$ rpki-client -vvf rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/D9624ED082FD11F088ACD36DC4F9AE02.roa File: D9624ED082FD11F088ACD36DC4F9AE02.roa (raw, json) Hash identifier: HOuEpvKZ0GdEdY0npcf+ynIRcDCsB00lu6CmVmYa5Zs= Subject key identifier: F8:03:B6:11:0C:FF:31:D8:CB:58:A6:9D:53:41:2E:1D:DF:2A:38:E9 Certificate issuer: /CN=A9176E5A/serialNumber=B1524FBE465FE4FB99FE611DFC040F510C1168FE Certificate serial: 02 Authority key identifier: B1:52:4F:BE:46:5F:E4:FB:99:FE:61:1D:FC:04:0F:51:0C:11:68:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/D9624ED082FD11F088ACD36DC4F9AE02.roa Signing time: Wed 27 Aug 2025 04:25:23 +0000 ROA not before: Wed 27 Aug 2025 04:25:23 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 1221 IP address blocks: 203.14.116.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.crl rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 08:38:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176E5A, serialNumber=B1524FBE465FE4FB99FE611DFC040F510C1168FE Validity Not Before: Aug 27 04:25:23 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68ae88b3-20e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:82:e5:e0:46:3c:23:83:3d:c1:41:d7:fa:50: 33:16:bf:6e:ba:07:10:ef:50:4d:3a:2f:eb:89:80: 62:5e:7f:a5:1e:30:56:9a:4f:b6:a3:f8:e5:a1:ed: c8:a0:9e:f9:d6:13:73:ad:98:cb:af:38:ea:59:fb: cb:e4:85:65:8d:70:ee:16:3d:5e:0f:57:6d:aa:3f: 6c:bd:93:bb:c3:b8:11:7b:e3:ca:42:02:74:7b:ab: 8b:26:51:a8:21:db:f8:8b:98:c6:7f:88:c5:87:94: 4c:f1:64:37:64:4d:36:0a:76:1e:2d:c5:1d:44:3f: 45:6c:f9:d0:b0:ad:05:56:5b:89:7c:de:1c:56:16: e1:f9:fa:9a:6a:e4:98:c0:38:b6:63:07:6f:60:20: 3a:bc:35:f5:25:cc:35:db:0f:e1:24:a3:b3:46:72: 7d:ba:6d:d1:61:a3:0b:57:a6:49:9d:cc:f5:53:c5: 87:97:9d:f7:7e:89:8d:4c:82:a0:78:2d:d7:27:83: 49:12:0f:a5:bb:cd:03:0f:8d:bb:9c:d9:8b:fc:ce: 45:8a:a9:aa:fc:06:6d:f7:fb:d6:03:50:18:9b:ce: b4:9b:29:c4:fa:f8:74:61:02:0c:ba:fa:83:e7:b4: f5:c0:b4:cd:a3:ba:35:71:0e:60:35:1e:92:13:17: 0d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:03:B6:11:0C:FF:31:D8:CB:58:A6:9D:53:41:2E:1D:DF:2A:38:E9 X509v3 Authority Key Identifier: keyid:B1:52:4F:BE:46:5F:E4:FB:99:FE:61:1D:FC:04:0F:51:0C:11:68:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sVJPvkZf5PuZ_mEd_AQPUQwRaP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176E5A/8037983882FD11F0AE0F876AC4F9AE02/D9624ED082FD11F088ACD36DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.14.116.0/23 Signature Algorithm: