$ rpki-client -vvf rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa File: 777F5CEE8AA611EA94BC0D13C4F9AE02.roa (raw, json) Hash identifier: lWY3HuGd5fIJF8Oe8hPwzrYQ3DgR98qCqY9Pi+cBvM8= Subject key identifier: 9F:AF:1C:36:10:AB:DE:A9:18:5A:A6:62:60:68:6E:BF:D5:9F:3F:A0 Certificate issuer: /CN=A9165568/serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Certificate serial: 1D09 Authority key identifier: 67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa Signing time: Thu 04 Sep 2025 08:31:10 +0000 ROA not before: Thu 04 Sep 2025 08:31:10 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 58470 IP address blocks: 119.30.105.0/24 maxlen: 24 119.30.116.0/22 maxlen: 24 119.73.59.0/24 maxlen: 24 2401::/36 maxlen: 36 2401:0:6f00::/40 maxlen: 40 2401:0:c000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:28:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7433 (0x1d09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165568, serialNumber=67097E492F73D6DBD31FA016A2D5B5B86A9B3FD8 Validity Not Before: Sep 4 08:31:10 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68b94e4e-38ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a2:20:38:e4:70:85:cf:ad:62:df:1d:d5:5e: 2d:51:01:95:7b:81:29:99:4e:07:4f:50:e4:a3:51: 2b:4b:89:9e:43:1d:ab:63:be:9f:e9:37:61:3f:d1: 32:f4:9f:66:70:66:fe:86:47:e7:6e:61:61:5b:49: 5b:04:ee:94:8d:f3:a6:1f:75:75:8d:3d:3e:5d:95: 9d:4f:33:84:48:95:fe:48:69:e3:55:63:a9:94:02: c3:48:bf:3e:39:59:f5:18:44:6d:79:48:f5:bb:b3: b6:38:cc:c3:f7:47:1b:ee:7e:41:3c:e8:a1:04:cd: 63:ce:f6:a7:11:d9:85:69:ae:25:88:53:b0:28:6d: eb:f0:7e:2a:6d:da:62:d3:84:0b:c7:fd:31:4a:0d: 03:60:da:a8:98:e7:aa:d0:00:ee:db:cc:43:5c:b2: ce:35:f9:3f:4d:c0:16:45:e0:f1:85:8f:c5:91:2a: 8d:d4:38:62:37:04:67:53:8a:69:e4:ff:75:e6:09: 5c:8f:9b:32:9f:e3:4b:45:fc:95:f6:af:73:c1:01: de:33:77:f2:08:07:27:9b:8f:03:4d:b9:d1:c1:f1: d9:92:ce:e3:a6:4d:c8:cc:b2:f6:d4:34:19:a5:a3: 4d:72:8e:cf:19:b4:46:66:5b:06:cc:61:6f:22:d0: a0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:AF:1C:36:10:AB:DE:A9:18:5A:A6:62:60:68:6E:BF:D5:9F:3F:A0 X509v3 Authority Key Identifier: keyid:67:09:7E:49:2F:73:D6:DB:D3:1F:A0:16:A2:D5:B5:B8:6A:9B:3F:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zwl-SS9z1tvTH6AWotW1uGqbP9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165568/BD1A95D21D8711E29BE3E6DF08B02CD2/777F5CEE8AA611EA94BC0D13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.30.105.0/24 119.30.116.0/22 119.73.59.0/24 IPv6: 2401::/36 2401:0:6f00::/40 2401:0:c000::/40 Signature Algorithm: sha256WithRSAEncryption 