$ rpki-client -vvf rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/1576F19ABC5C11EB831EC25AC4F9AE02.roa File: 1576F19ABC5C11EB831EC25AC4F9AE02.roa (raw, json) Hash identifier: JTt1lcwJJ/VlJRR1mPyJ+td5e5c2alDgtGmRBoxCA5o= Subject key identifier: F6:10:E2:48:8F:9A:93:2C:0F:00:1E:9E:F4:74:74:93:C9:71:AE:10 Certificate issuer: /CN=A9122EBD/serialNumber=DA6E941CDBFE01AAEE091B3F95595D6D4018316D Certificate serial: 05E7 Authority key identifier: DA:6E:94:1C:DB:FE:01:AA:EE:09:1B:3F:95:59:5D:6D:40:18:31:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m6UHNv-AaruCRs_lVldbUAYMW0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/1576F19ABC5C11EB831EC25AC4F9AE02.roa Signing time: Wed 02 Jul 2025 23:35:13 +0000 ROA not before: Wed 02 Jul 2025 23:35:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4826 IP address blocks: 203.23.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/2m6UHNv-AaruCRs_lVldbUAYMW0.crl rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/2m6UHNv-AaruCRs_lVldbUAYMW0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m6UHNv-AaruCRs_lVldbUAYMW0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1511 (0x5e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122EBD, serialNumber=DA6E941CDBFE01AAEE091B3F95595D6D4018316D Validity Not Before: Jul 2 23:35:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6865c231-5c8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:65:30:fb:2f:d0:60:2b:5b:2a:0a:8b:9a:d3: bf:f6:b1:28:5c:88:97:34:90:cd:13:b8:4f:f6:04: 3e:00:ef:ac:a2:36:eb:a5:a2:38:a4:0b:7f:d0:eb: a0:b2:99:9d:a7:37:02:e7:1c:9e:70:ba:86:68:26: bc:5a:e6:6d:40:ac:cd:18:be:2c:15:dc:30:31:8a: f1:fb:be:70:78:2d:a2:22:f4:7f:9b:51:b3:32:87: 94:2f:64:92:84:8a:ed:74:09:56:5c:6f:40:fa:a7: 41:46:e3:c3:ce:2a:e5:dc:5e:7e:30:bb:d5:32:ad: 5f:4d:e0:31:81:63:25:6d:51:fe:c9:cb:4a:30:0f: 35:4b:8a:e6:82:e1:38:e2:07:32:11:99:99:71:6a: bd:64:57:98:30:c3:ff:b9:c5:b2:35:66:ce:a3:a1: 45:ee:11:cc:de:29:d0:50:98:50:7b:17:d8:f4:51: 28:2a:36:7e:c3:2e:c9:f2:c8:18:2f:82:6c:57:06: 0a:63:20:e0:1f:b8:9d:87:ea:43:bf:00:6e:81:01: 44:3f:b8:2c:c2:53:4c:eb:84:a6:ff:7a:58:53:42: ab:e7:ad:e5:e4:c6:06:58:6b:e3:a7:b5:a7:ae:3e: 72:25:1e:0f:48:f8:81:92:d6:4a:ee:d1:14:6e:35: 64:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:10:E2:48:8F:9A:93:2C:0F:00:1E:9E:F4:74:74:93:C9:71:AE:10 X509v3 Authority Key Identifier: keyid:DA:6E:94:1C:DB:FE:01:AA:EE:09:1B:3F:95:59:5D:6D:40:18:31:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/2m6UHNv-AaruCRs_lVldbUAYMW0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2m6UHNv-AaruCRs_lVldbUAYMW0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122EBD/3120065EBC5A11EB8E1D9258C4F9AE02/1576F19ABC5C11EB831EC25AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.76.0/24 