31:6c:bc:10:86: 9d:12:f2:0e:80:42:c1:25:0b:12:c3:94:4d:ac:f2: 9c:43:19:b5:95:6b:76:c6:28:59:e1:64:8b:9c:aa: ff:db:2e:6c:2d:79:48:1a:1e:bf:6a:e2:1f:ba:86: 79:e8:da:e7:43:38:33:d8:26:87:d0:fc:3d:88:b0: 3d:e7:bb:8d:89:e4:a4:c3:90:14:2f:b2:64:9a:d4: 2f:14:27:b3:21:e0:62:1a:dc:a1:e6:20:35:52:b5: 4d:1a:f5:ea:a9:ec:0e:10:c4:f0:73:b6:87:28:b8: 91:89:f6:c8:c5:65:db:2b:ba:b0:a8:b4:da:29:f8: 70:a1:e3:8b:7f:f0:7d:14:e6:af:8e:0f:2e:82:8a: 86:96:fb:4e:27:47:1e:f9:8f:0d:47:92:2e:8f:cf: fe:ca:6a:1c:8c:d3:be:a0:c3:d8:7a:44:16:06:05: 72:f1:e5:b3:51:65:f2:7e:71:f1:0c:66:58:24:58: 54:3a:cb:e9:5a:44:d9:ce:cf:c0:e3:10:97:f3:e4: 64:23:80:2e:16:e3:30:c5:ea:87:f6:8c:72:01:10: d1:b4:8b:28:82:34:64:40:5b:9c:7b:85:73:86:67: 79:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:44:2B:54:3D:41:C8:BF:B7:99:3D:DA:BA:A8:43:F3:AC:D0:9E:B9 X509v3 Authority Key Identifier: keyid:8C:DC:E5:78:A2:39:E5:8C:E7:FE:76:83:BB:47:69:F9:DC:55:22:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/jNzleKI55Yzn_naDu0dp-dxVIro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jNzleKI55Yzn_naDu0dp-dxVIro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E2A5/A1C04D0A76CB11EE93F58747C4F9AE02/DB0532B2635411EF8B6D364BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.90.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:2a:77:7d:10:96:e1:5f:30:2b:37:11:3c:c4:93:a7:af:1b: fd:fb:45:d9:eb:f9:12:58:aa:5e:d4:68:ff:b7:fa:cd:a3:85: ec:17:4f:11:11:62:c0:05:5f:74:74:49:e7:ee:7e:7f:b8:fa: e4:15:4b:7c:86:1b:2f:00:cd:5a:52:77:40:b2:a4:84:47:20: 3f:16:30:5d:55:6b:5b:83:e4:a5:97:4a:68:d3:27:d4:74:8a: 96:eb:67:e7:36:7f:33:2e:a4:22:96:d9:cc:ca:6e:3c:b4:20: ef:c4:32:d8:cd:86:3f:5a:4b:ca:f5:32:30:73:2e:9a:33:06: 0c:79:89:3f:07:54:79:83:90:39:21:73:6f:86:f7:1d:c2:b9: 05:49:d6:e4:a3:04:9a:05:ec:6f:df:00:df:bc:cb:df:ad:98: 4d:65:04:47:b6:0a:a9:b5:8c:b6:36:44:0c:c1:e6:bc:f0:3b: 77:d0:58:ea:22:fa:60:46:76:12:87:fd:b6:e8:6f:0f:f7:9d: 41:73:af:24:19:b2:0d:96:f0:d1:3c:7b:f6:24:61:f9:f1:07: 85:65:3f:4a:fd:8a:70:a2:0d:98:61:66:6f:da:a5:ee:fb:31: 23:8c:ba:85:36:8d:90:e3:7e:5e:22:25:c0:90:91:36:07:aa: 5b:39:24:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyQTUxMTAvBgNVBAUTKDhDRENFNTc4QTIzOUU1OENFN0ZFNzY4M0JCNDc2OUY5 REM1NTIyQkEwHhcNMjUwNjI3MDQyMjQ3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMWM5Ny03ZjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxPIq1fK3Qksznq3rbH6u+3xeq/FGygYMWy8EIadEvIOgELBJQsSw5RNrPKc Qxm1lWt2xihZ4WSLnKr/2y5sLXlIGh6/auIfuoZ56NrnQzgz2CaH0Pw9iLA957uN ieSkw5AUL7JkmtQvFCezIeBiGtyh5iA1UrVNGvXqqewOEMTwc7aHKLiRifbIxWXb K7qwqLTaKfhwoeOLf/B9FOavjg8ugoqGlvtOJ0ce+Y8NR5Iuj8/+ymocjNO+oMPY ekQWBgVy8eWzUWXyfnHxDGZYJFhUOsvpWkTZzs/A4xCX8+RkI4AuFuMwxeqH9oxy ARDRtIsogjRkQFuce4Vzhmd5GwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJNEK1Q9 Qci/t5k92rqoQ/Os0J65MB8GA1UdIwQYMBaAFIzc5XiiOeWM5/52g7tHafncVSK6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTJBNS9BMUMwNEQwQTc2 Q0IxMUVFOTNGNTg3NDdDNEY5QUUwMi9qTnpsZUtJNTVZem5fbmFEdTBkcC1keFZJ cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pOemxlS0k1NVl6bl9uYUR1MGRwLWR4Vklyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyQTUvQTFDMDREMEE3NkNCMTFFRTkzRjU4NzQ3QzRGOUFFMDIvREIwNTMyQjI2 MzU0MTFFRjhCNkQzNjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLF1owDQYJKoZIhvcNAQELBQADggEBAF4qd30QluFfMCs3 ETzEk6evG/37Rdnr+RJYql7UaP+3+s2jhewXTxERYsAFX3R0Sefufn+4+uQVS3yG Gy8AzVpSd0CypIRHID8WMF1Va1uD5KWXSmjTJ9R0ipbrZ+c2fzMupCKW2czKbjy0 IO/EMtjNhj9aS8r1MjBzLpozBgx5iT8HVHmDkDkhc2+G9x3CuQVJ1uSjBJoF7G/f AN+8y9+tmE1lBEe2Cqm1jLY2RAzB5rzwO3fQWOoi+mBGdhKH/bbobw/3nUFzryQZ sg2W8NE8e/YkYfnxB4VlP0r9inCiDZhhZm/ape77MSOMuoU2jZDjfl4iJcCQkTYH qls5JKE= -----END CERTIFICATE-----Generated at Sun Jul 6 10:27:22 2025 by rpki-client