$ rpki-client -vvf rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/97F15FD8068D11EF839A3054C4F9AE02.roa File: 97F15FD8068D11EF839A3054C4F9AE02.roa (raw, json) Hash identifier: vjgahSKHgAt0pKH9ZvyBQssVmzZCnj8JvOvCUHQg/Eg= Subject key identifier: 56:67:EC:F0:FB:05:93:11:63:72:7D:B2:A8:BC:45:A7:8C:31:8F:9A Certificate issuer: /CN=A9172BD3/serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Certificate serial: 010D Authority key identifier: 3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/97F15FD8068D11EF839A3054C4F9AE02.roa Signing time: Sat 31 May 2025 05:15:48 +0000 ROA not before: Sat 31 May 2025 05:15:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45442 IP address blocks: 202.14.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 04:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172BD3, serialNumber=3D7FEACB633A6B829323B1E9944D4AF98DDDA372 Validity Not Before: May 31 05:15:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a9083-6dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4b:b9:c1:13:ec:a6:f9:97:4e:1c:aa:07:10: 0d:fd:4a:83:84:51:7b:45:3b:b8:88:c1:ee:ff:bc: eb:20:6f:c3:d2:f6:de:f6:bc:18:b3:40:5f:6f:ff: 5f:ad:05:05:2d:f6:90:4c:b1:ac:1f:a1:8e:73:09: 96:13:d5:6a:c1:fb:eb:58:7e:7a:ca:8c:b0:b6:29: 6b:3e:84:4f:3e:9d:31:30:ca:29:0f:eb:08:66:c2: 1f:77:de:13:5d:c8:c5:84:07:70:01:42:3e:da:f1: 3c:04:45:ea:71:a5:8c:dd:75:17:86:27:a1:63:66: d3:86:a8:81:5d:f3:cd:ed:d1:66:6d:bf:68:59:40: 85:4a:16:ec:08:a5:7c:cb:a7:26:e8:57:c5:f3:de: 72:65:80:3f:16:ec:6c:7b:83:17:59:88:53:7f:44: 9c:f2:24:9c:53:16:37:ea:61:94:ec:24:90:65:0e: 74:15:c6:5e:a2:5c:9e:5f:4c:d7:59:c3:08:b4:f5: 8f:cf:b1:a0:0c:d5:bf:e7:92:d8:b9:f5:cd:12:87: 5b:f4:ee:a0:2a:cd:96:c7:d3:a9:c0:f8:9b:09:d2: 78:73:39:7e:60:10:19:72:ca:a0:d2:84:4b:8f:9f: 88:fe:0a:61:2e:57:31:f5:e7:d9:0e:7b:76:29:b2: e5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:67:EC:F0:FB:05:93:11:63:72:7D:B2:A8:BC:45:A7:8C:31:8F:9A X509v3 Authority Key Identifier: keyid:3D:7F:EA:CB:63:3A:6B:82:93:23:B1:E9:94:4D:4A:F9:8D:DD:A3:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/PX_qy2M6a4KTI7HplE1K-Y3do3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PX_qy2M6a4KTI7HplE1K-Y3do3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172BD3/64BFF14EB3F711EE92A47717C4F9AE02/97F15FD8068D11EF839A3054C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.14.81.0/24 Signature Algorithm: