$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4A96C25C1E0111E9A590C837C4F9AE02.roa File: 4A96C25C1E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: k1duUxsoFff1aZSSnv8SaHkV6llXsGDm5R5zwYR7Niw= Subject key identifier: A7:AE:1F:F1:78:46:BB:C4:84:2B:91:A7:45:BD:A1:14:EC:FC:E2:21 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39F7 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4A96C25C1E0111E9A590C837C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:11 +0000 ROA not before: Mon 14 Jul 2025 14:51:11 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38554 IP address blocks: 58.97.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14839 (0x39f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:11 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875195f-5d37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:02:6e:9a:30:1e:f5:a8:5a:9a:d4:6a:e7:2e: 5f:b4:ad:e6:0a:4f:3f:d2:9c:d4:f6:63:6a:51:54: 1b:63:79:68:88:06:71:9b:89:2e:67:d4:39:9e:e5: e8:be:b8:12:33:c6:90:c6:ec:09:86:0c:74:11:da: a4:df:7c:0e:52:4a:63:ff:54:a5:a1:90:f1:ca:df: b6:78:3c:98:da:11:22:86:00:7f:c7:2e:cf:ce:81: 17:7c:f9:22:fe:d7:2b:6d:c5:41:1d:2d:a5:36:d3: 3f:69:8e:15:3a:f6:48:7b:d3:f2:54:55:f0:b0:fe: 4e:e6:2a:d5:96:ee:6a:70:d5:50:78:05:4c:a6:bd: 29:c2:37:5e:e8:87:5b:a8:b2:8c:24:db:58:40:cd: 41:e8:bb:57:72:b6:94:f4:98:bb:90:7d:2b:1d:a5: a6:72:b2:52:a4:be:23:de:d5:a4:2c:87:ef:b9:fd: f2:93:66:c8:70:02:57:86:39:6d:5e:10:ad:fe:73: 11:32:39:c8:9e:1c:86:b3:7a:92:69:c0:8d:80:8f: 2d:34:a2:50:01:8a:7c:04:26:dc:83:33:3b:ae:b7: b8:d0:a4:f6:d0:2f:02:64:29:15:a2:c9:74:fe:c7: e5:48:f9:93:d7:3d:64:70:c6:71:67:0f:15:72:78: 0b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:AE:1F:F1:78:46:BB:C4:84:2B:91:A7:45:BD:A1:14:EC:FC:E2:21 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/4A96C25C1E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.97.20.0/24 Signature Algorithm: sha256WithRSAEncryption 81:db:f9:44:7c:70:a2:50:2b:58:42:75:1f:f0:9c:c7:11:10: 67:02:77:44:d5:7b:d7:e3:5f:98:ff:5f:8c:af:52:ce:48:c9: ff:60:54:a0:9f:5e:6d:a0:76:0f:8e:06:80:6f:36:42:fd:ea: 04:73:5e:cd:cf:5e:f4:10:8e:6f:6d:8a:3b:01:d0:11:8c:a5: e5:50:14:f2:e1:ac:b0:ee:35:c9:03:38:7f:6e:1e:01:d7:be: 0f:84:02:e8:b7:e1:bc:04:15:2c:72:f6:79:43:99:16:22:17: fe:83:bf:e5:65:8a:73:b1:2c:c1:03:ab:9f:ae:b8:ce:ac:3e: 31:fd:2c:6f:d0:f4:50:c5:01:7e:0e:e1:4a:86:32:8b:7f:75: 29:af:7e:8f:49:42:47:d7:2a:bc:0b:09:57:ef:3e:72:09:87: b8:13:3f:83:1b:36:1e:d7:75:fd:5a:f8:f2:56:0d:20:f0:89: 6e:0f:93:d2:1d:ad:de:b5:84:55:fa:5f:82:db:12:fd:2d:41: 0c:34:70:25:e3:1a:e3:c3:4e:92:5c:a7:20:6f:31:ad:2f:b7: f9:86:ef:b8:8e:3d:64:f1:01:38:c4:46:3b:8f:56:7e:bb:cd: 05:8d:da:2b:59:0d:63:9a:83:6b:39:a7:c5:5c:7b:96:a8:7c: fc:d0:3f:24 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTExWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk1Zi01ZDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnwJumjAe9ahamtRq5y5ftK3mCk8/0pzU9mNqUVQbY3loiAZxm4kuZ9Q5nuXo vrgSM8aQxuwJhgx0Edqk33wOUkpj/1SloZDxyt+2eDyY2hEihgB/xy7PzoEXfPki /tcrbcVBHS2lNtM/aY4VOvZIe9PyVFXwsP5O5irVlu5qcNVQeAVMpr0pwjde6Idb qLKMJNtYQM1B6LtXcraU9Ji7kH0rHaWmcrJSpL4j3tWkLIfvuf3yk2bIcAJXhjlt XhCt/nMRMjnInhyGs3qSacCNgI8tNKJQAYp8BCbcgzM7rre40KT20C8CZCkVosl0 /sflSPmT1z1kcMZxZw8VcngLsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKeuH/F4 RrvEhCuRp0W9oRTs/OIhMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNEE5NkMyNUMx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6YRQwDQYJKoZIhvcNAQELBQADggEBAIHb+UR8cKJQK1hC dR/wnMcREGcCd0TVe9fjX5j/X4yvUs5Iyf9gVKCfXm2gdg+OBoBvNkL96gRzXs3P XvQQjm9tijsB0BGMpeVQFPLhrLDuNckDOH9uHgHXvg+EAui34bwEFSxy9nlDmRYi F/6Dv+VlinOxLMEDq5+uuM6sPjH9LG/Q9FDFAX4O4UqGMot/dSmvfo9JQkfXKrwL CVfvPnIJh7gTP4MbNh7Xdf1a+PJWDSDwiW4Pk9Idrd61hFX6X4LbEv0tQQw0cCXj GuPDTpJcpyBvMa0vt/mG77iOPWTxATjERjuPVn67zQWN2itZDWOag2s5p8Vce5ao fPzQPyQ= -----END CERTIFICATE-----Generated at Mon Jul 21 02:47:10 2025 by rpki-client