$ rpki-client -vvf rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/974A6E0CE15611EC9E14513DC4F9AE02.roa File: 974A6E0CE15611EC9E14513DC4F9AE02.roa (raw, json) Hash identifier: 5cUeQX8aWmX9t5XpnUuO5ZCx3d0YwFQhU0FaZHJ8gp8= Subject key identifier: 7D:E5:F5:CA:FE:13:D3:AE:1B:30:D2:2B:95:9C:23:90:EE:66:4C:54 Certificate issuer: /CN=A919A9EE/serialNumber=C0B16039C46CDF0C88D9A74A82D9E459A3A8CAE6 Certificate serial: 05A7 Authority key identifier: C0:B1:60:39:C4:6C:DF:0C:88:D9:A7:4A:82:D9:E4:59:A3:A8:CA:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLFgOcRs3wyI2adKgtnkWaOoyuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/974A6E0CE15611EC9E14513DC4F9AE02.roa Signing time: Tue 06 May 2025 23:32:48 +0000 ROA not before: Tue 06 May 2025 23:32:48 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38438 IP address blocks: 203.3.184.0/24 maxlen: 24 203.3.185.0/24 maxlen: 24 203.55.208.0/24 maxlen: 24 203.55.210.0/24 maxlen: 24 203.55.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/wLFgOcRs3wyI2adKgtnkWaOoyuY.crl rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/wLFgOcRs3wyI2adKgtnkWaOoyuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLFgOcRs3wyI2adKgtnkWaOoyuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 23:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1447 (0x5a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A9EE, serialNumber=C0B16039C46CDF0C88D9A74A82D9E459A3A8CAE6 Validity Not Before: May 6 23:32:48 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681a9c20-754e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3e:d1:c2:53:9e:14:9a:42:ae:94:1a:a0:ed: a4:50:4d:18:bd:62:f2:f0:1b:b8:f2:16:d5:73:80: e8:72:87:d4:7f:db:ff:cd:30:cd:f8:5b:1d:81:25: cc:64:17:0b:ab:74:07:fe:d0:1e:3d:94:15:4e:75: 07:32:81:eb:59:db:2e:51:1c:53:14:b3:d2:73:d7: e8:e9:f8:2f:9d:37:bb:de:18:f0:05:5c:a2:84:f8: fb:37:2b:e1:79:f7:68:ea:d3:46:57:c0:39:25:cd: 77:be:63:38:de:80:3a:9f:d3:97:8c:58:c5:c4:66: c2:14:25:09:98:fb:fa:9f:ed:e0:81:28:ea:be:d0: 82:31:0b:ae:2f:3c:db:78:91:e7:44:cd:a6:c8:80: 35:71:f8:a3:2e:74:13:ff:8c:a6:5a:71:3f:bd:13: 36:3d:a7:a9:a0:a2:17:a0:2f:02:41:1c:dd:ba:8c: 56:d5:0f:b1:6b:8c:a7:0b:c7:35:97:43:87:b8:ce: 2f:37:d2:c0:b5:4b:04:57:d5:7f:fb:47:94:f2:f1: ee:1e:c0:f1:37:0b:50:44:99:dc:ef:ec:44:b1:00: 1e:fa:f9:3f:e0:6c:a3:cb:0a:2e:ea:38:09:80:71: 8c:b8:6d:97:e2:70:a2:b3:6b:de:47:86:93:ec:e2: c4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:E5:F5:CA:FE:13:D3:AE:1B:30:D2:2B:95:9C:23:90:EE:66:4C:54 X509v3 Authority Key Identifier: keyid:C0:B1:60:39:C4:6C:DF:0C:88:D9:A7:4A:82:D9:E4:59:A3:A8:CA:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/wLFgOcRs3wyI2adKgtnkWaOoyuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLFgOcRs3wyI2adKgtnkWaOoyuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/974A6E0CE15611EC9E14513DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.3.184.0/23 203.55.208.0/24 203.55.210.