$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A4B323921E0211E9862ECE3FC4F9AE02.roa File: A4B323921E0211E9862ECE3FC4F9AE02.roa (raw, json) Hash identifier: bq7NcWlFfPA0vR53ECTuuvPbujjKJ8g2j07wqFJvu84= Subject key identifier: 3B:EE:1D:7B:95:5D:3C:65:17:87:54:D0:62:7C:0A:ED:DA:30:4A:5D Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39C6 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A4B323921E0211E9862ECE3FC4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:28 +0000 ROA not before: Mon 14 Jul 2025 14:50:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 134438 IP address blocks: 110.170.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14790 (0x39c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751934-e87a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:92:62:13:4f:53:06:ee:5f:8d:b4:21:f7:f5: a3:f5:7b:36:2e:a9:15:1f:1f:e7:e8:34:97:cc:8d: f6:50:f7:fd:4d:af:5b:41:9a:5a:7f:86:73:d2:06: 78:f4:c2:f1:52:11:cc:fa:35:fb:9e:88:3b:77:af: 2f:01:d5:ec:52:c1:43:86:2f:2e:0d:4c:6c:8d:40: 73:2c:19:cb:e0:9b:23:78:2a:1e:48:81:43:9d:82: b2:ea:8a:3e:d4:00:46:df:fd:f0:a0:44:ec:81:66: 60:af:55:8a:89:0e:a2:29:3e:2f:e9:fb:2b:c2:ea: 38:77:27:08:d0:e8:fb:38:30:9b:ca:c4:32:87:b1: 1a:3c:ab:34:8a:57:7f:fb:47:ca:28:f7:5a:28:10: 9a:17:68:66:70:a1:f3:80:df:4a:39:59:b9:47:47: 5b:51:33:5b:ab:d8:7a:91:7b:a4:71:9d:64:de:a1: 4f:f5:12:9a:fd:02:56:46:ae:3b:ab:ae:f6:55:fb: 9d:fa:b8:72:15:e8:be:a6:34:3c:3b:c5:0e:34:9c: a1:c1:50:f1:61:55:f9:9d:f3:b5:99:2b:93:68:dc: ca:e6:66:a9:c0:b6:9e:d7:fe:a2:4e:7c:b3:fb:c7: 8a:9e:58:6b:f5:e9:45:d8:57:63:e5:26:d3:4f:45: e6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:EE:1D:7B:95:5D:3C:65:17:87:54:D0:62:7C:0A:ED:DA:30:4A:5D X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/A4B323921E0211E9862ECE3FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.17.0/24 Signature Algorithm: sha256WithRSAEncryption 31:4a:55:6f:c8:e1:ce:7d:6a:aa:5f:7f:32:02:1d:12:fa:77: 34:ac:63:5f:81:a7:17:38:83:55:cc:65:8e:3e:e6:51:19:eb: b1:11:5c:2d:54:13:ba:d2:3a:74:34:71:32:b8:8e:1b:07:df: 99:b1:62:1c:1f:1e:d6:6c:17:42:e4:69:1d:9e:37:77:c0:e4: 9b:78:ba:fa:85:17:25:ab:2d:90:f8:20:35:4b:60:9c:56:cf: b4:2c:80:df:53:3b:9b:24:3b:2e:a2:84:87:a5:f6:c1:8b:1d: 37:54:b3:2b:b0:6c:25:bb:34:87:6e:f3:df:97:92:bd:50:32: 45:27:34:1e:bc:91:45:00:30:35:dc:03:6b:3b:4f:d8:ad:f9: 35:a0:e1:e8:ff:ee:4a:69:29:0f:d1:28:ce:cd:96:cf:db:5e: 83:e0:b2:58:17:6f:ec:7b:33:24:79:a3:95:1b:5e:2b:da:9f: 0d:29:a8:4f:d3:87:e1:d4:b7:09:f3:78:05:4e:80:5f:52:34: 1e:8f:3a:56:00:94:b2:7c:8f:b6:86:db:97:9a:45:25:d0:5f: 18:e1:ad:29:d4:18:f0:8d:f8:42:25:b6:a2:df:01:b3:1f:ef: fb:4c:a0:86:a9:0e:ed:8f:36:13:ed:06:37:07:12:3c:e6:ac: 7a:af:d6:7b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTkzNC1lODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyJJiE09TBu5fjbQh9/Wj9Xs2LqkVHx/n6DSXzI32UPf9Ta9bQZpaf4Zz0gZ4 9MLxUhHM+jX7nog7d68vAdXsUsFDhi8uDUxsjUBzLBnL4JsjeCoeSIFDnYKy6oo+ 1ABG3/3woETsgWZgr1WKiQ6iKT4v6fsrwuo4dycI0Oj7ODCbysQyh7EaPKs0ild/ +0fKKPdaKBCaF2hmcKHzgN9KOVm5R0dbUTNbq9h6kXukcZ1k3qFP9RKa/QJWRq47 q672Vfud+rhyFei+pjQ8O8UONJyhwVDxYVX5nfO1mSuTaNzK5mapwLae1/6iTnyz +8eKnlhr9elF2Fdj5SbTT0XmFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDvuHXuV XTxlF4dU0GJ8Cu3aMEpdMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvQTRCMzIzOTIx RTAyMTFFOTg2MkVDRTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABuqhEwDQYJKoZIhvcNAQELBQADggEBADFKVW/I4c59aqpf fzICHRL6dzSsY1+Bpxc4g1XMZY4+5lEZ67ERXC1UE7rSOnQ0cTK4jhsH35mxYhwf HtZsF0LkaR2eN3fA5Jt4uvqFFyWrLZD4IDVLYJxWz7QsgN9TO5skOy6ihIel9sGL HTdUsyuwbCW7NIdu89+Xkr1QMkUnNB68kUUAMDXcA2s7T9it+TWg4ej/7kppKQ/R KM7Nls/bXoPgslgXb+x7MyR5o5UbXivanw0pqE/Th+HUtwnzeAVOgF9SNB6POlYA lLJ8j7aG25eaRSXQXxjhrSnUGPCN+EIltqLfAbMf7/tMoIapDu2PNhPtBjcHEjzm rHqv1ns= -----END CERTIFICATE-----Generated at Sun Jul 20 22:42:24 2025 by rpki-client