$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/20AB43C81F9411F083A54B70C4F9AE02.roa File: 20AB43C81F9411F083A54B70C4F9AE02.roa (raw, json) Hash identifier: VEZ7s8au88OcCIFniLaU9jr2DOkZYlGYw2X2o/OxHCE= Subject key identifier: 17:09:79:60:32:73:B0:3B:12:D0:0D:42:AD:E1:89:6B:BA:D3:E9:6E Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0F3E Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/20AB43C81F9411F083A54B70C4F9AE02.roa Signing time: Wed 04 Jun 2025 18:00:10 +0000 ROA not before: Wed 04 Jun 2025 18:00:10 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 132110 IP address blocks: 43.250.104.0/23 maxlen: 24 43.250.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:38:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3902 (0xf3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF, serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Validity Not Before: Jun 4 18:00:10 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=684089aa-9cce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e6:5f:bc:c5:dc:94:48:8b:ed:d2:9c:b6:12: 4a:97:15:7b:cf:69:a6:07:95:b3:f5:49:ab:49:a2: 75:d1:4a:3f:2c:9e:18:1f:c3:2d:bf:66:57:56:a7: 1f:84:24:49:81:70:69:5b:67:49:30:62:1e:b8:b6: 2a:63:91:68:e3:ca:77:8e:92:15:5a:0c:b1:80:89: 65:a5:6d:d5:a3:5e:04:b3:70:fe:c9:e6:dc:34:e9: c7:bc:3a:3f:ea:ec:d3:b2:0d:52:4c:d4:b8:34:ae: 0d:17:bd:2a:d0:f3:27:bc:ba:d2:32:c8:50:bd:e8: da:4f:7d:1f:83:68:90:54:0b:32:3c:47:12:dd:15: 5f:d1:75:1d:6a:6f:20:e5:0a:d5:7c:63:7c:ed:c6: 6f:5a:6f:bc:af:96:23:f6:b3:27:8c:f0:f3:36:02: 8c:c0:1a:59:af:d2:ff:bb:bd:82:3d:84:db:a8:60: 51:d2:49:07:42:d3:dc:e6:24:37:d1:98:e1:7b:54: 91:f2:9f:79:06:99:1f:5b:c0:c6:e1:e0:e1:3d:cf: 64:9d:6c:e8:a8:18:76:48:0a:16:49:26:dc:f5:21: 8d:91:02:c1:48:77:84:66:3b:c5:c2:30:e5:e9:85: ae:d5:8e:67:de:7c:60:dc:5d:a0:a1:7d:d9:49:02: 1e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:09:79:60:32:73:B0:3B:12:D0:0D:42:AD:E1:89:6B:BA:D3:E9:6E X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/20AB43C81F9411F083A54B70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.104.0-43.250.106.255 Signature Algorithm: sha256WithRSAEncryption 5d:d2:8a:59:1d:3f:1a:4a:7b:80:fd:92:4b:97:fd:ca:62:3a: 4a:c2:a6:9f:c1:02:68:76:9a:4c:90:94:d7:10:55:47:fc:99: 78:b1:19:2d:9f:b0:0c:f4:a0:0d:68:4d:76:8d:10:58:2a:4b: 2f:8e:84:9c:c0:10:96:78:bf:3f:01:c1:5a:14:65:27:35:b9: a9:bf:aa:f4:62:0f:49:4a:6a:4a:fb:a7:0d:ce:9c:f6:da:06: ef:9a:62:12:57:cf:fd:8d:d6:b0:5a:63:69:2c:da:6e:30:ba: 20:be:bb:35:bd:f7:95:71:8b:a5:d0:da:20:e0:f2:c4:33:c0: 42:0c:f0:4d:dd:f6:d6:2f:63:1b:60:ac:2f:91:d9:35:09:15: 2b:fa:f6:7a:56:ca:04:b9:9d:30:e6:b5:8a:8e:ae:75:7d:07: 22:2a:70:d4:4f:25:28:81:77:92:59:2e:4b:80:91:a2:f4:69: 3e:df:71:b0:3d:8d:29:62:a3:03:b4:1c:0c:7e:1a:6e:10:99: ce:43:e5:0d:80:8c:3d:08:3c:6b:83:dc:e8:86:34:08:f0:af: 2d:1b:83:ad:91:d2:dc:b7:b4:bc:a0:08:78:fa:c4:f2:bd:48: 9a:9e:b9:6e:1c:2d:5a:f7:30:42:01:fa:b2:2d:56:db:15:48: 5b:fb:78:f4 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjUwNjA0MTgwMDEwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwODlhYS05Y2NlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOZfvMXclEiL7dKcthJKlxV7z2mmB5Wz9UmrSaJ10Uo/LJ4YH8Mtv2ZXVqcf hCRJgXBpW2dJMGIeuLYqY5Fo48p3jpIVWgyxgIllpW3Vo14Es3D+yebcNOnHvDo/ 6uzTsg1STNS4NK4NF70q0PMnvLrSMshQvejaT30fg2iQVAsyPEcS3RVf0XUdam8g 5QrVfGN87cZvWm+8r5Yj9rMnjPDzNgKMwBpZr9L/u72CPYTbqGBR0kkHQtPc5iQ3 0Zjhe1SR8p95BpkfW8DG4eDhPc9knWzoqBh2SAoWSSbc9SGNkQLBSHeEZjvFwjDl 6YWu1Y5n3nxg3F2goX3ZSQIexwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBcJeWAy c7A7EtANQq3hiWu60+luMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvMjBBQjQzQzgx Rjk0MTFGMDgzQTU0QjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAyv6aAMEACv6ajANBgkqhkiG9w0BAQsFAAOCAQEAXdKK WR0/Gkp7gP2SS5f9ymI6SsKmn8ECaHaaTJCU1xBVR/yZeLEZLZ+wDPSgDWhNdo0Q WCpLL46EnMAQlni/PwHBWhRlJzW5qb+q9GIPSUpqSvunDc6c9toG75piElfP/Y3W sFpjaSzabjC6IL67Nb33lXGLpdDaIODyxDPAQgzwTd321i9jG2CsL5HZNQkVK/r2 elbKBLmdMOa1io6udX0HIipw1E8lKIF3klkuS4CRovRpPt9xsD2NKWKjA7QcDH4a bhCZzkPlDYCMPQg8a4Pc6IY0CPCvLRuDrZHS3Le0vKAIePrE8r1Imp65bhwtWvcw QgH6si1W2xVIW/t49A== -----END CERTIFICATE-----Generated at Wed Jun 18 23:44:15 2025 by rpki-client