$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/488867FE1E0111E9A590C837C4F9AE02.roa File: 488867FE1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: wB+azXTTk53+4lnMNBtS3p968vFrsh64W/xHu/Tj5MQ= Subject key identifier: B3:40:3B:47:95:C8:FF:DE:F1:19:48:EE:6E:02:72:7E:82:3C:E1:C6 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39F4 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/488867FE1E0111E9A590C837C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:09 +0000 ROA not before: Mon 14 Jul 2025 14:51:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38326 IP address blocks: 210.86.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14836 (0x39f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875195c-75fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:88:b8:19:cc:2c:7f:42:3a:7c:e1:ef:72:16: 41:2b:54:55:94:37:bb:a7:76:f1:fa:31:5b:54:de: d8:ff:fd:f9:9e:b2:69:b7:65:06:91:8f:a5:ec:41: 13:41:72:6b:3a:e7:1b:bd:43:83:65:e3:2b:8e:5f: 8c:b2:9b:dc:92:5d:c9:23:fb:ae:8a:b4:c5:4a:b5: 44:fe:7a:17:c1:52:f3:6d:6b:83:f1:31:53:a8:8f: 7d:fe:94:04:38:4c:a5:9d:e6:d3:54:22:c5:b1:3d: 88:6d:0e:42:f8:c4:f2:ce:a0:cf:ac:69:1f:dd:19: 11:be:bf:25:9a:fd:b2:d2:fd:db:e8:8e:76:74:62: 03:30:21:ee:f7:ec:68:2c:b9:ed:43:2e:74:83:32: ca:c2:8a:54:07:72:c3:1a:21:8f:b9:f3:7b:d4:55: 4f:e9:ad:38:0d:1c:2d:9e:c7:0f:0c:ac:e3:82:9b: 00:6a:82:c5:07:8a:b3:9b:ad:db:62:e5:1c:58:66: 2c:fd:58:a8:43:32:ab:5e:66:c1:21:01:ac:f2:5b: 0b:aa:f0:d4:22:b5:0a:38:be:4c:43:1e:d1:84:be: 40:08:28:51:4f:49:c7:c0:c3:e8:33:89:bf:33:8c: e8:70:5c:fa:4b:f7:bf:d7:ab:c9:1e:46:60:bc:c4: b2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:40:3B:47:95:C8:FF:DE:F1:19:48:EE:6E:02:72:7E:82:3C:E1:C6 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/488867FE1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.86.221.0/24 Signature Algorithm: sha256WithRSAEncryption 34:8a:b7:fa:f4:48:b8:b1:57:a8:74:9f:73:b4:1c:3a:0d:1b: fe:10:64:1a:d7:11:c3:75:d2:8c:81:b5:a1:32:17:ca:18:59: b5:fa:05:1d:d9:ab:f2:8d:bd:2e:9e:02:40:84:2c:0f:59:44: 21:f6:70:c1:62:ab:72:2b:d2:cc:41:2e:32:10:f0:65:4c:e7: 94:05:42:25:22:c2:19:1f:8c:5a:58:70:79:db:77:27:dd:66: 57:a4:ea:82:52:bd:fa:5e:fb:76:cf:91:ae:0f:a1:d9:74:16: c6:95:fa:47:c2:2a:29:46:77:d6:15:f1:bc:3f:e7:14:b9:c6: 51:cc:d2:44:b9:ab:96:31:e7:c4:40:8c:85:57:94:24:a6:ea: 82:04:9d:da:c7:bc:8a:c6:6a:0a:55:67:a6:f0:5c:e1:ea:ce: ea:58:fd:80:8a:54:f2:ff:ca:3a:00:ef:49:a8:c0:32:d1:69: 15:7e:5b:16:8c:2c:93:c2:14:0a:fd:fd:35:28:41:ff:0e:fc: 44:74:36:7e:9c:fd:cd:00:a9:01:40:dd:8c:24:80:5d:47:4d: 9b:8f:a7:ec:54:96:ef:6d:f7:b0:34:e3:8d:cd:15:19:24:e3: 0b:73:ba:28:b1:29:cd:a0:15:fc:0f:d4:41:52:63:7e:2a:c4: ce:a8:a0:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk1Yy03NWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Yi4Gcwsf0I6fOHvchZBK1RVlDe7p3bx+jFbVN7Y//35nrJpt2UGkY+l7EET QXJrOucbvUODZeMrjl+Mspvckl3JI/uuirTFSrVE/noXwVLzbWuD8TFTqI99/pQE OEylnebTVCLFsT2IbQ5C+MTyzqDPrGkf3RkRvr8lmv2y0v3b6I52dGIDMCHu9+xo LLntQy50gzLKwopUB3LDGiGPufN71FVP6a04DRwtnscPDKzjgpsAaoLFB4qzm63b YuUcWGYs/VioQzKrXmbBIQGs8lsLqvDUIrUKOL5MQx7RhL5ACChRT0nHwMPoM4m/ M4zocFz6S/e/16vJHkZgvMSyKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLNAO0eV yP/e8RlI7m4Ccn6CPOHGMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNDg4ODY3RkUx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSVt0wDQYJKoZIhvcNAQELBQADggEBADSKt/r0SLixV6h0 n3O0HDoNG/4QZBrXEcN10oyBtaEyF8oYWbX6BR3Zq/KNvS6eAkCELA9ZRCH2cMFi q3Ir0sxBLjIQ8GVM55QFQiUiwhkfjFpYcHnbdyfdZlek6oJSvfpe+3bPka4Podl0 FsaV+kfCKilGd9YV8bw/5xS5xlHM0kS5q5Yx58RAjIVXlCSm6oIEndrHvIrGagpV Z6bwXOHqzupY/YCKVPL/yjoA70mowDLRaRV+WxaMLJPCFAr9/TUoQf8O/ER0Nn6c /c0AqQFA3YwkgF1HTZuPp+xUlu9t97A0443NFRkk4wtzuiixKc2gFfwP1EFSY34q xM6ooKc= -----END CERTIFICATE-----Generated at Mon Jul 21 12:44:22 2025 by rpki-client