$ rpki-client -vvf rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/DF49649E502311F0B0E2C112C4F9AE02.roa File: DF49649E502311F0B0E2C112C4F9AE02.roa (raw, json) Hash identifier: 9HELVB4n3RxgYEluEnG0YvLTZOT0yiWUmRxe5yM7KUU= Subject key identifier: 87:B8:61:46:A7:30:61:15:C4:C9:84:E6:3A:24:AE:F5:EC:B7:68:DA Certificate issuer: /CN=A915A0CD/serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Certificate serial: 0D70 Authority key identifier: 38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/DF49649E502311F0B0E2C112C4F9AE02.roa Signing time: Mon 23 Jun 2025 11:19:05 +0000 ROA not before: Mon 23 Jun 2025 11:19:05 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 60721 IP address blocks: 14.192.137.0/24 maxlen: 24 111.92.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:10:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3440 (0xd70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A0CD, serialNumber=38193720821E07D6918E3A79FBE0823C6732E264 Validity Not Before: Jun 23 11:19:05 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68593829-1e84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:7b:06:5a:38:d7:bb:56:c0:09:dd:d0:73:8e: 80:a1:28:1b:43:da:5c:4a:e8:8e:2c:c4:fa:aa:a4: ff:cc:a0:96:7d:bd:22:66:e0:99:f6:09:78:0f:2f: 2b:27:8e:1f:43:1c:f2:d6:ad:9d:b0:3c:98:76:03: 2c:e5:1a:e1:9f:aa:bf:4e:98:41:9d:19:0d:a7:7f: e8:9d:99:34:63:74:dd:4e:3c:01:bf:ab:a5:e1:0b: 67:2f:ab:bf:3e:07:95:d6:c8:37:0e:ff:95:c7:ac: fb:7a:6d:ce:ce:b7:22:a5:49:ea:35:3b:af:5e:cb: 69:8a:16:ea:b1:6b:c2:3a:14:64:f2:33:4e:d7:92: d6:d8:49:40:7a:80:93:28:1b:64:07:1c:da:69:61: 89:a4:25:5e:58:20:ba:e1:3f:a4:ca:2e:b4:26:d8: fd:9c:4c:21:f9:1f:9d:f9:d6:95:63:87:a0:07:02: c6:03:30:d5:dd:ea:0b:32:ee:af:cc:b7:47:cc:a2: b8:e3:74:4f:ae:db:6b:75:f3:0c:ea:81:cc:a0:6f: 30:0e:b4:cb:1e:36:60:98:86:fd:12:70:44:4b:57: e8:d8:5d:26:bc:ef:1d:85:d4:2e:a9:fd:7c:e6:78: 61:a1:04:d3:a8:ca:0f:94:79:7a:3f:ec:15:8e:ed: a7:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B8:61:46:A7:30:61:15:C4:C9:84:E6:3A:24:AE:F5:EC:B7:68:DA X509v3 Authority Key Identifier: keyid:38:19:37:20:82:1E:07:D6:91:8E:3A:79:FB:E0:82:3C:67:32:E2:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/OBk3IIIeB9aRjjp5--CCPGcy4mQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBk3IIIeB9aRjjp5--CCPGcy4mQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A0CD/46723F1E89EC11EA81C04F1EC4F9AE02/DF49649E502311F0B0E2C112C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.137.0/24 111.92.138.