$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa File: 85DF1F2852C911EA93D1814FC4F9AE02.roa (raw, json) Hash identifier: VWjxGOC9gcvInSoxhVJu88Nxq9wHw8wZdHxrnau/gkk= Subject key identifier: F8:F0:D0:C6:2D:A1:6A:EF:09:61:13:38:86:A4:9B:09:AB:CC:41:98 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39E2 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:52 +0000 ROA not before: Mon 14 Jul 2025 14:50:52 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 21734 IP address blocks: 61.90.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14818 (0x39e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:52 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875194c-ffd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:22:f2:08:b0:5c:03:65:c7:6e:dd:cd:42:2c: 70:cb:f5:31:e7:42:3a:c4:6e:f3:38:92:1a:95:20: 2a:ec:09:7c:6c:8f:cc:aa:25:f9:40:66:7d:a6:fc: 83:91:92:c4:7c:da:f1:d3:b4:61:c5:02:8e:bc:db: fe:a3:3e:bc:f8:06:c4:81:6e:2f:28:8b:ee:3a:e5: 38:99:8d:e0:37:ec:bd:12:de:9d:6e:56:52:46:d2: a4:7a:44:30:14:69:b4:38:d4:f4:77:05:b0:4c:57: de:a7:2c:18:8d:8c:b8:82:a6:61:b3:55:0b:eb:aa: 3f:82:e6:85:35:33:fc:d3:78:8a:54:92:c9:28:db: 0f:0a:02:d5:33:d7:ef:05:f4:23:7d:a9:f8:25:40: 89:db:cd:af:aa:5f:7c:62:a9:b2:d7:19:5f:96:d4: 19:de:32:c9:1f:00:ed:b2:a8:7c:e3:03:15:3a:40: 76:a9:08:bd:d5:3f:97:ef:f8:6b:1b:40:b7:1b:7a: 27:28:bd:93:ad:5d:96:c3:4b:d3:d2:bb:a7:77:80: 53:92:87:e4:a3:dc:b3:66:96:7c:59:db:49:f4:3b: 77:ff:2a:59:0f:f4:c7:25:59:21:39:d6:60:17:de: aa:29:ed:61:5d:79:20:e4:b0:2a:a0:e3:f4:22:ea: fa:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:F0:D0:C6:2D:A1:6A:EF:09:61:13:38:86:A4:9B:09:AB:CC:41:98 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/85DF1F2852C911EA93D1814FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.90.251.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:5f:35:cc:59:6b:cd:aa:14:c2:01:bc:18:4a:a1:a8:57:b1: a5:1f:8b:f0:cd:cb:1c:da:cd:6e:81:bf:eb:f4:ed:8c:c3:56: e3:c5:32:e8:90:6e:f6:8a:4d:ba:ad:28:27:e6:ff:07:0d:b1: 03:bf:75:3c:58:50:21:50:37:33:66:a8:37:91:6d:01:ec:d6: e4:3d:27:49:25:af:4c:23:20:be:32:fa:a3:c9:98:97:48:9b: 7f:19:d4:e4:d6:e6:6a:94:89:0d:53:52:25:10:b2:a7:c0:d9: bd:a3:da:eb:a8:fb:ac:9b:d8:51:f3:18:15:5d:38:55:a7:82: e3:72:71:d0:64:be:fd:bc:6a:8f:2b:6a:87:93:fd:c9:03:cb: a0:9a:20:67:0f:72:22:05:19:3a:f8:7b:8c:75:81:4d:73:6a: 63:a2:03:f0:0e:c8:b8:01:99:27:f7:9e:f1:b0:52:6d:e6:df: fc:21:d9:95:74:b5:1d:c9:42:e2:0e:05:8d:92:99:e2:e2:2a: 2a:ba:f7:73:bf:05:e5:27:16:d2:24:a0:19:18:54:82:48:5c: 2b:1a:f1:68:fd:5e:5c:ba:85:b9:f5:c5:ef:3a:b6:74:dd:40: 03:01:a6:6e:46:a1:cb:ab:fc:0d:38:8d:fd:51:04:c6:d8:1f: 09:15:b5:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDUyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk0Yy1mZmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyLyCLBcA2XHbt3NQixwy/Ux50I6xG7zOJIalSAq7Al8bI/MqiX5QGZ9pvyD kZLEfNrx07RhxQKOvNv+oz68+AbEgW4vKIvuOuU4mY3gN+y9Et6dblZSRtKkekQw FGm0ONT0dwWwTFfepywYjYy4gqZhs1UL66o/guaFNTP803iKVJLJKNsPCgLVM9fv BfQjfan4JUCJ282vql98Yqmy1xlfltQZ3jLJHwDtsqh84wMVOkB2qQi91T+X7/hr G0C3G3onKL2TrV2Ww0vT0rund4BTkofko9yzZpZ8WdtJ9Dt3/ypZD/THJVkhOdZg F96qKe1hXXkg5LAqoOP0Iur6NwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPjw0MYt oWrvCWETOIakmwmrzEGYMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvODVERjFGMjg1 MkM5MTFFQTkzRDE4MTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WvswDQYJKoZIhvcNAQELBQADggEBAG9fNcxZa82qFMIB vBhKoahXsaUfi/DNyxzazW6Bv+v07YzDVuPFMuiQbvaKTbqtKCfm/wcNsQO/dTxY UCFQNzNmqDeRbQHs1uQ9J0klr0wjIL4y+qPJmJdIm38Z1OTW5mqUiQ1TUiUQsqfA 2b2j2uuo+6yb2FHzGBVdOFWnguNycdBkvv28ao8raoeT/ckDy6CaIGcPciIFGTr4 e4x1gU1zamOiA/AOyLgBmSf3nvGwUm3m3/wh2ZV0tR3JQuIOBY2SmeLiKiq693O/ BeUnFtIkoBkYVIJIXCsa8Wj9Xly6hbn1xe86tnTdQAMBpm5Gocur/A04jf1RBMbY HwkVtcE= -----END CERTIFICATE-----Generated at Sun Jul 20 18:47:18 2025 by rpki-client