sha256WithRSAEncryption 61:a1:3e:79:b9:f1:7b:a2:a5:5e:01:59:1c:67:28:42:5a:d0: 28:26:90:bf:fb:02:69:4a:a0:d4:d2:6b:4a:6e:52:b6:d4:88: f9:b2:62:62:54:c2:91:56:b9:1f:cd:15:25:66:47:89:49:7e: c5:07:f4:87:23:94:8f:b2:e0:9f:13:38:94:06:c3:d1:d1:63: 6d:94:e8:77:2c:ff:45:76:69:a6:51:c5:4a:8e:70:7c:e1:16: ab:a0:82:35:58:a4:c8:6c:d6:65:65:be:60:f8:49:79:f5:6e: 77:a9:05:73:5f:a1:9d:97:c6:30:09:e1:83:8c:69:87:ea:d3: d4:37:b6:4c:3a:bc:57:8e:13:b9:c9:de:3b:eb:5f:32:3c:6e: 38:85:da:5b:c7:77:40:a9:2b:17:db:8d:e5:f0:4c:f4:67:34: 64:8b:86:ec:36:ad:4f:6d:50:ef:08:52:57:34:23:2d:09:5a: 04:ce:cf:f1:24:d4:b9:df:ca:cf:1b:c6:47:4d:67:f7:c0:da: d9:41:66:f9:e9:89:4a:04:c9:fd:63:1d:26:53:bc:fe:2f:e9: 2e:d5:74:63:d2:31:b5:5f:94:74:41:08:17:d7:51:96:a1:14: da:97:fe:9f:8c:33:4a:35:d5:7d:52:c3:e3:f1:ee:64:e1:59: ec:7c:60:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJCRDMxMTAvBgNVBAUTKDNEN0ZFQUNCNjMzQTZCODI5MzIzQjFFOTk0NEQ0QUY5 OEREREEzNzIwHhcNMjUwNTMxMDUxNTQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhOTA4My02ZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwUu5wRPspvmXThyqBxAN/UqDhFF7RTu4iMHu/7zrIG/D0vbe9rwYs0Bfb/9f rQUFLfaQTLGsH6GOcwmWE9VqwfvrWH56yoywtilrPoRPPp0xMMopD+sIZsIfd94T XcjFhAdwAUI+2vE8BEXqcaWM3XUXhiehY2bThqiBXfPN7dFmbb9oWUCFShbsCKV8 y6cm6FfF895yZYA/Fuxse4MXWYhTf0Sc8iScUxY36mGU7CSQZQ50FcZeolyeX0zX WcMItPWPz7GgDNW/55LYufXNEodb9O6gKs2Wx9OpwPibCdJ4czl+YBAZcsqg0oRL j5+I/gphLlcx9efZDnt2KbLlawIDAQABo4IClTCCApEwHQYDVR0OBBYEFFZn7PD7 BZMRY3J9sqi8RaeMMY+aMB8GA1UdIwQYMBaAFD1/6stjOmuCkyOx6ZRNSvmN3aNy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkJEMy82NEJGRjE0RUIz RjcxMUVFOTJBNDc3MTdDNEY5QUUwMi9QWF9xeTJNNmE0S1RJN0hwbEUxSy1ZM2Rv M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYX3F5Mk02YTRLVEk3SHBsRTFLLVkzZG8zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJCRDMvNjRCRkYxNEVCM0Y3MTFFRTkyQTQ3NzE3QzRGOUFFMDIvOTdGMTVGRDgw NjhEMTFFRjgzOUEzMDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKDlEwDQYJKoZIhvcNAQELBQADggEBAGGhPnm58XuipV4B WRxnKEJa0CgmkL/7AmlKoNTSa0puUrbUiPmyYmJUwpFWuR/NFSVmR4lJfsUH9Icj lI+y4J8TOJQGw9HRY22U6Hcs/0V2aaZRxUqOcHzhFquggjVYpMhs1mVlvmD4SXn1 bnepBXNfoZ2XxjAJ4YOMaYfq09Q3tkw6vFeOE7nJ3jvrXzI8bjiF2lvHd0CpKxfb jeXwTPRnNGSLhuw2rU9tUO8IUlc0Iy0JWgTOz/Ek1Lnfys8bxkdNZ/fA2tlBZvnp iUoEyf1jHSZTvP4v6S7VdGPSMbVflHRBCBfXUZahFNqX/p+MM0o11X1Sw+Px7mTh Wex8YJQ= -----END CERTIFICATE-----Generated at Tue Jun 3 23:52:13 2025 by rpki-client