$ rpki-client -vvf rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/24108E38125C11EFA53AA21EC4F9AE02.roa File: 24108E38125C11EFA53AA21EC4F9AE02.roa (raw, json) Hash identifier: gQzWJHoaUz+ZsxQT6VbHPTnmepZXOupiiqIe2nIrQsI= Subject key identifier: CE:6B:5E:AD:91:7C:38:59:DB:95:AE:46:37:4B:54:7C:9D:1A:E5:B9 Certificate issuer: /CN=A9111318/serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Certificate serial: 35AD Authority key identifier: 80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/24108E38125C11EFA53AA21EC4F9AE02.roa Signing time: Wed 16 Jul 2025 04:27:21 +0000 ROA not before: Wed 16 Jul 2025 04:27:21 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38022 IP address blocks: 163.7.128.0/19 maxlen: 19 163.7.128.0/24 maxlen: 24 163.7.136.0/24 maxlen: 24 163.7.137.0/24 maxlen: 24 163.7.144.0/21 maxlen: 21 210.7.32.0/20 maxlen: 20 2404:138::/32 maxlen: 32 2404:138:204::/48 maxlen: 48 2404:138:205::/48 maxlen: 48 2404:138:206::/48 maxlen: 48 2404:138:207::/48 maxlen: 48 2404:138:1305::/48 maxlen: 48 2404:138:1306::/48 maxlen: 48 2404:139::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 14:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13741 (0x35ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111318, serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Validity Not Before: Jul 16 04:27:21 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68772a29-3ff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f1:0c:e6:1a:17:2a:ca:44:a2:66:6b:14:b5: e0:b1:92:40:72:79:71:6f:22:47:81:0d:7e:56:20: 9e:48:50:db:43:6c:0a:3b:61:b0:5a:2e:c8:1e:76: df:3b:77:99:c4:b8:87:dd:58:27:01:58:c1:80:d1: c7:bd:c7:81:92:75:0a:df:aa:52:64:36:59:42:05: a8:f9:02:b7:4a:af:41:40:db:49:06:42:6b:f1:aa: 48:c1:7a:d3:78:80:33:0c:76:26:da:cf:be:af:13: f4:5d:6f:2b:ac:4c:8a:fa:11:53:7f:b3:b1:a2:4e: bf:3f:2f:95:b3:c9:bc:15:0c:86:85:92:a6:a1:c4: 16:f6:2d:b0:bd:ad:1d:c8:b8:23:96:33:70:7e:d8: 17:c3:da:f3:41:9d:3c:37:5b:62:31:a7:df:f7:1d: 3c:8f:d1:31:5a:74:91:42:cf:5f:eb:58:37:22:19: a7:ad:ad:0e:8a:f3:56:37:17:b6:1f:cf:7b:10:ad: 61:a9:84:cb:98:d1:54:b0:cb:1c:87:bd:cf:bd:96: 83:0c:4a:9f:30:2b:4b:23:60:3f:57:d3:79:95:d2: de:14:f0:13:f5:c6:f5:15:04:a2:13:55:fa:88:a1: 9e:3b:30:e5:f0:14:37:a2:b0:95:9f:92:63:16:4e: f5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6B:5E:AD:91:7C:38:59:DB:95:AE:46:37:4B:54:7C:9D:1A:E5:B9 X509v3 Authority Key Identifier: keyid:80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/24108E38125C11EFA53AA21EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.7.128.0/19 