$ rpki-client -vvf rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/A8306EA22D6911EC9F557316C4F9AE02.roa File: A8306EA22D6911EC9F557316C4F9AE02.roa (raw, json) Hash identifier: rE1TXLdPZcY3h9jlnYDyq1t/H9nQEEAEe+EgSWZL+Ds= Subject key identifier: 87:12:6B:15:FF:E8:01:D0:8B:C8:FC:BA:C6:7A:8A:DC:B6:FE:33:E9 Certificate issuer: /CN=A9180323/serialNumber=D70E8EF80F3587EF902896D8B30DCB0B6EB339AF Certificate serial: 34C0 Authority key identifier: D7:0E:8E:F8:0F:35:87:EF:90:28:96:D8:B3:0D:CB:0B:6E:B3:39:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/A8306EA22D6911EC9F557316C4F9AE02.roa Signing time: Thu 04 Sep 2025 14:50:51 +0000 ROA not before: Thu 04 Sep 2025 14:50:51 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38325 IP address blocks: 113.20.144.0/21 maxlen: 22 113.20.144.0/24 maxlen: 24 113.20.145.0/24 maxlen: 24 113.20.146.0/24 maxlen: 24 113.20.147.0/24 maxlen: 24 113.20.148.0/24 maxlen: 24 113.20.149.0/24 maxlen: 24 113.20.150.0/24 maxlen: 24 113.20.151.0/24 maxlen: 24 122.252.24.0/21 maxlen: 22 122.252.24.0/24 maxlen: 24 122.252.25.0/24 maxlen: 24 122.252.26.0/24 maxlen: 24 122.252.27.0/24 maxlen: 24 122.252.28.0/24 maxlen: 24 122.252.29.0/24 maxlen: 24 122.252.30.0/24 maxlen: 24 122.252.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.crl rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:46:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13504 (0x34c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180323, serialNumber=D70E8EF80F3587EF902896D8B30DCB0B6EB339AF Validity Not Before: Sep 4 14:50:51 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b9a74b-f466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0f:b9:27:49:50:7e:ae:e8:7e:36:4f:3c:c3: da:de:43:f4:b9:b4:4d:04:ec:7c:37:57:87:5e:1b: 25:91:82:2e:64:f5:21:e4:f7:3b:eb:3a:1b:44:28: 70:4b:6f:96:3f:67:c8:40:2e:3d:06:1d:ce:42:c4: 4c:ba:2c:f1:77:a9:49:9e:a4:66:95:23:8c:86:d7: a9:e0:f4:bb:6d:dd:36:8a:84:aa:c0:70:ad:f9:e6: e6:09:3d:fc:d1:d8:96:1d:90:ee:ff:a6:aa:4f:1f: 62:3d:7d:9c:ce:de:cb:68:9b:15:ab:e8:72:f0:5e: 84:d3:08:0c:28:34:7a:74:8c:f6:07:fc:b5:46:f6: e0:8a:33:f5:a6:90:ca:25:a6:8b:d6:f8:98:cb:ac: 89:9b:6d:2e:14:25:bb:c6:2a:6d:79:5b:a8:e3:b4: 70:3b:45:98:46:5c:9c:a9:63:68:0f:86:52:ea:cc: f6:af:7c:84:a9:b9:87:8f:ad:7c:de:f4:7f:3d:b3: b1:eb:be:a7:96:e0:8a:89:96:85:ca:a7:9d:ea:e3: 46:71:86:cd:cf:f9:d9:bf:f8:59:18:61:98:01:12: 78:50:47:97:cd:b5:87:3b:32:f8:7f:07:cc:74:4d: 46:f4:c0:aa:0d:de:45:b5:b6:ab:2c:e5:47:22:ad: 35:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:12:6B:15:FF:E8:01:D0:8B:C8:FC:BA:C6:7A:8A:DC:B6:FE:33:E9 X509v3 Authority Key Identifier: