$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/6D541B1863D611ED863A4C1EC4F9AE02.roa File: 6D541B1863D611ED863A4C1EC4F9AE02.roa (raw, json) Hash identifier: RJ7kGeY4TkE4w0D+0r1E/30oSOzKDCr6urHO+ZE7YrE= Subject key identifier: CA:37:C1:26:DA:5D:9C:2A:F1:08:98:66:66:09:78:AE:32:FA:F7:03 Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3999 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/6D541B1863D611ED863A4C1EC4F9AE02.roa Signing time: Wed 04 Jun 2025 06:49:02 +0000 ROA not before: Wed 04 Jun 2025 06:49:02 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38543 IP address blocks: 58.97.62.0/24 maxlen: 24 61.90.164.0/24 maxlen: 24 203.144.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14745 (0x3999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jun 4 06:49:02 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=683fec5e-3968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:81:7d:89:84:84:41:b8:f8:b8:4a:71:a4:45: 92:c5:bf:9e:d7:4c:5c:7f:51:72:b8:e7:b7:35:38: b6:37:92:be:d2:39:f1:3d:c1:02:82:33:de:78:d5: 6d:d5:16:a4:9d:e1:df:44:be:38:22:49:2c:8b:cb: cc:5a:7f:b7:26:c7:15:5c:33:0f:dc:a2:ff:16:d7: 8d:33:62:e1:b4:75:49:9e:e4:8f:76:bd:8f:32:53: 58:eb:63:2b:5d:1c:4b:79:54:9a:49:13:c3:c9:1a: b5:5f:87:4c:20:09:66:68:fb:8c:03:50:37:21:96: c4:1a:6e:da:cf:b9:36:b4:ab:16:2e:4a:62:19:88: 25:f2:65:9a:ab:cb:be:63:03:b2:96:df:de:5b:5b: 72:f4:6f:3d:a9:34:29:de:c6:2c:62:7b:96:2e:3b: 7b:9c:fe:b3:e3:e3:97:0d:45:c0:e4:af:62:ed:84: 18:3e:b4:d1:fa:89:f8:36:d0:a8:4e:9f:c2:40:27: 61:83:bc:39:1d:d8:46:47:23:91:97:07:26:2a:61: d7:97:1d:65:0c:9f:5d:23:02:06:60:eb:a1:05:f2: 19:97:6b:51:2e:3b:55:da:30:a3:e2:71:72:d0:e0: 06:69:34:a8:e0:1e:83:1c:c7:a8:7d:f8:72:70:35: a0:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:37:C1:26:DA:5D:9C:2A:F1:08:98:66:66:09:78:AE:32:FA:F7:03 X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/6D541B1863D611ED863A4C1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.97.62.0/24 61.90.164.0/24 203.144.208.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:ab:3b:06:75:ad:0a:c2:ce:53:24:d3:82:c7:52:93:9d:0a: 70:c2:65:81:3d:bf:23:aa:b6:40:13:49:34:5d:f3:e0:0a:10: ce:03:1d:7d:19:e8:93:31:cb:d1:2e:07:de:8c:51:c6:3c:14: 8a:17:fe:fd:c8:9f:c9:48:3a:8d:db:dd:49:89:cf:fa:07:9c: 57:85:d0:3d:22:5e:05:28:d6:59:bd:7d:65:90:4d:c6:4b:14: 95:0b:c5:76:99:fd:25:0d:a5:78:34:6b:cc:3b:8d:bb:a4:03: 03:f7:18:c1:02:f8:97:a9:a7:40:c4:e9:cd:2e:e5:ea:20:72: 02:44:00:bb:b8:4e:f7:39:61:84:7a:fb:a5:f3:ae:29:05:9c: 3e:15:49:a7:9e:b0:62:2c:50:7f:d4:b6:ac:ea:84:3c:58:71: b7:1a:0e:6c:7d:ce:69:a1:9d:cf:bc:ed:c3:ef:48:f2:e1:6c: e6:4a:d6:0b:28:82:10:93:07:94:33:79:e1:df:43:86:11:ab: 4b:41:49:d1:0c:04:39:e2:fa:66:90:3f:d3:45:b0:59:37:c2: 8f:f3:ac:52:1e:f0:c0:11:a1:74:e8:3c:db:e7:2f:db:30:88: eb:ed:4b:ae:f1:ed:73:bc:6b:3e:45:7d:80:48:1a:3a:d1:73: be:47:42:53 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICOZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwNjA0MDY0OTAyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNmZWM1ZS0zOTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4F9iYSEQbj4uEpxpEWSxb+e10xcf1FyuOe3NTi2N5K+0jnxPcECgjPeeNVt 1RakneHfRL44Ikksi8vMWn+3JscVXDMP3KL/FteNM2LhtHVJnuSPdr2PMlNY62Mr XRxLeVSaSRPDyRq1X4dMIAlmaPuMA1A3IZbEGm7az7k2tKsWLkpiGYgl8mWaq8u+ YwOylt/eW1ty9G89qTQp3sYsYnuWLjt7nP6z4+OXDUXA5K9i7YQYPrTR+on4NtCo Tp/CQCdhg7w5HdhGRyORlwcmKmHXlx1lDJ9dIwIGYOuhBfIZl2tRLjtV2jCj4nFy 0OAGaTSo4B6DHMeoffhycDWgfwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMo3wSba XZwq8QiYZmYJeK4y+vcDMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNkQ1NDFCMTg2 M0Q2MTFFRDg2M0E0QzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAA6YT4DBAA9WqQDBADLkNAwDQYJKoZIhvcNAQELBQADggEB AC+rOwZ1rQrCzlMk04LHUpOdCnDCZYE9vyOqtkATSTRd8+AKEM4DHX0Z6JMxy9Eu B96MUcY8FIoX/v3In8lIOo3b3UmJz/oHnFeF0D0iXgUo1lm9fWWQTcZLFJULxXaZ /SUNpXg0a8w7jbukAwP3GMEC+Jepp0DE6c0u5eogcgJEALu4Tvc5YYR6+6XzrikF nD4VSaeesGIsUH/UtqzqhDxYcbcaDmx9zmmhnc+87cPvSPLhbOZK1gsoghCTB5Qz eeHfQ4YRq0tBSdEMBDni+maQP9NFsFk3wo/zrFIe8MARoXToPNvnL9swiOvtS67x 7XO8az5FfYBIGjrRc75HQlM= -----END CERTIFICATE-----Generated at Wed Jun 18 13:53:27 2025 by rpki-client