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:49:44:83:a6:c1:f9:21:05:07:05:5d:19:1d:57:e9:1d:c2: 95:33:77:5e:dd:e7:d1:f8:98:e4:90:24:f4:b0:55:5c:d5:77: ee:f2:a7:18:86:06:52:74:38:79:8f:4f:14:af:e6:cc:ff:ff: 48:13:aa:c3:1f:8d:5a:df:cf:40:54:58:1f:f4:61:2f:93:36: 7e:2d:f5:a4:50:22:bc:d9:79:92:f4:b8:65:ea:2d:30:19:17: 0f:3a:50:57:ec:8b:ea:b3:1f:35:72:27:02:5b:9d:84:82:cd: 27:25:e2:1c:86:0f:d3:c2:c5:6b:10:d3:e8:5d:3f:99:4e:df: 2a:bb:d3:a2:86:18:4c:dc:d9:3c:26:19:17:71:bc:09:5e:55: 01:f3:91:2c:67:1e:79:c7:7e:b0:a7:34:d1:a4:6f:b2:8d:c7: 79:59:43:fb:f9:ce:cf:98:21:67:e1:fa:e0:1d:ab:c1:61:85: 4a:54:70:04:c3:53:03:51:3c:0e:6d:d1:de:78:d6:33:a5:7e: 6f:63:8e:4b:e3:34:31:65:88:7c:fa:80:91:d9:c5:73:9d:c4: 65:1c:1c:d3:62:60:b3:ea:b3:3c:6b:3e:64:0a:18:e5:08:6e: e2:77:74:71:32:2e:3d:25:6d:0d:ae:02:26:92:da:73:b1:9b: 69:26:6c:9a -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5RUUxMTAvBgNVBAUTKEMwQjE2MDM5QzQ2Q0RGMEM4OEQ5QTc0QTgyRDlFNDU5 QTNBOENBRTYwHhcNMjUwNTA2MjMzMjQ4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhOWMyMC03NTRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwD7RwlOeFJpCrpQaoO2kUE0YvWLy8Bu48hbVc4DocofUf9v/zTDN+FsdgSXM ZBcLq3QH/tAePZQVTnUHMoHrWdsuURxTFLPSc9fo6fgvnTe73hjwBVyihPj7Nyvh efdo6tNGV8A5Jc13vmM43oA6n9OXjFjFxGbCFCUJmPv6n+3ggSjqvtCCMQuuLzzb eJHnRM2myIA1cfijLnQT/4ymWnE/vRM2PaepoKIXoC8CQRzduoxW1Q+xa4ynC8c1 l0OHuM4vN9LAtUsEV9V/+0eU8vHuHsDxNwtQRJnc7+xEsQAe+vk/4Gyjywou6jgJ gHGMuG2X4nCis2veR4aT7OLEzQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFH3l9cr+ E9OuGzDSK5WcI5DuZkxUMB8GA1UdIwQYMBaAFMCxYDnEbN8MiNmnSoLZ5FmjqMrm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTlFRS9BMDhCNkE1Q0Qz NkExMUVCODhCMUVCMzNDNEY5QUUwMi93TEZnT2NSczN3eUkyYWRLZ3Rua1dhT295 dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dMRmdPY1JzM3d5STJhZEtndG5rV2FPb3l1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE5RUUvQTA4QjZBNUNEMzZBMTFFQjg4QjFFQjMzQzRGOUFFMDIvOTc0QTZFMENF MTU2MTFFQzlFMTQ1MTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAHLA7gDBADLN9ADBAHLN9IwDQYJKoZIhvcNAQELBQADggEB AAtJRIOmwfkhBQcFXRkdV+kdwpUzd17d59H4mOSQJPSwVVzVd+7ypxiGBlJ0OHmP TxSv5sz//0gTqsMfjVrfz0BUWB/0YS+TNn4t9aRQIrzZeZL0uGXqLTAZFw86UFfs i+qzHzVyJwJbnYSCzScl4hyGD9PCxWsQ0+hdP5lO3yq706KGGEzc2TwmGRdxvAle VQHzkSxnHnnHfrCnNNGkb7KNx3lZQ/v5zs+YIWfh+uAdq8FhhUpUcATDUwNRPA5t 0d541jOlfm9jjkvjNDFliHz6gJHZxXOdxGUcHNNiYLPqszxrPmQKGOUIbuJ3dHEy Lj0lbQ2uAiaS2nOxm2kmbJo= -----END CERTIFICATE-----Generated at Sat May 17 11:17:30 2025 by rpki-client