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:e7:2b:ca:3a:ac:5e:0a:34:19:2e:62:de:80:0c:56:5b:8f: c7:cb:a7:98:40:3a:d3:49:2d:3d:57:16:ad:5c:78:1f:c2:37: 33:05:66:d9:4b:a1:c5:3f:f8:a3:75:4f:e5:3e:96:f3:36:92: ea:33:c4:93:57:f0:51:fe:98:db:33:06:bf:57:bc:79:2b:97: 1a:22:42:35:bd:e4:34:08:c5:17:7d:69:7b:84:f3:74:53:ff: 3f:94:6d:c3:b6:eb:41:f4:1c:bd:08:84:ec:8c:19:c3:ad:ce: 5a:62:83:1b:56:6c:46:2f:49:0e:1d:94:df:ce:62:e0:8c:3e: 33:9d:9a:bf:06:e4:d3:dc:6a:d8:b3:97:c8:5f:09:b4:1a:ad: 3c:47:94:a4:84:16:10:87:d0:90:f9:40:db:55:43:af:77:24: 0d:bc:a5:dd:29:13:c5:cd:cc:11:74:c2:7e:1a:60:2d:1c:ee: cd:d5:90:97:a3:b0:dc:77:18:0e:8c:ba:5c:fd:52:5b:5a:6f: 26:55:da:b4:14:25:2c:eb:6f:7a:6f:17:14:fd:1f:f4:bb:e6: a9:fc:20:db:6f:f3:2e:07:6d:24:cc:4d:6a:ef:17:66:e9:f4: b2:b0:e9:55:c4:3b:5c:5a:30:fe:3a:7d:6a:75:3d:d9:e7:17: bd:d2:d7:62 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUEwQ0QxMTAvBgNVBAUTKDM4MTkzNzIwODIxRTA3RDY5MThFM0E3OUZCRTA4MjND NjczMkUyNjQwHhcNMjUwNjIzMTExOTA1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU5MzgyOS0xZTg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5nsGWjjXu1bACd3Qc46AoSgbQ9pcSuiOLMT6qqT/zKCWfb0iZuCZ9gl4Dy8r J44fQxzy1q2dsDyYdgMs5Rrhn6q/TphBnRkNp3/onZk0Y3TdTjwBv6ul4QtnL6u/ PgeV1sg3Dv+Vx6z7em3OzrcipUnqNTuvXstpihbqsWvCOhRk8jNO15LW2ElAeoCT KBtkBxzaaWGJpCVeWCC64T+kyi60Jtj9nEwh+R+d+daVY4egBwLGAzDV3eoLMu6v zLdHzKK443RPrttrdfMM6oHMoG8wDrTLHjZgmIb9EnBES1fo2F0mvO8dhdQuqf18 5nhhoQTTqMoPlHl6P+wVju2nbQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIe4YUan MGEVxMmE5jokrvXst2jaMB8GA1UdIwQYMBaAFDgZNyCCHgfWkY46efvggjxnMuJk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTBDRC80NjcyM0YxRTg5 RUMxMUVBODFDMDRGMUVDNEY5QUUwMi9PQmszSUlJZUI5YVJqanA1LS1DQ1BHY3k0 bVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CazNJSUllQjlhUmpqcDUtLUNDUEdjeTRtUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUEwQ0QvNDY3MjNGMUU4OUVDMTFFQTgxQzA0RjFFQzRGOUFFMDIvREY0OTY0OUU1 MDIzMTFGMEIwRTJDMTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAOwIkDBABvXIowDQYJKoZIhvcNAQELBQADggEBAJvnK8o6 rF4KNBkuYt6ADFZbj8fLp5hAOtNJLT1XFq1ceB/CNzMFZtlLocU/+KN1T+U+lvM2 kuozxJNX8FH+mNszBr9XvHkrlxoiQjW95DQIxRd9aXuE83RT/z+UbcO260H0HL0I hOyMGcOtzlpigxtWbEYvSQ4dlN/OYuCMPjOdmr8G5NPcatizl8hfCbQarTxHlKSE FhCH0JD5QNtVQ693JA28pd0pE8XNzBF0wn4aYC0c7s3VkJejsNx3GA6Mulz9Ulta byZV2rQUJSzrb3pvFxT9H/S75qn8INtv8y4HbSTMTWrvF2bp9LKw6VXEO1xaMP46 fWp1PdnnF73S12I= -----END CERTIFICATE-----Generated at Wed Jul 2 13:16:10 2025 by rpki-client