$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DB9351105A5B11EBBBCAAF76C4F9AE02.roa File: DB9351105A5B11EBBBCAAF76C4F9AE02.roa (raw, json) Hash identifier: QcN/VMotmQfviGaCPAxea/FMAe8diCA3/KvRQK4y9b8= Subject key identifier: FE:AB:E6:D2:5B:8D:DB:13:3D:E5:EF:3F:71:1F:3D:FE:DA:18:2F:4D Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 39B5 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DB9351105A5B11EBBBCAAF76C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:15 +0000 ROA not before: Mon 14 Jul 2025 14:50:15 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132013 IP address blocks: 110.170.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:20:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14773 (0x39b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:50:15 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751927-e374 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d4:f6:fb:ae:44:53:dc:8f:c9:1b:6e:df:96: 65:05:3d:97:9a:22:7f:9e:53:8f:4b:6f:e0:b1:b7: 55:30:aa:99:5b:9f:f5:66:35:86:98:6e:f9:62:60: 42:8e:e9:5f:09:d5:63:ec:83:fd:52:d7:2b:b1:f7: 56:89:76:91:30:15:93:34:f1:eb:97:a9:a9:69:ab: fe:42:61:a7:4e:15:88:5e:0c:98:9e:11:ae:3f:53: 3f:f8:4f:cd:9f:4f:b9:0d:10:09:b2:58:61:bd:4d: 7f:0e:f3:28:63:19:1c:92:c5:b8:e5:c8:81:25:53: 45:c8:db:ec:da:15:dd:9d:7f:df:73:ad:fc:84:b1: c6:94:68:c7:fc:ef:2c:20:b5:57:de:91:c0:e5:bf: 6a:bc:da:94:bc:12:f1:bf:1a:f6:78:30:19:f9:8e: 5f:d0:64:86:8c:65:5b:59:6c:1e:42:88:b9:45:89: b7:c6:a5:82:ca:89:3d:a2:c4:5a:18:bd:f6:9d:97: 8e:a0:35:3f:e7:88:dc:0d:99:5e:61:f0:ba:09:e2: cb:e2:a6:ec:fd:52:29:33:95:cb:d4:fe:8b:9e:d9: 1f:5d:29:f2:38:fc:29:2e:d0:58:fa:11:c7:27:0f: ae:b5:fe:1c:5a:01:eb:60:d0:d3:e6:39:24:b3:71: 6b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:AB:E6:D2:5B:8D:DB:13:3D:E5:EF:3F:71:1F:3D:FE:DA:18:2F:4D X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DB9351105A5B11EBBBCAAF76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.170.222.0/24 Signature Algorithm: sha256WithRSAEncryption 90:16:fd:7a:87:02:32:d1:d6:47:bd:c0:39:96:24:dd:38:60: 1c:60:ea:93:cd:4d:da:56:f4:14:9a:18:0c:5d:fd:11:a8:1e: bf:39:de:23:88:9f:c4:81:3b:31:9b:8f:03:b1:7b:84:16:c4: a0:9e:71:93:ea:bc:d3:16:f2:75:70:fb:79:2c:b6:fe:a5:04: 3e:46:38:c7:ac:29:e3:08:d7:7c:03:86:31:00:5b:7d:bc:9a: 27:b0:79:0d:e9:a2:da:99:81:24:29:57:e3:d2:25:88:cb:c1: 5c:45:37:d6:f2:06:5e:a9:dc:f4:94:e3:53:4a:65:9c:f3:0b: 28:98:ec:42:8f:8d:de:1a:c4:c7:bc:19:e9:58:f9:38:e5:7d: d9:7f:b3:24:03:17:3d:dc:86:d7:de:39:05:0b:c7:67:fd:05: 81:6e:32:7b:2a:55:d1:df:60:6b:c3:35:8c:5b:94:6d:bd:fb: 63:39:fb:b3:4b:08:c6:93:69:4f:37:b5:e9:aa:0e:f1:46:4d: e5:3d:ab:10:4d:03:ee:b7:b6:94:47:2c:76:5e:bf:8f:38:9a: 54:d4:6b:ef:86:06:f2:c4:f6:92:b7:64:2c:34:42:7a:6b:fb: 0b:ba:5d:cb:89:e9:ec:8e:8e:2f:da:13:06:95:88:df:cb:5e: 33:0d:ad:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICObUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MDE1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTkyNy1lMzc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNT2+65EU9yPyRtu35ZlBT2XmiJ/nlOPS2/gsbdVMKqZW5/1ZjWGmG75YmBC julfCdVj7IP9UtcrsfdWiXaRMBWTNPHrl6mpaav+QmGnThWIXgyYnhGuP1M/+E/N n0+5DRAJslhhvU1/DvMoYxkcksW45ciBJVNFyNvs2hXdnX/fc638hLHGlGjH/O8s ILVX3pHA5b9qvNqUvBLxvxr2eDAZ+Y5f0GSGjGVbWWweQoi5RYm3xqWCyok9osRa GL32nZeOoDU/54jcDZleYfC6CeLL4qbs/VIpM5XL1P6LntkfXSnyOPwpLtBY+hHH Jw+utf4cWgHrYNDT5jkks3FrfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP6r5tJb jdsTPeXvP3EfPf7aGC9NMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvREI5MzUxMTA1 QTVCMTFFQkJCQ0FBRjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABuqt4wDQYJKoZIhvcNAQELBQADggEBAJAW/XqHAjLR1ke9 wDmWJN04YBxg6pPNTdpW9BSaGAxd/RGoHr853iOIn8SBOzGbjwOxe4QWxKCecZPq vNMW8nVw+3kstv6lBD5GOMesKeMI13wDhjEAW328mieweQ3potqZgSQpV+PSJYjL wVxFN9byBl6p3PSU41NKZZzzCyiY7EKPjd4axMe8GelY+Tjlfdl/syQDFz3chtfe OQULx2f9BYFuMnsqVdHfYGvDNYxblG29+2M5+7NLCMaTaU83temqDvFGTeU9qxBN A+63tpRHLHZev484mlTUa++GBvLE9pK3ZCw0Qnpr+wu6XcuJ6eyOji/aEwaViN/L XjMNrQs= -----END CERTIFICATE-----Generated at Mon Jul 21 12:44:23 2025 by rpki-client