$ rpki-client -vvf rpki.apnic.net/member_repository/A9120832/C259F6B2362611F0B35AFA86C4F9AE02/605C88EC362811F08A82E10DC4F9AE02.roa File: 605C88EC362811F08A82E10DC4F9AE02.roa (raw, json) Hash identifier: ICDTjfptMFLAWgu+lY50xT8rCv9IQat8S3hCjv+v8vU= Subject key identifier: 33:5B:6D:37:1B:A1:2F:8C:01:4E:4A:AF:2B:D6:DD:E3:8D:AB:2A:67 Certificate issuer: /CN=A9120832/serialNumber=A938EFFB963AE2AEB6F0B266596B8A412377C9D9 Certificate serial: 02 Authority key identifier: A9:38:EF:FB:96:3A:E2:AE:B6:F0:B2:66:59:6B:8A:41:23:77:C9:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qTjv-5Y64q628LJmWWuKQSN3ydk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120832/C259F6B2362611F0B35AFA86C4F9AE02/605C88EC362811F08A82E10DC4F9AE02.roa Signing time: Wed 21 May 2025 09:45:49 +0000 ROA not before: Wed 21 May 2025 09:45:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153715 IP address blocks: 163.223.174.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120832/C259F6B2362611F0B35AFA86C4F9AE02/qTjv-5Y64q628LJmWWuKQSN3ydk.crl rsync://rpki.apnic.net/member_repository/A9120832/C259F6B2362611F0B35AFA86C4F9AE02/qTjv-5Y64q628LJmWWuKQSN3ydk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qTjv-5Y64q628LJmWWuKQSN3ydk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 08:02:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120832, serialNumber=A938EFFB963AE2AEB6F0B266596B8A412377C9D9 Validity Not Before: May 21 09:45:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682da0cd-22d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:69:15:53:83:05:1b:9f:1b:9b:43:ff:d4:2e: 3c:0b:79:41:d0:11:d0:b2:72:b1:40:ab:54:8c:46: 91:c8:2e:da:ee:27:e4:a3:e7:88:53:99:f4:c4:bf: 6e:5a:f1:01:9c:87:82:3f:11:35:d7:2b:8b:b3:77: 06:13:1c:6c:80:d9:76:6b:93:35:15:b6:ce:7c:5c: 59:3f:26:1e:cf:72:b8:75:53:44:49:4f:bc:ce:88: e7:00:ba:5b:a1:72:87:74:0e:ee:1f:79:bd:e3:45: 34:40:f5:95:9d:bb:28:80:71:05:83:97:8a:d6:7f: c6:a9:8d:88:26:be:2f:70:1b:b0:37:41:57:bc:6f: 09:31:b7:70:02:a9:fe:85:de:1c:d9:00:39:23:1e: 32:59:f2:4e:41:96:e6:17:c6:24:05:10:c2:a0:9f: f1:cb:21:30:93:6a:cd:b2:42:da:b2:28:3f:60:b5: 05:09:3c:72:a6:18:d6:58:e8:24:53:56:44:fe:31: cb:80:24:6f:42:1b:d9:9b:f6:93:75:2e:23:50:97: 8a:32:13:af:fa:bb:ab:30:7c:d4:81:f1:41:4f:f0: 8d:48:c9:c9:74:9e:c9:28:b6:b5:bb:e7:02:13:82: 37:54:a2:30:73:6d:80:5b:40:0e:ce:f2:d8:01:16: c8:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5B:6D:37:1B:A1:2F:8C:01:4E:4A:AF:2B:D6:DD:E3:8D:AB:2A:67 X509v3 Authority Key Identifier: keyid:A9:38:EF:FB:96:3A:E2:AE:B6:F0:B2:66:59:6B:8A:41:23:77:C9:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120832/C259F6B2362611F0B35AFA86C4F9AE02/qTjv-5Y64q628LJmWWuKQSN3ydk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qTjv-5Y64q628LJmWWuKQSN3ydk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120832/C259F6B2362611F0B35AFA86C4F9AE02/605C88EC362811F08A82E10DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.174.