$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35154B601E0111E9A590C837C4F9AE02.roa File: 35154B601E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: W090s/0m3drw/w0xsEH0nTObzDJHKta79nqEkZIoBVM= Subject key identifier: 2F:7D:BF:7D:D9:EC:CE:BB:C1:73:E1:68:F7:C7:7A:66:99:01:61:32 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39BD Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35154B601E0111E9A590C837C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:21 +0000 ROA not before: Mon 14 Jul 2025 14:50:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133167 IP address blocks: 61.90.249.0/24 maxlen: 24 110.170.151.0/24 maxlen: 24 2001:fb0:1035::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14781 (0x39bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875192d-c009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cd:18:4f:12:5b:74:df:55:6d:e2:91:10:44: dd:c6:3f:e1:4a:95:b4:3c:3b:b4:c2:38:80:ad:3b: 4a:38:b1:89:bc:f1:aa:38:4a:3d:78:a1:52:88:e8: c5:48:a3:3d:a6:63:23:14:22:69:a7:ba:3e:95:f1: 32:07:1b:bb:83:da:7b:ed:bb:48:94:8c:22:de:24: c1:50:d9:9f:0a:f0:b9:be:b3:c8:44:c1:5c:50:39: 45:49:76:47:4d:92:32:44:2a:a0:70:9f:0a:02:6f: f2:42:7d:7f:1d:c7:eb:78:2d:26:3d:a1:22:b8:55: 1e:eb:b1:79:6f:20:6a:4a:b1:c3:cc:72:01:67:61: 30:4a:22:4d:8d:4e:21:00:e2:7a:e0:49:5b:a1:c8: 2b:f4:4b:48:97:03:e8:70:34:bc:9d:69:5a:98:16: 29:81:16:0b:03:df:97:0c:ba:1e:1c:1f:c2:fb:e1: c2:99:27:ca:6a:40:50:7f:9b:6f:f7:8f:5d:4b:c1: 4f:60:d6:c2:c7:37:26:78:91:6b:98:ab:be:05:e6: 85:3d:81:31:c3:6c:5d:af:d6:61:b7:7c:47:c2:c9: 65:51:00:50:fa:41:44:c8:92:1a:47:91:90:f0:9c: 8e:bd:ef:70:ac:52:e6:df:aa:c4:92:15:e8:04:a5: 13:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:7D:BF:7D:D9:EC:CE:BB:C1:73:E1:68:F7:C7:7A:66:99:01:61:32 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/35154B601E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.249.0/24 110.170.151.0/24 IPv6: 2001:fb0:1035::/48 Signature Algorithm: sha256WithRSAEncryption 7f:7c:c0:df:a7:e9:08:a9:4c:1e:51:cf:60:83:36:be:5f:4a: fc:20:62:01:73:04:aa:93:10:05:79:01:a8:5a:55:5d:99:b5: ad:db:8c:ec:46:b6:5d:74:9b:1f:5d:2c:d2:57:c4:56:45:7f: 2f:51:89:bc:1d:c1:79:21:83:93:4f:2e:74:c6:4e:85:bd:06: c2:59:59:69:72:44:06:ce:e2:ab:ec:e5:0a:d0:df:da:f1:82: 08:be:cc:0d:51:ab:49:43:3f:a2:3a:71:f6:f3:2a:e2:59:65: a1:fe:15:3b:80:86:f7:c2:e6:a0:ae:bc:cc:21:06:c3:16:4c: 20:c9:a3:cf:61:e4:90:df:12:52:8b:f7:16:82:23:d7:fc:75: 03:fe:31:b9:ff:6d:bb:7d:6e:7d:6f:fe:c1:62:38:3e:0e:0c: d6:84:ca:fb:5e:3c:12:4b:23:3a:66:de:3e:89:5e:e7:6b:b9: b9:76:fa:91:6a:d7:1d:eb:48:87:73:17:a2:1c:90:fb:1c:0c: 55:88:26:86:88:e9:f1:a6:f6:27:16:63:37:14:36:b7:4c:dd: e7:fb:08:98:6a:6e:56:99:ea:ec:7c:24:20:e7:7e:2d:90:cc: 10:24:6a:da:55:51:dd:c4:c1:32:cc:3a:02:48:7e:4d:a4:3f: 0c:7b:1b:7b -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICOb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTkyZC1jMDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2s0YTxJbdN9VbeKREETdxj/hSpW0PDu0wjiArTtKOLGJvPGqOEo9eKFSiOjF SKM9pmMjFCJpp7o+lfEyBxu7g9p77btIlIwi3iTBUNmfCvC5vrPIRMFcUDlFSXZH TZIyRCqgcJ8KAm/yQn1/HcfreC0mPaEiuFUe67F5byBqSrHDzHIBZ2EwSiJNjU4h AOJ64Elbocgr9EtIlwPocDS8nWlamBYpgRYLA9+XDLoeHB/C++HCmSfKakBQf5tv 949dS8FPYNbCxzcmeJFrmKu+BeaFPYExw2xdr9Zht3xHwsllUQBQ+kFEyJIaR5GQ 8JyOve9wrFLm36rEkhXoBKUTHQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFC99v33Z 7M67wXPhaPfHemaZAWEyMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMzUxNTRCNjAx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAA9WvkDBABuqpcwDwQCAAIwCQMHACABD7AQNTANBgkqhkiG 9w0BAQsFAAOCAQEAf3zA36fpCKlMHlHPYIM2vl9K/CBiAXMEqpMQBXkBqFpVXZm1 rduM7Ea2XXSbH10s0lfEVkV/L1GJvB3BeSGDk08udMZOhb0GwllZaXJEBs7iq+zl CtDf2vGCCL7MDVGrSUM/ojpx9vMq4lllof4VO4CG98LmoK68zCEGwxZMIMmjz2Hk kN8SUov3FoIj1/x1A/4xuf9tu31ufW/+wWI4Pg4M1oTK+148EksjOmbePole52u5 uXb6kWrXHetIh3MXohyQ+xwMVYgmhojp8ab2JxZjNxQ2t0zd5/sImGpuVpnq7Hwk IOd+LZDMECRq2lVR3cTBMsw6Akh+TaQ/DHsbew== -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:07 2025 by rpki-client