$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/8A7456C47CBE11EFB9BF7074C4F9AE02.roa File: 8A7456C47CBE11EFB9BF7074C4F9AE02.roa (raw, json) Hash identifier: LJfUuUVRgUX70ra1tO0sOwws9DELyOzPbOL09Rc8QEE= Subject key identifier: A0:60:8B:9D:BA:98:80:9C:60:44:29:DB:16:75:6D:CC:B8:30:AD:98 Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 3574 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/8A7456C47CBE11EFB9BF7074C4F9AE02.roa Signing time: Wed 20 Aug 2025 14:50:33 +0000 ROA not before: Wed 20 Aug 2025 14:50:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45650 IP address blocks: 202.51.64.0/24 maxlen: 24 202.51.68.0/24 maxlen: 24 202.51.76.0/24 maxlen: 24 202.51.86.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:25:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13684 (0x3574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Aug 20 14:50:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a5e0b9-25bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f5:d4:b7:bd:58:db:cd:cc:f7:ad:30:cb:05: 8f:d4:3b:f6:66:4d:f5:5f:72:87:ac:2b:15:96:33: 36:30:7b:e6:d9:8b:7d:90:d4:71:c5:49:77:66:5c: 01:c8:55:bc:d4:7b:91:bb:34:bc:41:02:c0:a6:27: c2:b0:32:de:92:74:9c:0a:99:20:20:10:08:78:80: 14:6b:ce:62:0b:f1:3d:18:cf:29:fa:43:d7:90:bd: 62:ad:ff:5d:be:ae:d6:ec:c1:7e:dd:5c:6d:12:70: 8e:3e:10:43:31:97:4b:56:92:5d:68:73:17:5d:69: 26:9a:59:4e:8b:c5:c5:5a:03:78:4a:c2:ef:89:fd: 29:ed:c3:35:48:bf:23:1a:ca:98:4e:1e:6b:37:b3: e5:4c:86:74:b1:5c:ef:84:02:d2:2d:71:3c:33:67: 4a:f4:2b:73:5c:20:47:1c:9a:81:ca:4f:ba:46:d0: b0:e7:1e:26:8d:ba:00:3e:80:7d:54:0e:78:5d:e1: 40:57:08:9e:0b:97:46:1d:03:fd:50:9b:5b:8d:ab: da:35:0f:ee:cc:ed:8c:19:d2:c6:e0:ed:42:10:41: f5:6a:52:28:35:59:66:eb:87:44:e1:e1:34:39:c9: 3c:27:d5:79:ad:af:c6:2d:3a:c8:98:11:bb:a4:0d: ad:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:60:8B:9D:BA:98:80:9C:60:44:29:DB:16:75:6D:CC:B8:30:AD:98 X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/8A7456C47CBE11EFB9BF7074C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.51.64.0/24 202.51.68.0/24 202.51.76.0/24 202.51.86.0/24 Signature Algorithm: sha256WithRSAEncryption 06:4b:5f:8a:15:ef:02:2a:6f:5c:2f:38:db:e0:b8:db:22:19: d7:8f:3b:89:ee:f1:22:08:21:ba:72:fb:fd:04:40:84:36:99: d2:72:ae:21:0b:33:c3:08:6c:d9:a9:25:a4:73:12:17:0f:20: 3d:2b:b8:c0:f4:1e:e3:f9:3f:17:1a:7b:ed:b2:76:89:66:68: b3:83:d2:1f:ff:01:bf:1a:65:21:a7:dd:c2:9a:6a:3b:33:fd: 74:ad:2d:2e:37:9c:dd:1d:8f:82:e3:9f:fc:69:de:a2:e3:75: 05:a2:22:ac:ab:76:c1:f0:7f:4c:db:55:93:2c:82:c9:d6:7f: 34:56:02:54:52:0e:b8:30:0d:c3:92:cb:3a:98:e5:65:59:9d: e8:2f:8d:d5:6a:d3:15:37:3a:ee:97:aa:32:f2:d0:4a:1f:54: d2:ec:1c:2e:e7:4d:da:03:2a:f6:fd:9f:30:f2:96:d4:57:66: 96:7d:7a:a3:ac:97:6a:ea:10:b6:42:fe:61:b5:e3:7b:b0:c3: 9f:9d:05:48:84:d7:91:6f:c2:46:7e:cd:d2:7a:2a:e4:42:8f: 8c:b0:6e:31:0b:10:58:09:23:ec:c5:84:6d:34:3f:70:ca:a9: 67:73:70:32:99:0a:c6:f7:9f:51:e4:3d:98:42:de:d4:78:fc: ee:a9:64:cb -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICNXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUwODIwMTQ1MDMzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE1ZTBiOS0yNWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfXUt71Y283M960wywWP1Dv2Zk31X3KHrCsVljM2MHvm2Yt9kNRxxUl3ZlwB yFW81HuRuzS8QQLApifCsDLeknScCpkgIBAIeIAUa85iC/E9GM8p+kPXkL1irf9d vq7W7MF+3VxtEnCOPhBDMZdLVpJdaHMXXWkmmllOi8XFWgN4SsLvif0p7cM1SL8j GsqYTh5rN7PlTIZ0sVzvhALSLXE8M2dK9CtzXCBHHJqByk+6RtCw5x4mjboAPoB9 VA54XeFAVwieC5dGHQP9UJtbjavaNQ/uzO2MGdLG4O1CEEH1alIoNVlm64dE4eE0 Ock8J9V5ra/GLTrImBG7pA2t+wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFKBgi526 mICcYEQp2xZ1bcy4MK2YMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY1NTAvOEI5QkQyMDIxRDg1MTFFMkI0MTIzMERDMDhCMDJDRDIvOEE3NDU2QzQ3 Q0JFMTFFRkI5QkY3MDc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBADKM0ADBADKM0QDBADKM0wDBADKM1YwDQYJKoZIhvcNAQEL BQADggEBAAZLX4oV7wIqb1wvONvguNsiGdePO4nu8SIIIbpy+/0EQIQ2mdJyriEL M8MIbNmpJaRzEhcPID0ruMD0HuP5Pxcae+2ydolmaLOD0h//Ab8aZSGn3cKaajsz /XStLS43nN0dj4Ljn/xp3qLjdQWiIqyrdsHwf0zbVZMsgsnWfzRWAlRSDrgwDcOS yzqY5WVZnegvjdVq0xU3Ou6XqjLy0EofVNLsHC7nTdoDKvb9nzDyltRXZpZ9eqOs l2rqELZC/mG143uww5+dBUiE15FvwkZ+zdJ6KuRCj4ywbjELEFgJI+zFhG00P3DK qWdzcDKZCsb3n1HkPZhC3tR4/O6pZMs= -----END CERTIFICATE-----Generated at Sun Aug 24 01:26:51 2025 by rpki-client