$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa File: 111E53B6152811ECB2C0B70BC4F9AE02.roa (raw, json) Hash identifier: zLBeyUvYeL3WiTP8OfhHdt93sxWxJckWd6if90VdF+g= Subject key identifier: B2:83:88:5F:15:D8:D6:E2:EC:9F:CA:CF:66:B5:1E:EE:28:9B:A1:B2 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 07FA Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa Signing time: Mon 14 Jul 2025 21:30:57 +0000 ROA not before: Mon 14 Jul 2025 21:30:57 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 7473 IP address blocks: 202.83.192.0/19 maxlen: 19 202.83.192.0/20 maxlen: 20 202.83.194.0/24 maxlen: 24 202.83.195.0/24 maxlen: 24 202.83.196.0/24 maxlen: 24 202.83.203.0/24 maxlen: 24 202.83.204.0/24 maxlen: 24 202.83.205.0/24 maxlen: 24 202.83.206.0/24 maxlen: 24 202.83.208.0/24 maxlen: 24 202.83.209.0/24 maxlen: 24 202.83.210.0/24 maxlen: 24 202.83.211.0/24 maxlen: 24 202.83.214.0/24 maxlen: 24 202.83.216.0/24 maxlen: 24 202.83.218.0/24 maxlen: 24 202.83.220.0/24 maxlen: 24 202.83.222.0/24 maxlen: 24 2400:f000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2042 (0x7fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Jul 14 21:30:57 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68757711-20f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:06:47:51:eb:b6:8a:a5:53:89:4b:f7:16:6a: 6a:da:07:9f:f5:a5:a9:af:63:90:1c:b4:fd:03:74: 9e:4a:f8:14:3b:a0:b0:0b:a5:72:39:3b:98:54:85: 13:3c:70:5e:7d:2f:08:8b:2b:23:bf:4f:72:e3:99: f9:11:11:ed:80:be:c2:39:a2:64:9b:07:17:48:22: 27:61:3b:05:51:8f:2a:21:3b:5d:38:db:b7:54:95: 1f:ca:c6:b2:28:f7:5a:73:06:2b:ab:00:b8:f5:08: 6d:cf:09:6b:91:b0:d0:08:d8:d9:ae:e1:c6:a0:26: 5c:58:42:fe:f5:c8:62:34:d0:cb:f9:23:17:16:c2: 8e:0e:6a:05:61:65:dd:d2:0c:2d:82:24:2b:8e:b5: 8d:0c:75:40:37:14:a2:60:aa:b9:59:15:9c:32:55: fa:db:6c:29:c4:27:db:ca:30:07:11:5a:6b:17:f6: 9d:4f:5c:31:db:fd:1a:db:38:b2:21:15:9c:dd:f2: c6:31:17:cd:18:37:13:33:0b:81:54:cb:c2:07:30: d2:bf:3d:51:dd:18:b2:1b:fc:3e:d0:4f:3e:4d:4f: 19:0f:24:1f:16:a4:fa:60:c7:dd:06:65:52:36:3a: df:04:0b:2c:e0:f0:bf:a9:92:58:04:d6:e2:bb:e3: f1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:83:88:5F:15:D8:D6:E2:EC:9F:CA:CF:66:B5:1E:EE:28:9B:A1:B2 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.192.0/19 IPv6: 2400:f000::/32 Signature Algorithm: sha256WithRSAEncryption 31:3e:a5:3a:20:0d:b2:0a:0a:32:40:0d:b4:d5:8b:c2:e9:57: c8:50:c3:48:b5:2e:fc:97:8f:d1:e8:46:04:5d:de:c5:31:05: 0e:be:5e:16:e9:5e:22:b6:55:91:ef:bb:98:09:ac:d1:37:29: 29:11:75:d6:19:1f:ac:0c:83:43:ae:d4:5a:90:98:02:8c:50: 09:6e:da:1d:d2:3b:96:77:14:5a:e3:08:50:a0:36:9b:54:e8: 8e:6f:09:fc:47:d1:f6:32:64:cf:06:93:43:74:8a:7e:0b:95: 81:96:39:c5:ac:76:73:50:1e:40:c5:b4:2d:19:d6:5c:92:b0: 33:23:ef:d9:79:6f:63:31:e2:17:64:c2:36:a8:ff:93:1d:c3: e0:8a:22:2b:23:a1:bb:c5:d5:1b:58:b2:e0:3b:98:45:2d:5a: 62:ec:32:e5:75:ae:86:b2:8c:f9:ee:b1:5c:4f:d7:5f:91:22: c9:b5:25:f5:db:d2:95:a3:62:ec:b8:7c:cd:4b:bb:0b:66:0a: 90:4e:be:5a:0e:5a:16:10:c4:b9:b9:35:06:d2:59:d3:fc:e7: d9:22:76:fe:1e:9a:1e:65:d0:41:75:55:9e:d5:92:4d:34:ac: 32:ba:88:7e:4b:c8:0b:51:7c:6e:b3:ce:e0:a8:df:a6:81:0d: 98:fa:c1:c4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUwNzE0MjEzMDU3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1NzcxMS0yMGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQZHUeu2iqVTiUv3Fmpq2gef9aWpr2OQHLT9A3SeSvgUO6CwC6VyOTuYVIUT PHBefS8Iiysjv09y45n5ERHtgL7COaJkmwcXSCInYTsFUY8qITtdONu3VJUfysay KPdacwYrqwC49QhtzwlrkbDQCNjZruHGoCZcWEL+9chiNNDL+SMXFsKODmoFYWXd 0gwtgiQrjrWNDHVANxSiYKq5WRWcMlX622wpxCfbyjAHEVprF/adT1wx2/0a2ziy IRWc3fLGMRfNGDcTMwuBVMvCBzDSvz1R3RiyG/w+0E8+TU8ZDyQfFqT6YMfdBmVS NjrfBAss4PC/qZJYBNbiu+PxlwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLKDiF8V 2Nbi7J/Kz2a1Hu4om6GyMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBMkQvREE0NjYwOUFGN0MzMTFFQTlCMkVGNzg1QzRGOUFFMDIvMTExRTUzQjYx NTI4MTFFQ0IyQzBCNzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXKU8AwDQQCAAIwBwMFACQA8AAwDQYJKoZIhvcNAQELBQAD ggEBADE+pTogDbIKCjJADbTVi8LpV8hQw0i1LvyXj9HoRgRd3sUxBQ6+XhbpXiK2 VZHvu5gJrNE3KSkRddYZH6wMg0Ou1FqQmAKMUAlu2h3SO5Z3FFrjCFCgNptU6I5v CfxH0fYyZM8Gk0N0in4LlYGWOcWsdnNQHkDFtC0Z1lySsDMj79l5b2Mx4hdkwjao /5Mdw+CKIisjobvF1RtYsuA7mEUtWmLsMuV1roayjPnusVxP11+RIsm1JfXb0pWj Yuy4fM1LuwtmCpBOvloOWhYQxLm5NQbSWdP859kidv4emh5l0EF1VZ7Vkk00rDK6 iH5LyAtRfG6zzuCo36aBDZj6wcQ= -----END CERTIFICATE-----Generated at Sun Aug 10 20:04:41 2025 by rpki-client