$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/DD12F48AEC2611EF94F85F09C4F9AE02.roa File: DD12F48AEC2611EF94F85F09C4F9AE02.roa (raw, json) Hash identifier: 5x3hwbD6OKSIDNRFPjnTH18AkwSHTg00pMz0FKOos+E= Subject key identifier: C0:FD:C7:80:7D:F1:0A:3E:A0:92:B6:C3:03:FE:72:EB:9D:47:27:52 Certificate issuer: /CN=A918FC75/serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Certificate serial: 0489 Authority key identifier: 48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/DD12F48AEC2611EF94F85F09C4F9AE02.roa Signing time: Thu 05 Jun 2025 01:47:39 +0000 ROA not before: Thu 05 Jun 2025 01:47:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 10103 IP address blocks: 203.32.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1161 (0x489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC75, serialNumber=482E5A6E0896A266A91A4066C06F4B4ED984649D Validity Not Before: Jun 5 01:47:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6840f73b-8490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:53:61:c4:49:93:12:04:50:c3:ba:6b:fa:77: cb:9f:31:18:7b:fb:f4:71:41:44:c3:75:a5:5e:3e: 6a:63:e8:36:a7:79:87:36:4f:c7:83:35:2c:bd:e4: 14:d0:2a:c4:6b:c2:fd:b9:d8:0a:14:58:18:4b:90: 47:d7:3a:86:73:8a:7c:56:67:ef:eb:52:18:fa:0b: e0:26:d4:8d:5e:92:25:8f:a4:a3:c2:be:5c:ec:79: 73:e0:b3:e3:6d:9e:0d:c6:27:9c:bd:c5:f7:35:c2: 2c:37:42:26:d0:2e:fa:2d:a3:b5:eb:b5:53:04:f1: 55:75:6b:74:fd:c8:9b:c4:e6:53:f1:89:86:74:9e: 6a:c9:78:dd:fb:a1:0b:6e:67:f5:b8:ca:05:6f:9a: 2b:58:64:a8:03:bf:cb:56:7e:18:ad:73:ae:6a:76: 77:ec:af:7d:96:8e:75:ff:81:31:c9:76:94:77:04: be:c3:26:01:e5:83:0d:15:6b:d5:17:9c:dc:ae:68: 63:f9:38:bf:db:ee:c5:16:5c:c8:2d:7c:17:0f:70: 79:40:28:20:fd:16:b8:b1:b5:e4:c6:0e:43:99:6d: 8c:50:a0:c6:cf:86:2f:bb:59:7b:82:36:9f:7c:73: ad:7f:e0:47:ab:84:96:fc:fd:cf:2a:8c:08:21:64: 0f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FD:C7:80:7D:F1:0A:3E:A0:92:B6:C3:03:FE:72:EB:9D:47:27:52 X509v3 Authority Key Identifier: keyid:48:2E:5A:6E:08:96:A2:66:A9:1A:40:66:C0:6F:4B:4E:D9:84:64:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/SC5abgiWomapGkBmwG9LTtmEZJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SC5abgiWomapGkBmwG9LTtmEZJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC75/3AA5DEE0DD5811EC870FC20DC4F9AE02/DD12F48AEC2611EF94F85F09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.25.0/24 Signature Algorithm: sha256WithRSAEncryption 