$ rpki-client -vvf rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/71B685ACF7E511EEBC67981CC4F9AE02.roa File: 71B685ACF7E511EEBC67981CC4F9AE02.roa (raw, json) Hash identifier: hnnfq71rK1ZIuAmUqIiiCmmEhX9P+SlsIzqCbG4sw9Q= Subject key identifier: 61:F9:AB:D1:B1:5E:D1:EA:52:30:A6:F4:76:C6:D1:B2:60:B4:81:D7 Certificate issuer: /CN=A918A469/serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Certificate serial: 0105 Authority key identifier: 2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/71B685ACF7E511EEBC67981CC4F9AE02.roa Signing time: Fri 29 Aug 2025 05:54:58 +0000 ROA not before: Fri 29 Aug 2025 05:54:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 7637 IP address blocks: 202.137.64.0/19 maxlen: 19 203.10.72.0/23 maxlen: 23 203.17.215.0/24 maxlen: 24 203.27.47.0/24 maxlen: 24 203.30.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 05:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A469, serialNumber=2B2ADAC59ECCF6384FC5E363F067C3B9E29E99A1 Validity Not Before: Aug 29 05:54:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b140b2-56cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:f2:c2:67:3d:78:d4:a2:5f:73:db:ff:20:95: bd:86:9c:8a:95:a5:0c:c8:5b:d0:55:fd:6a:5b:41: 3e:06:2e:7a:e7:db:57:a5:d8:a7:44:26:18:08:06: a5:f0:1e:cd:db:b6:3f:ef:5d:b9:98:c0:01:dc:63: 0f:24:2f:35:b2:a6:88:3c:9d:1f:b5:6b:24:a5:cc: 30:bb:0a:02:65:42:4d:a1:95:5b:5e:3a:70:58:29: 34:9a:a6:1c:1b:49:77:49:55:75:de:7d:27:32:9c: 74:ba:a1:6b:be:42:fc:a6:f1:50:1d:64:6f:8a:4b: 80:8f:85:7d:d7:8c:03:96:49:11:a1:f3:6c:8d:03: fa:ad:33:2a:66:6d:23:03:3e:13:36:ad:9f:3b:43: 12:00:fb:b1:7d:6f:77:14:40:f5:1c:82:c7:a8:dd: 13:86:5b:f1:d7:d2:f0:4a:6c:7a:65:45:67:c5:af: 28:21:7a:f9:65:91:a3:fc:9b:9c:d1:53:df:e8:d0: c8:0d:de:f2:75:11:76:b0:35:65:fe:a4:fd:bb:83: 4d:b8:01:f9:43:c7:a0:4b:93:13:f7:46:ca:49:dc: 6a:33:73:9f:e8:ad:f8:e2:9e:93:5d:e2:cc:da:32: b0:09:5d:21:96:b8:71:2f:50:3b:ed:41:5a:f8:51: 95:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:F9:AB:D1:B1:5E:D1:EA:52:30:A6:F4:76:C6:D1:B2:60:B4:81:D7 X509v3 Authority Key Identifier: keyid:2B:2A:DA:C5:9E:CC:F6:38:4F:C5:E3:63:F0:67:C3:B9:E2:9E:99:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/KyraxZ7M9jhPxeNj8GfDueKemaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KyraxZ7M9jhPxeNj8GfDueKemaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A469/FF94E712F7E311EEB9A1291AC4F9AE02/71B685ACF7E511EEBC67981CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.137.64.0/19 203.10.72.0/23 203.17.215.0/24 