$ rpki-client -vvf rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/AE51756A556B11EFA5FB1569C4F9AE02.roa File: AE51756A556B11EFA5FB1569C4F9AE02.roa (raw, json) Hash identifier: gEBFjX+SWG+/146/yxKK69X8BT9Y729yGD/qkGt7gqI= Subject key identifier: 2D:F7:DB:B1:3D:C9:C2:01:28:56:FB:46:5D:16:1F:28:30:3D:8F:CC Certificate issuer: /CN=A9173D12/serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2 Certificate serial: D2 Authority key identifier: 5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/AE51756A556B11EFA5FB1569C4F9AE02.roa Signing time: Wed 27 Aug 2025 06:12:45 +0000 ROA not before: Wed 27 Aug 2025 06:12:45 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 8075 IP address blocks: 203.21.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Sep 2025 06:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173D12, serialNumber=5A8B61BC53A324D7A2B4F4153D07746EC2A335D2 Validity Not Before: Aug 27 06:12:45 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68aea1dc-8444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:12:88:1d:e6:c3:8a:d1:6f:8c:19:e5:f4:65: 3a:b8:c1:a1:d4:e8:a7:66:df:21:1e:02:1f:84:75: af:86:4b:77:fa:c3:9b:c6:e9:24:46:b9:3e:50:03: 99:48:3e:73:91:9e:1b:ce:ec:d8:de:98:78:a4:af: df:5a:80:c2:95:d4:d2:2c:3a:2f:54:0d:a2:a6:1f: b2:ab:15:db:76:be:eb:7d:b7:57:aa:be:3f:54:68: d8:e1:fe:e6:ae:1f:60:9c:43:91:93:3a:d6:38:78: 15:c6:81:f4:87:ea:bc:e3:9b:d1:8c:a1:6f:85:53: 8e:80:0f:cb:78:d4:fc:71:26:d9:9d:d6:bb:75:f3: 9d:65:8c:9a:2c:9c:2c:7b:e2:26:62:f4:f7:aa:4a: 89:2c:b7:af:c4:c4:c3:91:52:0c:9c:34:b2:58:c5: 22:f5:ee:63:ba:37:5b:79:87:4b:60:8a:f2:e3:b1: f0:ed:31:fd:b9:fc:19:39:30:e1:ce:b6:c1:65:7e: 36:99:68:58:bf:f1:e9:fd:08:4c:d6:09:1b:81:67: 01:05:ba:44:ce:43:c5:9f:db:54:ac:6c:5c:37:30: f5:52:98:52:85:81:17:d3:d3:ad:ac:4f:85:59:46: 90:b3:43:ff:80:cd:71:3c:04:92:53:4a:87:8c:36: 37:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F7:DB:B1:3D:C9:C2:01:28:56:FB:46:5D:16:1F:28:30:3D:8F:CC X509v3 Authority Key Identifier: keyid:5A:8B:61:BC:53:A3:24:D7:A2:B4:F4:15:3D:07:74:6E:C2:A3:35:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/WothvFOjJNeitPQVPQd0bsKjNdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WothvFOjJNeitPQVPQd0bsKjNdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173D12/AB8934F252C411EF8DDFD53FC4F9AE02/AE51756A556B11EFA5FB1569C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.152.0/23 Signature Algorithm: