$ rpki-client -vvf rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/2958A208394011EF8BFF2329C4F9AE02.roa File: 2958A208394011EF8BFF2329C4F9AE02.roa (raw, json) Hash identifier: 0hRL6yZO6PYkNxlevkrCS0rz63r1YCZDrVAR2Fyxyls= Subject key identifier: 17:E3:B9:E7:6B:48:12:30:F4:F8:4A:3C:E7:2D:B6:7D:CF:EC:19:84 Certificate issuer: /CN=A919EAF3/serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Certificate serial: 19B8 Authority key identifier: ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/2958A208394011EF8BFF2329C4F9AE02.roa Signing time: Sat 02 Aug 2025 16:55:08 +0000 ROA not before: Sat 02 Aug 2025 16:55:08 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4620 IP address blocks: 43.255.56.0/24 maxlen: 24 203.78.149.0/24 maxlen: 24 203.78.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 16:41:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6584 (0x19b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EAF3, serialNumber=ED3694218DCB1EAF3D1AF5C6ABC031A6DB7E6CE5 Validity Not Before: Aug 2 16:55:08 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688e42ec-c62f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:13:79:f6:ed:d1:5f:53:5a:e1:6a:97:a8:2e: 28:b6:84:6f:aa:c7:7f:ca:5d:3e:db:4f:09:24:f0: 48:11:8d:02:c6:c6:1a:9b:38:1f:76:6f:e5:3d:1d: cc:3f:b0:06:04:af:49:dc:c4:aa:12:a4:13:36:91: 80:c4:8b:b1:84:d4:23:1a:6c:f9:ef:94:5f:4d:2a: c9:b2:02:fe:ca:30:5d:6d:4f:47:71:2d:03:68:0e: 5c:b7:3b:e8:f8:cf:bc:86:04:7f:06:36:55:cd:1a: 76:f4:9f:8a:c0:e2:2e:fb:74:04:2e:8d:6d:f2:06: 90:e3:08:55:50:2f:e0:a1:64:bc:7b:b2:6f:27:d8: 31:39:f2:47:83:d0:41:ac:4b:f7:8f:d0:da:e9:c6: 47:f5:3f:ac:07:73:fa:96:05:1c:f8:88:f7:05:74: 51:bd:f3:01:82:b8:b1:32:bb:22:15:32:55:c8:77: af:0b:98:bd:36:f0:62:04:fe:7a:2c:05:b8:27:d0: 95:5e:a4:64:f1:69:7a:65:02:51:3b:68:a4:be:12: eb:d8:10:06:a6:52:c0:11:0e:c2:1d:c1:06:fd:5d: 9f:7a:c0:bf:a0:64:07:17:46:0b:1a:bc:34:e0:13: 9f:f3:89:39:e0:04:48:b2:fa:ad:b7:e5:f4:c7:52: ff:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:E3:B9:E7:6B:48:12:30:F4:F8:4A:3C:E7:2D:B6:7D:CF:EC:19:84 X509v3 Authority Key Identifier: keyid:ED:36:94:21:8D:CB:1E:AF:3D:1A:F5:C6:AB:C0:31:A6:DB:7E:6C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/7TaUIY3LHq89GvXGq8Axptt-bOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TaUIY3LHq89GvXGq8Axptt-bOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EAF3/9D200DBC6D1811E7A815DA80C4F9AE02/2958A208394011EF8BFF2329C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.56.0/24 203.78.149.0/24 203.78.151.