203.27.47.0/24 203.30.97.0/24 Signature Algorithm: sha256WithRSAEncryption 38:d1:5b:48:c8:1b:ec:fe:f1:3c:14:49:62:f1:ed:56:cc:a6: 98:65:f0:c3:fe:50:5b:bc:bc:64:4a:a2:41:a6:99:57:10:42: 37:f5:1a:cd:fe:14:72:67:dc:b2:64:4d:46:00:52:3f:f5:3b: 6c:91:aa:05:cb:03:b7:89:dc:d1:76:c0:6b:cf:88:a9:20:60: d5:5b:f5:4d:0c:7d:26:77:66:a8:28:40:c4:83:dd:57:49:31: 67:80:c0:55:dd:df:4d:3c:2f:6e:11:cb:ec:8b:2b:d9:d4:7b: 1c:f2:ea:6f:24:55:40:d6:f3:83:17:db:1d:3a:bb:1a:85:35: 76:3e:3f:69:1f:3f:08:ec:44:00:22:2a:19:50:bb:d9:b2:b7: 21:57:a5:f4:33:e9:b4:58:46:18:4a:4d:86:6f:b3:c9:14:bf: 50:59:7f:eb:bf:a4:15:68:6c:51:b3:4e:ad:65:b1:67:f1:59: 67:21:19:b0:64:83:77:06:b9:c0:a2:11:68:c5:d7:fc:36:66: ff:00:31:d5:39:d8:69:67:29:1f:57:c3:45:a0:50:d9:90:2d: b0:04:b4:ed:a8:c6:ec:ee:f1:c7:07:57:d2:ee:c2:42:16:21: a8:af:b8:c2:62:99:32:98:85:da:40:70:c3:ca:20:3b:3a:aa: cc:1d:aa:86 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE0NjkxMTAvBgNVBAUTKDJCMkFEQUM1OUVDQ0Y2Mzg0RkM1RTM2M0YwNjdDM0I5 RTI5RTk5QTEwHhcNMjUwODI5MDU1NDU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxNDBiMi01NmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyfLCZz141KJfc9v/IJW9hpyKlaUMyFvQVf1qW0E+Bi5659tXpdinRCYYCAal 8B7N27Y/7125mMAB3GMPJC81sqaIPJ0ftWskpcwwuwoCZUJNoZVbXjpwWCk0mqYc G0l3SVV13n0nMpx0uqFrvkL8pvFQHWRvikuAj4V914wDlkkRofNsjQP6rTMqZm0j Az4TNq2fO0MSAPuxfW93FED1HILHqN0Thlvx19LwSmx6ZUVnxa8oIXr5ZZGj/Juc 0VPf6NDIDd7ydRF2sDVl/qT9u4NNuAH5Q8egS5MT90bKSdxqM3Of6K344p6TXeLM 2jKwCV0hlrhxL1A77UFa+FGVmwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFGH5q9Gx XtHqUjCm9HbG0bJgtIHXMB8GA1UdIwQYMBaAFCsq2sWezPY4T8XjY/Bnw7ninpmh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTQ2OS9GRjk0RTcxMkY3 RTMxMUVFQjlBMTI5MUFDNEY5QUUwMi9LeXJheFo3TTlqaFB4ZU5qOEdmRHVlS2Vt YUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t5cmF4WjdNOWpoUHhlTmo4R2ZEdWVLZW1hRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE0NjkvRkY5NEU3MTJGN0UzMTFFRUI5QTEyOTFBQzRGOUFFMDIvNzFCNjg1QUNG N0U1MTFFRUJDNjc5ODFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAXKiUADBAHLCkgDBADLEdcDBADLGy8DBADLHmEwDQYJKoZI hvcNAQELBQADggEBADjRW0jIG+z+8TwUSWLx7VbMpphl8MP+UFu8vGRKokGmmVcQ Qjf1Gs3+FHJn3LJkTUYAUj/1O2yRqgXLA7eJ3NF2wGvPiKkgYNVb9U0MfSZ3Zqgo QMSD3VdJMWeAwFXd3008L24Ry+yLK9nUexzy6m8kVUDW84MX2x06uxqFNXY+P2kf PwjsRAAiKhlQu9mytyFXpfQz6bRYRhhKTYZvs8kUv1BZf+u/pBVobFGzTq1lsWfx WWchGbBkg3cGucCiEWjF1/w2Zv8AMdU52GlnKR9Xw0WgUNmQLbAEtO2oxuzu8ccH V9LuwkIWIaivuMJimTKYhdpAcMPKIDs6qswdqoY= -----END CERTIFICATE-----Generated at Fri Sep 19 10:37:01 2025 by rpki-client