210.7.32.0/20 IPv6: 2404:138::/31 Signature Algorithm: sha256WithRSAEncryption 52:3e:bc:24:b9:b1:6d:ed:f7:df:fa:ca:29:22:b0:1b:87:ed: 45:9c:b1:83:2a:c7:1e:f9:45:c6:77:4b:a2:46:ff:7b:60:14: e9:30:a6:42:20:04:b7:a7:3c:ae:d8:af:ff:3a:96:dc:38:77: 9f:9f:bc:ef:d8:27:e8:94:36:66:57:3d:53:54:db:35:5f:81: e7:e2:17:ec:64:13:bb:5a:e8:0c:5d:5c:81:08:0d:3c:02:4b: d0:7f:a5:6d:46:78:c6:90:35:6e:b8:ac:f1:9e:79:47:2d:8e: 85:a3:a8:cb:00:d6:c4:e0:b6:bf:dd:82:55:12:1a:47:55:25: d8:10:dd:88:5b:e0:93:08:34:7f:7e:32:12:7b:cc:ef:49:6a: d3:8b:22:c4:22:8a:1a:a3:ae:e0:1c:05:11:b3:e9:1d:c5:8a: 71:9d:ec:56:4a:a7:1a:a4:45:96:82:f5:ca:98:76:db:3d:e4: 3b:f5:ce:74:84:03:00:8c:7a:a6:6c:8b:e1:35:df:91:df:3d: 86:3a:3e:aa:ec:ce:93:f9:4b:4c:80:8c:70:ba:03:73:1c:81: 90:f8:14:8a:24:9e:3a:69:2b:07:32:25:e4:86:70:65:64:6f: 80:30:c7:16:af:16:24:80:80:2d:c8:75:22:19:50:c6:12:f6: a6:5a:c8:d3 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICNa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEzMTgxMTAvBgNVBAUTKDgwNkFCRkY0NjM1OTRDQUEzMERFNzBBMzExQUUyRjg0 OTE4OUJDNjQwHhcNMjUwNzE2MDQyNzIxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc3MmEyOS0zZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0/EM5hoXKspEomZrFLXgsZJAcnlxbyJHgQ1+ViCeSFDbQ2wKO2GwWi7IHnbf O3eZxLiH3VgnAVjBgNHHvceBknUK36pSZDZZQgWo+QK3Sq9BQNtJBkJr8apIwXrT eIAzDHYm2s++rxP0XW8rrEyK+hFTf7Oxok6/Py+Vs8m8FQyGhZKmocQW9i2wva0d yLgjljNwftgXw9rzQZ08N1tiMaff9x08j9ExWnSRQs9f61g3Ihmnra0OivNWNxe2 H897EK1hqYTLmNFUsMsch73PvZaDDEqfMCtLI2A/V9N5ldLeFPAT9cb1FQSiE1X6 iKGeOzDl8BQ3orCVn5JjFk71EQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFM5rXq2R fDhZ25WuRjdLVHydGuW5MB8GA1UdIwQYMBaAFIBqv/RjWUyqMN5woxGuL4SRibxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTMxOC9EQzc0NTFGMjFE OTExMUUyOThFNzQ2RjQwOEIwMkNEMi9nR3FfOUdOWlRLb3czbkNqRWE0dmhKR0p2 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dHcV85R05aVEtvdzNuQ2pFYTR2aEpHSnZHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEzMTgvREM3NDUxRjIxRDkxMTFFMjk4RTc0NkY0MDhCMDJDRDIvMjQxMDhFMzgx MjVDMTFFRkE1M0FBMjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAWjB4ADBATSByAwDQQCAAIwBwMFASQEATgwDQYJKoZIhvcN AQELBQADggEBAFI+vCS5sW3t99/6yikisBuH7UWcsYMqxx75RcZ3S6JG/3tgFOkw pkIgBLenPK7Yr/86ltw4d5+fvO/YJ+iUNmZXPVNU2zVfgefiF+xkE7ta6AxdXIEI DTwCS9B/pW1GeMaQNW64rPGeeUctjoWjqMsA1sTgtr/dglUSGkdVJdgQ3Yhb4JMI NH9+MhJ7zO9JatOLIsQiihqjruAcBRGz6R3FinGd7FZKpxqkRZaC9cqYdts95Dv1 znSEAwCMeqZsi+E135HfPYY6PqrszpP5S0yAjHC6A3McgZD4FIoknjppKwcyJeSG cGVkb4AwxxavFiSAgC3IdSIZUMYS9qZayNM= -----END CERTIFICATE-----Generated at Wed Jul 23 21:53:22 2025 by rpki-client