$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/D9DAE0905A5B11EBBBCAAF76C4F9AE02.roa File: D9DAE0905A5B11EBBBCAAF76C4F9AE02.roa (raw, json) Hash identifier: XW6Tr+D0PRmDWaWMDVJanBa9z2x2v4gymVN8zixJCTc= Subject key identifier: 20:A1:E1:47:EB:F4:0A:87:9B:EC:B8:D2:F6:2B:3B:84:AB:83:64:44 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3A0E Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/D9DAE0905A5B11EBBBCAAF76C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:29 +0000 ROA not before: Mon 14 Jul 2025 14:51:29 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 55867 IP address blocks: 171.102.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14862 (0x3a0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:29 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751971-f80c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4a:0a:98:10:96:07:68:40:2b:38:c9:33:e3: d6:f8:64:9b:80:cd:36:0e:8a:06:03:45:17:a0:7d: 0f:5a:1a:b5:6e:3d:81:29:5f:14:30:d8:4e:b1:ea: ac:13:01:e3:87:16:08:eb:7e:4a:07:b6:cf:65:fe: 34:3b:64:c4:be:7a:7d:fc:bb:e7:37:33:5f:ee:7d: 53:45:8c:b5:5f:36:2e:47:73:d4:aa:e2:e8:d4:93: f3:db:c4:6b:e9:56:ac:bd:15:1d:56:65:9f:1d:52: ed:88:bb:0e:9c:a1:35:9f:8b:97:2f:f4:46:54:4e: cd:91:b9:9a:08:b1:65:46:c2:e8:0d:5e:a4:a0:8e: 2f:88:f9:b6:56:07:c3:38:35:95:d0:b1:1b:31:7a: b6:3e:ec:6e:c7:42:6c:74:e1:95:03:c5:48:ba:b1: 56:b8:10:22:39:05:8e:3c:98:1f:da:9f:a9:45:3e: 3e:cb:c8:ba:60:92:e2:03:72:01:89:5b:cd:0f:64: 8b:c2:c1:79:7f:72:d4:3f:3b:b1:42:cf:ee:1d:b7: 81:f4:88:4e:3a:82:19:7e:91:bc:98:b2:c3:8e:a6: 80:0f:c8:3b:9d:21:e2:f6:48:25:5f:b7:54:c4:e9: 99:0d:fa:9c:d7:70:b6:33:13:b6:99:ad:35:9a:66: 2b:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:A1:E1:47:EB:F4:0A:87:9B:EC:B8:D2:F6:2B:3B:84:AB:83:64:44 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/D9DAE0905A5B11EBBBCAAF76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 171.102.202.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:0e:e9:bb:aa:84:4b:43:3c:30:9d:5c:12:80:a7:7a:97:a9: 85:9c:50:8f:db:65:86:c1:1b:a4:63:3b:af:11:23:98:51:90: 4f:1c:70:59:42:0f:e1:fa:ae:e9:88:21:7a:99:01:dc:c9:dc: 17:58:fc:8e:35:a0:a2:a1:3e:96:d8:d5:ff:8e:b2:bf:f9:35: e6:65:ce:a6:ac:37:85:e3:da:67:60:ff:f5:9d:05:d9:aa:f9: a0:9b:76:d2:ff:49:75:84:9b:40:52:07:86:59:0d:05:e3:46: 49:dc:12:ec:a1:17:be:0c:27:02:8a:2e:c7:c8:89:d4:f0:cb: d0:21:3a:49:17:f2:fe:be:45:c0:c1:0b:2e:60:a3:18:eb:4c: 71:a5:6e:9c:76:d6:a9:96:65:ef:90:17:59:62:e3:10:46:fb: f6:7f:c4:52:fe:02:6d:d2:e0:63:d7:aa:58:04:d3:15:c3:20: c9:93:b9:62:72:c6:38:15:23:db:03:f4:96:a2:f4:b7:37:fc: fa:11:8d:15:47:30:95:21:a8:1e:3e:57:74:a0:11:ce:36:9b: 16:fb:0f:ea:7f:87:44:4a:5e:87:aa:7a:89:03:81:0f:b6:36: 8f:3f:ad:cc:d0:60:94:da:d8:b0:8f:68:68:46:ec:98:9a:85: e7:f4:37:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICOg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTI5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk3MS1mODBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1EoKmBCWB2hAKzjJM+PW+GSbgM02DooGA0UXoH0PWhq1bj2BKV8UMNhOseqs EwHjhxYI635KB7bPZf40O2TEvnp9/LvnNzNf7n1TRYy1XzYuR3PUquLo1JPz28Rr 6VasvRUdVmWfHVLtiLsOnKE1n4uXL/RGVE7NkbmaCLFlRsLoDV6koI4viPm2VgfD ODWV0LEbMXq2Puxux0JsdOGVA8VIurFWuBAiOQWOPJgf2p+pRT4+y8i6YJLiA3IB iVvND2SLwsF5f3LUPzuxQs/uHbeB9IhOOoIZfpG8mLLDjqaAD8g7nSHi9kglX7dU xOmZDfqc13C2MxO2ma01mmYrfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCCh4Ufr 9AqHm+y40vYrO4Srg2REMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvRDlEQUUwOTA1 QTVCMTFFQkJCQ0FBRjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACrZsowDQYJKoZIhvcNAQELBQADggEBAHoO6buqhEtDPDCd XBKAp3qXqYWcUI/bZYbBG6RjO68RI5hRkE8ccFlCD+H6rumIIXqZAdzJ3BdY/I41 oKKhPpbY1f+Osr/5NeZlzqasN4Xj2mdg//WdBdmq+aCbdtL/SXWEm0BSB4ZZDQXj RkncEuyhF74MJwKKLsfIidTwy9AhOkkX8v6+RcDBCy5goxjrTHGlbpx21qmWZe+Q F1li4xBG+/Z/xFL+Am3S4GPXqlgE0xXDIMmTuWJyxjgVI9sD9Jai9Lc3/PoRjRVH MJUhqB4+V3SgEc42mxb7D+p/h0RKXoeqeokDgQ+2No8/rczQYJTa2LCPaGhG7Jia hef0N2E= -----END CERTIFICATE-----Generated at Sun Jul 20 22:47:18 2025 by rpki-client