$ rpki-client -vvf rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/D7E41D6A788411EA9186C910C4F9AE02.roa File: D7E41D6A788411EA9186C910C4F9AE02.roa (raw, json) Hash identifier: KyrGSf7V5zfG9F8nLNaSQJ4n2vaZ8LBybDGS/PP9Wq8= Subject key identifier: 66:A0:13:2E:E3:16:43:6F:6A:7D:A1:56:07:20:C7:6F:C8:4D:22:D7 Certificate issuer: /CN=A9144E38/serialNumber=D95595C6095B4DFAE2CB9B45B9089CC2623D94A3 Certificate serial: 0EB5 Authority key identifier: D9:55:95:C6:09:5B:4D:FA:E2:CB:9B:45:B9:08:9C:C2:62:3D:94:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VWVxglbTfriy5tFuQicwmI9lKM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/D7E41D6A788411EA9186C910C4F9AE02.roa Signing time: Tue 22 Jul 2025 17:56:59 +0000 ROA not before: Tue 22 Jul 2025 17:56:59 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38235 IP address blocks: 111.90.176.0/20 maxlen: 24 2405:fa00::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/2VWVxglbTfriy5tFuQicwmI9lKM.crl rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/2VWVxglbTfriy5tFuQicwmI9lKM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VWVxglbTfriy5tFuQicwmI9lKM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 17:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3765 (0xeb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144E38, serialNumber=D95595C6095B4DFAE2CB9B45B9089CC2623D94A3 Validity Not Before: Jul 22 17:56:59 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687fd0eb-64d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:42:f2:1b:c3:43:d5:b4:a2:b4:26:b3:8e:69: 73:9f:b3:0f:06:28:d2:c7:97:85:9a:12:37:3d:e3: 36:3a:50:a6:4c:2e:8e:db:c5:1b:16:f6:d4:f0:31: c6:ab:a2:3b:7f:70:3b:8d:c9:92:d5:71:78:d8:a2: 85:5f:00:59:e9:21:22:a1:50:97:35:13:3c:0d:76: 95:b0:08:a1:b0:1d:09:e6:7c:4e:0e:75:fa:dc:9c: 5f:ed:61:f1:59:78:13:d0:84:ad:f5:87:2f:ae:33: aa:f8:dd:87:b0:ab:b7:db:bf:ca:d7:d7:ec:3a:c8: e9:dc:f4:26:b8:62:c8:82:ed:0e:fa:08:78:32:db: 84:33:03:f4:8e:7c:b9:5a:f6:75:3b:13:ae:8f:7a: cf:61:54:25:ca:56:16:a0:86:01:a5:55:95:1b:af: 92:0f:2c:9a:07:c4:46:eb:88:f7:06:e3:88:9f:a7: e6:92:2f:60:06:91:e7:84:bd:0e:2a:b4:5e:01:72: 00:b9:db:1a:4c:dd:e4:06:74:b3:8f:4e:54:69:12: 8f:54:b9:73:65:0b:f7:22:76:c2:28:0e:76:cb:dc: 49:33:4b:78:a0:69:a6:18:98:f8:1b:91:b8:bd:ae: a2:6c:8c:7f:e1:69:2b:5c:20:7d:18:50:56:e9:2f: 37:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A0:13:2E:E3:16:43:6F:6A:7D:A1:56:07:20:C7:6F:C8:4D:22:D7 X509v3 Authority Key Identifier: keyid:D9:55:95:C6:09:5B:4D:FA:E2:CB:9B:45:B9:08:9C:C2:62:3D:94:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/2VWVxglbTfriy5tFuQicwmI9lKM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2VWVxglbTfriy5tFuQicwmI9lKM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144E38/73331B5E91D111E9B6A9325BC4F9AE02/D7E41D6A788411EA9186C910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.90.176.0/20 