$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/6D541B1863D611ED863A4C1EC4F9AE02.roa File: 6D541B1863D611ED863A4C1EC4F9AE02.roa (raw, json) Hash identifier: cSzbOUxvCMSLF9Ljbmaq8RolGQHpuCR8yLHDj4vb4ew= Subject key identifier: 45:59:30:D6:AC:77:F1:5C:2D:5F:0A:58:54:0B:65:D0:38:D6:64:6E Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39F6 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/6D541B1863D611ED863A4C1EC4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:10 +0000 ROA not before: Mon 14 Jul 2025 14:51:10 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38543 IP address blocks: 58.97.62.0/24 maxlen: 24 61.90.164.0/24 maxlen: 24 203.144.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14838 (0x39f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:10 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875195e-a967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:93:b2:2f:be:0c:29:00:62:63:5b:12:e4:b1: f6:f9:e9:c1:4f:3e:1f:28:49:a6:eb:38:9b:df:49: f5:c1:6d:ea:65:ed:ce:37:b5:49:7d:ab:15:e4:1e: eb:7d:a8:a7:9b:73:69:38:b2:16:45:16:53:0d:e9: 6c:24:f1:42:40:82:ed:3e:a1:6f:44:e7:66:f3:d0: 8c:ed:47:d8:82:88:81:c6:fd:78:29:e1:f5:9a:13: 92:bf:bb:56:d4:ab:46:ae:e2:e6:87:bb:9c:fe:56: 7a:0a:1e:48:9b:4b:a4:a4:55:c8:72:38:bf:c0:cb: 56:5a:c4:ae:d7:a7:4a:31:8a:5a:c1:c6:d8:0e:48: e8:b8:9e:54:81:eb:15:d1:69:d5:11:0d:3d:8f:02: 07:52:77:fe:22:01:12:ee:a0:d2:c9:51:67:4e:8b: f3:a9:20:0d:18:52:9c:94:0d:5c:69:c4:4a:0c:5e: 7d:0a:21:98:66:71:fe:ee:61:e3:67:fe:c9:48:7c: 20:dd:c9:cf:0b:b1:52:4e:c5:09:95:a8:e4:cb:50: 76:13:11:ca:f1:e0:a0:bd:08:cf:94:eb:b9:96:f5: bb:33:bf:4d:ee:19:5c:4d:2b:63:d9:67:69:04:54: 69:60:41:32:9b:14:11:40:98:00:10:40:29:43:cb: 8e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:59:30:D6:AC:77:F1:5C:2D:5F:0A:58:54:0B:65:D0:38:D6:64:6E X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/6D541B1863D611ED863A4C1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.97.62.0/24 61.90.164.0/24 203.144.208.0/24 Signature Algorithm: sha256WithRSAEncryption 51:06:25:3c:f0:d3:c6:54:eb:a3:0c:4e:7d:97:47:85:62:f0: e6:71:d9:27:df:1e:ad:26:0c:d2:aa:fe:9e:54:ac:eb:8d:eb: 1e:69:43:ea:b2:4b:21:e6:ec:db:23:2e:c0:60:d2:0a:be:58: 4c:52:51:9f:f8:46:37:cc:34:4e:94:2e:73:25:49:36:e1:05: 2b:ab:56:0c:01:6c:0b:a9:6e:40:12:dc:b7:7f:04:cf:1b:88: 82:29:b7:fe:1d:5a:21:48:eb:31:a3:1c:d5:c0:31:e9:84:e5: b8:3a:0e:05:2d:58:d9:93:c3:9a:46:3c:9d:8d:be:8f:b2:8f: a7:54:af:d4:67:e7:98:6d:fd:3e:3a:0c:d7:e0:eb:96:bc:97: 8e:b9:c7:08:4d:64:a3:76:9b:52:98:68:a2:27:17:36:9e:4d: 41:44:7e:0e:e2:e6:4f:19:a1:07:6f:6e:fb:cb:54:f2:ef:47: 34:e5:21:07:9b:ed:75:24:64:82:5f:2d:7c:53:c6:bf:d8:15: cb:e4:63:b9:b0:42:11:7f:c7:7c:c1:56:2c:14:09:fe:08:35: 62:18:3c:3c:b7:3a:66:23:8b:fa:0e:20:38:66:93:9a:89:98: d9:38:f2:6e:ea:f6:95:a4:b2:4c:6d:09:a8:8e:91:a2:01:be: 49:fa:e8:d4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICOfYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTEwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk1ZS1hOTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupOyL74MKQBiY1sS5LH2+enBTz4fKEmm6zib30n1wW3qZe3ON7VJfasV5B7r fainm3NpOLIWRRZTDelsJPFCQILtPqFvROdm89CM7UfYgoiBxv14KeH1mhOSv7tW 1KtGruLmh7uc/lZ6Ch5Im0ukpFXIcji/wMtWWsSu16dKMYpawcbYDkjouJ5UgesV 0WnVEQ09jwIHUnf+IgES7qDSyVFnTovzqSANGFKclA1cacRKDF59CiGYZnH+7mHj Z/7JSHwg3cnPC7FSTsUJlajky1B2ExHK8eCgvQjPlOu5lvW7M79N7hlcTStj2Wdp BFRpYEEymxQRQJgAEEApQ8uOlQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEVZMNas d/FcLV8KWFQLZdA41mRuMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNkQ1NDFCMTg2 M0Q2MTFFRDg2M0E0QzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAA6YT4DBAA9WqQDBADLkNAwDQYJKoZIhvcNAQELBQADggEB AFEGJTzw08ZU66MMTn2XR4Vi8OZx2SffHq0mDNKq/p5UrOuN6x5pQ+qySyHm7Nsj LsBg0gq+WExSUZ/4RjfMNE6ULnMlSTbhBSurVgwBbAupbkAS3Ld/BM8biIIpt/4d WiFI6zGjHNXAMemE5bg6DgUtWNmTw5pGPJ2Nvo+yj6dUr9Rn55ht/T46DNfg65a8 l465xwhNZKN2m1KYaKInFzaeTUFEfg7i5k8ZoQdvbvvLVPLvRzTlIQeb7XUkZIJf LXxTxr/YFcvkY7mwQhF/x3zBViwUCf4INWIYPDy3OmYji/oOIDhmk5qJmNk48m7q 9pWkskxtCaiOkaIBvkn66NQ= -----END CERTIFICATE-----Generated at Mon Jul 21 12:44:28 2025 by rpki-client