$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9067F6746F3211EF8F5EFB20C4F9AE02.roa File: 9067F6746F3211EF8F5EFB20C4F9AE02.roa (raw, json) Hash identifier: RqZ70A3hEEaJCi1AIYIvzKrDKMGhuHpCuqVixNHeLHs= Subject key identifier: B4:60:7D:06:11:9F:B6:AA:E6:C1:D7:F3:B9:27:5E:B5:F2:14:2F:AC Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 085A Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9067F6746F3211EF8F5EFB20C4F9AE02.roa Signing time: Tue 02 Sep 2025 21:12:31 +0000 ROA not before: Tue 02 Sep 2025 21:12:31 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133159 IP address blocks: 203.56.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2138 (0x85a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933, serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Sep 2 21:12:31 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b75dbf-ae65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:48:34:73:17:ad:f4:5a:be:a2:18:89:78:2b: d2:4e:39:94:ef:ff:48:61:9a:2e:3e:7c:9f:2f:35: f4:a8:17:bb:28:3e:33:08:24:78:88:b4:da:16:d2: 71:e0:1f:ff:1c:bd:90:04:bd:3b:35:25:c2:95:20: b3:60:32:c9:4c:60:c0:a7:1a:84:22:81:c0:29:87: 91:6c:bb:42:f1:d4:2d:d7:d6:a0:33:b4:c4:ea:bc: 82:d5:55:b2:e3:0d:b6:fa:a9:26:d7:ef:df:79:63: 9a:bd:f3:f9:ae:f6:28:b8:49:f1:48:42:6e:28:68: 55:fb:fe:6a:2a:f3:23:f2:14:ec:5c:b9:99:0b:43: cb:17:e7:e9:6d:8a:69:fb:6f:7a:df:b6:a8:f4:a9: 86:0e:70:27:3a:97:91:08:a4:18:68:d6:1a:5c:8b: fc:48:d6:25:50:b7:08:ce:bf:f4:a8:34:f1:a3:60: 59:82:37:ed:56:e6:d4:66:8f:35:ee:20:23:db:6d: fe:34:36:cd:63:ac:9f:d0:bf:fa:91:22:0e:64:c5: b4:b2:f1:b3:c9:ac:b6:fa:fa:78:e2:f4:b0:30:94: 75:3d:61:a6:25:ba:28:fe:66:77:a1:c4:42:58:ad: 58:f3:bf:8b:09:d1:2f:0c:91:43:db:27:4d:bb:d8: aa:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:60:7D:06:11:9F:B6:AA:E6:C1:D7:F3:B9:27:5E:B5:F2:14:2F:AC X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9067F6746F3211EF8F5EFB20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.56.35.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:34:95:2b:a8:9c:33:bc:a1:c4:9f:fb:ac:69:3f:45:85:9a: 85:35:b7:88:78:05:c2:9d:ed:3c:48:12:1c:49:39:a9:e5:a6: fa:eb:72:38:56:c7:a4:43:44:6a:78:7a:75:1a:7f:4e:a8:b0: 60:b0:ce:a8:77:2f:29:8a:cf:3b:8e:95:e0:fc:48:ae:71:a0: b0:e4:80:17:77:69:30:b9:3b:24:55:a0:36:17:d3:ca:7a:40: 99:be:95:7b:d6:1f:6d:7d:c1:0f:d6:2a:7d:01:a6:9b:0e:27: 4d:be:e7:00:d9:2e:59:ed:0f:6b:87:27:85:f9:83:82:e2:ec: 41:eb:02:02:34:36:04:3a:cc:3c:40:1c:31:79:62:f3:56:1d: 09:bb:2e:57:4a:e0:35:23:23:ca:a9:4b:34:34:9b:da:05:e7: a1:f0:e3:4b:ed:ab:5a:26:9c:40:63:77:cc:98:4e:66:83:cf: 7a:f1:ee:75:c0:7c:d2:fa:3f:be:5a:49:76:89:75:97:57:f8: 87:da:b1:a7:0a:63:df:15:84:97:e1:2a:58:e4:64:fe:f7:18: c9:73:23:0c:dd:cc:3f:e7:1c:b7:71:5a:51:6b:73:6b:a2:c7: f1:db:52:ae:73:84:35:08:f4:99:e4:9f:a0:f1:c2:52:5c:d9: c7:80:22:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCFowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjUwOTAyMjExMjMxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NWRiZi1hZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0g0cxet9Fq+ohiJeCvSTjmU7/9IYZouPnyfLzX0qBe7KD4zCCR4iLTaFtJx 4B//HL2QBL07NSXClSCzYDLJTGDApxqEIoHAKYeRbLtC8dQt19agM7TE6ryC1VWy 4w22+qkm1+/feWOavfP5rvYouEnxSEJuKGhV+/5qKvMj8hTsXLmZC0PLF+fpbYpp +29637ao9KmGDnAnOpeRCKQYaNYaXIv8SNYlULcIzr/0qDTxo2BZgjftVubUZo81 7iAj223+NDbNY6yf0L/6kSIOZMW0svGzyay2+vp44vSwMJR1PWGmJboo/mZ3ocRC WK1Y87+LCdEvDJFD2ydNu9iqjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLRgfQYR n7aq5sHX87knXrXyFC+sMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M5MzMvRkQ5NTIxQjJEQzU3MTFFQTgzRThFQzY3QzRGOUFFMDIvOTA2N0Y2NzQ2 RjMyMTFFRjhGNUVGQjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLOCMwDQYJKoZIhvcNAQELBQADggEBAH80lSuonDO8ocSf +6xpP0WFmoU1t4h4BcKd7TxIEhxJOanlpvrrcjhWx6RDRGp4enUaf06osGCwzqh3 LymKzzuOleD8SK5xoLDkgBd3aTC5OyRVoDYX08p6QJm+lXvWH219wQ/WKn0BppsO J02+5wDZLlntD2uHJ4X5g4Li7EHrAgI0NgQ6zDxAHDF5YvNWHQm7LldK4DUjI8qp SzQ0m9oF56Hw40vtq1omnEBjd8yYTmaDz3rx7nXAfNL6P75aSXaJdZdX+IfasacK Y98VhJfhKljkZP73GMlzIwzdzD/nHLdxWlFrc2uix/HbUq5zhDUI9Jnkn6DxwlJc 2ceAIuc= -----END CERTIFICATE-----Generated at Sat Sep 6 14:26:05 2025 by rpki-client