sha256WithRSAEncryption a7:39:6b:94:74:9a:35:a0:7e:4c:d4:e9:57:6f:73:ce:65:9e: b9:7b:c9:6f:ed:f1:fd:28:90:7c:12:e2:3a:67:17:d0:7d:4a: af:1a:58:cc:b4:cc:c9:cf:83:c2:75:90:01:f6:10:41:4d:bb: 1e:5a:51:34:55:14:e5:41:18:71:4f:c1:78:5d:5b:17:5f:78: 19:ca:10:b5:b1:37:e0:e9:43:eb:15:af:20:1f:af:bf:27:8f: ad:7d:55:65:e2:28:71:9a:e0:8a:5a:45:1f:9b:19:3c:79:75: 43:88:c7:a6:a3:dd:66:21:c5:2e:2d:61:2d:a5:01:c8:09:a5: f6:2e:22:0d:7a:f4:84:ff:4c:3d:1d:55:d4:45:cf:c0:e0:4e: c0:bc:17:20:ec:cb:0e:fa:c0:c8:9c:14:7e:ef:6e:c5:f3:e4: 76:c7:af:f9:60:d5:40:66:cd:e3:0e:23:b4:30:0f:c8:c8:5c: a0:66:10:53:c9:eb:ee:9c:5d:f1:d0:65:c4:fd:85:87:55:47: 73:f5:bc:71:d0:49:9b:7c:4c:8f:0b:dd:58:b4:de:b7:59:32: 9e:b2:9e:85:77:74:c4:54:b1:ac:25:94:46:a3:5b:e5:6f:d5: 99:af:cc:2a:b7:be:56:0c:99:32:c8:f3:ed:25:01:02:a4:05: 7d:0a:0f:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEMTIxMTAvBgNVBAUTKDVBOEI2MUJDNTNBMzI0RDdBMkI0RjQxNTNEMDc3NDZF QzJBMzM1RDIwHhcNMjUwODI3MDYxMjQ1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlYTFkYy04NDQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RKIHebDitFvjBnl9GU6uMGh1OinZt8hHgIfhHWvhkt3+sObxukkRrk+UAOZ SD5zkZ4bzuzY3ph4pK/fWoDCldTSLDovVA2iph+yqxXbdr7rfbdXqr4/VGjY4f7m rh9gnEORkzrWOHgVxoH0h+q845vRjKFvhVOOgA/LeNT8cSbZnda7dfOdZYyaLJws e+ImYvT3qkqJLLevxMTDkVIMnDSyWMUi9e5jujdbeYdLYIry47Hw7TH9ufwZOTDh zrbBZX42mWhYv/Hp/QhM1gkbgWcBBbpEzkPFn9tUrGxcNzD1UphShYEX09OtrE+F WUaQs0P/gM1xPASSU0qHjDY3mwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC3327E9 ycIBKFb7Rl0WHygwPY/MMB8GA1UdIwQYMBaAFFqLYbxToyTXorT0FT0HdG7CozXS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0QxMi9BQjg5MzRGMjUy QzQxMUVGOERERkQ1M0ZDNEY5QUUwMi9Xb3RodkZPakpOZWl0UFFWUFFkMGJzS2pO ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dvdGh2Rk9qSk5laXRQUVZQUWQwYnNLak5kSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNEMTIvQUI4OTM0RjI1MkM0MTFFRjhEREZENTNGQzRGOUFFMDIvQUU1MTc1NkE1 NTZCMTFFRkE1RkIxNTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLFZgwDQYJKoZIhvcNAQELBQADggEBAKc5a5R0mjWgfkzU 6Vdvc85lnrl7yW/t8f0okHwS4jpnF9B9Sq8aWMy0zMnPg8J1kAH2EEFNux5aUTRV FOVBGHFPwXhdWxdfeBnKELWxN+DpQ+sVryAfr78nj619VWXiKHGa4IpaRR+bGTx5 dUOIx6aj3WYhxS4tYS2lAcgJpfYuIg169IT/TD0dVdRFz8DgTsC8FyDsyw76wMic FH7vbsXz5HbHr/lg1UBmzeMOI7QwD8jIXKBmEFPJ6+6cXfHQZcT9hYdVR3P1vHHQ SZt8TI8L3Vi03rdZMp6ynoV3dMRUsawllEajW+Vv1ZmvzCq3vlYMmTLI8+0lAQKk BX0KD9c= -----END CERTIFICATE-----Generated at Thu Sep 4 00:00:12 2025 by rpki-client