$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8DE3FDEECF3E11EC88326E70C4F9AE02.roa File: 8DE3FDEECF3E11EC88326E70C4F9AE02.roa (raw, json) Hash identifier: GjQQYifydWdYuNv3491p60DnWg0thweeMYxSm5nNN3U= Subject key identifier: 84:BC:D8:BC:8D:59:A4:02:9F:EA:68:82:92:B1:CC:45:5F:8C:89:54 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39D0 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8DE3FDEECF3E11EC88326E70C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:38 +0000 ROA not before: Mon 14 Jul 2025 14:50:38 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 138915 IP address blocks: 119.46.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 14:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14800 (0x39d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:38 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875193d-965a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:39:2e:8e:40:1b:cb:e7:a8:87:52:c3:12:b7: 48:e1:c7:f3:79:10:57:3d:da:48:94:41:df:cd:f8: 00:9c:43:9a:ca:80:41:1e:c2:b1:6d:d2:30:d5:9c: bb:54:13:53:67:ae:62:80:77:35:a4:1b:b7:4f:f6: ca:dd:e7:1a:7c:ff:6e:f6:11:9f:55:f1:c0:5b:bb: 8d:d9:6d:59:f2:88:f8:4b:1b:9d:cc:2d:fc:f6:de: 70:42:36:bd:06:45:6e:20:87:32:15:bc:6e:30:28: 0a:f2:3b:82:19:cc:5d:2e:4a:2c:9e:e0:8c:db:b3: bf:5e:6f:b9:23:ea:27:e7:ed:f5:82:62:c3:10:87: 60:36:c2:53:a9:05:a0:72:75:c0:db:fc:1a:50:cb: ca:d7:43:8c:ac:a3:34:dc:fc:5b:4f:6a:0b:c6:d7: ba:6c:bc:e1:92:bd:bd:4a:ea:ab:78:4c:53:96:3b: 13:d2:dd:1c:a8:fb:77:40:74:eb:ee:59:5b:e5:74: 97:eb:34:9e:f5:a9:57:c8:a7:76:9d:7b:93:89:f8: 11:e7:d4:d1:6d:bf:0f:54:3f:6c:49:7b:c8:d1:04: 6f:eb:f0:71:ff:1f:d9:a0:09:64:76:2c:36:0c:5b: cb:a4:eb:1f:42:a6:25:4a:b5:db:21:ae:99:6a:2f: 41:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:BC:D8:BC:8D:59:A4:02:9F:EA:68:82:92:B1:CC:45:5F:8C:89:54 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/8DE3FDEECF3E11EC88326E70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.46.51.0/24 Signature Algorithm: sha256WithRSAEncryption 05:ed:9f:b8:09:4f:93:92:ae:55:4a:4f:7b:3f:c8:8c:7e:72: cc:83:4c:e0:58:82:d2:ad:f9:c0:04:1b:e5:fd:81:0a:4e:c3: 1a:ba:d8:67:74:a2:aa:af:5e:d0:c9:47:e8:ca:e5:b1:71:b3: b5:58:9d:56:7b:a6:84:e6:31:d4:d8:f4:0a:33:63:bb:2b:48: 1f:40:98:93:b7:9e:cc:1d:c2:67:3a:42:f2:14:0e:4a:7a:bb: 76:44:2f:27:73:42:d8:b7:c8:72:c1:dd:7a:6f:f6:f4:d1:6f: 68:53:fd:f2:6b:d5:1a:7a:2d:60:ad:11:b3:d3:b2:ad:b9:04: 83:bb:28:ab:a3:7c:32:b7:a3:66:fc:48:d3:6c:21:06:57:d3: 81:13:20:66:23:e5:4e:c5:3b:8f:c0:59:04:48:a3:9a:95:3f: 3d:17:60:3a:4b:b5:07:f0:0b:fb:3d:13:8f:b5:40:1f:49:88: b1:41:aa:17:cd:15:7c:40:4b:00:8b:38:13:6d:a6:85:06:40: f8:ad:fa:c6:31:6e:e9:b4:27:31:18:d8:a4:83:72:73:05:aa: fc:1d:59:44:a4:55:04:60:0d:5d:f3:66:8f:e3:9a:68:a2:f0: 73:1e:eb:e5:53:43:cf:34:a5:4b:85:15:47:50:66:d2:cc:f8: 75:5c:9d:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDM4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTkzZC05NjVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjkujkAby+eoh1LDErdI4cfzeRBXPdpIlEHfzfgAnEOayoBBHsKxbdIw1Zy7 VBNTZ65igHc1pBu3T/bK3ecafP9u9hGfVfHAW7uN2W1Z8oj4SxudzC389t5wQja9 BkVuIIcyFbxuMCgK8juCGcxdLkosnuCM27O/Xm+5I+on5+31gmLDEIdgNsJTqQWg cnXA2/waUMvK10OMrKM03PxbT2oLxte6bLzhkr29SuqreExTljsT0t0cqPt3QHTr 7llb5XSX6zSe9alXyKd2nXuTifgR59TRbb8PVD9sSXvI0QRv6/Bx/x/ZoAlkdiw2 DFvLpOsfQqYlSrXbIa6Zai9BvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIS82LyN WaQCn+pogpKxzEVfjIlUMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvOERFM0ZERUVD RjNFMTFFQzg4MzI2RTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3LjMwDQYJKoZIhvcNAQELBQADggEBAAXtn7gJT5OSrlVK T3s/yIx+csyDTOBYgtKt+cAEG+X9gQpOwxq62Gd0oqqvXtDJR+jK5bFxs7VYnVZ7 poTmMdTY9AozY7srSB9AmJO3nswdwmc6QvIUDkp6u3ZELydzQti3yHLB3Xpv9vTR b2hT/fJr1Rp6LWCtEbPTsq25BIO7KKujfDK3o2b8SNNsIQZX04ETIGYj5U7FO4/A WQRIo5qVPz0XYDpLtQfwC/s9E4+1QB9JiLFBqhfNFXxASwCLOBNtpoUGQPit+sYx bum0JzEY2KSDcnMFqvwdWUSkVQRgDV3zZo/jmmii8HMe6+VTQ880pUuFFUdQZtLM +HVcnaA= -----END CERTIFICATE-----Generated at Sun Jul 20 11:45:34 2025 by rpki-client