$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/147B50A8D70411EFA945F56EC4F9AE02.roa File: 147B50A8D70411EFA945F56EC4F9AE02.roa (raw, json) Hash identifier: fx+oRsXnwi3x67gqAoyVIKY/WKrGZmXo9LC8mNra1bM= Subject key identifier: 2E:79:D4:3B:27:C7:EE:87:BA:A3:00:4C:9B:7E:A6:95:DF:F0:AF:6C Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39DF Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/147B50A8D70411EFA945F56EC4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:50 +0000 ROA not before: Mon 14 Jul 2025 14:50:50 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17556 IP address blocks: 114.109.249.0/24 maxlen: 24 115.87.70.0/24 maxlen: 24 115.87.71.0/24 maxlen: 24 115.87.72.0/24 maxlen: 24 115.87.73.0/24 maxlen: 24 119.46.99.0/24 maxlen: 24 119.46.255.0/24 maxlen: 24 124.120.219.0/24 maxlen: 24 210.86.191.0/24 maxlen: 24 2001:fb0:10b2::/48 maxlen: 48 2001:fb1::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14815 (0x39df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:50 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751949-f50d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:19:52:99:58:36:a9:34:ba:28:d5:0c:b8:af: 16:7a:82:a6:72:c1:56:b1:5e:8f:77:a2:80:4a:e3: d7:10:47:2e:cb:0f:56:3a:7b:de:fd:6c:10:9a:33: 42:d9:ea:5f:93:c1:49:25:d0:82:ca:06:ac:85:9b: db:11:56:2f:b1:8d:88:ae:3d:ab:a8:5a:21:0d:9b: 52:72:da:cc:05:22:95:82:9e:50:20:6e:cd:c8:6d: 65:71:bb:c0:c3:a2:b5:1a:02:55:e9:76:e5:a1:dd: 93:05:d0:eb:e3:62:c0:6f:45:66:77:34:bb:ed:5c: dc:70:f0:ff:54:34:40:56:96:a4:eb:b1:4a:f7:86: 0c:3b:4d:c0:45:77:70:aa:3d:39:0d:92:5c:65:f9: df:24:a9:d7:9f:f2:76:12:f1:3b:f7:82:21:b8:ba: 25:2e:82:8f:1a:37:ef:e0:2b:43:0e:84:f8:1a:cc: 6d:66:3e:f3:d5:18:5f:bf:ee:1e:5c:7a:c2:7a:d0: e9:b3:c5:13:ae:13:e6:4a:39:36:8d:cd:d9:64:63: af:7d:eb:e2:6f:37:07:15:43:fb:f4:9e:b8:11:ee: 84:00:68:dc:c8:23:c8:a0:b9:cf:55:c8:dd:31:96: 31:ff:68:7e:26:15:8d:b2:5f:f0:c6:52:b7:76:1f: ba:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:79:D4:3B:27:C7:EE:87:BA:A3:00:4C:9B:7E:A6:95:DF:F0:AF:6C X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/147B50A8D70411EFA945F56EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.109.249.0/24 115.87.70.0-115.87.73.255 119.46.99.0/24 119.46.255.0/24 124.120.219.0/24 210.86.191.0/24 IPv6: 2001:fb0:10b2::/48 2001:fb1::/32 Signature Algorithm: sha256WithRSAEncryption 10:44:d6:2c:b8:2c:6a:cb:70:b3:8e:4e:72:74:08:43:62:d7: 3e:c2:4b:75:37:ea:18:7d:a9:2d:1c:f8:ad:a5:11:25:83:d4: 2a:e7:8f:0d:a1:5d:68:a9:49:33:82:03:95:d8:3a:e4:63:a0: b6:dd:bd:2f:34:be:cb:bc:ac:a5:a6:3a:5e:34:15:80:ec:6a: a8:c9:c9:dc:4c:df:e6:dd:0b:5f:43:4c:3a:ba:c1:fd:d4:17: 40:31:b9:25:f2:a5:b9:dc:7e:1f:b7:ea:e9:e5:d5:a0:36:eb: 6e:f6:16:9d:86:fa:bb:75:e6:70:62:13:dd:80:e9:54:7b:d9: 19:a3:86:d2:d8:20:28:33:60:da:56:50:c1:10:5f:4c:8a:e6: ec:f0:56:1f:f2:b6:6a:10:d9:e0:6e:9c:b7:77:04:78:98:c7: db:89:d8:e5:13:10:ee:ce:3e:5b:73:38:2e:3b:fb:8e:d7:aa: f4:51:e0:b9:70:67:53:68:84:5e:75:51:2c:69:77:21:b0:ce: a3:ae:25:2d:29:d3:9a:11:7e:4f:87:2c:02:81:6b:ad:c0:3c: a1:cf:fc:77:b0:b4:09:a9:d8:83:28:3b:65:f3:69:65:f6:42: 14:53:a7:c5:fa:24:d7:4e:a7:a8:87:99:87:f3:d3:3b:ff:c1: f4:bd:c0:1c -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgICOd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDUwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk0OS1mNTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBlSmVg2qTS6KNUMuK8WeoKmcsFWsV6Pd6KASuPXEEcuyw9WOnve/WwQmjNC 2epfk8FJJdCCygashZvbEVYvsY2Irj2rqFohDZtSctrMBSKVgp5QIG7NyG1lcbvA w6K1GgJV6Xblod2TBdDr42LAb0VmdzS77VzccPD/VDRAVpak67FK94YMO03ARXdw qj05DZJcZfnfJKnXn/J2EvE794IhuLolLoKPGjfv4CtDDoT4GsxtZj7z1Rhfv+4e XHrCetDps8UTrhPmSjk2jc3ZZGOvfevibzcHFUP79J64Ee6EAGjcyCPIoLnPVcjd MZYx/2h+JhWNsl/wxlK3dh+6BwIDAQABo4IC0zCCAs8wHQYDVR0OBBYEFC551Dsn x+6HuqMATJt+ppXf8K9sMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMTQ3QjUwQThE NzA0MTFFRkE5NDVGNTZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXQYIKwYBBQUHAQcBAf8E TjBMMDIEAgABMCwDBABybfkwDAMEAXNXRgMEAXNXSAMEAHcuYwMEAHcu/wMEAHx4 2wMEANJWvzAWBAIAAjAQAwcAIAEPsBCyAwUAIAEPsTANBgkqhkiG9w0BAQsFAAOC AQEAEETWLLgsastws45OcnQIQ2LXPsJLdTfqGH2pLRz4raURJYPUKuePDaFdaKlJ M4IDldg65GOgtt29LzS+y7yspaY6XjQVgOxqqMnJ3Ezf5t0LX0NMOrrB/dQXQDG5 JfKludx+H7fq6eXVoDbrbvYWnYb6u3XmcGIT3YDpVHvZGaOG0tggKDNg2lZQwRBf TIrm7PBWH/K2ahDZ4G6ct3cEeJjH24nY5RMQ7s4+W3M4Ljv7jteq9FHguXBnU2iE XnVRLGl3IbDOo64lLSnTmhF+T4csAoFrrcA8oc/8d7C0CanYgyg7ZfNpZfZCFFOn xfok106nqIeZh/PTO//B9L3AHA== -----END CERTIFICATE-----Generated at Mon Jul 21 02:29:57 2025 by rpki-client