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:9d:ef:95:59:10:0c:89:51:af:0c:85:57:82:19:c3:a3:43: 93:d1:25:16:0a:f7:3c:95:df:5e:2c:b1:09:de:f8:e0:94:8e: ae:d9:64:d4:25:6e:4a:b5:a3:83:76:0d:fb:69:4c:ee:65:a2: 17:41:c2:71:b7:c2:32:2c:ba:e5:e8:30:4d:fa:d6:8a:cf:4f: 89:66:f7:7d:cf:cb:31:ce:76:22:13:d7:15:3e:5d:29:46:79: 8f:c4:e1:17:17:9c:aa:74:a4:15:cd:10:9a:c3:1f:52:d6:d4: 36:fe:cc:0c:85:4e:70:d9:75:d5:a2:8a:cd:73:45:60:a2:3e: 3d:29:ae:72:cd:20:33:07:7d:e1:91:50:12:b6:6b:1b:a2:38: c0:53:ec:e1:8e:c2:3c:96:15:f3:af:cf:23:e2:0f:fc:00:35: 73:68:7d:08:d9:21:e6:a8:fd:c4:3d:ae:9e:27:9a:e5:ff:3f: e2:87:69:6c:bc:75:cf:56:cb:cd:00:1e:a0:07:85:a1:96:bf: b8:be:d8:b4:86:7e:c1:57:84:21:90:f9:d3:49:1f:6f:3f:89: 15:93:bb:a6:88:09:7f:5f:91:63:cb:53:8d:43:00:03:d3:9e: 6c:71:2b:e7:13:2d:f5:f0:53:a9:ae:d1:b6:18:0f:cf:c7:a4: bb:6c:09:2b -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVBRjMxMTAvBgNVBAUTKEVEMzY5NDIxOERDQjFFQUYzRDFBRjVDNkFCQzAzMUE2 REI3RTZDRTUwHhcNMjUwODAyMTY1NTA4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlNDJlYy1jNjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7BN59u3RX1Na4WqXqC4otoRvqsd/yl0+208JJPBIEY0CxsYamzgfdm/lPR3M P7AGBK9J3MSqEqQTNpGAxIuxhNQjGmz575RfTSrJsgL+yjBdbU9HcS0DaA5ctzvo +M+8hgR/BjZVzRp29J+KwOIu+3QELo1t8gaQ4whVUC/goWS8e7JvJ9gxOfJHg9BB rEv3j9Da6cZH9T+sB3P6lgUc+Ij3BXRRvfMBgrixMrsiFTJVyHevC5i9NvBiBP56 LAW4J9CVXqRk8Wl6ZQJRO2ikvhLr2BAGplLAEQ7CHcEG/V2fesC/oGQHF0YLGrw0 4BOf84k54ARIsvqtt+X0x1L/ZwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFBfjuedr SBIw9PhKPOcttn3P7BmEMB8GA1UdIwQYMBaAFO02lCGNyx6vPRr1xqvAMabbfmzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUFGMy85RDIwMERCQzZE MTgxMUU3QTgxNURBODBDNEY5QUUwMi83VGFVSVkzTEhxODlHdlhHcThBeHB0dC1i T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUYVVJWTNMSHE4OUd2WEdxOEF4cHR0LWJPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVBRjMvOUQyMDBEQkM2RDE4MTFFN0E4MTVEQTgwQzRGOUFFMDIvMjk1OEEyMDgz OTQwMTFFRjhCRkYyMzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr/zgDBADLTpUDBADLTpcwDQYJKoZIhvcNAQELBQADggEB AC+d75VZEAyJUa8MhVeCGcOjQ5PRJRYK9zyV314ssQne+OCUjq7ZZNQlbkq1o4N2 DftpTO5lohdBwnG3wjIsuuXoME361orPT4lm933PyzHOdiIT1xU+XSlGeY/E4RcX nKp0pBXNEJrDH1LW1Db+zAyFTnDZddWiis1zRWCiPj0prnLNIDMHfeGRUBK2axui OMBT7OGOwjyWFfOvzyPiD/wANXNofQjZIeao/cQ9rp4nmuX/P+KHaWy8dc9Wy80A HqAHhaGWv7i+2LSGfsFXhCGQ+dNJH28/iRWTu6aICX9fkWPLU41DAAPTnmxxK+cT LfXwU6mu0bYYD8/HpLtsCSs= -----END CERTIFICATE-----Generated at Mon Oct 20 19:25:03 2025 by rpki-client