IPv6: 2405:fa00::/32 Signature Algorithm: sha256WithRSAEncryption 1b:d4:63:29:8f:bf:fd:38:b6:76:0c:b4:d7:84:8d:04:a0:f5: 54:07:4c:74:54:a0:16:b1:5b:f9:de:f9:21:70:93:21:cd:cb: ec:98:ef:53:52:df:8b:0d:c5:a4:ec:59:99:c3:67:0d:e3:49: 2a:e0:98:95:9c:a5:f9:ec:26:85:fb:f8:2f:26:d1:af:d9:93: 99:aa:c3:e1:5e:9a:bc:fd:32:78:f9:31:4a:23:67:bd:85:62: f8:52:fe:71:dd:b6:99:fe:9a:f3:58:7d:86:44:ec:55:63:a1: c0:7d:08:84:1c:21:2b:ad:a3:6c:b5:b1:56:1d:54:b0:25:6e: b6:16:09:de:72:6d:dd:af:67:1b:f5:9e:0c:21:fd:45:18:c9: 53:ed:12:13:98:1a:4c:17:81:b2:34:c7:21:46:e8:8e:46:2a: aa:ba:9c:88:81:ab:99:9a:5b:ec:4f:e5:6e:9c:5f:d3:ce:15: 89:ae:7d:f2:8d:0f:40:c6:50:38:f9:4f:b1:e1:9e:64:fe:62: 8e:ed:96:4a:9b:24:b6:14:bc:67:81:10:e7:02:66:31:d7:fd: cd:4a:f4:6e:2f:fa:e7:12:eb:b8:ce:23:1e:eb:cb:ba:10:5e: 00:15:7b:1b:b6:ca:4d:8b:3a:97:fc:93:b3:af:a8:8c:9e:57: 38:23:98:85 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFMzgxMTAvBgNVBAUTKEQ5NTU5NUM2MDk1QjRERkFFMkNCOUI0NUI5MDg5Q0My NjIzRDk0QTMwHhcNMjUwNzIyMTc1NjU5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmZDBlYi02NGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuELyG8ND1bSitCazjmlzn7MPBijSx5eFmhI3PeM2OlCmTC6O28UbFvbU8DHG q6I7f3A7jcmS1XF42KKFXwBZ6SEioVCXNRM8DXaVsAihsB0J5nxODnX63Jxf7WHx WXgT0ISt9YcvrjOq+N2HsKu327/K19fsOsjp3PQmuGLIgu0O+gh4MtuEMwP0jny5 WvZ1OxOuj3rPYVQlylYWoIYBpVWVG6+SDyyaB8RG64j3BuOIn6fmki9gBpHnhL0O KrReAXIAudsaTN3kBnSzj05UaRKPVLlzZQv3InbCKA52y9xJM0t4oGmmGJj4G5G4 va6ibIx/4WkrXCB9GFBW6S83MQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGagEy7j FkNvan2hVgcgx2/ITSLXMB8GA1UdIwQYMBaAFNlVlcYJW0364subRbkInMJiPZSj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEUzOC83MzMzMUI1RTkx RDExMUU5QjZBOTMyNUJDNEY5QUUwMi8yVldWeGdsYlRmcml5NXRGdVFpY3dtSTls S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJWV1Z4Z2xiVGZyaXk1dEZ1UWljd21JOWxLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRFMzgvNzMzMzFCNUU5MUQxMTFFOUI2QTkzMjVCQzRGOUFFMDIvRDdFNDFENkE3 ODg0MTFFQTkxODZDOTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBARvWrAwDQQCAAIwBwMFACQF+gAwDQYJKoZIhvcNAQELBQAD ggEBABvUYymPv/04tnYMtNeEjQSg9VQHTHRUoBaxW/ne+SFwkyHNy+yY71NS34sN xaTsWZnDZw3jSSrgmJWcpfnsJoX7+C8m0a/Zk5mqw+Femrz9Mnj5MUojZ72FYvhS /nHdtpn+mvNYfYZE7FVjocB9CIQcISuto2y1sVYdVLAlbrYWCd5ybd2vZxv1ngwh /UUYyVPtEhOYGkwXgbI0xyFG6I5GKqq6nIiBq5maW+xP5W6cX9POFYmuffKND0DG UDj5T7HhnmT+Yo7tlkqbJLYUvGeBEOcCZjHX/c1K9G4v+ucS67jOIx7ry7oQXgAV exu2yk2LOpf8k7OvqIyeVzgjmIU= -----END CERTIFICATE-----Generated at Wed Aug 13 13:29:53 2025 by rpki-client