$ rpki-client -vvf rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/97285ACA5BB111EEB6671243C4F9AE02.roa File: 97285ACA5BB111EEB6671243C4F9AE02.roa (raw, json) Hash identifier: YX9vs3q97nnjwdghkU9nOjkAvy5RSRUeG3Z5NMkwAdg= Subject key identifier: DB:E7:61:60:56:73:68:13:60:D2:05:0D:8D:D7:91:EC:54:52:A8:2B Certificate issuer: /CN=A913383A/serialNumber=9ED7BAF63F554F1FEA570E19BAF69EDED0D9E4BE Certificate serial: 0B8B Authority key identifier: 9E:D7:BA:F6:3F:55:4F:1F:EA:57:0E:19:BA:F6:9E:DE:D0:D9:E4:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nte69j9VTx_qVw4Zuvae3tDZ5L4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/97285ACA5BB111EEB6671243C4F9AE02.roa Signing time: Tue 22 Jul 2025 19:29:13 +0000 ROA not before: Tue 22 Jul 2025 19:29:13 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 4787 IP address blocks: 123.253.128.0/24 maxlen: 24 123.253.129.0/24 maxlen: 24 123.253.130.0/24 maxlen: 24 123.253.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/nte69j9VTx_qVw4Zuvae3tDZ5L4.crl rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/nte69j9VTx_qVw4Zuvae3tDZ5L4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nte69j9VTx_qVw4Zuvae3tDZ5L4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2955 (0xb8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913383A, serialNumber=9ED7BAF63F554F1FEA570E19BAF69EDED0D9E4BE Validity Not Before: Jul 22 19:29:13 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=687fe689-141b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:26:61:44:7f:e0:9e:c8:ae:be:11:25:fd:c6: 4f:e6:9e:39:a9:cf:29:6a:82:33:ba:cf:08:5d:26: ce:1f:4c:43:b7:ba:3b:6f:11:c3:05:43:f1:34:8f: 28:e2:96:ad:0c:81:8c:93:39:fa:ab:26:bc:9a:f3: 60:e4:19:78:c8:bc:ff:26:95:6b:9d:02:7c:90:c4: 71:d3:14:a5:60:2d:55:3b:87:26:49:3f:35:95:4f: 47:c1:c8:ac:d9:d7:0f:9b:54:a1:72:21:53:d3:6c: 5e:89:44:30:14:43:94:cf:3d:8c:11:cd:71:62:5e: 33:7c:b4:74:02:7f:08:b5:02:70:33:ca:4f:fc:fa: 6e:17:34:ec:c8:97:a6:b3:fe:93:ed:99:79:8c:02: 12:0b:f3:41:2f:f2:08:fa:ce:e8:e5:16:9c:da:1d: 09:b0:ed:f1:9e:6a:95:66:9a:ea:d8:13:0c:6e:31: 4d:cd:94:c2:9b:c4:c2:38:40:a4:7b:f4:f3:94:23: bf:71:89:cc:6a:9f:31:61:28:8c:47:be:6e:e5:9e: 60:35:06:cc:8b:11:f8:10:c7:d9:0c:ff:c0:75:69: e6:a8:1f:4c:24:05:35:fc:2b:a2:ad:04:74:30:d0: c6:71:b8:6b:8b:c8:ce:26:72:b7:f0:69:84:8f:bb: a7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E7:61:60:56:73:68:13:60:D2:05:0D:8D:D7:91:EC:54:52:A8:2B X509v3 Authority Key Identifier: