$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/46FEF7041E0111E9A590C837C4F9AE02.roa File: 46FEF7041E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: 8ck5SkE0+faLIe+nNTZfqJRfeGvyuoPgvLHpiZNu8EQ= Subject key identifier: D7:44:A4:BF:51:A7:1B:CE:41:4D:94:74:18:E9:FD:1A:04:60:9B:38 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39F0 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/46FEF7041E0111E9A590C837C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:06 +0000 ROA not before: Mon 14 Jul 2025 14:51:06 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 37992 IP address blocks: 61.90.234.0/24 maxlen: 24 61.90.235.0/24 maxlen: 24 61.90.236.0/24 maxlen: 24 61.90.237.0/24 maxlen: 24 119.46.188.0/24 maxlen: 24 119.46.189.0/24 maxlen: 24 119.46.190.0/24 maxlen: 24 119.46.191.0/24 maxlen: 24 119.46.235.0/24 maxlen: 24 119.46.236.0/24 maxlen: 24 119.46.237.0/24 maxlen: 24 119.46.238.0/24 maxlen: 24 2001:fb0:100e::/48 maxlen: 48 2001:fb0:100f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 14:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14832 (0x39f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:06 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875195a-9b45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:0d:e2:79:31:34:21:a0:ee:66:b3:5b:25:5e: 1a:fa:4d:c2:e8:a3:71:d1:c4:94:f4:91:1a:a9:37: ad:88:a1:8e:15:a1:48:a1:1c:b7:2b:6b:6c:c4:35: ae:9d:97:e3:09:1f:95:fd:b8:97:2a:2b:d7:8e:8f: 7c:8f:64:88:3e:49:c6:17:1c:b5:4b:aa:d2:9d:09: 34:48:78:35:ec:2b:e2:02:48:9d:6a:41:76:9d:94: 83:8d:ee:9d:2a:fe:2f:b0:d3:8e:c4:ff:33:3f:2c: 38:03:91:f9:78:a8:93:70:a0:ec:ec:d4:ef:c9:48: 25:c0:60:9b:8e:bc:4e:e3:97:37:a5:fb:24:7f:d3: eb:23:ea:3f:8b:e9:83:33:4c:29:00:da:2a:e6:07: a7:91:5a:1d:91:31:a0:5f:06:03:5f:56:8c:66:7e: 98:45:e1:02:01:82:e8:58:28:91:c9:b1:62:03:90: 54:f8:35:7c:da:c7:c7:4e:c9:57:50:91:e4:fb:55: 91:26:1b:52:1e:b4:28:b4:05:42:9a:d1:84:61:20: 9d:5a:98:f3:c8:50:a8:b5:b5:0f:4c:e1:19:29:c7: 69:31:e1:4d:23:26:d7:21:31:a1:66:0b:6e:eb:66: f7:89:bb:8b:b9:e1:42:bf:eb:1d:63:6f:0a:42:b8: ee:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:44:A4:BF:51:A7:1B:CE:41:4D:94:74:18:E9:FD:1A:04:60:9B:38 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/46FEF7041E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.234.0-61.90.237.255 119.46.188.0/22 119.46.235.0-119.46.238.255 IPv6: 2001:fb0:100e::/47 Signature Algorithm: sha256WithRSAEncryption ad:90:bb:5f:e6:97:3d:59:0d:a6:5d:42:81:5c:f0:8b:81:07: 97:e8:ca:2b:6c:6e:59:de:14:ad:d1:a0:cd:ab:06:ec:f9:b1: 53:e7:8b:c7:3a:3d:ef:c5:bc:96:da:8d:0a:a2:c3:23:87:f4: fc:04:f1:0c:f2:e1:ec:52:dc:e7:8c:cf:3b:7c:28:45:39:3a: 99:59:47:a1:77:d3:1b:b3:d2:65:b2:13:b5:d9:55:af:c0:90: 06:7a:5f:2d:30:75:de:b7:af:19:e7:65:d4:82:f3:7f:2c:f4: e1:48:f4:22:58:85:18:a8:72:72:5a:9d:43:0f:7e:1a:36:f0: 45:a2:ec:61:a3:a6:7e:e1:0b:d6:94:ad:65:9b:c2:8e:52:42: 58:59:d5:c3:63:e3:88:ea:91:77:61:d6:0f:91:7d:19:b5:b9: e8:8b:b5:24:b7:30:ef:3d:a5:75:0b:10:03:d7:b0:85:c9:c4: a2:38:a2:56:5b:af:37:77:79:b5:d8:e5:1c:09:9e:25:3b:d7: 23:d1:61:28:ea:19:14:1d:1c:90:03:82:49:6c:cd:5b:2e:d6: fb:72:37:e8:fc:36:4a:57:74:f9:50:2f:b7:10:83:84:fe:d9: 92:75:ea:7d:95:aa:9b:ae:fe:81:5d:24:7d:3d:0f:32:f6:12: 8e:17:fe:51 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICOfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTA2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk1YS05YjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9w3ieTE0IaDuZrNbJV4a+k3C6KNx0cSU9JEaqTetiKGOFaFIoRy3K2tsxDWu nZfjCR+V/biXKivXjo98j2SIPknGFxy1S6rSnQk0SHg17CviAkidakF2nZSDje6d Kv4vsNOOxP8zPyw4A5H5eKiTcKDs7NTvyUglwGCbjrxO45c3pfskf9PrI+o/i+mD M0wpANoq5genkVodkTGgXwYDX1aMZn6YReECAYLoWCiRybFiA5BU+DV82sfHTslX UJHk+1WRJhtSHrQotAVCmtGEYSCdWpjzyFCotbUPTOEZKcdpMeFNIybXITGhZgtu 62b3ibuLueFCv+sdY28KQrjuqQIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFNdEpL9R pxvOQU2UdBjp/RoEYJs4MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNDZGRUY3MDQx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCgEAgABMCIwDAMEAT1a6gMEAT1a7AMEAncuvDAMAwQAdy7rAwQAdy7uMA8E AgACMAkDBwEgAQ+wEA4wDQYJKoZIhvcNAQELBQADggEBAK2Qu1/mlz1ZDaZdQoFc 8IuBB5foyitsblneFK3RoM2rBuz5sVPni8c6Pe/FvJbajQqiwyOH9PwE8Qzy4exS 3OeMzzt8KEU5OplZR6F30xuz0mWyE7XZVa/AkAZ6Xy0wdd63rxnnZdSC838s9OFI 9CJYhRiocnJanUMPfho28EWi7GGjpn7hC9aUrWWbwo5SQlhZ1cNj44jqkXdh1g+R fRm1ueiLtSS3MO89pXULEAPXsIXJxKI4olZbrzd3ebXY5RwJniU71yPRYSjqGRQd HJADgklszVsu1vtyN+j8NkpXdPlQL7cQg4T+2ZJ16n2Vqpuu/oFdJH09DzL2Eo4X /lE= -----END CERTIFICATE-----Generated at Wed Jul 23 12:16:08 2025 by rpki-client