$ rpki-client -vvf rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/B95648BA062211F09E5D020EC4F9AE02.roa File: B95648BA062211F09E5D020EC4F9AE02.roa (raw, json) Hash identifier: tQCXioRQJidNJqp0A7ZKqy48ZP3UvrqPeNbQhZXkPH0= Subject key identifier: 85:C4:97:9D:C7:AB:6B:69:37:B7:41:5D:D5:71:B4:50:E4:46:B1:EE Certificate issuer: /CN=A919A9EE/serialNumber=C0B16039C46CDF0C88D9A74A82D9E459A3A8CAE6 Certificate serial: 05A8 Authority key identifier: C0:B1:60:39:C4:6C:DF:0C:88:D9:A7:4A:82:D9:E4:59:A3:A8:CA:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLFgOcRs3wyI2adKgtnkWaOoyuY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/B95648BA062211F09E5D020EC4F9AE02.roa Signing time: Tue 06 May 2025 23:32:49 +0000 ROA not before: Tue 06 May 2025 23:32:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4820 IP address blocks: 203.3.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/wLFgOcRs3wyI2adKgtnkWaOoyuY.crl rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/wLFgOcRs3wyI2adKgtnkWaOoyuY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLFgOcRs3wyI2adKgtnkWaOoyuY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1448 (0x5a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A9EE, serialNumber=C0B16039C46CDF0C88D9A74A82D9E459A3A8CAE6 Validity Not Before: May 6 23:32:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681a9c20-67aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:17:28:25:c5:db:55:00:bf:1a:86:6c:ab:76: 91:f2:fa:0d:0c:c3:2f:db:73:23:53:8d:1b:52:90: 73:d4:4b:e4:17:a9:6e:c4:68:40:d5:10:69:f9:8c: f0:34:61:1e:54:49:52:34:70:f5:b6:3f:73:56:60: 5b:45:c3:15:aa:d4:b1:51:20:73:e5:95:78:1a:94: e6:11:a9:73:a7:17:c9:0f:a2:60:8d:5b:e2:2b:c0: af:d6:4d:e9:2d:54:86:df:9a:68:30:be:fe:16:71: a9:b3:90:85:03:27:95:a3:8d:d5:83:59:e9:1d:f6: 57:ed:92:b1:04:6a:7d:60:16:71:a6:76:6e:32:75: ac:f2:f7:21:32:5f:3e:a0:11:a5:cd:aa:8e:b5:bd: 41:17:65:d8:10:c8:1a:f5:7c:87:98:53:32:00:98: e7:83:e9:0c:38:d0:4a:a6:2b:1f:78:82:60:3b:33: e7:13:cd:8c:b2:bb:3d:d0:5f:7f:89:aa:a9:7f:7b: 84:5f:e4:2c:92:94:f6:aa:52:f4:52:30:13:6f:c6: 52:68:17:98:c0:dd:49:a8:44:7f:17:72:63:bb:43: 50:e2:41:28:78:8f:e1:42:dc:27:63:f1:f7:a1:b7: 8e:7c:0d:d1:7b:54:ff:f3:58:b6:7f:b4:f0:88:32: c5:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:C4:97:9D:C7:AB:6B:69:37:B7:41:5D:D5:71:B4:50:E4:46:B1:EE X509v3 Authority Key Identifier: keyid:C0:B1:60:39:C4:6C:DF:0C:88:D9:A7:4A:82:D9:E4:59:A3:A8:CA:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/wLFgOcRs3wyI2adKgtnkWaOoyuY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wLFgOcRs3wyI2adKgtnkWaOoyuY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A9EE/A08B6A5CD36A11EB88B1EB33C4F9AE02/B95648BA062211F09E5D020EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.3.176.0/24 