$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa File: 66EE9D94152511ECAD055780C4F9AE02.roa (raw, json) Hash identifier: 8DddYe6Xxj3AQcHWCxpAXO4NAnMo0qG6fie32kIabM4= Subject key identifier: 73:0C:ED:C3:31:56:37:39:A4:81:16:5B:55:A1:6F:D0:D3:F4:DD:1B Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 07F9 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa Signing time: Mon 14 Jul 2025 21:30:56 +0000 ROA not before: Mon 14 Jul 2025 21:30:56 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17888 IP address blocks: 202.83.192.0/19 maxlen: 19 202.83.192.0/20 maxlen: 20 202.83.192.0/24 maxlen: 24 202.83.194.0/24 maxlen: 24 202.83.195.0/24 maxlen: 24 202.83.196.0/24 maxlen: 24 202.83.203.0/24 maxlen: 24 202.83.204.0/24 maxlen: 24 202.83.205.0/24 maxlen: 24 202.83.206.0/24 maxlen: 24 202.83.208.0/24 maxlen: 24 202.83.209.0/24 maxlen: 24 202.83.210.0/24 maxlen: 24 202.83.211.0/24 maxlen: 24 202.83.214.0/24 maxlen: 24 202.83.216.0/24 maxlen: 24 202.83.220.0/24 maxlen: 24 202.83.222.0/24 maxlen: 24 2400:f000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2041 (0x7f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D, serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Jul 14 21:30:56 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68757710-5cce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:c6:08:86:86:54:53:06:eb:14:35:32:3c: ed:e5:97:4e:b5:c9:28:f4:b4:c5:4a:ce:f5:a7:0d: 56:38:9a:9d:a7:5a:cc:fa:b5:1c:50:33:7c:9f:99: 4a:94:68:ae:eb:ce:da:9c:4d:9a:ed:0e:77:a9:b6: ee:10:7b:51:f1:2b:9f:98:9a:ca:ea:a8:83:47:e9: 07:b7:1f:c1:3f:5d:37:76:c5:87:99:80:6a:89:92: 1a:ac:75:db:71:52:6c:37:28:39:bc:8e:66:66:98: 12:06:42:60:69:ac:d2:e7:b0:11:43:bf:28:44:a1: c2:ec:50:d8:5f:c4:44:7c:a7:ef:d3:37:87:cc:c9: a9:db:56:62:a9:28:7f:b4:21:23:72:aa:67:5d:7b: b3:9c:36:1f:d1:9b:67:bd:f2:0c:9a:6a:14:6c:46: af:95:5f:70:2d:a2:7f:bb:a6:98:14:69:3e:54:01: e7:ab:c1:0b:a4:62:56:29:b3:ee:e3:a6:c1:a3:d1: e5:ff:22:0f:21:e7:1f:7c:42:ae:37:05:a9:0f:da: 55:41:e8:c3:21:a1:dc:ef:0f:a0:36:26:2d:b2:1b: 3b:14:49:2a:ab:d3:0b:95:6e:ab:ef:ce:8f:b9:82: d5:2e:32:f6:93:ba:c9:00:8b:f7:0f:6d:20:cb:cb: aa:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:0C:ED:C3:31:56:37:39:A4:81:16:5B:55:A1:6F:D0:D3:F4:DD:1B X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.192.0/19 IPv6: 2400:f000::/32 Signature Algorithm: sha256WithRSAEncryption 1a:fd:fc:ba:96:ce:06:f8:b8:3a:36:84:bf:29:f1:17:e7:64: 43:7b:4a:98:07:fc:f4:a2:dc:c6:2c:40:46:22:99:0d:cd:c4: ea:9b:24:13:e1:bd:e6:89:14:be:de:1e:0f:ed:92:3f:9d:ad: a9:24:31:f4:55:6a:17:92:86:9c:34:f8:e6:91:d5:63:7a:52: b4:72:e9:06:72:6b:00:18:e7:31:38:bc:f1:20:14:4e:cb:75: d4:09:f7:75:78:79:02:41:39:61:50:3a:dc:11:7b:0b:f5:7b: ee:f3:4b:dd:88:43:20:1a:f3:dd:83:86:93:41:ce:ef:48:88: 66:ad:47:96:e7:3e:2e:e4:94:09:c0:22:20:67:9d:b9:cb:7e: 69:17:64:96:ee:44:6f:a8:86:0f:77:1d:3a:1d:1c:4f:32:74: 78:35:d8:a3:f3:c7:a5:e2:1a:b2:6d:07:46:47:0a:de:c6:4c: 7f:97:8f:e6:6e:7f:b9:37:e8:ec:8e:da:bf:36:47:6b:3b:5c: 11:7b:46:5f:bf:93:46:a4:e3:ff:d6:09:03:9e:b8:5a:14:83: 84:d9:fc:de:a7:f9:40:22:0e:2c:70:4f:d3:63:dd:d9:fa:e7: 4b:1e:fb:33:50:89:fd:90:55:1b:d2:08:50:43:52:93:35:d0: f5:80:11:ec -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjUwNzE0MjEzMDU2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1NzcxMC01Y2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwzGCIaGVFMG6xQ1Mjzt5ZdOtcko9LTFSs71pw1WOJqdp1rM+rUcUDN8n5lK lGiu687anE2a7Q53qbbuEHtR8SufmJrK6qiDR+kHtx/BP103dsWHmYBqiZIarHXb cVJsNyg5vI5mZpgSBkJgaazS57ARQ78oRKHC7FDYX8REfKfv0zeHzMmp21ZiqSh/ tCEjcqpnXXuznDYf0ZtnvfIMmmoUbEavlV9wLaJ/u6aYFGk+VAHnq8ELpGJWKbPu 46bBo9Hl/yIPIecffEKuNwWpD9pVQejDIaHc7w+gNiYtshs7FEkqq9MLlW6r786P uYLVLjL2k7rJAIv3D20gy8uq8QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHMM7cMx Vjc5pIEWW1Whb9DT9N0bMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBMkQvREE0NjYwOUFGN0MzMTFFQTlCMkVGNzg1QzRGOUFFMDIvNjZFRTlEOTQx NTI1MTFFQ0FEMDU1NzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXKU8AwDQQCAAIwBwMFACQA8AAwDQYJKoZIhvcNAQELBQAD ggEBABr9/LqWzgb4uDo2hL8p8RfnZEN7SpgH/PSi3MYsQEYimQ3NxOqbJBPhveaJ FL7eHg/tkj+drakkMfRVaheShpw0+OaR1WN6UrRy6QZyawAY5zE4vPEgFE7LddQJ 93V4eQJBOWFQOtwRewv1e+7zS92IQyAa892DhpNBzu9IiGatR5bnPi7klAnAIiBn nbnLfmkXZJbuRG+ohg93HTodHE8ydHg12KPzx6XiGrJtB0ZHCt7GTH+Xj+Zuf7k3 6OyO2r82R2s7XBF7Rl+/k0ak4//WCQOeuFoUg4TZ/N6n+UAiDixwT9Nj3dn650se +zNQif2QVRvSCFBDUpM10PWAEew= -----END CERTIFICATE-----Generated at Mon Aug 11 04:21:10 2025 by rpki-client