keyid:D7:0E:8E:F8:0F:35:87:EF:90:28:96:D8:B3:0D:CB:0B:6E:B3:39:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/1w6O-A81h--QKJbYsw3LC26zOa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1w6O-A81h--QKJbYsw3LC26zOa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180323/4EB9426C1D9311E2BF78D8F608B02CD2/A8306EA22D6911EC9F557316C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.20.144.0/21 122.252.24.0/21 Signature Algorithm: sha256WithRSAEncryption 98:a2:dd:3e:e7:44:c9:6d:cf:e4:e8:63:e9:6f:b5:c7:60:66: b6:55:b2:cc:88:c2:bd:fd:41:28:db:60:35:cc:da:21:7a:b2: 03:a4:3c:9a:84:d3:c1:76:93:e3:ed:af:94:86:19:71:55:f3: 07:11:35:d1:f7:e4:91:9b:5b:86:08:f6:a0:35:6f:94:d7:d7: 31:8d:ba:2b:78:71:6e:1c:5c:b7:10:3a:b2:2a:9b:3d:6b:bd: 0f:fc:08:b8:63:a4:0d:db:93:68:7e:c4:cb:77:70:da:42:b1: 42:ff:7c:74:cc:3c:54:f0:8f:ed:0d:4a:6f:f4:37:ce:78:7e: c6:0a:44:0d:14:c4:05:23:bd:7e:0a:87:66:7e:7e:1f:32:73: bc:8e:19:ac:b8:c8:e8:1d:d1:78:53:1d:ae:ea:54:45:83:2d: 22:72:49:a5:25:e8:6d:24:81:00:70:7c:00:fc:d4:a2:12:5d: 74:c2:0c:75:25:36:72:f1:98:7b:b1:d1:96:2d:7f:d1:68:d9: 86:1e:95:41:c4:4f:70:3b:be:6f:22:96:54:15:98:d7:e2:1c: 3e:a5:98:06:0e:be:b1:60:82:82:36:bd:e5:f5:9f:05:51:04: e2:51:d4:ab:5b:e1:e8:40:d5:7e:96:6a:2a:04:36:90:f8:fe: 79:9e:3c:59 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzMjMxMTAvBgNVBAUTKEQ3MEU4RUY4MEYzNTg3RUY5MDI4OTZEOEIzMERDQjBC NkVCMzM5QUYwHhcNMjUwOTA0MTQ1MDUxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5YTc0Yi1mNDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQ+5J0lQfq7ofjZPPMPa3kP0ubRNBOx8N1eHXhslkYIuZPUh5Pc76zobRChw S2+WP2fIQC49Bh3OQsRMuizxd6lJnqRmlSOMhtep4PS7bd02ioSqwHCt+ebmCT38 0diWHZDu/6aqTx9iPX2czt7LaJsVq+hy8F6E0wgMKDR6dIz2B/y1RvbgijP1ppDK JaaL1viYy6yJm20uFCW7xipteVuo47RwO0WYRlycqWNoD4ZS6sz2r3yEqbmHj618 3vR/PbOx676nluCKiZaFyqed6uNGcYbNz/nZv/hZGGGYARJ4UEeXzbWHOzL4fwfM dE1G9MCqDd5FtbarLOVHIq017QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIcSaxX/ 6AHQi8j8usZ6ity2/jPpMB8GA1UdIwQYMBaAFNcOjvgPNYfvkCiW2LMNywtuszmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDMyMy80RUI5NDI2QzFE OTMxMUUyQkY3OEQ4RjYwOEIwMkNEMi8xdzZPLUE4MWgtLVFLSmJZc3czTEMyNnpP YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF3Nk8tQTgxaC0tUUtKYllzdzNMQzI2ek9hOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzMjMvNEVCOTQyNkMxRDkzMTFFMkJGNzhEOEY2MDhCMDJDRDIvQTgzMDZFQTIy RDY5MTFFQzlGNTU3MzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANxFJADBAN6/BgwDQYJKoZIhvcNAQELBQADggEBAJii3T7n RMltz+ToY+lvtcdgZrZVssyIwr39QSjbYDXM2iF6sgOkPJqE08F2k+Ptr5SGGXFV 8wcRNdH35JGbW4YI9qA1b5TX1zGNuit4cW4cXLcQOrIqmz1rvQ/8CLhjpA3bk2h+ xMt3cNpCsUL/fHTMPFTwj+0NSm/0N854fsYKRA0UxAUjvX4Kh2Z+fh8yc7yOGay4 yOgd0XhTHa7qVEWDLSJySaUl6G0kgQBwfAD81KISXXTCDHUlNnLxmHux0ZYtf9Fo 2YYelUHET3A7vm8illQVmNfiHD6lmAYOvrFggoI2veX1nwVRBOJR1Ktb4ehA1X6W aioENpD4/nmePFk= -----END CERTIFICATE-----Generated at Mon Sep 8 09:56:49 2025 by rpki-client