15:26:aa:e5:23:52:0b:11:04:da:da:90:c2:a7:a1:08:20:a8: fd:b7:5f:28:fa:c2:a0:77:8f:da:4a:c9:31:f2:93:75:ac:5d: 58:ca:fe:39:57:5b:35:c8:18:bd:40:f3:2a:c3:f0:d3:d1:f9: d7:08:1e:b0:12:54:3e:38:a0:6c:c5:7c:37:a0:f3:63:ea:9a: 9d:26:6d:ec:7d:e2:b9:43:ad:7e:2f:70:25:91:1a:ec:50:81: c7:69:f8:88:51:99:af:72:ec:9d:dc:9d:9e:45:b5:67:4c:b6: 14:a4:d6:95:71:cc:d4:46:95:6f:f2:3e:a1:0e:a8:ce:78:85: b8:26:65:d8:6c:56:35:c4:45:7d:ee:76:9f:6d:5e:c2:b9:ef: 8c:dc:3a:dc:0a:8c:c3:e8:4b:40:ca:87:11:63:94:df:b7:03: ca:9c:fc:19:8e:8f:d4:dd:d3:df:de:b9:6d:0b:f7:94:5d:68: 24:1e:ec:be:ff:d0:1a:ea:ab:80:de:98:79:3e:fd:d3:51:6f: 8b:49:f7:09:fb:af:a1:26:62:94:9d:cc:2b:23:1f:7c:b1:af: cc:5c:e2:6f:ed:e3:7e:61:1a:f0:e0:0f:87:4e:e5:de:01:63: 29:88:b7:44:fd:26:fb:92:d5:61:75:ba:76:d6:ed:9b:a0:34: c0:f5:21:90 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICHQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1NjgxMTAvBgNVBAUTKDY3MDk3RTQ5MkY3M0Q2REJEMzFGQTAxNkEyRDVCNUI4 NkE5QjNGRDgwHhcNMjUwOTA0MDgzMTEwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5NGU0ZS0zOGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnqIgOORwhc+tYt8d1V4tUQGVe4EpmU4HT1Dko1ErS4meQx2rY76f6TdhP9Ey 9J9mcGb+hkfnbmFhW0lbBO6UjfOmH3V1jT0+XZWdTzOESJX+SGnjVWOplALDSL8+ OVn1GERteUj1u7O2OMzD90cb7n5BPOihBM1jzvanEdmFaa4liFOwKG3r8H4qbdpi 04QLx/0xSg0DYNqomOeq0ADu28xDXLLONfk/TcAWReDxhY/FkSqN1DhiNwRnU4pp 5P915glcj5syn+NLRfyV9q9zwQHeM3fyCAcnm48DTbnRwfHZks7jpk3IzLL21DQZ paNNco7PGbRGZlsGzGFvItCgCwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFJ+vHDYQ q96pGFqmYmBobr/Vnz+gMB8GA1UdIwQYMBaAFGcJfkkvc9bb0x+gFqLVtbhqmz/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU2OC9CRDFBOTVEMjFE ODcxMUUyOUJFM0U2REYwOEIwMkNEMi9ad2wtU1M5ejF0dlRINkFXb3RXMXVHcWJQ OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p3bC1TUzl6MXR2VEg2QVdvdFcxdUdxYlA5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1NjgvQkQxQTk1RDIxRDg3MTFFMjlCRTNFNkRGMDhCMDJDRDIvNzc3RjVDRUU4 QUE2MTFFQTk0QkMwRDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MBgEAgABMBIDBAB3HmkDBAJ3HnQDBAB3STswHgQCAAIwGAMGBCQBAAAAAwYA JAEAAG8DBgAkAQAAwDANBgkqhkiG9w0BAQsFAAOCAQEAFSaq5SNSCxEE2tqQwqeh CCCo/bdfKPrCoHeP2krJMfKTdaxdWMr+OVdbNcgYvUDzKsPw09H51wgesBJUPjig bMV8N6DzY+qanSZt7H3iuUOtfi9wJZEa7FCBx2n4iFGZr3LsndydnkW1Z0y2FKTW lXHM1EaVb/I+oQ6ozniFuCZl2GxWNcRFfe52n21ewrnvjNw63AqMw+hLQMqHEWOU 37cDypz8GY6P1N3T3965bQv3lF1oJB7svv/QGuqrgN6YeT7901Fvi0n3CfuvoSZi lJ3MKyMffLGvzFzib+3jfmEa8OAPh07l3gFjKYi3RP0m+5LVYXW6dtbtm6A0wPUh kA== -----END CERTIFICATE-----Generated at Tue Sep 9 13:57:55 2025 by rpki-client