$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/53594CBC1F2F11F09C3D4582C4F9AE02.roa File: 53594CBC1F2F11F09C3D4582C4F9AE02.roa (raw, json) Hash identifier: Vpaet2uReWy07dHLmGo1CSsXN2l8QnhC6U+cuZH6fQQ= Subject key identifier: B8:4A:56:71:9F:55:CA:0A:41:6E:85:1F:AE:8C:34:C1:84:79:89:24 Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 3572 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/53594CBC1F2F11F09C3D4582C4F9AE02.roa Signing time: Wed 20 Aug 2025 14:50:31 +0000 ROA not before: Wed 20 Aug 2025 14:50:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 23647 IP address blocks: 202.51.65.0/24 maxlen: 24 202.51.66.0/24 maxlen: 24 202.51.67.0/24 maxlen: 24 202.51.68.0/22 maxlen: 22 202.51.68.0/23 maxlen: 24 202.51.70.0/24 maxlen: 24 202.51.76.0/24 maxlen: 24 202.51.77.0/24 maxlen: 24 202.51.79.0/24 maxlen: 24 202.51.80.0/24 maxlen: 24 202.51.81.0/24 maxlen: 24 202.51.88.0/23 maxlen: 24 202.51.92.0/24 maxlen: 24 202.51.93.0/24 maxlen: 24 202.51.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13682 (0x3572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Aug 20 14:50:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a5e0b7-0e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f7:97:51:82:fd:15:50:e3:60:1c:d8:8e:80: 46:3e:9a:3e:b0:53:97:14:1e:b9:ab:40:c5:d3:b8: ba:13:b3:3c:5f:10:68:18:6f:74:a5:c3:a8:6c:3c: 75:a8:a6:5c:69:5a:c7:5e:65:5e:eb:89:b6:38:80: ea:a6:bc:b1:09:a4:7a:e4:1f:38:4e:15:5c:f9:60: dd:24:76:bb:df:45:0b:5a:c6:ee:a2:44:c5:30:12: bf:a9:44:98:3a:7c:18:c6:cc:0f:d3:53:9b:b5:b4: c7:19:d3:e4:ef:66:e0:57:bf:75:11:66:c0:c0:3b: 59:66:dc:85:93:91:b2:80:7d:8e:5f:96:9b:8d:d3: f3:02:01:ee:3b:a4:a0:23:51:16:6f:55:24:43:08: c3:ac:00:26:d5:17:89:b1:2b:6e:bf:76:0e:bf:73: 86:bb:ee:06:8a:41:39:0b:c5:6b:61:4b:24:64:9b: 13:70:02:b4:9f:42:48:a9:37:df:0d:47:aa:e8:90: 52:fd:fc:90:ab:02:89:1d:da:5a:f2:b3:05:76:4d: 4c:ad:c1:53:dd:e3:7f:22:64:16:d6:d4:43:d2:89: c5:93:f6:92:78:1f:ff:e2:30:ab:83:9d:e9:7d:20: 64:8b:1a:89:3f:93:85:4d:93:d0:6a:ab:80:4e:36: a4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4A:56:71:9F:55:CA:0A:41:6E:85:1F:AE:8C:34:C1:84:79:89:24 X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/53594CBC1F2F11F09C3D4582C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.51.65.0-202.51.71.255 202.51.76.0/23 202.51.79.0-202.51.81.255 202.51.88.0/23 202.51.92.0-202.51.94.255 Signature Algorithm: sha256WithRSAEncryption 33:b0:68:20:e1:18:47:51:2c:aa:c7:63:80:e3:f9:d6:9b:ad: 33:43:fc:f1:c8:56:41:a3:a2:71:a6:17:7a:ce:49:37:7b:ee: 65:f5:2b:a2:8d:78:9f:f3:d2:6d:0e:07:c8:0a:a6:d4:d5:eb: 53:5a:00:b3:e7:98:4c:51:b2:e8:c2:4b:cc:d0:20:3a:db:51: f5:a3:5a:9a:7b:24:87:e6:52:ac:89:90:8d:35:ec:a0:46:d2: 51:1b:a9:44:aa:2a:2e:23:a2:8e:59:db:73:e2:c0:86:6e:72: 3e:cf:a1:1d:f7:4b:a7:03:cf:84:18:57:88:30:7b:d6:45:c6: 28:53:17:e8:eb:02:f1:4e:7b:21:c3:77:00:41:52:91:cf:95: 44:61:0c:af:b7:10:5b:dd:94:d1:82:85:29:49:12:bd:e6:be: ce:3d:df:a8:c6:3b:57:05:c3:df:09:4f:87:e4:bf:89:7e:34: 50:6a:df:78:b8:8a:27:b2:c3:fd:a0:c8:ba:96:80:ba:0d:2c: 60:e7:e2:84:51:e7:e5:72:be:54:82:c4:7c:d2:31:09:56:dd: 82:f2:d1:f6:7e:28:7c:55:bf:cc:b8:6e:c7:f6:b5:70:94:d8: eb:fe:2f:cc:a9:53:6c:23:34:16:af:00:dc:48:45:a6:93:e6: 63:e6:50:75 -----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgICNXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUwODIwMTQ1MDMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE1ZTBiNy0wZTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0veXUYL9FVDjYBzYjoBGPpo+sFOXFB65q0DF07i6E7M8XxBoGG90pcOobDx1 qKZcaVrHXmVe64m2OIDqpryxCaR65B84ThVc+WDdJHa730ULWsbuokTFMBK/qUSY OnwYxswP01ObtbTHGdPk72bgV791EWbAwDtZZtyFk5GygH2OX5abjdPzAgHuO6Sg I1EWb1UkQwjDrAAm1ReJsStuv3YOv3OGu+4GikE5C8VrYUskZJsTcAK0n0JIqTff DUeq6JBS/fyQqwKJHdpa8rMFdk1MrcFT3eN/ImQW1tRD0onFk/aSeB//4jCrg53p fSBkixqJP5OFTZPQaquATjak4QIDAQABo4ICxTCCAsEwHQYDVR0OBBYEFLhKVnGf VcoKQW6FH66MNMGEeYkkMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY1NTAvOEI5QkQyMDIxRDg1MTFFMkI0MTIzMERDMDhCMDJDRDIvNTM1OTRDQkMx RjJGMTFGMDlDM0Q0NTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTwYIKwYBBQUHAQcBAf8E QDA+MDwEAgABMDYwDAMEAMozQQMEA8ozQAMEAcozTDAMAwQAyjNPAwQByjNQAwQB yjNYMAwDBALKM1wDBADKM14wDQYJKoZIhvcNAQELBQADggEBADOwaCDhGEdRLKrH Y4Dj+dabrTND/PHIVkGjonGmF3rOSTd77mX1K6KNeJ/z0m0OB8gKptTV61NaALPn mExRsujCS8zQIDrbUfWjWpp7JIfmUqyJkI017KBG0lEbqUSqKi4joo5Z23PiwIZu cj7PoR33S6cDz4QYV4gwe9ZFxihTF+jrAvFOeyHDdwBBUpHPlURhDK+3EFvdlNGC hSlJEr3mvs4936jGO1cFw98JT4fkv4l+NFBq33i4iieyw/2gyLqWgLoNLGDn4oRR 5+VyvlSCxHzSMQlW3YLy0fZ+KHxVv8y4bsf2tXCU2Ov+L8ypU2wjNBavANxIRaaT 5mPmUHU= -----END CERTIFICATE-----Generated at Sun Aug 24 04:07:40 2025 by rpki-client