$ rpki-client -vvf rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/E33945D6B0ED11E5B7779F44C4F9AE02.roa File: E33945D6B0ED11E5B7779F44C4F9AE02.roa (raw, json) Hash identifier: R9f6Z3Uevp4d36wvfS3ESJSWBBwm4wuAIByOXNTGRgE= Subject key identifier: CF:D5:A0:BA:30:D8:71:71:36:0B:CD:1F:1D:DD:5E:C5:FC:37:38:BD Certificate issuer: /CN=A9148AC4/serialNumber=DE313CB35CD076AFE5C3778F05E5CA15CF337AF9 Certificate serial: 2CC4 Authority key identifier: DE:31:3C:B3:5C:D0:76:AF:E5:C3:77:8F:05:E5:CA:15:CF:33:7A:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3jE8s1zQdq_lw3ePBeXKFc8zevk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/E33945D6B0ED11E5B7779F44C4F9AE02.roa Signing time: Fri 04 Jul 2025 15:52:33 +0000 ROA not before: Fri 04 Jul 2025 15:52:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17741 IP address blocks: 114.31.96.0/21 maxlen: 21 202.44.75.0/24 maxlen: 24 2401:2800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/3jE8s1zQdq_lw3ePBeXKFc8zevk.crl rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/3jE8s1zQdq_lw3ePBeXKFc8zevk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3jE8s1zQdq_lw3ePBeXKFc8zevk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 15:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11460 (0x2cc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148AC4, serialNumber=DE313CB35CD076AFE5C3778F05E5CA15CF337AF9 Validity Not Before: Jul 4 15:52:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6867f8c1-5807 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a6:47:a6:9f:b2:10:77:73:46:b8:f0:da:b7: 70:6b:d9:08:4f:64:c5:c5:03:f9:98:9f:45:ce:59: 6d:79:bc:a8:8d:38:15:79:20:40:b9:d5:cc:2e:be: b7:63:63:91:b1:ed:92:ab:8d:6e:75:e7:c2:ea:38: 38:17:5c:3b:ad:82:c9:49:19:58:6b:1f:9c:16:95: 83:76:57:13:20:66:2e:11:cf:15:5b:00:c2:be:01: ff:66:7e:b0:fc:8e:19:1f:cf:40:42:9e:b9:23:32: 44:92:6e:00:19:3f:2d:0a:6c:b7:6c:e7:61:08:a1: f1:1d:30:6c:17:a6:55:72:5b:17:c7:5d:4f:55:46: 56:a3:7c:31:c9:61:00:7c:7c:63:51:ff:d0:c0:da: ab:a6:65:a0:1e:15:32:63:d1:c4:1e:0e:61:ce:7b: ed:22:45:80:dc:f2:88:94:15:9b:19:61:e1:85:a5: 32:f2:7c:97:5b:fb:11:a1:cf:17:ae:85:16:6c:5e: 0e:3f:30:80:12:36:77:48:a1:6f:36:64:76:1f:8b: d3:b8:35:b0:26:31:f9:ab:8a:b2:6e:7a:b3:75:c5: 18:0c:74:f4:27:cb:a9:9e:bb:d3:e5:d5:55:56:89: 96:26:30:85:e9:56:f3:5a:4a:93:80:d3:29:b6:01: b8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:D5:A0:BA:30:D8:71:71:36:0B:CD:1F:1D:DD:5E:C5:FC:37:38:BD X509v3 Authority Key Identifier: keyid:DE:31:3C:B3:5C:D0:76:AF:E5:C3:77:8F:05:E5:CA:15:CF:33:7A:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/3jE8s1zQdq_lw3ePBeXKFc8zevk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3jE8s1zQdq_lw3ePBeXKFc8zevk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148AC4/206BC86CAE6A11E39379D5505911EA32/E33945D6B0ED11E5B7779F44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.31.96.0/21 