$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/28D70012A14F11EC8FF76A62C4F9AE02.roa File: 28D70012A14F11EC8FF76A62C4F9AE02.roa (raw, json) Hash identifier: TAXb6aVncKSk3q+7kBMZVnP/khsko2EZ8HMsWkq82Bs= Subject key identifier: 24:88:E8:D7:66:7A:3E:8E:AB:88:62:2C:34:61:AA:80:7E:03:0D:08 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2560 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/28D70012A14F11EC8FF76A62C4F9AE02.roa Signing time: Mon 04 Aug 2025 16:24:10 +0000 ROA not before: Mon 04 Aug 2025 16:24:09 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139350 IP address blocks: 112.198.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9568 (0x2560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:09 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6890dea9-ad0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c6:64:a5:fe:76:6c:25:62:3e:52:1d:24:79: 38:42:e1:f2:92:6f:01:f3:09:56:61:18:bf:c8:db: 2a:aa:a8:6d:d2:60:9d:25:91:7d:bf:a1:05:ec:07: 45:b7:65:d8:81:6c:83:d9:03:7d:bb:88:f8:f2:d4: db:d1:81:7d:5b:f4:5c:dc:e3:a8:ee:7f:bc:8d:7f: c9:7a:e3:76:f1:50:e0:87:31:b1:8e:c7:08:e6:93: da:bb:5c:2a:02:95:0a:c8:28:d4:bb:86:58:58:ca: 86:59:4a:08:63:18:f8:6d:d5:87:a4:24:b8:a2:96: 79:93:ac:b1:3b:c2:40:c9:d3:1e:32:01:f3:4e:04: 46:4a:eb:80:a4:89:ea:ae:3a:e5:00:41:25:6d:bd: bb:16:d1:37:7b:d9:33:8c:cf:8a:02:fd:95:10:d0: e9:56:61:c1:55:3f:e4:50:dc:4e:4c:9d:53:17:ac: 94:c0:89:00:c7:9a:89:35:b8:55:9e:b2:ce:53:9c: fd:53:93:1b:ea:9a:11:7b:70:fe:5e:77:71:57:11: fa:82:93:39:f8:06:0b:7f:53:6f:ca:60:0f:3e:4b: 38:85:e0:0a:fb:40:9d:46:73:d9:6b:38:23:90:a3: 9a:ad:3c:f2:d1:90:6e:ad:d0:72:f6:69:8a:ce:98: 65:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:88:E8:D7:66:7A:3E:8E:AB:88:62:2C:34:61:AA:80:7E:03:0D:08 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/28D70012A14F11EC8FF76A62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.198.6.0/24 Signature Algorithm: sha256WithRSAEncryption 89:3b:28:7d:8b:9d:d4:bb:0a:37:b2:86:9c:02:03:f9:f6:42: c2:1a:35:3e:a1:d2:00:93:d8:55:8f:e1:6a:d1:24:ff:26:2d: 87:ea:a5:cf:d9:8c:2a:88:85:36:82:3f:c0:ea:32:54:45:df: 43:f1:ca:2a:cb:c2:ed:2c:60:82:a9:b2:09:54:09:68:a4:0b: 37:e1:1e:6c:37:c3:b2:6e:d5:48:8a:79:c9:bd:13:6f:72:46: 3c:49:d7:f8:28:52:ed:c7:9d:73:e6:ff:72:51:46:5c:8d:1d: 3c:4f:13:12:46:89:d2:4f:8e:8e:af:d1:7c:da:29:03:e8:79: ad:88:f9:f9:d9:31:2b:29:d5:80:04:f4:e3:49:0b:5c:5c:24: 87:6d:fb:e9:2c:2f:de:84:fb:bb:4d:89:17:ef:c6:2e:0f:81: 44:61:12:d7:2d:87:93:c9:7f:95:51:51:82:08:fa:a3:b5:91: 4e:7b:1d:15:21:9b:ed:a7:dc:37:a8:ba:86:be:ef:3c:73:fe: e4:2a:71:46:47:da:f4:07:17:da:95:6c:42:bc:3e:c7:05:03: f3:60:07:10:62:73:96:26:b6:5b:9e:26:e5:94:8f:33:59:0a: 88:d1:7e:e3:e4:af:50:91:ed:15:cd:b5:57:e6:ac:55:02:f5: 67:1a:0d:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDA5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwZGVhOS1hZDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkcZkpf52bCViPlIdJHk4QuHykm8B8wlWYRi/yNsqqqht0mCdJZF9v6EF7AdF t2XYgWyD2QN9u4j48tTb0YF9W/Rc3OOo7n+8jX/JeuN28VDghzGxjscI5pPau1wq ApUKyCjUu4ZYWMqGWUoIYxj4bdWHpCS4opZ5k6yxO8JAydMeMgHzTgRGSuuApInq rjrlAEElbb27FtE3e9kzjM+KAv2VENDpVmHBVT/kUNxOTJ1TF6yUwIkAx5qJNbhV nrLOU5z9U5Mb6poRe3D+XndxVxH6gpM5+AYLf1NvymAPPks4heAK+0CdRnPZazgj kKOarTzy0ZBurdBy9mmKzphl3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCSI6Ndm ej6Oq4hiLDRhqoB+Aw0IMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvMjhENzAwMTJB MTRGMTFFQzhGRjc2QTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABwxgYwDQYJKoZIhvcNAQELBQADggEBAIk7KH2LndS7Cjey hpwCA/n2QsIaNT6h0gCT2FWP4WrRJP8mLYfqpc/ZjCqIhTaCP8DqMlRF30PxyirL wu0sYIKpsglUCWikCzfhHmw3w7Ju1UiKecm9E29yRjxJ1/goUu3HnXPm/3JRRlyN HTxPExJGidJPjo6v0XzaKQPoea2I+fnZMSsp1YAE9ONJC1xcJIdt++ksL96E+7tN iRfvxi4PgURhEtcth5PJf5VRUYII+qO1kU57HRUhm+2n3Deouoa+7zxz/uQqcUZH 2vQHF9qVbEK8PscFA/NgBxBic5YmtlueJuWUjzNZCojRfuPkr1CR7RXNtVfmrFUC 9WcaDaA= -----END CERTIFICATE-----Generated at Mon Aug 11 05:59:05 2025 by rpki-client