Signature Algorithm: sha256WithRSAEncryption 13:c6:9e:48:06:b9:44:cf:fd:6e:18:e0:35:0e:6b:01:c0:c6: 97:a4:a3:52:15:85:58:c3:76:48:f5:dd:b6:db:e9:9f:f9:29: ab:0f:57:8c:a9:1d:8d:96:b8:71:4d:89:32:22:03:c8:da:a4: 4d:f4:34:74:b6:45:ad:55:27:ff:b1:0b:6f:45:39:d8:dc:6f: 63:d8:f6:5e:c3:9f:d9:c2:08:b0:e4:50:63:1f:58:24:20:f1: a8:2f:2c:5d:e1:c5:31:a7:ea:0d:9e:fc:47:76:ef:a2:aa:3b: 84:4a:2c:99:aa:4e:03:37:f5:0b:a2:c5:6f:20:ff:1b:7b:5b: 7b:8a:bb:17:dc:18:90:8e:2d:12:7d:d6:0b:f9:b0:44:97:ff: 9b:5d:55:a2:f8:ca:5b:84:03:3d:08:22:9d:80:cb:71:10:74: 1c:69:fb:80:21:f1:d8:83:46:38:98:f5:6d:40:d7:45:a9:c7: a1:8b:52:91:be:3c:e2:df:2b:5c:46:90:97:57:81:c6:eb:c8: 2a:77:6e:47:ae:2a:77:5e:35:ec:8e:97:21:4a:76:23:7b:18: 6e:1d:8c:bc:bd:ba:56:47:26:41:6a:6c:91:23:07:ef:a1:f4: 80:ee:41:9e:a3:ae:28:ab:9f:70:55:25:36:9a:36:37:29:01: 34:da:65:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5RUUxMTAvBgNVBAUTKEMwQjE2MDM5QzQ2Q0RGMEM4OEQ5QTc0QTgyRDlFNDU5 QTNBOENBRTYwHhcNMjUwNTA2MjMzMjQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhOWMyMC02N2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxcoJcXbVQC/GoZsq3aR8voNDMMv23MjU40bUpBz1EvkF6luxGhA1RBp+Yzw NGEeVElSNHD1tj9zVmBbRcMVqtSxUSBz5ZV4GpTmEalzpxfJD6JgjVviK8Cv1k3p LVSG35poML7+FnGps5CFAyeVo43Vg1npHfZX7ZKxBGp9YBZxpnZuMnWs8vchMl8+ oBGlzaqOtb1BF2XYEMga9XyHmFMyAJjng+kMONBKpisfeIJgOzPnE82Msrs90F9/ iaqpf3uEX+QskpT2qlL0UjATb8ZSaBeYwN1JqER/F3Jju0NQ4kEoeI/hQtwnY/H3 obeOfA3Re1T/81i2f7TwiDLFOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIXEl53H q2tpN7dBXdVxtFDkRrHuMB8GA1UdIwQYMBaAFMCxYDnEbN8MiNmnSoLZ5FmjqMrm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTlFRS9BMDhCNkE1Q0Qz NkExMUVCODhCMUVCMzNDNEY5QUUwMi93TEZnT2NSczN3eUkyYWRLZ3Rua1dhT295 dVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dMRmdPY1JzM3d5STJhZEtndG5rV2FPb3l1WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUE5RUUvQTA4QjZBNUNEMzZBMTFFQjg4QjFFQjMzQzRGOUFFMDIvQjk1NjQ4QkEw NjIyMTFGMDlFNUQwMjBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLA7AwDQYJKoZIhvcNAQELBQADggEBABPGnkgGuUTP/W4Y 4DUOawHAxpeko1IVhVjDdkj13bbb6Z/5KasPV4ypHY2WuHFNiTIiA8japE30NHS2 Ra1VJ/+xC29FOdjcb2PY9l7Dn9nCCLDkUGMfWCQg8agvLF3hxTGn6g2e/Ed276Kq O4RKLJmqTgM39QuixW8g/xt7W3uKuxfcGJCOLRJ91gv5sESX/5tdVaL4yluEAz0I Ip2Ay3EQdBxp+4Ah8diDRjiY9W1A10Wpx6GLUpG+POLfK1xGkJdXgcbryCp3bkeu KndeNeyOlyFKdiN7GG4djLy9ulZHJkFqbJEjB++h9IDuQZ6jriirn3BVJTaaNjcp ATTaZf0= -----END CERTIFICATE-----Generated at Mon Oct 20 19:13:28 2025 by rpki-client