202.44.75.0/24 IPv6: 2401:2800::/32 Signature Algorithm: sha256WithRSAEncryption 08:84:cc:5d:9d:59:85:76:ff:f6:45:0d:12:42:3f:da:3f:cb: 83:3c:4b:d2:e1:12:65:a2:ec:71:fe:6e:e4:9e:c8:54:72:f4: 7a:e9:67:77:97:f8:f0:a5:e1:7f:89:7c:59:39:40:26:cd:41: e7:8a:fe:77:33:ab:55:e1:08:ca:47:32:e4:20:37:8c:ff:4f: c4:43:56:1c:fd:54:c1:de:07:a1:f2:3b:83:b7:11:29:6c:97: 39:b6:7a:25:1e:ee:09:12:d6:b9:8b:31:ec:79:81:51:f7:2d: 8d:09:26:d6:70:bf:30:22:e2:aa:e6:cb:74:72:45:60:da:77: 9b:dd:5b:9b:73:c3:76:97:8f:a0:19:60:34:fb:07:01:95:1e: 98:06:e9:5c:a2:5d:f4:ae:79:2c:f0:c1:f2:30:75:ea:39:8b: 91:9a:54:13:9d:d4:59:5f:a0:8b:59:66:13:43:73:46:85:e3: 44:75:65:bb:7a:dc:0a:5f:3f:93:33:8f:1f:0b:e5:f7:00:88: 2d:df:77:0f:0a:8b:a6:ec:cf:f6:e3:01:b2:bb:60:1c:e8:43: 8b:af:95:19:83:3e:b3:d0:8f:7b:ea:e2:19:17:d7:9a:a6:35: 75:92:c3:84:b3:2e:aa:61:90:87:a4:42:1b:8b:9f:d0:d2:84: a6:5d:86:f3 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICLMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhBQzQxMTAvBgNVBAUTKERFMzEzQ0IzNUNEMDc2QUZFNUMzNzc4RjA1RTVDQTE1 Q0YzMzdBRjkwHhcNMjUwNzA0MTU1MjMzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3ZjhjMS01ODA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqZHpp+yEHdzRrjw2rdwa9kIT2TFxQP5mJ9FzlltebyojTgVeSBAudXMLr63 Y2ORse2Sq41udefC6jg4F1w7rYLJSRlYax+cFpWDdlcTIGYuEc8VWwDCvgH/Zn6w /I4ZH89AQp65IzJEkm4AGT8tCmy3bOdhCKHxHTBsF6ZVclsXx11PVUZWo3wxyWEA fHxjUf/QwNqrpmWgHhUyY9HEHg5hznvtIkWA3PKIlBWbGWHhhaUy8nyXW/sRoc8X roUWbF4OPzCAEjZ3SKFvNmR2H4vTuDWwJjH5q4qybnqzdcUYDHT0J8upnrvT5dVV VomWJjCF6VbzWkqTgNMptgG4mQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFM/VoLow 2HFxNgvNHx3dXsX8Nzi9MB8GA1UdIwQYMBaAFN4xPLNc0Hav5cN3jwXlyhXPM3r5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEFDNC8yMDZCQzg2Q0FF NkExMUUzOTM3OUQ1NTA1OTExRUEzMi8zakU4czF6UWRxX2x3M2VQQmVYS0ZjOHpl dmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNqRThzMXpRZHFfbHczZVBCZVhLRmM4emV2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhBQzQvMjA2QkM4NkNBRTZBMTFFMzkzNzlENTUwNTkxMUVBMzIvRTMzOTQ1RDZC MEVEMTFFNUI3Nzc5RjQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBANyH2ADBADKLEswDQQCAAIwBwMFACQBKAAwDQYJKoZIhvcN AQELBQADggEBAAiEzF2dWYV2//ZFDRJCP9o/y4M8S9LhEmWi7HH+buSeyFRy9Hrp Z3eX+PCl4X+JfFk5QCbNQeeK/nczq1XhCMpHMuQgN4z/T8RDVhz9VMHeB6HyO4O3 ESlslzm2eiUe7gkS1rmLMex5gVH3LY0JJtZwvzAi4qrmy3RyRWDad5vdW5tzw3aX j6AZYDT7BwGVHpgG6VyiXfSueSzwwfIwdeo5i5GaVBOd1FlfoItZZhNDc0aF40R1 Zbt63ApfP5Mzjx8L5fcAiC3fdw8Ki6bsz/bjAbK7YBzoQ4uvlRmDPrPQj3vq4hkX 15qmNXWSw4SzLqphkIekQhuLn9DShKZdhvM= -----END CERTIFICATE-----Generated at Mon Jul 21 08:04:49 2025 by rpki-client