$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C6C9159E02CC11E6AA35863CC4F9AE02.roa File: C6C9159E02CC11E6AA35863CC4F9AE02.roa (raw, json) Hash identifier: Pn3UiRI/u84/PSVY6hBOi61rOJXfl8nDViwTqHYc55g= Subject key identifier: 91:07:F9:5C:E2:42:15:9F:FD:73:2D:C1:82:E7:DE:83:30:77:3B:BF Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2567 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C6C9159E02CC11E6AA35863CC4F9AE02.roa Signing time: Mon 04 Aug 2025 16:24:16 +0000 ROA not before: Mon 04 Aug 2025 16:24:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17894 IP address blocks: 120.28.36.0/22 maxlen: 22 203.177.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 16:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9575 (0x2567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6890deb0-7362 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:92:33:16:fa:ef:92:72:fe:0d:68:5f:14:a5: e4:1f:37:f7:1a:8b:ac:2f:a8:b1:38:48:73:38:c6: 8b:c2:2d:83:48:c7:12:ef:bf:6c:59:39:c3:48:54: f7:07:68:89:62:f2:82:bb:15:b3:4a:5b:cd:30:3f: 3f:0f:34:27:34:bf:0a:73:76:ff:b6:f1:04:b0:98: 4e:36:7d:8b:fd:31:a7:38:79:ae:8b:e6:7b:d5:89: 5d:6a:69:7d:b4:6d:2b:1c:a1:a6:78:3e:f8:65:01: 33:80:12:99:25:c7:1c:73:c8:e6:4c:75:96:46:ce: 98:c6:5b:e4:9a:d5:7d:25:3c:11:ab:61:32:10:44: 99:a3:d7:e1:80:99:42:35:ef:ad:22:a8:c6:5d:7c: ba:1d:00:87:0c:95:59:c9:d8:a4:f5:9f:30:69:5e: ae:02:51:20:b5:6a:5a:35:f7:83:b7:e4:cd:b3:9d: b5:81:9e:d2:99:3c:70:0f:d7:44:bc:ac:42:08:39: e2:7a:b8:6a:76:6a:b0:4d:68:17:81:2e:24:c2:5c: d2:9b:da:da:84:de:a4:87:43:cc:87:d1:9f:2d:d1: 2d:2e:52:09:99:1c:b9:37:a7:65:92:3e:7d:41:d8: ce:6d:96:6d:82:b1:6e:0e:76:3f:1d:1c:f4:e2:cb: 37:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:07:F9:5C:E2:42:15:9F:FD:73:2D:C1:82:E7:DE:83:30:77:3B:BF X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C6C9159E02CC11E6AA35863CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.28.36.0/22 203.177.255.0/24 Signature Algorithm: sha256WithRSAEncryption 70:da:be:e9:62:a8:35:47:87:86:7f:96:a4:3b:76:69:17:e2: 9f:33:96:a4:e9:95:42:95:68:a5:c7:f7:40:da:c8:b1:81:f2: bc:d1:92:ea:e7:52:7f:73:44:2b:ca:60:47:c6:85:c9:92:9d: 6e:72:de:21:70:4f:a7:e4:7f:7d:d3:58:f4:02:8f:a3:05:36: 18:01:56:ca:6c:96:4a:3e:f3:43:2f:58:1a:8e:ac:94:e0:17: 03:ee:76:8d:a7:4e:b7:22:29:86:62:8a:53:25:ab:f7:b3:e8: 77:b2:9d:a9:42:7b:c9:c1:f4:6c:c2:d3:95:ea:11:8c:7f:78: 68:9b:5b:46:a0:61:9d:a7:15:ad:e8:a0:eb:b5:a1:05:c2:07: db:07:38:b8:1f:46:f5:cd:01:9e:ed:ca:5f:d2:30:3d:d5:b0: 78:06:58:50:d0:8f:59:7e:f1:e7:9a:11:4c:64:f6:17:a0:d2: 90:c5:de:f0:46:80:fb:13:e6:f3:a2:55:6b:2a:92:0d:b1:f3: ce:f2:fe:5b:fb:b1:04:79:a7:f9:c3:bc:98:48:75:69:be:96: 8c:bb:24:3f:e4:11:49:fd:40:b6:6b:97:ec:bf:6e:60:c4:10: f7:79:33:42:3b:42:01:34:41:1f:52:f8:e5:5a:b0:aa:8e:c5: 35:b4:7c:7b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDE2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwZGViMC03MzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JIzFvrvknL+DWhfFKXkHzf3GousL6ixOEhzOMaLwi2DSMcS779sWTnDSFT3 B2iJYvKCuxWzSlvNMD8/DzQnNL8Kc3b/tvEEsJhONn2L/TGnOHmui+Z71Yldaml9 tG0rHKGmeD74ZQEzgBKZJcccc8jmTHWWRs6YxlvkmtV9JTwRq2EyEESZo9fhgJlC Ne+tIqjGXXy6HQCHDJVZydik9Z8waV6uAlEgtWpaNfeDt+TNs521gZ7SmTxwD9dE vKxCCDnierhqdmqwTWgXgS4kwlzSm9rahN6kh0PMh9GfLdEtLlIJmRy5N6dlkj59 QdjObZZtgrFuDnY/HRz04ss3dQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJEH+Vzi QhWf/XMtwYLn3oMwdzu/MB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQzZDOTE1OUUw MkNDMTFFNkFBMzU4NjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJ4HCQDBADLsf8wDQYJKoZIhvcNAQELBQADggEBAHDavuli qDVHh4Z/lqQ7dmkX4p8zlqTplUKVaKXH90DayLGB8rzRkurnUn9zRCvKYEfGhcmS nW5y3iFwT6fkf33TWPQCj6MFNhgBVspslko+80MvWBqOrJTgFwPudo2nTrciKYZi ilMlq/ez6HeynalCe8nB9GzC05XqEYx/eGibW0agYZ2nFa3ooOu1oQXCB9sHOLgf RvXNAZ7tyl/SMD3VsHgGWFDQj1l+8eeaEUxk9heg0pDF3vBGgPsT5vOiVWsqkg2x 887y/lv7sQR5p/nDvJhIdWm+loy7JD/kEUn9QLZrl+y/bmDEEPd5M0I7QgE0QR9S +OVasKqOxTW0fHs= -----END CERTIFICATE-----Generated at Wed Oct 22 21:25:34 2025 by rpki-client