$ rpki-client -vvf rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/9D181A24D78211EC944E227FC4F9AE02.roa File: 9D181A24D78211EC944E227FC4F9AE02.roa (raw, json) Hash identifier: xNyXlLc3Ts7FB65YU9hZzt/4i9JW0/Xq/PKXKz2m6v8= Subject key identifier: C5:90:BF:E3:70:CE:E3:DB:39:D7:1D:7C:EF:85:50:E4:62:70:DF:26 Certificate issuer: /CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Certificate serial: 06EF Authority key identifier: AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/9D181A24D78211EC944E227FC4F9AE02.roa Signing time: Tue 02 Sep 2025 22:42:59 +0000 ROA not before: Tue 02 Sep 2025 22:42:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 8576 IP address blocks: 202.89.20.0/23 maxlen: 23 202.89.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 22:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1775 (0x6ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C07D, serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Validity Not Before: Sep 2 22:42:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b772f3-1bb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ff:f8:22:fd:47:1e:51:6c:de:91:75:60:e3: 69:d7:67:5d:06:30:e1:1c:c8:e2:3d:a9:2b:8a:fc: 61:13:7c:d5:26:0d:16:60:9a:c8:92:97:a2:1e:27: 8d:31:2c:1b:99:a1:7a:49:16:fe:34:aa:94:1c:dd: d5:73:05:31:96:b6:5f:cd:9d:ed:5f:fd:da:1d:f2: 19:43:41:ec:8b:2c:01:1d:96:32:67:b2:d9:ed:30: db:81:57:38:f0:46:f5:2e:c3:49:cf:c3:19:40:5b: 76:7a:d0:6e:e7:bb:0f:08:5f:2b:6c:3b:86:6a:d7: 2b:35:ac:be:f3:19:44:79:7d:7c:16:54:58:d0:d5: 22:9f:36:2b:1e:19:db:85:5c:49:73:cc:bf:21:00: 29:24:d5:0a:77:29:92:40:14:d4:ad:e4:6c:e8:49: 7e:ea:a4:d8:23:50:f0:10:c1:df:c2:79:f4:66:4c: 39:ce:55:cd:7a:c8:9d:e5:f0:d8:40:5a:8a:ba:2c: 1d:33:a5:89:25:df:71:f2:90:65:68:66:59:d9:a9: 38:5c:e7:b1:84:c8:71:53:63:e3:4e:11:91:cc:ed: 82:48:55:73:0a:98:5f:df:aa:c7:b2:c5:d5:23:6a: f2:9c:e3:90:9f:77:86:39:86:89:99:09:66:78:9e: 3b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:90:BF:E3:70:CE:E3:DB:39:D7:1D:7C:EF:85:50:E4:62:70:DF:26 X509v3 Authority Key Identifier: keyid:AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/9D181A24D78211EC944E227FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.89.20.0/23 202.89.23.0/24 Signature Algorithm: sha256WithRSAEncryption 6e:35:32:4b:3f:24:c3:07:96:8b:93:f0:b5:1f:9a:9c:31:1e: 25:a0:78:5c:cb:cf:f5:09:9a:44:83:33:39:0a:34:ef:d5:32: c7:08:32:2b:17:ee:f3:b6:98:e9:ac:1f:33:50:33:f5:dd:cd: 81:94:36:17:cc:14:9d:7c:4e:8e:01:2c:7a:f1:d7:57:b5:54: 8d:c5:28:e1:ce:eb:cb:b6:6e:8c:03:f5:a1:5e:32:ff:56:02: 68:f1:cf:e9:77:43:8b:6b:fc:28:22:9a:59:06:be:ea:51:da: 12:21:91:6d:fa:08:f7:25:ee:28:48:43:a1:79:73:3e:eb:0b: 46:f2:33:e9:a4:58:77:38:89:bf:dd:aa:9d:10:b9:c1:3a:20: a9:4a:1f:e2:5b:d8:e1:40:5f:9c:8e:55:d1:cc:f3:ee:43:1f: 6f:da:32:d1:1c:68:22:32:0b:71:9b:03:7b:ba:2b:47:b1:0c: a9:b5:ce:d0:3f:d8:2b:99:51:53:45:a5:06:f0:b7:15:9b:2e: a1:35:8a:05:01:3b:4b:6d:d5:98:72:e6:03:8b:81:1f:dc:2d: 38:02:40:f4:df:9a:ec:d5:a4:8e:50:c2:9d:c2:75:c8:8a:1b: 25:95:06:1e:6d:3b:d8:81:25:5b:e0:85:5a:ff:1c:8a:a2:98: 2d:55:ae:b4 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMwN0QxMTAvBgNVBAUTKEFBREFBM0M0NDExNjYwREY1QzM0NDhBOTFDODRBRTU3 NTdBMjZFMTMwHhcNMjUwOTAyMjI0MjU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NzJmMy0xYmI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsf/4Iv1HHlFs3pF1YONp12ddBjDhHMjiPakrivxhE3zVJg0WYJrIkpeiHieN MSwbmaF6SRb+NKqUHN3VcwUxlrZfzZ3tX/3aHfIZQ0HsiywBHZYyZ7LZ7TDbgVc4 8Eb1LsNJz8MZQFt2etBu57sPCF8rbDuGatcrNay+8xlEeX18FlRY0NUinzYrHhnb hVxJc8y/IQApJNUKdymSQBTUreRs6El+6qTYI1DwEMHfwnn0Zkw5zlXNesid5fDY QFqKuiwdM6WJJd9x8pBlaGZZ2ak4XOexhMhxU2PjThGRzO2CSFVzCphf36rHssXV I2rynOOQn3eGOYaJmQlmeJ47iwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMWQv+Nw zuPbOdcdfO+FUORicN8mMB8GA1UdIwQYMBaAFKrao8RBFmDfXDRIqRyErldXom4T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzA3RC9BQjA4OUYzNjZC ODcxMUVCQkQ4MjY2MUNDNEY5QUUwMi9xdHFqeEVFV1lOOWNORWlwSElTdVYxZWli aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F0cWp4RUVXWU45Y05FaXBISVN1VjFlaWJoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMwN0QvQUIwODlGMzY2Qjg3MTFFQkJEODI2NjFDQzRGOUFFMDIvOUQxODFBMjRE NzgyMTFFQzk0NEUyMjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHKWRQDBADKWRcwDQYJKoZIhvcNAQELBQADggEBAG41Mks/ JMMHlouT8LUfmpwxHiWgeFzLz/UJmkSDMzkKNO/VMscIMisX7vO2mOmsHzNQM/Xd zYGUNhfMFJ18To4BLHrx11e1VI3FKOHO68u2bowD9aFeMv9WAmjxz+l3Q4tr/Cgi mlkGvupR2hIhkW36CPcl7ihIQ6F5cz7rC0byM+mkWHc4ib/dqp0QucE6IKlKH+Jb 2OFAX5yOVdHM8+5DH2/aMtEcaCIyC3GbA3u6K0exDKm1ztA/2CuZUVNFpQbwtxWb LqE1igUBO0tt1Zhy5gOLgR/cLTgCQPTfmuzVpI5Qwp3CdciKGyWVBh5tO9iBJVvg hVr/HIqimC1VrrQ= -----END CERTIFICATE-----Generated at Tue Sep 9 18:53:24 2025 by rpki-client