$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DD9C07828D8B11EBB959991DC4F9AE02.roa File: DD9C07828D8B11EBB959991DC4F9AE02.roa (raw, json) Hash identifier: KcmqJfHxUpDuc0ECvYHJhDG4s7ZruYPj6RgZ3nxOtpo= Subject key identifier: F4:A5:EA:C6:0C:D3:88:0D:FC:1B:48:24:62:36:75:27:4E:E1:07:8F Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1D4F Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DD9C07828D8B11EBB959991DC4F9AE02.roa Signing time: Thu 26 Jun 2025 16:35:44 +0000 ROA not before: Thu 26 Jun 2025 16:35:44 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135104 IP address blocks: 203.28.58.0/23 maxlen: 29 203.28.58.152/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 16:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7503 (0x1d4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4, serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Jun 26 16:35:44 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=685d76e0-a209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:51:56:92:5b:83:35:75:ab:17:13:02:86:64: d0:17:91:14:9a:b0:87:46:8a:a8:9b:4e:e9:e7:ce: e9:2e:7b:57:dd:2c:c5:a8:36:a4:b5:e0:d1:a4:2d: 10:2f:be:2f:54:24:b2:f7:48:da:c0:08:4c:89:5e: e3:ac:dd:de:d2:ca:e2:d2:b3:c4:73:17:3d:a9:00: f8:39:4b:5d:e6:09:da:1a:34:da:ab:19:0e:14:b6: 60:34:f1:4e:0d:a1:9f:6d:d3:65:fd:6b:7f:1a:c9: e2:45:8e:4d:aa:bd:78:26:e0:2b:e7:7a:86:1f:d4: b9:ac:ea:f4:d8:94:0b:93:7a:39:e2:d3:47:d2:f7: ac:9f:b3:30:73:ef:8a:b1:22:b7:c2:99:e0:73:5e: 38:19:84:86:13:24:92:94:56:f9:93:75:f8:07:82: c5:d0:25:8d:cf:8d:78:17:77:d9:e7:84:b4:ad:ce: 18:ab:2a:e2:8b:c5:fa:a4:04:f2:7f:d4:f9:65:8d: 08:61:74:6f:34:20:fb:83:78:df:ff:5b:cb:81:33: d4:f2:66:04:8a:b2:ff:d6:14:3d:d6:0d:ba:18:4e: f7:12:c6:b1:b3:b3:77:a7:01:79:8a:af:0b:81:e4: 31:25:16:b9:cc:d5:04:ec:19:8c:9e:e2:b1:3a:dc: 13:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A5:EA:C6:0C:D3:88:0D:FC:1B:48:24:62:36:75:27:4E:E1:07:8F X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DD9C07828D8B11EBB959991DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.58.0/23 Signature Algorithm: sha256WithRSAEncryption 86:24:81:5a:6f:eb:f9:b4:c2:6b:78:ce:07:ba:e6:d0:a9:1a: 8a:29:ac:c7:e2:78:12:2f:8d:b9:af:97:cd:f7:73:6c:ae:8a: a2:e2:6b:dd:52:cb:a2:90:87:ae:f6:98:a0:37:88:59:95:a1: 1e:97:89:9a:48:ad:8a:ac:92:87:14:fc:f2:d8:db:3b:5c:43: 0d:81:56:f7:de:b9:33:cf:44:20:63:07:df:7d:32:46:be:1f: 49:1c:bf:8c:54:e0:58:88:05:73:25:87:ae:a7:39:33:f5:d5: b3:d0:1f:81:7f:8d:80:b1:0c:05:47:64:57:ff:bd:96:9d:5e: 0c:14:dd:5f:e5:fe:91:f8:54:03:40:b5:42:a7:df:da:f0:2c: 32:4a:26:16:a1:98:5d:3b:01:06:21:e0:bf:5a:2c:c7:64:ee: 33:3f:8b:5b:05:24:d9:97:8f:b3:07:b4:61:f3:8b:a1:37:c5: 11:87:64:8a:f7:f1:03:4f:27:4d:cf:3f:b2:55:c9:c9:d3:b0: d5:91:5c:2f:fb:ae:15:3d:ab:aa:10:ae:b8:3c:a2:70:5b:e6: b0:f8:39:c3:01:f0:d1:01:cd:a3:34:23:ad:f5:ff:7d:6f:e8: 0c:f7:f4:8b:71:b8:d1:35:b4:35:e7:a6:2c:90:be:42:fb:d7: a3:ab:02:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjUwNjI2MTYzNTQ0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVkNzZlMC1hMjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylFWkluDNXWrFxMChmTQF5EUmrCHRoqom07p587pLntX3SzFqDakteDRpC0Q L74vVCSy90jawAhMiV7jrN3e0sri0rPEcxc9qQD4OUtd5gnaGjTaqxkOFLZgNPFO DaGfbdNl/Wt/GsniRY5Nqr14JuAr53qGH9S5rOr02JQLk3o54tNH0vesn7Mwc++K sSK3wpngc144GYSGEySSlFb5k3X4B4LF0CWNz414F3fZ54S0rc4Yqyrii8X6pATy f9T5ZY0IYXRvNCD7g3jf/1vLgTPU8mYEirL/1hQ91g26GE73Esaxs7N3pwF5iq8L geQxJRa5zNUE7BmMnuKxOtwTEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPSl6sYM 04gN/BtIJGI2dSdO4QePMB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNBQjQvMUZCMDQwQTBCMTc0MTFFNjhFQzg4NTE4QzRGOUFFMDIvREQ5QzA3ODI4 RDhCMTFFQkI5NTk5OTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLHDowDQYJKoZIhvcNAQELBQADggEBAIYkgVpv6/m0wmt4 zge65tCpGooprMfieBIvjbmvl833c2yuiqLia91Sy6KQh672mKA3iFmVoR6XiZpI rYqskocU/PLY2ztcQw2BVvfeuTPPRCBjB999Mka+H0kcv4xU4FiIBXMlh66nOTP1 1bPQH4F/jYCxDAVHZFf/vZadXgwU3V/l/pH4VANAtUKn39rwLDJKJhahmF07AQYh 4L9aLMdk7jM/i1sFJNmXj7MHtGHzi6E3xRGHZIr38QNPJ03PP7JVycnTsNWRXC/7 rhU9q6oQrrg8onBb5rD4OcMB8NEBzaM0I631/31v6Az39ItxuNE1tDXnpiyQvkL7 16OrAtA= -----END CERTIFICATE-----Generated at Tue Oct 28 08:38:23 2025 by rpki-client