$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DC2BF7FC484411ED8285CF43C4F9AE02.roa File: DC2BF7FC484411ED8285CF43C4F9AE02.roa (raw, json) Hash identifier: u7fj3xFLxK4uIqfdUpGwCMz488PyzI4rMS2B0V4PU7k= Subject key identifier: E4:DA:E6:F9:35:19:38:75:AD:DF:9F:86:AC:4A:E4:6F:70:23:35:97 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3A0C Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DC2BF7FC484411ED8285CF43C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:51:27 +0000 ROA not before: Mon 14 Jul 2025 14:51:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 55790 IP address blocks: 210.86.219.0/24 maxlen: 24 2001:fb0:103c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:20:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14860 (0x3a0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 14 14:51:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875196f-26b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:54:e0:ca:ef:a4:0f:40:e8:6b:ed:07:8e:9e: f7:bf:fe:83:54:5e:2d:ee:01:07:29:64:30:53:e4: cd:ef:5a:3b:5b:30:51:10:b6:6d:c4:13:64:4a:0f: e7:06:16:42:cf:ad:a9:dd:b0:cb:25:ce:96:32:43: 6d:3d:07:a9:2a:10:96:41:c7:d7:1c:16:35:df:f9: 22:c2:2b:f1:56:8e:87:65:86:e6:68:dd:63:5e:11: 12:c9:2d:3a:ba:65:59:ab:85:e0:99:a7:7f:89:e9: e4:a6:09:49:a5:bd:11:88:9f:b9:d6:c3:de:bd:ba: f5:4d:8f:0d:42:99:0e:b0:8e:87:65:59:1b:73:e1: 63:2d:66:ec:33:a9:5d:27:c0:66:c3:3f:58:8a:a0: cd:83:a7:0e:31:4b:c3:0a:6a:20:f7:1a:ae:3d:6e: f1:d6:bf:01:43:b0:41:fa:fa:6d:dc:16:43:04:98: 81:67:f4:62:04:82:d6:1f:ab:73:5b:b9:00:6d:be: ef:75:20:9a:88:9c:55:ab:08:54:65:6d:62:96:da: d6:91:60:62:79:04:cc:3f:07:61:c6:c4:9f:45:5f: 38:74:66:34:67:94:7f:a4:ac:20:28:83:6f:aa:81: 24:81:da:66:84:48:5c:72:76:72:cc:db:2e:54:c9: 98:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DA:E6:F9:35:19:38:75:AD:DF:9F:86:AC:4A:E4:6F:70:23:35:97 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/DC2BF7FC484411ED8285CF43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.86.219.0/24 IPv6: 2001:fb0:103c::/48 Signature Algorithm: sha256WithRSAEncryption 39:0d:25:25:a5:9f:a6:ce:07:bd:63:8b:a4:23:fb:47:40:21: b7:2d:e1:37:25:1d:ea:59:b4:67:6c:ca:fb:d2:f1:ba:14:ed: cb:17:b8:0d:86:41:b4:fe:7b:3c:ed:00:d0:fc:18:68:64:e1: 9d:0f:df:1b:ac:40:cf:68:6c:6e:77:0e:d2:0b:aa:ae:d2:7e: 84:02:bb:b4:2c:a2:4f:44:54:c9:c2:00:12:9b:23:ef:de:c9: a6:dc:e2:af:66:52:61:f4:87:79:9d:27:1d:a9:17:73:66:48: 7e:08:30:89:a4:dc:c3:5b:17:be:45:c3:e5:cb:b3:c0:f3:70: 73:9c:83:cb:dc:ec:be:c0:f2:1d:d2:e5:aa:d2:0a:10:4d:76: f3:6f:c0:3a:3a:2a:9e:05:8e:ce:ff:98:79:53:09:a7:69:e0: d7:e6:93:55:0e:ca:16:73:b3:60:30:99:68:ab:5b:88:c0:e7: 08:b1:26:69:b2:56:55:3d:3b:a5:da:50:11:96:ab:ce:17:e0: 10:52:dd:95:4a:11:5b:4b:d7:5d:e5:c8:5d:f4:85:4a:7c:0f: 7f:9b:f2:4d:3a:48:97:4a:e0:c1:9e:38:0f:d1:27:f3:71:08: b6:7b:38:21:cb:85:32:e7:2a:a9:0c:8d:f4:bc:a6:df:56:1b: 92:b8:2d:96 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICOgwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNzE0MTQ1MTI3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTk2Zi0yNmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo1Tgyu+kD0Doa+0Hjp73v/6DVF4t7gEHKWQwU+TN71o7WzBRELZtxBNkSg/n BhZCz62p3bDLJc6WMkNtPQepKhCWQcfXHBY13/kiwivxVo6HZYbmaN1jXhESyS06 umVZq4Xgmad/ienkpglJpb0RiJ+51sPevbr1TY8NQpkOsI6HZVkbc+FjLWbsM6ld J8Bmwz9YiqDNg6cOMUvDCmog9xquPW7x1r8BQ7BB+vpt3BZDBJiBZ/RiBILWH6tz W7kAbb7vdSCaiJxVqwhUZW1iltrWkWBieQTMPwdhxsSfRV84dGY0Z5R/pKwgKINv qoEkgdpmhEhccnZyzNsuVMmYxQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOTa5vk1 GTh1rd+fhqxK5G9wIzWXMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvREMyQkY3RkM0 ODQ0MTFFRDgyODVDRjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADSVtswDwQCAAIwCQMHACABD7AQPDANBgkqhkiG9w0BAQsF AAOCAQEAOQ0lJaWfps4HvWOLpCP7R0Ahty3hNyUd6lm0Z2zK+9LxuhTtyxe4DYZB tP57PO0A0PwYaGThnQ/fG6xAz2hsbncO0guqrtJ+hAK7tCyiT0RUycIAEpsj797J ptzir2ZSYfSHeZ0nHakXc2ZIfggwiaTcw1sXvkXD5cuzwPNwc5yDy9zsvsDyHdLl qtIKEE1282/AOjoqngWOzv+YeVMJp2ng1+aTVQ7KFnOzYDCZaKtbiMDnCLEmabJW VT07pdpQEZarzhfgEFLdlUoRW0vXXeXIXfSFSnwPf5vyTTpIl0rgwZ44D9En83EI tns4IcuFMucqqQyN9Lym31Ybkrgtlg== -----END CERTIFICATE-----Generated at Fri Oct 24 07:02:20 2025 by rpki-client