Signature Algorithm: sha256WithRSAEncryption 78:e6:bd:89:60:23:23:49:f1:6f:a2:b8:e4:30:9c:4c:c8:ca: 75:d8:bc:3d:fd:c3:3f:dc:c8:37:27:76:d6:b1:f9:41:fd:be: d6:80:1d:55:82:80:79:0f:c1:14:4e:97:4e:14:92:ed:a0:be: 65:b3:16:af:6e:bc:e9:cb:c7:d1:87:ec:4a:41:bd:fb:bb:50: 53:8f:fa:36:dd:5e:c7:2d:89:c5:af:11:9d:21:a8:9f:33:be: 74:91:3d:f5:13:bc:ca:58:c4:08:c8:95:d2:9b:7f:28:74:bc: 58:10:69:b3:83:d9:8d:73:03:ea:09:6a:28:65:89:28:d7:4e: 64:c8:08:3a:f6:09:91:77:be:a3:e3:98:2b:9a:6c:1d:26:a2: 9a:b6:af:69:f5:c9:da:c3:53:c2:5a:a2:70:c7:ae:8b:48:59: 6f:4b:a9:ba:f2:93:18:bc:b5:fa:d4:7e:66:b8:ee:80:95:f8: cf:30:68:98:4a:ef:a4:87:3e:df:47:2a:7e:48:ec:84:4e:84: 89:26:5a:25:e6:df:23:46:97:0a:0c:bc:32:29:8e:2a:6d:20: 17:8b:e5:b6:10:38:33:28:4f:08:7e:71:d6:f5:15:91:33:6a: 4c:35:13:d9:31:7d:c9:00:28:1a:f2:d0:15:f7:23:9e:2f:23: 49:e3:17:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBecwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJFQkQxMTAvBgNVBAUTKERBNkU5NDFDREJGRTAxQUFFRTA5MUIzRjk1NTk1RDZE NDAxODMxNkQwHhcNMjUwNzAyMjMzNTEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YzIzMS01YzhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2Uw+y/QYCtbKgqLmtO/9rEoXIiXNJDNE7hP9gQ+AO+sojbrpaI4pAt/0Oug spmdpzcC5xyecLqGaCa8WuZtQKzNGL4sFdwwMYrx+75weC2iIvR/m1GzMoeUL2SS hIrtdAlWXG9A+qdBRuPDzirl3F5+MLvVMq1fTeAxgWMlbVH+yctKMA81S4rmguE4 4gcyEZmZcWq9ZFeYMMP/ucWyNWbOo6FF7hHM3inQUJhQexfY9FEoKjZ+wy7J8sgY L4JsVwYKYyDgH7idh+pDvwBugQFEP7gswlNM64Sm/3pYU0Kr563l5MYGWGvjp7Wn rj5yJR4PSPiBktZK7tEUbjVkEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPYQ4kiP mpMsDwAenvR0dJPJca4QMB8GA1UdIwQYMBaAFNpulBzb/gGq7gkbP5VZXW1AGDFt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkVCRC8zMTIwMDY1RUJD NUExMUVCOEUxRDkyNThDNEY5QUUwMi8ybTZVSE52LUFhcnVDUnNfbFZsZGJVQVlN VzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJtNlVITnYtQWFydUNSc19sVmxkYlVBWU1XMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJFQkQvMzEyMDA2NUVCQzVBMTFFQjhFMUQ5MjU4QzRGOUFFMDIvMTU3NkYxOUFC QzVDMTFFQjgzMUVDMjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLF0wwDQYJKoZIhvcNAQELBQADggEBAHjmvYlgIyNJ8W+i uOQwnEzIynXYvD39wz/cyDcndtax+UH9vtaAHVWCgHkPwRROl04Uku2gvmWzFq9u vOnLx9GH7EpBvfu7UFOP+jbdXscticWvEZ0hqJ8zvnSRPfUTvMpYxAjIldKbfyh0 vFgQabOD2Y1zA+oJaihliSjXTmTICDr2CZF3vqPjmCuabB0mopq2r2n1ydrDU8Ja onDHrotIWW9Lqbrykxi8tfrUfma47oCV+M8waJhK76SHPt9HKn5I7IROhIkmWiXm 3yNGlwoMvDIpjiptIBeL5bYQODMoTwh+cdb1FZEzakw1E9kxfckAKBry0BX3I54v I0njF+Y= -----END CERTIFICATE-----Generated at Sun Aug 10 21:14:29 2025 by rpki-client