$ rpki-client -vvf rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/643F1F08B72F11ED85F55F23C4F9AE02.roa File: 643F1F08B72F11ED85F55F23C4F9AE02.roa (raw, json) Hash identifier: jmqDKa5arq4fgvLtUOSSDm4TPSp4JnFMPE58CkrLpbg= Subject key identifier: C8:C8:4A:33:7D:F0:6F:F9:8B:59:AF:E2:5C:DD:D2:D4:A3:09:0E:A6 Certificate issuer: /CN=A9141BED/serialNumber=27689043C43FE61B3CE3C4EBE6B6C15FBCCD2D07 Certificate serial: 01CD Authority key identifier: 27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/643F1F08B72F11ED85F55F23C4F9AE02.roa Signing time: Fri 11 Jul 2025 03:39:19 +0000 ROA not before: Fri 11 Jul 2025 03:39:19 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 18259 IP address blocks: 202.178.96.0/20 maxlen: 24 2401:4640::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.crl rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 461 (0x1cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141BED, serialNumber=27689043C43FE61B3CE3C4EBE6B6C15FBCCD2D07 Validity Not Before: Jul 11 03:39:19 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68708767-5870 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cb:97:5a:19:f4:83:1c:0d:b8:ee:6b:ca:b9: 12:5e:ca:78:83:1d:7c:7f:ca:80:97:c9:a8:08:17: 9d:70:41:26:54:2d:44:f9:cf:c6:8d:bc:af:27:23: ac:65:c2:e2:87:ba:49:da:fb:54:96:cc:92:8d:39: 88:01:9e:4f:2e:2c:ca:21:2c:be:46:9e:c2:90:b0: 10:96:ab:17:20:db:9d:17:33:3b:1d:27:75:6e:65: 52:e3:92:97:41:ca:fa:0a:e9:00:07:48:88:38:b9: 4a:8a:07:25:2e:55:65:f8:b8:56:03:37:94:f4:8e: eb:e2:17:5b:ee:51:63:29:ad:45:5c:66:d6:77:96: 8f:c5:de:9e:e3:ce:a5:73:5e:7b:0a:00:d4:6d:76: ec:90:50:96:8c:75:82:31:13:61:41:b4:c0:e7:b0: 4a:cc:e4:56:da:58:48:5b:9d:f9:70:66:c9:cc:cf: e9:dc:cc:55:04:79:ea:3a:90:82:6e:9d:c3:e9:25: 76:a1:d3:30:a5:02:03:9f:d5:57:6c:d5:10:c9:57: 44:64:ab:23:70:27:6a:89:88:aa:e3:db:5f:81:b2: 66:f1:6f:f7:6d:de:3d:2c:81:17:71:d4:9e:95:09: d7:fd:ab:90:02:a9:eb:03:48:02:8e:9c:2a:55:de: 16:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C8:4A:33:7D:F0:6F:F9:8B:59:AF:E2:5C:DD:D2:D4:A3:09:0E:A6 X509v3 Authority Key Identifier: keyid:27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/643F1F08B72F11ED85F55F23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.178.96.0/20 IPv6: 2401:4640::/32 Signature Algorithm: sha256WithRSAEncryption 89:34:d6:31:67:f7:21:1a:8f:d8:59:61:5c:cd:78:10:2c:e8: d7:84:43:6d:47:6b:8d:b5:ac:f0:12:e1:6d:ee:4b:83:34:63: ad:1c:41:e8:93:1e:7c:74:c1:f7:e2:87:2f:11:f4:6b:48:7a: 9b:6e:df:bc:60:35:63:f1:a3:c3:77:8e:5b:22:38:80:1c:2f: d5:3e:ec:af:a3:2c:63:c9:87:40:3b:53:b3:94:bc:1f:a0:aa: 19:f9:d7:94:9e:6c:4c:c1:77:7c:1a:b4:a5:e7:0a:35:e7:f0: d2:e3:48:f3:0c:a2:09:43:b0:49:a2:1e:61:19:43:76:90:f1: cd:88:2b:fc:20:f1:19:13:3c:e7:3b:60:e3:ff:7b:11:5a:48: 73:b3:f0:da:56:d7:74:e1:9b:6d:18:e9:b9:69:20:a6:5a:e7: 11:21:14:52:63:30:66:4b:11:eb:d8:ff:cf:cc:db:1d:72:b6: fa:7d:f1:1f:c1:57:a8:9c:63:49:64:ba:b9:08:47:26:8e:3d: 02:f1:09:e3:33:c3:fa:2d:c4:61:f5:96:ba:04:bb:27:70:db: 0d:55:a1:a6:5d:9f:cc:3b:1a:35:38:11:e5:8e:7e:66:50:08: 4c:2f:2c:00:f9:fd:34:7e:f3:95:a7:97:92:d9:a8:bf:a3:02: 99:81:7f:3f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAc0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFCRUQxMTAvBgNVBAUTKDI3Njg5MDQzQzQzRkU2MUIzQ0UzQzRFQkU2QjZDMTVG QkNDRDJEMDcwHhcNMjUwNzExMDMzOTE5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODcwODc2Ny01ODcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqsuXWhn0gxwNuO5ryrkSXsp4gx18f8qAl8moCBedcEEmVC1E+c/GjbyvJyOs ZcLih7pJ2vtUlsySjTmIAZ5PLizKISy+Rp7CkLAQlqsXINudFzM7HSd1bmVS45KX Qcr6CukAB0iIOLlKigclLlVl+LhWAzeU9I7r4hdb7lFjKa1FXGbWd5aPxd6e486l c157CgDUbXbskFCWjHWCMRNhQbTA57BKzORW2lhIW535cGbJzM/p3MxVBHnqOpCC bp3D6SV2odMwpQIDn9VXbNUQyVdEZKsjcCdqiYiq49tfgbJm8W/3bd49LIEXcdSe lQnX/auQAqnrA0gCjpwqVd4WewIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMjISjN9 8G/5i1mv4lzd0tSjCQ6mMB8GA1UdIwQYMBaAFCdokEPEP+YbPOPE6+a2wV+8zS0H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUJFRC9GQjJBQThFQ0I3 MkExMUVEODg0QTA5MURDNEY5QUUwMi9KMmlRUThRXzVoczg0OFRyNXJiQlg3ek5M UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0oyaVFROFFfNWhzODQ4VHI1cmJCWDd6TkxRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDFCRUQvRkIyQUE4RUNCNzJBMTFFRDg4NEEwOTFEQzRGOUFFMDIvNjQzRjFGMDhC NzJGMTFFRDg1RjU1RjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBATKsmAwDQQCAAIwBwMFACQBRkAwDQYJKoZIhvcNAQELBQAD ggEBAIk01jFn9yEaj9hZYVzNeBAs6NeEQ21Ha421rPAS4W3uS4M0Y60cQeiTHnx0 wffihy8R9GtIeptu37xgNWPxo8N3jlsiOIAcL9U+7K+jLGPJh0A7U7OUvB+gqhn5 15SebEzBd3watKXnCjXn8NLjSPMMoglDsEmiHmEZQ3aQ8c2IK/wg8RkTPOc7YOP/ exFaSHOz8NpW13Thm20Y6blpIKZa5xEhFFJjMGZLEevY/8/M2x1ytvp98R/BV6ic Y0lkurkIRyaOPQLxCeMzw/otxGH1lroEuydw2w1VoaZdn8w7GjU4EeWOfmZQCEwv LAD5/TR+85Wnl5LZqL+jApmBfz8= -----END CERTIFICATE-----Generated at Sun Jul 20 07:13:47 2025 by rpki-client