$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/0DBB8642B84C11EF8F628659C4F9AE02.roa File: 0DBB8642B84C11EF8F628659C4F9AE02.roa (raw, json) Hash identifier: l9JtWQc6HmaHn6DUHsGzijctNd9a7ku8Mmfwr6D0HEw= Subject key identifier: F7:FC:78:0D:95:4E:5F:13:01:85:14:61:23:4B:9E:09:AF:4E:EF:1B Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39EC Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/0DBB8642B84C11EF8F628659C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:00 +0000 ROA not before: Mon 14 Jul 2025 14:51:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24344 IP address blocks: 110.170.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14828 (0x39ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:00 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751954-8f30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:1c:26:9b:76:50:5a:cd:d5:70:74:1d:6e:27: ce:c2:af:a2:d3:9d:16:d6:23:6f:0c:ee:46:37:d1: 05:98:41:39:78:d3:16:3d:bd:e9:ee:df:18:36:bf: c5:b4:60:fc:ba:a6:d2:ea:5f:1d:42:75:99:05:88: ff:11:34:3e:06:9f:6f:6b:da:cc:07:bc:40:2c:bd: 36:a9:f8:d8:75:f1:21:a4:1b:97:a1:63:4b:da:39: 8b:ed:93:36:94:2f:64:9f:7d:fd:02:53:cb:57:bc: 6a:ed:73:c7:fc:06:82:b0:6b:62:18:e1:ce:7b:d1: 5f:09:5c:fc:74:28:9f:08:72:87:f5:74:21:78:e7: 2c:92:a5:8f:b7:d8:49:17:d8:16:ac:5f:00:ae:11: c2:5d:2c:47:1b:eb:30:af:60:fb:92:45:f1:ac:a1: 1b:cb:a1:26:6a:54:47:34:a9:5e:36:77:d7:a1:ed: a3:05:65:b3:ff:54:3b:60:0e:e2:5a:41:c0:5e:c3: 8c:b7:4a:25:70:2d:75:93:4d:32:3f:2c:eb:1d:34: 1a:5a:14:68:d8:b0:a4:df:dd:52:a4:72:fd:a8:54: 23:7d:0b:1b:f6:67:96:a1:e1:65:9a:2f:a3:ad:ad: ec:8f:e8:30:e4:dc:54:f4:46:56:ab:0d:31:d2:4a: f1:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:FC:78:0D:95:4E:5F:13:01:85:14:61:23:4B:9E:09:AF:4E:EF:1B X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/0DBB8642B84C11EF8F628659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.138.0/24 Signature Algorithm: sha256WithRSAEncryption a6:f4:52:78:6b:49:51:60:0a:9e:9d:a5:c0:03:41:aa:c6:ee: fa:c3:b7:5f:b1:9c:95:e3:db:c3:49:89:6b:44:dc:83:1e:8a: c2:20:c5:55:75:94:e4:07:7f:c0:a9:71:e3:fd:89:0f:a1:5a: 4a:a6:cf:dd:bf:93:d2:c7:fa:ee:cb:34:db:3b:d6:41:f2:12: ad:2c:0e:3e:c8:fd:87:27:d0:3e:0b:3d:ba:65:97:49:4d:c4: 29:1e:27:04:22:e4:a2:59:1f:ae:e1:fc:76:73:cc:8d:87:3e: 46:79:8d:b8:af:aa:ee:a3:1b:65:82:c2:18:de:40:d4:d9:7f: fa:ff:f9:25:29:74:af:09:71:23:6f:b4:23:d5:dc:bc:b6:56: 5a:4c:b4:20:6b:6a:5f:c1:d9:a0:30:c1:eb:85:b8:2e:04:95: d4:04:15:de:0b:88:cf:63:07:da:72:33:e3:30:12:14:b2:c7: 56:5b:23:4f:9c:24:17:f2:44:53:69:f7:ab:8d:09:27:29:0c: 4e:b6:3c:0f:50:f8:e1:9c:ff:49:ac:55:2a:26:c7:70:8b:5e: a9:1b:6b:30:bb:b7:d6:5f:4f:53:70:57:51:68:8a:97:c7:dd: ae:a8:d4:76:07:ed:d1:bf:87:61:c6:3a:44:34:da:38:23:b5: 67:c3:2c:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTAwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk1NC04ZjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Bwmm3ZQWs3VcHQdbifOwq+i050W1iNvDO5GN9EFmEE5eNMWPb3p7t8YNr/F tGD8uqbS6l8dQnWZBYj/ETQ+Bp9va9rMB7xALL02qfjYdfEhpBuXoWNL2jmL7ZM2 lC9kn339AlPLV7xq7XPH/AaCsGtiGOHOe9FfCVz8dCifCHKH9XQheOcskqWPt9hJ F9gWrF8ArhHCXSxHG+swr2D7kkXxrKEby6EmalRHNKleNnfXoe2jBWWz/1Q7YA7i WkHAXsOMt0olcC11k00yPyzrHTQaWhRo2LCk391SpHL9qFQjfQsb9meWoeFlmi+j ra3sj+gw5NxU9EZWqw0x0krxfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPf8eA2V Tl8TAYUUYSNLngmvTu8bMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMERCQjg2NDJC ODRDMTFFRjhGNjI4NjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABuqoowDQYJKoZIhvcNAQELBQADggEBAKb0UnhrSVFgCp6d pcADQarG7vrDt1+xnJXj28NJiWtE3IMeisIgxVV1lOQHf8CpceP9iQ+hWkqmz92/ k9LH+u7LNNs71kHyEq0sDj7I/Ycn0D4LPbpll0lNxCkeJwQi5KJZH67h/HZzzI2H PkZ5jbivqu6jG2WCwhjeQNTZf/r/+SUpdK8JcSNvtCPV3Ly2VlpMtCBral/B2aAw weuFuC4EldQEFd4LiM9jB9pyM+MwEhSyx1ZbI0+cJBfyRFNp96uNCScpDE62PA9Q +OGc/0msVSomx3CLXqkbazC7t9ZfT1NwV1FoipfH3a6o1HYH7dG/h2HGOkQ02jgj tWfDLG8= -----END CERTIFICATE-----Generated at Sun Jul 20 14:18:41 2025 by rpki-client