$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/72F3ADE05A5A11EB83B9F073C4F9AE02.roa File: 72F3ADE05A5A11EB83B9F073C4F9AE02.roa (raw, json) Hash identifier: Z31wKozfm2BSqMlCRuyndsKs59n6cM1fwwGXNobml2Q= Subject key identifier: EC:83:88:27:11:84:15:A9:CE:CF:C1:80:9A:FB:12:B6:05:E3:A9:61 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3A02 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/72F3ADE05A5A11EB83B9F073C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:19 +0000 ROA not before: Mon 14 Jul 2025 14:51:19 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4827 IP address blocks: 110.170.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14850 (0x3a02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:19 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751967-2764 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:79:3e:8e:9b:8e:1b:a8:a7:05:ff:5f:ba:9d: 21:0b:d3:6d:9b:9e:86:34:89:4d:94:6f:65:20:6d: 1a:02:ca:b7:85:c8:c5:18:fb:71:7a:3e:aa:36:f1: d1:29:c7:c2:91:e9:89:8f:1a:cb:5a:db:65:b3:7f: 8b:09:8d:e1:3d:8a:08:a6:91:75:aa:a7:e6:d5:5e: 33:70:ae:40:46:c7:ae:bd:46:52:23:0d:74:9b:5e: 2c:50:ce:22:d9:76:2d:ee:b6:be:05:24:aa:68:f0: d5:96:e3:b0:62:c6:1e:64:1d:e8:0a:ec:95:c6:f9: 3d:08:9f:bd:80:e5:7c:36:68:30:ae:8c:22:76:69: 5c:7b:96:26:48:b0:e4:c9:52:42:cc:ce:10:a7:16: 4c:36:97:de:ad:6f:fa:37:a5:a8:e9:2b:9e:56:ae: 66:37:1f:7e:d9:82:5a:1c:dc:a3:12:51:0c:20:79: 5d:6a:09:07:b1:34:cd:15:9b:58:6a:27:a5:2c:fe: d3:66:3b:67:84:2e:43:8a:dc:64:fa:aa:39:f6:00: b4:d9:52:b5:f5:56:f3:9c:66:ad:d8:01:c6:5b:6e: 85:bc:f1:67:48:11:35:a3:ec:99:cd:c3:3a:8a:2e: 71:25:92:ea:ad:10:fa:23:de:3d:f6:0d:4f:e2:48: ba:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:83:88:27:11:84:15:A9:CE:CF:C1:80:9A:FB:12:B6:05:E3:A9:61 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/72F3ADE05A5A11EB83B9F073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.233.0/24 Signature Algorithm: sha256WithRSAEncryption 17:53:ae:70:b2:5d:48:b1:93:1b:ed:20:ad:3f:1d:62:1f:18: 61:6e:3d:49:a3:8c:d2:93:5f:0c:c9:59:60:1c:0e:86:37:62: 99:27:ae:6b:a5:d0:3a:7f:87:90:2a:1c:c7:e8:78:31:6f:aa: be:d3:94:b0:d9:79:4c:5d:ee:30:18:62:fb:ee:65:c3:06:d0: 59:54:e1:3d:fb:de:d7:5e:c5:16:d7:c5:71:c4:f0:bd:d0:ed: d0:31:fc:00:f0:2f:c2:74:e4:9d:bf:dd:35:13:2d:d4:6b:de: 93:d9:87:d1:e5:73:5c:0b:46:9b:9d:ce:9f:a0:b2:6a:04:1c: 90:1b:0c:71:30:70:19:f6:9e:e3:b7:9f:fd:db:85:d8:5d:62: c6:b2:6f:d9:22:91:d9:29:5d:fd:56:be:ab:41:d5:6b:a5:0f: 7f:e1:19:f9:0a:95:44:17:f3:89:d0:e6:67:bd:ae:0f:ec:b4: 22:66:7c:07:26:ce:f4:10:15:9d:50:ff:34:43:69:c6:03:97: 4b:8e:1b:63:89:4f:f0:85:18:47:e9:8f:db:e0:76:76:fa:fc: ac:40:7d:50:80:ef:9c:a7:99:b0:53:55:57:83:f4:3d:09:c7: f3:97:e8:15:08:cf:4f:08:bb:e8:f9:2d:67:45:6f:a4:c7:cc: eb:a0:81:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTE5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk2Ny0yNzY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Xk+jpuOG6inBf9fup0hC9Ntm56GNIlNlG9lIG0aAsq3hcjFGPtxej6qNvHR KcfCkemJjxrLWttls3+LCY3hPYoIppF1qqfm1V4zcK5ARseuvUZSIw10m14sUM4i 2XYt7ra+BSSqaPDVluOwYsYeZB3oCuyVxvk9CJ+9gOV8Nmgwrowidmlce5YmSLDk yVJCzM4QpxZMNpferW/6N6Wo6SueVq5mNx9+2YJaHNyjElEMIHldagkHsTTNFZtY aielLP7TZjtnhC5Ditxk+qo59gC02VK19VbznGat2AHGW26FvPFnSBE1o+yZzcM6 ii5xJZLqrRD6I9499g1P4ki6hwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOyDiCcR hBWpzs/BgJr7ErYF46lhMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNzJGM0FERTA1 QTVBMTFFQjgzQjlGMDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABuqukwDQYJKoZIhvcNAQELBQADggEBABdTrnCyXUixkxvt IK0/HWIfGGFuPUmjjNKTXwzJWWAcDoY3Ypknrmul0Dp/h5AqHMfoeDFvqr7TlLDZ eUxd7jAYYvvuZcMG0FlU4T373tdexRbXxXHE8L3Q7dAx/ADwL8J05J2/3TUTLdRr 3pPZh9Hlc1wLRpudzp+gsmoEHJAbDHEwcBn2nuO3n/3bhdhdYsayb9kikdkpXf1W vqtB1WulD3/hGfkKlUQX84nQ5me9rg/stCJmfAcmzvQQFZ1Q/zRDacYDl0uOG2OJ T/CFGEfpj9vgdnb6/KxAfVCA75ynmbBTVVeD9D0Jx/OX6BUIz08Iu+j5LWdFb6TH zOuggfM= -----END CERTIFICATE-----Generated at Mon Jul 21 02:06:45 2025 by rpki-client