keyid:9E:D7:BA:F6:3F:55:4F:1F:EA:57:0E:19:BA:F6:9E:DE:D0:D9:E4:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/nte69j9VTx_qVw4Zuvae3tDZ5L4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nte69j9VTx_qVw4Zuvae3tDZ5L4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913383A/1FFB7D80306B11EA848BE031C4F9AE02/97285ACA5BB111EEB6671243C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.128.0/22 Signature Algorithm: sha256WithRSAEncryption 95:94:3e:3b:ed:97:50:03:3f:44:5a:81:96:b2:39:7b:48:d1: 7f:0c:3b:75:8a:a3:4c:fd:27:e6:ef:69:74:66:f0:4c:77:4c: 78:90:8e:2c:08:dd:9a:0d:35:c3:53:aa:9a:b6:77:c9:78:39: 6a:f1:da:68:32:6e:05:cf:83:89:37:a9:e3:90:c8:4c:ab:06: 44:fd:27:a8:d1:3d:91:6a:02:83:72:04:e1:06:63:00:ce:a9: 62:53:09:2a:02:18:17:a2:64:98:1c:9e:de:c7:d8:2e:39:d1: ee:7b:79:4d:4c:a5:82:71:05:cc:16:c9:11:a7:c2:be:89:a6: 48:61:3b:9a:36:d6:c2:0f:03:68:c0:3c:b8:2a:ca:19:0f:5b: 9d:49:49:45:c4:cf:da:19:15:b1:80:f0:cb:0e:9f:29:0a:c2: 6d:29:6d:fa:79:dc:3b:46:61:9d:d8:c4:89:a2:80:68:ec:5c: 67:78:52:42:0c:ab:48:f5:50:b2:1d:5e:c8:d1:1e:d8:3b:aa: dc:05:bc:c1:7b:57:bf:e3:21:5d:1b:b2:26:c7:83:0a:e2:1e: 28:e2:29:80:56:d8:1e:fe:8d:72:18:ba:f9:c4:61:ab:99:b0: ef:bb:40:f0:44:b3:cd:56:a8:45:58:a1:93:05:ae:c8:fc:37: 65:45:da:f8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4M0ExMTAvBgNVBAUTKDlFRDdCQUY2M0Y1NTRGMUZFQTU3MEUxOUJBRjY5RURF RDBEOUU0QkUwHhcNMjUwNzIyMTkyOTEzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmZTY4OS0xNDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyiZhRH/gnsiuvhEl/cZP5p45qc8paoIzus8IXSbOH0xDt7o7bxHDBUPxNI8o 4patDIGMkzn6qya8mvNg5Bl4yLz/JpVrnQJ8kMRx0xSlYC1VO4cmST81lU9Hwcis 2dcPm1ShciFT02xeiUQwFEOUzz2MEc1xYl4zfLR0An8ItQJwM8pP/PpuFzTsyJem s/6T7Zl5jAISC/NBL/II+s7o5Rac2h0JsO3xnmqVZprq2BMMbjFNzZTCm8TCOECk e/TzlCO/cYnMap8xYSiMR75u5Z5gNQbMixH4EMfZDP/AdWnmqB9MJAU1/CuirQR0 MNDGcbhri8jOJnK38GmEj7unNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNvnYWBW c2gTYNIFDY3XkexUUqgrMB8GA1UdIwQYMBaAFJ7XuvY/VU8f6lcOGbr2nt7Q2eS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzgzQS8xRkZCN0Q4MDMw NkIxMUVBODQ4QkUwMzFDNEY5QUUwMi9udGU2OWo5VlR4X3FWdzRadXZhZTN0RFo1 TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250ZTY5ajlWVHhfcVZ3NFp1dmFlM3REWjVMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM4M0EvMUZGQjdEODAzMDZCMTFFQTg0OEJFMDMxQzRGOUFFMDIvOTcyODVBQ0E1 QkIxMTFFRUI2NjcxMjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ7/YAwDQYJKoZIhvcNAQELBQADggEBAJWUPjvtl1ADP0Ra gZayOXtI0X8MO3WKo0z9J+bvaXRm8Ex3THiQjiwI3ZoNNcNTqpq2d8l4OWrx2mgy bgXPg4k3qeOQyEyrBkT9J6jRPZFqAoNyBOEGYwDOqWJTCSoCGBeiZJgcnt7H2C45 0e57eU1MpYJxBcwWyRGnwr6JpkhhO5o21sIPA2jAPLgqyhkPW51JSUXEz9oZFbGA 8MsOnykKwm0pbfp53DtGYZ3YxImigGjsXGd4UkIMq0j1ULIdXsjRHtg7qtwFvMF7 V7/jIV0bsibHgwriHijiKYBW2B7+jXIYuvnEYauZsO+7QPBEs81WqEVYoZMFrsj8 N2VF2vg= -----END CERTIFICATE-----Generated at Sun Aug 10 05:44:20 2025 by rpki-client