$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/503D70161E0111E9A590C837C4F9AE02.roa File: 503D70161E0111E9A590C837C4F9AE02.roa (raw, json) Hash identifier: ItwF8BEALn8WmA3/8iRidw7gmlQaboh2x/XN/zFQbeM= Subject key identifier: 78:DC:69:4A:8B:6F:D1:DB:52:A4:E8:FA:E2:32:90:09:12:A0:E0:30 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3A00 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/503D70161E0111E9A590C837C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:18 +0000 ROA not before: Mon 14 Jul 2025 14:51:18 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45807 IP address blocks: 119.46.66.0/24 maxlen: 24 171.102.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14848 (0x3a00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:18 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751966-c6d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:fe:a3:0f:0e:dd:17:4d:c5:3a:fc:9a:9c:06: dc:ea:fd:d9:15:28:46:5a:0c:45:0e:42:b5:ff:85: 8a:03:33:5e:1f:ea:c3:57:12:bc:d6:de:d3:fa:0f: 22:b6:07:29:f0:e4:9d:66:55:4b:84:07:ce:db:eb: 3b:9c:91:60:a1:1d:bb:d9:fc:9d:1a:99:03:60:9b: 3f:fa:4d:08:0d:bc:a7:55:04:73:4d:b3:44:3b:c6: a8:e2:53:78:a6:32:cc:4b:18:86:45:48:9c:69:d4: 70:78:ca:eb:7f:75:54:10:c3:d8:23:07:57:46:44: 13:32:1a:4b:0b:3e:ff:56:f8:a7:af:8d:8a:a6:89: 68:99:fa:bc:9e:87:75:52:ac:78:4a:26:c6:e2:34: 98:dc:7b:d0:79:0d:6f:6d:bd:3c:9c:07:ea:b9:7e: 54:cf:f1:e0:29:81:e6:e9:6c:f3:58:d0:61:36:47: a1:00:bd:d3:79:25:94:ad:38:8e:89:ff:bc:2f:ba: f4:ae:06:08:10:12:7f:25:3b:61:32:81:38:7f:a0: e5:3a:35:b3:fb:b5:b5:9a:c8:8b:0a:72:71:b0:59: 7a:95:54:0a:1b:c5:75:d9:4d:30:92:fc:92:cb:d5: 0f:dc:8a:7c:3a:04:44:88:59:90:ab:7a:9a:37:54: a1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:DC:69:4A:8B:6F:D1:DB:52:A4:E8:FA:E2:32:90:09:12:A0:E0:30 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/503D70161E0111E9A590C837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.46.66.0/24 171.102.41.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:8a:cc:22:9d:2a:fe:65:9d:ae:ee:f7:8f:d7:c4:f6:ee:8f: 9d:70:bd:29:43:4e:6b:eb:f8:eb:03:e0:70:6e:f9:c3:59:ad: 45:df:69:99:b8:bb:b0:26:8a:e4:e9:be:7c:1b:cf:83:89:b3: fb:9e:4a:b2:d1:c6:68:c6:c9:40:70:4a:d8:99:0a:75:00:2e: 47:b2:59:97:ba:f3:14:36:80:59:5c:ab:23:62:31:f0:28:a7: 7d:b6:98:78:70:00:7a:a1:bf:5b:c1:2f:05:6d:f6:62:95:cb: cb:11:56:d9:54:6c:03:49:70:98:b1:0e:e4:3c:72:cb:95:1f: d4:ec:a0:d7:16:f7:12:19:56:7c:59:6e:13:77:59:30:68:04: c6:89:f7:ed:72:21:98:f7:1a:0f:31:dc:e7:d3:cf:a3:7f:9c: 95:95:f7:d4:c8:62:40:51:4f:19:22:c9:6e:dc:dc:4b:1c:d7: 48:79:6a:cf:cc:c3:2b:bb:9b:55:f5:74:fd:a8:4c:f6:bb:8e: b3:e1:88:19:c3:d5:78:1f:de:4d:82:d3:0e:3a:a4:35:b7:1a: 04:cc:a9:59:85:41:01:c6:25:58:ba:4a:62:a9:15:0b:44:85: 62:2a:6e:1a:f5:33:52:7b:63:52:f5:87:fc:fb:60:e1:84:e4: ff:d2:2c:84 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICOgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTE4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk2Ni1jNmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzP6jDw7dF03FOvyanAbc6v3ZFShGWgxFDkK1/4WKAzNeH+rDVxK81t7T+g8i tgcp8OSdZlVLhAfO2+s7nJFgoR272fydGpkDYJs/+k0IDbynVQRzTbNEO8ao4lN4 pjLMSxiGRUicadRweMrrf3VUEMPYIwdXRkQTMhpLCz7/Vvinr42Kpolomfq8nod1 Uqx4SibG4jSY3HvQeQ1vbb08nAfquX5Uz/HgKYHm6WzzWNBhNkehAL3TeSWUrTiO if+8L7r0rgYIEBJ/JTthMoE4f6DlOjWz+7W1msiLCnJxsFl6lVQKG8V12U0wkvyS y9UP3Ip8OgREiFmQq3qaN1ShtwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHjcaUqL b9HbUqTo+uIykAkSoOAwMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTAzRDcwMTYx RTAxMTFFOUE1OTBDODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB3LkIDBACrZikwDQYJKoZIhvcNAQELBQADggEBAG2KzCKd Kv5lna7u94/XxPbuj51wvSlDTmvr+OsD4HBu+cNZrUXfaZm4u7AmiuTpvnwbz4OJ s/ueSrLRxmjGyUBwStiZCnUALkeyWZe68xQ2gFlcqyNiMfAop322mHhwAHqhv1vB LwVt9mKVy8sRVtlUbANJcJixDuQ8csuVH9TsoNcW9xIZVnxZbhN3WTBoBMaJ9+1y IZj3Gg8x3OfTz6N/nJWV99TIYkBRTxkiyW7c3Esc10h5as/Mwyu7m1X1dP2oTPa7 jrPhiBnD1Xgf3k2C0w46pDW3GgTMqVmFQQHGJVi6SmKpFQtEhWIqbhr1M1J7Y1L1 h/z7YOGE5P/SLIQ= -----END CERTIFICATE-----Generated at Mon Jul 21 12:43:33 2025 by rpki-client