$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/371AC6101E0111E9A590C837C4F9AE02.roa File: 371AC6101E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: 066kpGOg9n7+swRCwCDZSveuJm6G52dvOp+QT3qYXZ8= Subject key identifier: 7D:C4:41:A9:B4:AA:7C:8E:96:E8:E1:09:22:BE:4B:F3:6E:60:66:8D Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39C5 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/371AC6101E0111E9A590C837C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:27 +0000 ROA not before: Mon 14 Jul 2025 14:50:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134095 IP address blocks: 110.170.137.0/24 maxlen: 24 110.170.147.0/24 maxlen: 24 110.170.238.0/24 maxlen: 24 210.86.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14789 (0x39c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751933-8471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:64:ed:ae:30:df:02:9e:f0:7a:b4:f8:1e:10: 03:85:6c:e5:b7:e6:2a:5f:b5:2d:77:c8:4d:7e:89: 66:70:3c:e7:b4:40:8d:71:5a:c4:b7:58:fd:fe:92: 33:86:0e:62:d0:88:27:eb:3a:8b:06:62:aa:4e:09: 12:1a:70:c6:96:61:ab:97:2b:d5:6a:5d:1d:f7:11: da:b0:60:1c:f1:43:21:83:37:dc:78:37:3e:f0:60: 58:91:c7:50:ba:e4:97:6e:c4:85:8a:19:7f:58:e5: 40:de:40:8c:0e:13:a8:a9:d4:c5:6d:1f:55:c8:c8: a3:c5:98:72:56:fd:f0:2e:cb:88:c6:98:ac:17:75: 43:99:25:25:08:4d:27:7e:7a:54:9c:23:e0:64:25: 57:10:ef:b2:9e:b9:67:d5:f3:0e:fc:93:a9:09:01: be:62:9b:39:77:72:87:14:88:0b:d5:90:45:13:37: 08:19:06:48:47:5e:bc:d0:c9:be:aa:00:56:60:ac: 6a:fd:ee:9b:df:cd:12:cd:d2:8e:7c:1d:33:6b:8b: 35:55:07:f4:04:07:c5:72:9c:78:27:4e:8b:34:4c: 74:87:28:e7:64:91:8b:c5:93:be:25:8c:70:42:6f: f8:0a:2b:06:c0:55:9f:7c:67:dc:47:13:d7:ab:39: 34:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:C4:41:A9:B4:AA:7C:8E:96:E8:E1:09:22:BE:4B:F3:6E:60:66:8D X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/371AC6101E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.137.0/24 110.170.147.0/24 110.170.238.0/24 210.86.152.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:db:57:6a:80:b5:59:c9:00:40:c5:98:bd:bd:40:66:41:93: 2c:b5:6e:d9:80:60:e5:9b:04:cb:60:89:6e:10:ae:68:80:8f: dc:42:4b:fb:d8:04:a1:06:36:22:4f:d1:44:80:87:b0:ef:0a: 64:df:6e:aa:16:5d:51:f7:11:81:37:12:a6:d7:c4:8e:09:d1: 33:92:64:a4:20:f0:5c:61:90:cf:1e:b9:2c:5e:5b:27:92:35: 52:a2:02:45:eb:47:a5:76:3e:83:6d:69:08:2a:8f:ac:04:86: a1:74:45:ce:0e:b5:67:6e:a9:39:db:e0:29:26:0f:f7:20:8a: 3b:d8:69:ab:de:4a:59:33:5c:ee:d1:44:c5:4e:c4:fe:a9:f7: 0a:c8:a8:c4:22:99:b9:d5:64:b7:b2:a9:a2:bc:db:d8:96:cb: 18:33:e1:9d:77:ec:c0:06:de:59:40:82:57:a4:3c:ca:6d:82: 6c:58:af:33:7d:81:24:38:3d:46:e6:86:ae:00:7b:49:aa:09: 63:39:ba:89:55:71:44:a9:13:f6:ae:46:44:f5:5e:b3:88:18: 04:ce:97:6b:b6:57:4a:a0:89:6c:88:f2:46:c0:c4:9f:2f:cd: bb:a1:cf:b1:1d:8c:89:ae:a6:78:31:48:52:cf:17:0b:43:19: 0c:1b:44:c9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICOcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDI3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTkzMy04NDcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArGTtrjDfAp7werT4HhADhWzlt+YqX7Utd8hNfolmcDzntECNcVrEt1j9/pIz hg5i0Ign6zqLBmKqTgkSGnDGlmGrlyvVal0d9xHasGAc8UMhgzfceDc+8GBYkcdQ uuSXbsSFihl/WOVA3kCMDhOoqdTFbR9VyMijxZhyVv3wLsuIxpisF3VDmSUlCE0n fnpUnCPgZCVXEO+ynrln1fMO/JOpCQG+Yps5d3KHFIgL1ZBFEzcIGQZIR1680Mm+ qgBWYKxq/e6b380SzdKOfB0za4s1VQf0BAfFcpx4J06LNEx0hyjnZJGLxZO+JYxw Qm/4CisGwFWffGfcRxPXqzk0xwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFH3EQam0 qnyOlujhCSK+S/NuYGaNMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMzcxQUM2MTAx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBABuqokDBABuqpMDBABuqu4DBADSVpgwDQYJKoZIhvcNAQEL BQADggEBAJ7bV2qAtVnJAEDFmL29QGZBkyy1btmAYOWbBMtgiW4QrmiAj9xCS/vY BKEGNiJP0USAh7DvCmTfbqoWXVH3EYE3EqbXxI4J0TOSZKQg8FxhkM8euSxeWyeS NVKiAkXrR6V2PoNtaQgqj6wEhqF0Rc4OtWduqTnb4CkmD/cgijvYaaveSlkzXO7R RMVOxP6p9wrIqMQimbnVZLeyqaK829iWyxgz4Z137MAG3llAglekPMptgmxYrzN9 gSQ4PUbmhq4Ae0mqCWM5uolVcUSpE/auRkT1XrOIGATOl2u2V0qgiWyI8kbAxJ8v zbuhz7EdjImupngxSFLPFwtDGQwbRMk= -----END CERTIFICATE-----Generated at Mon Jul 21 12:46:11 2025 by rpki-client