$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/AF4E5B08483911EEB846EA36C4F9AE02.roa File: AF4E5B08483911EEB846EA36C4F9AE02.roa (raw, json) Hash identifier: aiIUZFsJTpfn5BXB+rWnJ9nA89byXhhvyAYhsvf98Ik= Subject key identifier: 2B:F7:BE:85:54:52:78:10:CF:2F:85:AD:9D:B1:58:1F:B6:A0:6E:88 Certificate issuer: /CN=A9123F5D/serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Certificate serial: 0A9B Authority key identifier: BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/AF4E5B08483911EEB846EA36C4F9AE02.roa Signing time: Thu 31 Jul 2025 20:30:46 +0000 ROA not before: Thu 31 Jul 2025 20:30:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150744 IP address blocks: 123.253.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2715 (0xa9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F5D, serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Validity Not Before: Jul 31 20:30:46 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688bd276-1242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:d7:c0:95:92:8e:8e:ac:32:73:ba:45:82:3e: 3b:31:f8:3d:4a:aa:bd:d1:58:41:cd:e9:c1:94:46: 72:ac:f8:8d:e9:65:8a:4f:83:51:2a:2f:ac:8f:6c: e1:71:e0:b2:ad:b4:21:32:45:38:29:2a:b3:7f:47: 64:79:23:36:65:93:31:6e:41:78:46:62:a5:05:82: 49:b6:33:15:24:fa:f8:d0:46:30:e6:dc:89:61:70: 98:59:95:a9:79:01:fa:3c:4e:cd:ec:22:2f:00:24: c7:d7:dc:50:1b:bb:ea:89:d7:c4:bd:2d:fb:d5:c0: cf:b8:69:aa:85:64:be:b7:76:d3:94:6b:01:a0:aa: b2:4b:4c:b1:59:da:8f:5e:07:89:d6:80:27:78:30: 64:32:ff:42:f0:88:a2:c7:2e:16:5e:2d:ce:b8:54: 9a:9c:ed:e2:5f:74:c3:83:6d:c1:2a:67:aa:e4:42: 92:5f:32:47:a2:5e:66:a8:13:21:35:30:01:19:47: 75:f4:c6:71:f2:f3:33:28:f4:7b:70:75:d7:44:64: 2b:3f:37:c4:77:57:82:96:8e:c0:9e:5e:56:a1:bc: 14:9a:98:df:6c:9c:79:25:ba:03:55:5f:4e:bc:e4: b8:b6:0b:0a:a9:5b:d7:ab:01:e1:67:09:3e:71:bd: 26:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F7:BE:85:54:52:78:10:CF:2F:85:AD:9D:B1:58:1F:B6:A0:6E:88 X509v3 Authority Key Identifier: keyid:BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/AF4E5B08483911EEB846EA36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.96.0/24 Signature Algorithm: sha256WithRSAEncryption a5:8b:f8:de:1c:a3:09:0f:49:44:b0:cc:9c:4f:84:d7:d1:b4: e1:c2:eb:fa:7e:d0:bb:82:32:dd:d2:6f:48:ec:c8:0a:60:d3: ce:a7:d2:48:02:88:12:86:35:b9:ad:c2:2e:44:6e:3a:75:8e: 8a:01:3b:fa:71:7c:3a:bb:b7:d1:6c:d9:4c:df:9f:f3:79:2d: ed:1d:cd:24:03:9e:07:19:63:9c:0d:5e:8a:f8:42:c0:80:b1: a4:b2:6b:ec:48:ab:81:d8:2a:c2:a0:c0:08:f3:47:13:ae:d5: bd:2d:34:f7:9f:76:e3:9b:c2:fe:78:e0:22:d2:1b:58:63:cf: bf:3c:fe:e3:5e:30:41:b5:fe:65:1a:ac:1c:63:9d:67:90:ed: 6e:6c:3f:b8:88:47:4e:ba:22:6a:13:2e:12:7b:7f:d5:ef:bf: a3:5b:e7:4f:21:d1:78:a0:17:4d:be:e5:ed:2f:a2:2a:54:92: 4c:b2:a1:b3:98:35:60:7c:ae:e1:6b:42:5d:f1:3c:d8:2e:15: 86:47:38:c8:00:cb:3d:a1:0d:c3:b7:89:04:8b:83:08:2c:7c: 37:f8:59:23:da:04:11:8e:27:51:a3:0c:b0:cb:31:2c:6e:80: 44:01:1d:bf:0e:e8:ff:9c:26:9d:d2:86:0f:e6:03:86:b7:7a: fe:b9:7f:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGNUQxMTAvBgNVBAUTKEJGNTIyRDk5MjVBNTg0NjI4MEY2MDUzMEFEMzlENzY2 RTRBQkYwOTMwHhcNMjUwNzMxMjAzMDQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiZDI3Ni0xMjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxtfAlZKOjqwyc7pFgj47Mfg9Sqq90VhBzenBlEZyrPiN6WWKT4NRKi+sj2zh ceCyrbQhMkU4KSqzf0dkeSM2ZZMxbkF4RmKlBYJJtjMVJPr40EYw5tyJYXCYWZWp eQH6PE7N7CIvACTH19xQG7vqidfEvS371cDPuGmqhWS+t3bTlGsBoKqyS0yxWdqP XgeJ1oAneDBkMv9C8Iiixy4WXi3OuFSanO3iX3TDg23BKmeq5EKSXzJHol5mqBMh NTABGUd19MZx8vMzKPR7cHXXRGQrPzfEd1eClo7Anl5WobwUmpjfbJx5JboDVV9O vOS4tgsKqVvXqwHhZwk+cb0m8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCv3voVU UngQzy+FrZ2xWB+2oG6IMB8GA1UdIwQYMBaAFL9SLZklpYRigPYFMK0512bkq/CT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y1RC83NUY4NzVGMjY2 OTAxMUVBOTY4M0ZCMkZDNEY5QUUwMi92MUl0bVNXbGhHS0E5Z1V3clRuWFp1U3I4 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxSXRtU1dsaEdLQTlnVXdyVG5YWnVTcjhKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGNUQvNzVGODc1RjI2NjkwMTFFQTk2ODNGQjJGQzRGOUFFMDIvQUY0RTVCMDg0 ODM5MTFFRUI4NDZFQTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7/WAwDQYJKoZIhvcNAQELBQADggEBAKWL+N4cowkPSUSw zJxPhNfRtOHC6/p+0LuCMt3Sb0jsyApg086n0kgCiBKGNbmtwi5Ebjp1jooBO/px fDq7t9Fs2Uzfn/N5Le0dzSQDngcZY5wNXor4QsCAsaSya+xIq4HYKsKgwAjzRxOu 1b0tNPefduObwv544CLSG1hjz788/uNeMEG1/mUarBxjnWeQ7W5sP7iIR066ImoT LhJ7f9Xvv6Nb508h0XigF02+5e0voipUkkyyobOYNWB8ruFrQl3xPNguFYZHOMgA yz2hDcO3iQSLgwgsfDf4WSPaBBGOJ1GjDLDLMSxugEQBHb8O6P+cJp3Shg/mA4a3 ev65fxo= -----END CERTIFICATE-----Generated at Sun Aug 10 03:53:26 2025 by rpki-client