$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/86787BDC52C911EA93D1814FC4F9AE02.roa File: 86787BDC52C911EA93D1814FC4F9AE02.roa (raw, json) Hash identifier: EgAX8ChoXzlcb/Bocr17sPKDXmU+D+MtAaOQ6HVJi0k= Subject key identifier: 3B:B8:8D:F0:A0:5F:D7:1B:47:F5:52:79:10:1A:B6:67:86:83:9C:28 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39E8 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/86787BDC52C911EA93D1814FC4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:57 +0000 ROA not before: Mon 14 Jul 2025 14:50:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24060 IP address blocks: 210.86.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14824 (0x39e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751951-2cf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:46:14:2f:9d:03:00:a4:f8:20:e2:7f:e2:7a: cd:90:fe:42:47:18:2f:f3:e7:9f:2c:c6:17:3d:00: 11:8c:bd:43:b8:70:b5:c3:b6:69:d6:d9:42:f7:47: 25:cf:f2:56:27:b9:92:8c:3d:9b:a6:83:9c:b9:5d: a0:99:db:f5:96:43:a3:ec:62:f8:81:b4:a7:bf:6f: a3:c2:f3:5f:91:d9:29:4b:e1:41:07:3f:83:32:47: e2:d5:a3:21:0b:f4:98:0f:c5:e3:bd:91:91:69:9f: e4:95:7d:51:a2:29:d9:35:97:f9:96:ce:96:1b:47: 3c:ff:3a:a5:93:1e:b3:f8:ed:ca:d6:1f:a2:45:e5: 5b:02:ab:b4:aa:0b:fb:c4:de:fd:ab:74:dc:94:bb: 3e:a1:cf:71:2a:47:a2:4b:5b:1f:ba:76:cf:a6:01: 2d:5c:02:f0:30:45:a4:4a:b3:ec:c0:cd:a0:54:fd: 16:30:2d:09:6a:ed:10:da:83:c4:f7:4b:05:c2:84: a5:0e:83:bf:df:e1:92:14:ab:10:3a:7e:d9:b5:ca: 46:4b:ac:41:03:38:42:b7:60:9d:1a:f6:ce:38:05: a6:73:bc:f6:05:f4:54:97:d3:f1:30:9f:92:95:41: 4c:4b:7c:0a:3a:a7:c7:ba:0e:30:81:0f:79:87:76: b7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B8:8D:F0:A0:5F:D7:1B:47:F5:52:79:10:1A:B6:67:86:83:9C:28 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/86787BDC52C911EA93D1814FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.86.197.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:cb:6d:f0:81:71:fd:6a:5a:c9:8f:ad:fe:7a:65:0a:d8:80: 09:e7:85:03:dc:47:ac:2b:5a:b9:b1:73:a7:2b:02:7c:9a:5b: 8e:68:0f:41:5f:15:39:19:b5:6a:8e:4e:e6:74:b6:9d:f4:bb: 17:f5:aa:2f:6c:88:bf:dc:1c:74:5f:1a:e7:26:34:36:2c:3e: ba:fa:d7:fd:d0:bd:57:cb:20:c1:5c:9d:f9:d3:d2:a6:c7:ab: bf:c5:bf:b2:5b:21:0f:09:9b:a9:73:a1:bc:85:df:46:ae:11: b1:9b:ea:80:02:61:a2:26:91:3f:9b:44:b5:d4:2c:3e:35:90: 40:db:96:69:4e:25:5c:ed:61:37:dc:03:c0:09:47:1c:3f:c0: c6:77:c5:ec:fd:75:9b:7c:32:75:ab:55:e8:fa:00:29:9a:97: 7a:90:e6:36:34:7f:5b:32:a9:42:5d:3e:e0:54:a2:87:48:8f: 64:73:97:46:cd:cc:93:54:e8:61:5d:9d:77:52:2f:1b:c2:ee: 63:63:5b:18:36:a1:97:ad:ba:5c:03:c9:85:1d:a5:a6:95:0d: 77:c9:43:39:03:e1:f2:62:a7:5d:26:db:02:6b:65:13:2d:3e: 87:39:9f:42:17:04:ea:60:72:bd:2a:5f:bb:4e:21:b7:d6:17: 24:b4:59:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOegwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk1MS0yY2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0YUL50DAKT4IOJ/4nrNkP5CRxgv8+efLMYXPQARjL1DuHC1w7Zp1tlC90cl z/JWJ7mSjD2bpoOcuV2gmdv1lkOj7GL4gbSnv2+jwvNfkdkpS+FBBz+DMkfi1aMh C/SYD8XjvZGRaZ/klX1RoinZNZf5ls6WG0c8/zqlkx6z+O3K1h+iReVbAqu0qgv7 xN79q3TclLs+oc9xKkeiS1sfunbPpgEtXALwMEWkSrPswM2gVP0WMC0Jau0Q2oPE 90sFwoSlDoO/3+GSFKsQOn7ZtcpGS6xBAzhCt2CdGvbOOAWmc7z2BfRUl9PxMJ+S lUFMS3wKOqfHug4wgQ95h3a3VwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDu4jfCg X9cbR/VSeRAatmeGg5woMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvODY3ODdCREM1 MkM5MTFFQTkzRDE4MTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSVsUwDQYJKoZIhvcNAQELBQADggEBAB3LbfCBcf1qWsmP rf56ZQrYgAnnhQPcR6wrWrmxc6crAnyaW45oD0FfFTkZtWqOTuZ0tp30uxf1qi9s iL/cHHRfGucmNDYsPrr61/3QvVfLIMFcnfnT0qbHq7/Fv7JbIQ8Jm6lzobyF30au EbGb6oACYaImkT+bRLXULD41kEDblmlOJVztYTfcA8AJRxw/wMZ3xez9dZt8MnWr Vej6ACmal3qQ5jY0f1syqUJdPuBUoodIj2Rzl0bNzJNU6GFdnXdSLxvC7mNjWxg2 oZetulwDyYUdpaaVDXfJQzkD4fJip10m2wJrZRMtPoc5n0IXBOpgcr0qX7tOIbfW FyS0Wdo= -----END CERTIFICATE-----Generated at Mon Jul 21 12:42:33 2025 by rpki-client