sha256WithRSAEncryption 65:84:68:6d:dd:4f:41:ad:a0:21:17:a9:05:f2:29:f8:99:db: 57:51:40:b8:a2:9e:e8:76:03:a7:69:54:b7:9b:b8:23:fa:61: 4c:24:86:92:48:3d:06:3c:bb:89:66:e5:1e:3e:62:45:62:d4: 5e:12:35:ac:0a:3c:74:98:e5:ff:13:36:91:cb:5e:43:5b:e7: b5:2a:cc:d1:1e:2c:1d:ef:5c:09:da:c7:f2:0c:f9:d3:bb:a5: 09:ae:c0:5c:f0:9f:bf:5b:18:85:58:3f:54:08:7e:9d:9e:63: 1d:78:b0:4f:6c:68:e5:14:d4:8e:1f:2f:79:9f:fb:fb:9e:e2: 49:c0:0c:8a:ea:a9:d6:7d:ac:22:66:41:9a:cf:5c:12:8e:d1: 0e:6a:ec:3c:f2:f2:83:2f:3b:83:b6:0d:4b:21:59:47:f2:7e: a3:20:40:21:95:b1:e1:5f:6e:6b:be:21:7b:98:bb:ec:73:f6: 2e:f6:b5:01:3a:f6:6f:a7:63:3b:f8:94:5a:7a:dc:d2:04:3c: c4:a8:c2:2c:3b:d5:02:5b:e3:ce:d9:50:0b:f4:1e:b2:26:24: 24:4f:40:a5:7e:92:40:21:11:82:94:64:c4:08:e2:2f:62:58: 47:ec:fb:02:e9:af:50:bb:44:90:84:65:b3:a4:0d:fa:4e:9f: aa:28:3b:c8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkU1QTExMC8GA1UEBRMoQjE1MjRGQkU0NjVGRTRGQjk5RkU2MTFERkMwNDBGNTEw QzExNjhGRTAeFw0yNTA4MjcwNDI1MjNaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YWU4OGIzLTIwZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoguXgRjwjgz3BQdf6UDMWv266BxDvUE06L+uJgGJef6UeMFaaT7aj+OWh7cig nvnWE3OtmMuvOOpZ+8vkhWWNcO4WPV4PV22qP2y9k7vDuBF748pCAnR7q4smUagh 2/iLmMZ/iMWHlEzxZDdkTTYKdh4txR1EP0Vs+dCwrQVWW4l83hxWFuH5+ppq5JjA OLZjB29gIDq8NfUlzDXbD+Eko7NGcn26bdFhowtXpkmdzPVTxYeXnfd+iY1MgqB4 Ldcng0kSD6W7zQMPjbuc2Yv8zkWKqar8Bm33+9YDUBibzrSbKcT6+HRhAgy6+oPn tPXAtM2jujVxDmA1HpITFw0XAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU+AO2EQz/ MdjLWKadU0EuHd8qOOkwHwYDVR0jBBgwFoAUsVJPvkZf5PuZ/mEd/AQPUQwRaP4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2RTVBLzgwMzc5ODM4ODJG RDExRjBBRTBGODc2QUM0RjlBRTAyL3NWSlB2a1pmNVB1Wl9tRWRfQVFQVVF3UmFQ NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc1ZKUHZrWmY1UHVaX21FZF9BUVBVUXdSYVA0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkU1QS84MDM3OTgzODgyRkQxMUYwQUUwRjg3NkFDNEY5QUUwMi9EOTYyNEVEMDgy RkQxMUYwODhBQ0QzNkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsOdDANBgkqhkiG9w0BAQsFAAOCAQEAZYRobd1PQa2gIRep BfIp+JnbV1FAuKKe6HYDp2lUt5u4I/phTCSGkkg9Bjy7iWblHj5iRWLUXhI1rAo8 dJjl/xM2kcteQ1vntSrM0R4sHe9cCdrH8gz507ulCa7AXPCfv1sYhVg/VAh+nZ5j HXiwT2xo5RTUjh8veZ/7+57iScAMiuqp1n2sImZBms9cEo7RDmrsPPLygy87g7YN SyFZR/J+oyBAIZWx4V9ua74he5i77HP2Lva1ATr2b6djO/iUWnrc0gQ8xKjCLDvV AlvjztlQC/QesiYkJE9ApX6SQCERgpRkxAjiL2JYR+z7AumvULtEkIRls6QN+k6f qig7yA== -----END CERTIFICATE-----Generated at Sat Sep 6 11:01:54 2025 by rpki-client