48:36:99:b0:ca:c8:d1:d5:a8:4d:55:5f:46:ea:40:e3:1e:99: 53:df:59:54:26:65:9b:38:e1:32:7e:ce:2c:a0:f2:1d:67:e3: 41:ce:dd:0b:eb:ec:02:56:f7:0f:8e:3f:a3:24:b0:2b:87:1c: 8b:41:21:ac:f6:30:09:ea:60:91:6e:ea:2e:2b:2b:e9:98:0c: 1b:9e:38:3d:b1:ff:e5:ac:50:f6:bc:ba:ac:15:0d:00:2d:35: 6a:59:cc:b7:c9:18:ee:c9:87:29:50:0f:c1:60:05:5a:60:e6: 08:83:cf:fe:5c:10:58:7d:56:c5:80:6a:b4:e1:76:df:e0:58: 4b:aa:e1:3c:d6:bf:59:63:ee:48:1b:e7:77:eb:9f:4f:00:60: 9a:be:16:7e:2a:a0:d1:bb:b9:61:2d:5e:23:2c:4d:68:53:98: 49:ae:e1:68:81:a8:97:ae:42:46:81:63:ba:95:03:e1:6e:5d: 89:ae:05:10:f8:c2:2e:7d:13:d5:38:94:85:d3:2a:c4:87:b4: 7f:30:d5:d9:49:43:e7:fa:d3:22:b0:d1:07:7a:9f:45:10:7d: 58:f7:89:ae:55:4e:05:81:ea:ed:34:45:83:dd:b1:48:99:0e: 89:fb:57:a2:1b:4a:4d:a7:86:4b:84:35:dd:ad:19:2a:aa:fd: 4c:f5:b8:5a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNzUxMTAvBgNVBAUTKDQ4MkU1QTZFMDg5NkEyNjZBOTFBNDA2NkMwNkY0QjRF RDk4NDY0OUQwHhcNMjUwNjA1MDE0NzM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZjczYi04NDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVNhxEmTEgRQw7pr+nfLnzEYe/v0cUFEw3WlXj5qY+g2p3mHNk/HgzUsveQU 0CrEa8L9udgKFFgYS5BH1zqGc4p8Vmfv61IY+gvgJtSNXpIlj6Sjwr5c7Hlz4LPj bZ4NxiecvcX3NcIsN0Im0C76LaO167VTBPFVdWt0/cibxOZT8YmGdJ5qyXjd+6EL bmf1uMoFb5orWGSoA7/LVn4YrXOuanZ37K99lo51/4ExyXaUdwS+wyYB5YMNFWvV F5zcrmhj+Ti/2+7FFlzILXwXD3B5QCgg/Ra4sbXkxg5DmW2MUKDGz4Yvu1l7gjaf fHOtf+BHq4SW/P3PKowIIWQPpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMD9x4B9 8Qo+oJK2wwP+cuudRydSMB8GA1UdIwQYMBaAFEguWm4IlqJmqRpAZsBvS07ZhGSd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM3NS8zQUE1REVFMERE NTgxMUVDODcwRkMyMERDNEY5QUUwMi9TQzVhYmdpV29tYXBHa0Jtd0c5TFR0bUVa SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NDNWFiZ2lXb21hcEdrQm13RzlMVHRtRVpKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNzUvM0FBNURFRTBERDU4MTFFQzg3MEZDMjBEQzRGOUFFMDIvREQxMkY0OEFF QzI2MTFFRjk0Rjg1RjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLIBkwDQYJKoZIhvcNAQELBQADggEBAEg2mbDKyNHVqE1V X0bqQOMemVPfWVQmZZs44TJ+ziyg8h1n40HO3Qvr7AJW9w+OP6MksCuHHItBIaz2 MAnqYJFu6i4rK+mYDBueOD2x/+WsUPa8uqwVDQAtNWpZzLfJGO7JhylQD8FgBVpg 5giDz/5cEFh9VsWAarThdt/gWEuq4TzWv1lj7kgb53frn08AYJq+Fn4qoNG7uWEt XiMsTWhTmEmu4WiBqJeuQkaBY7qVA+FuXYmuBRD4wi59E9U4lIXTKsSHtH8w1dlJ Q+f60yKw0Qd6n0UQfVj3ia5VTgWB6u00RYPdsUiZDon7V6IbSk2nhkuENd2tGSqq /Uz1uFo= -----END CERTIFICATE-----Generated at Sat Jul 5 01:44:46 2025 by rpki-client