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:26:1b:44:e3:9c:24:0c:13:4a:db:a7:61:42:84:c1:b5:8d: de:8a:dd:4b:eb:bc:2f:30:85:18:8e:9e:02:8b:df:1b:86:05: 8e:f6:41:fb:61:43:27:16:0f:3f:b3:a7:2f:cb:ec:7d:a3:14: 60:9d:fa:72:2f:eb:bd:14:57:61:09:73:ee:3e:d2:5c:19:54: 60:b8:d0:e7:0a:47:0e:f9:75:01:7d:c5:b1:c4:3d:e8:89:25: 3b:c4:ca:4b:49:18:cf:a2:b4:0b:53:0c:9e:5f:6b:a3:45:85: 31:94:98:03:0b:2e:c7:bb:d1:9c:12:b3:4c:4b:69:4d:c1:53: 7f:84:d2:b7:35:83:16:00:32:ed:9c:14:6f:03:cf:b6:4d:14: 48:71:52:35:ac:7f:cc:5b:71:69:98:5e:75:2a:06:12:ae:a3: ba:17:00:33:17:47:f7:bb:40:13:e9:ad:6e:c6:74:bb:d7:d8: 70:96:7f:76:8a:4f:72:32:4e:b4:15:43:be:2d:4c:a8:6d:06: f3:c7:39:a4:af:73:50:4c:74:56:36:60:d3:5b:97:be:6f:16: af:0d:da:16:8b:71:68:22:e5:66:dd:93:ed:6a:6d:fc:0b:1d: 98:05:ff:a1:42:69:47:85:cc:42:85:7f:86:93:54:d9:b7:e4: 82:e8:a2:b5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MDgzMjExMC8GA1UEBRMoQTkzOEVGRkI5NjNBRTJBRUI2RjBCMjY2NTk2QjhBNDEy Mzc3QzlEOTAeFw0yNTA1MjEwOTQ1NDlaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmRhMGNkLTIyZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcaRVTgwUbnxubQ//ULjwLeUHQEdCycrFAq1SMRpHILtruJ+Sj54hTmfTEv25a 8QGch4I/ETXXK4uzdwYTHGyA2XZrkzUVts58XFk/Jh7Pcrh1U0RJT7zOiOcAuluh cod0Du4feb3jRTRA9ZWduyiAcQWDl4rWf8apjYgmvi9wG7A3QVe8bwkxt3ACqf6F 3hzZADkjHjJZ8k5BluYXxiQFEMKgn/HLITCTas2yQtqyKD9gtQUJPHKmGNZY6CRT VkT+McuAJG9CG9mb9pN1LiNQl4oyE6/6u6swfNSB8UFP8I1Iycl0nskotrW75wIT gjdUojBzbYBbQA7O8tgBFsgpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUM1ttNxuh L4wBTkqvK9bd442rKmcwHwYDVR0jBBgwFoAUqTjv+5Y64q628LJmWWuKQSN3ydkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwODMyL0MyNTlGNkIyMzYy NjExRjBCMzVBRkE4NkM0RjlBRTAyL3FUanYtNVk2NHE2MjhMSm1XV3VLUVNOM3lk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcVRqdi01WTY0cTYyOExKbVdXdUtRU04zeWRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDgzMi9DMjU5RjZCMjM2MjYxMUYwQjM1QUZBODZDNEY5QUUwMi82MDVDODhFQzM2 MjgxMUYwOEE4MkUxMERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPfrjANBgkqhkiG9w0BAQsFAAOCAQEADCYbROOcJAwTStun YUKEwbWN3ordS+u8LzCFGI6eAovfG4YFjvZB+2FDJxYPP7OnL8vsfaMUYJ36ci/r vRRXYQlz7j7SXBlUYLjQ5wpHDvl1AX3FscQ96IklO8TKS0kYz6K0C1MMnl9ro0WF MZSYAwsux7vRnBKzTEtpTcFTf4TStzWDFgAy7ZwUbwPPtk0USHFSNax/zFtxaZhe dSoGEq6juhcAMxdH97tAE+mtbsZ0u9fYcJZ/dopPcjJOtBVDvi1MqG0G88c5pK9z UEx0VjZg01uXvm8Wrw3aFotxaCLlZt2T7Wpt/AsdmAX/oUJpR4XMQoV/hpNU2bfk guiitQ== -----END CERTIFICATE-----Generated at Wed Jun 4 00:16:46 2025 by rpki-client