$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/464E04581E0111E9A590C837C4F9AE02.roa File: 464E04581E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: Yv3P+n3MlTYu5UKkMq+jmM4xsuAy4Co4Ia66m0dAWR8= Subject key identifier: 0D:86:17:52:76:3E:E2:74:C1:39:D9:97:D9:08:5A:4F:21:BD:E4:DF Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39EF Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/464E04581E0111E9A590C837C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:04 +0000 ROA not before: Mon 14 Jul 2025 14:51:04 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 37977 IP address blocks: 203.144.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14831 (0x39ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:04 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751958-e7d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:50:02:dd:d5:ca:c0:18:e4:50:53:ea:c1:32: f9:17:16:25:76:99:87:ae:0d:c9:4a:c0:41:b0:0f: a1:8b:e0:b9:ff:ae:c9:59:69:f4:7a:10:f3:8b:4c: 40:bc:6e:26:ec:21:a2:1f:da:a3:00:d2:77:91:18: 22:dc:89:9b:01:bf:28:96:bc:01:09:5a:27:6b:ff: 65:18:d1:41:e5:cf:cc:fd:9a:6a:b7:ea:1b:09:d0: 2a:51:ab:c6:0d:65:e2:0b:49:0f:9c:79:62:3a:6d: 07:10:2b:6a:c3:14:4d:c0:45:b0:c1:23:75:59:a2: 2c:f6:b6:3a:c1:ad:70:7d:af:0e:91:21:0d:52:6a: 5c:fb:0a:06:6d:9d:2f:51:76:ef:21:72:3a:79:cc: ee:e6:e7:26:c6:a4:ea:68:eb:6a:44:b0:a5:7c:0c: ff:df:bc:25:dc:e7:74:fe:51:62:73:c6:6d:41:49: cf:3e:76:6a:9d:aa:9b:e5:56:be:aa:8b:85:f5:54: ad:d0:89:b3:7d:84:da:42:2e:36:0c:2f:84:b2:fe: d8:b6:11:b3:d3:07:fd:1e:0a:66:c5:c1:ab:eb:95: 4c:5e:d3:b2:d3:a1:18:95:d3:35:a3:d9:27:cf:87: 97:2b:c4:09:86:db:b6:49:de:f0:84:61:18:a8:ba: 69:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:86:17:52:76:3E:E2:74:C1:39:D9:97:D9:08:5A:4F:21:BD:E4:DF X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/464E04581E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.144.241.0/24 Signature Algorithm: sha256WithRSAEncryption 27:c1:3b:de:df:6d:bc:94:d3:e5:10:00:2a:34:53:7f:c0:dc: 3b:88:11:86:2b:cc:94:d1:d6:ea:82:da:af:66:b3:7d:da:5a: a2:cb:b8:36:ad:e5:ae:18:45:10:a2:59:5a:c2:41:94:55:b0: 22:71:bf:f9:b5:90:dd:8d:ef:d0:ed:e6:8e:a9:8d:e3:c7:78: db:f3:e0:de:03:15:b7:38:8d:7e:43:83:f3:9f:c5:ab:ef:fe: b0:9f:61:78:c6:b7:8c:75:50:6c:d7:88:d5:a0:71:7e:a4:89: f0:88:7f:4d:91:6d:fd:d5:74:db:b8:14:4f:d4:9f:24:e2:73: a7:97:63:9b:f1:11:ab:7c:b8:76:11:41:30:8e:86:39:d9:9d: b5:b7:51:72:62:4d:91:36:91:94:c1:92:87:57:87:94:ea:26: 40:fb:04:61:e8:e0:98:67:eb:44:76:1d:88:c3:8a:48:25:bd: 02:20:37:7c:a7:93:c4:8b:ad:22:d1:cd:3d:f9:49:2f:14:d3: 85:ce:5e:e3:f3:fa:e1:39:f5:16:e6:ba:08:63:f9:71:ad:5f: d2:72:a2:b6:68:cf:5d:a9:b4:d2:2e:12:58:a3:eb:83:59:33: 87:a0:d3:5e:cc:64:98:72:e0:b1:0a:44:57:f5:31:ce:67:07: ca:4d:24:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTA0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk1OC1lN2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5FAC3dXKwBjkUFPqwTL5FxYldpmHrg3JSsBBsA+hi+C5/67JWWn0ehDzi0xA vG4m7CGiH9qjANJ3kRgi3ImbAb8olrwBCVona/9lGNFB5c/M/Zpqt+obCdAqUavG DWXiC0kPnHliOm0HECtqwxRNwEWwwSN1WaIs9rY6wa1wfa8OkSENUmpc+woGbZ0v UXbvIXI6eczu5ucmxqTqaOtqRLClfAz/37wl3Od0/lFic8ZtQUnPPnZqnaqb5Va+ qouF9VSt0ImzfYTaQi42DC+Esv7YthGz0wf9HgpmxcGr65VMXtOy06EYldM1o9kn z4eXK8QJhtu2Sd7whGEYqLppbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA2GF1J2 PuJ0wTnZl9kIWk8hveTfMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNDY0RTA0NTgx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLkPEwDQYJKoZIhvcNAQELBQADggEBACfBO97fbbyU0+UQ ACo0U3/A3DuIEYYrzJTR1uqC2q9ms33aWqLLuDat5a4YRRCiWVrCQZRVsCJxv/m1 kN2N79Dt5o6pjePHeNvz4N4DFbc4jX5Dg/Ofxavv/rCfYXjGt4x1UGzXiNWgcX6k ifCIf02Rbf3VdNu4FE/UnyTic6eXY5vxEat8uHYRQTCOhjnZnbW3UXJiTZE2kZTB kodXh5TqJkD7BGHo4Jhn60R2HYjDikglvQIgN3ynk8SLrSLRzT35SS8U04XOXuPz +uE59Rbmughj+XGtX9JyorZoz12ptNIuElij64NZM4eg017MZJhy4LEKRFf1Mc5n B8pNJMk= -----END CERTIFICATE-----Generated at Mon Jul 21 12:47:09 2025 by rpki-client