$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C828314A02CC11E6AA35863CC4F9AE02.roa File: C828314A02CC11E6AA35863CC4F9AE02.roa (raw, json) Hash identifier: pK1U2tlcFI5eVZ+yZ2Uz2T2hO3URX24xuIkzXvQNT6Q= Subject key identifier: 25:45:78:1E:03:BD:A9:47:64:31:18:FF:78:BD:D4:EB:02:F0:B6:73 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2568 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C828314A02CC11E6AA35863CC4F9AE02.roa Signing time: Mon 04 Aug 2025 16:24:17 +0000 ROA not before: Mon 04 Aug 2025 16:24:17 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 18115 IP address blocks: 112.198.48.0/24 maxlen: 24 203.177.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9576 (0x2568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:17 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6890deb0-e6ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:67:9e:23:f5:65:05:ee:90:6b:03:d4:44:3a: b5:a0:a2:64:61:7b:24:e4:ab:fc:3c:cf:8a:e8:59: 51:1a:39:32:b3:be:13:f5:04:88:f2:c6:c7:f0:3e: 4a:3a:54:38:67:ed:be:e4:60:6e:95:00:39:0d:23: 83:1d:1f:03:bb:06:f3:b1:c6:d1:cb:e7:50:62:72: 0a:02:11:60:77:95:be:51:9f:06:05:fa:58:ff:23: 5b:c5:03:4e:43:34:6c:3c:cd:01:0b:63:fa:de:ff: fc:da:db:da:e7:ce:6a:15:cd:45:e6:ab:a9:d7:c5: ba:a6:1e:bb:d4:98:67:39:6d:b5:7a:68:51:c8:62: d8:bc:a4:99:e5:e9:57:9e:c5:9c:7c:71:89:98:54: c3:09:b3:ac:21:db:01:e3:ec:01:00:f3:a5:41:86: 73:d6:f2:04:c6:7d:f2:88:9b:fe:4b:96:8c:e7:db: 2d:8e:29:ff:3d:8d:f2:16:0d:72:5b:09:07:44:2c: f5:96:97:f6:42:79:c7:97:ad:c5:11:0f:dd:72:49: 38:f9:27:09:17:64:c0:f8:d8:c2:04:55:b0:b9:c2: 28:a4:bc:49:b4:a2:ac:f1:81:32:bd:3e:ba:a6:d4: 17:a9:8b:6a:c3:82:fb:6f:f8:09:a6:71:4d:b4:b0: 29:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:45:78:1E:03:BD:A9:47:64:31:18:FF:78:BD:D4:EB:02:F0:B6:73 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C828314A02CC11E6AA35863CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.198.48.0/24 203.177.228.0/24 Signature Algorithm: sha256WithRSAEncryption a2:7b:89:9c:03:74:bd:5f:0a:de:b5:33:67:44:94:7b:c8:92: 1b:8d:75:47:57:76:87:5c:33:3d:dd:ac:80:51:d1:5b:79:d8: 0f:27:66:b0:7b:90:70:53:37:4e:c9:80:de:92:b8:dd:5b:0c: 8f:d4:57:9e:ab:af:ad:26:46:aa:ed:c4:c3:d5:7d:e7:85:fb: 12:01:60:6a:a5:cf:61:5a:be:59:8a:eb:73:66:10:5b:d7:35: 25:6f:49:78:33:ac:26:13:cb:1f:81:b6:27:fb:8e:27:05:85: c5:d0:7f:29:1a:a6:cd:4c:62:19:f1:8b:d2:b8:78:75:fc:fe: 35:ad:0f:ed:f9:12:8b:a4:a6:e1:52:a5:c0:b2:2c:d4:df:60: bf:7d:f5:55:20:24:b8:bd:a9:3d:e6:1d:a2:ae:f8:4b:b2:96: ae:71:cb:12:dd:50:19:f5:18:75:00:36:d3:ff:00:c3:76:6f: 7e:06:b2:47:5d:fd:8d:50:57:28:38:fe:5a:4f:c9:1f:7c:25: 52:24:11:1c:7d:fb:c9:82:de:5b:95:92:dd:dd:66:ee:14:5b: 5d:81:5e:1a:45:e2:da:c2:36:b4:13:ff:9d:0c:55:6e:6b:a1: 94:a2:58:2b:38:f4:7a:4b:3b:ff:18:c4:a9:94:4f:3b:1d:f8: 41:92:9b:bc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDE3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwZGViMC1lNmZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3meeI/VlBe6QawPURDq1oKJkYXsk5Kv8PM+K6FlRGjkys74T9QSI8sbH8D5K OlQ4Z+2+5GBulQA5DSODHR8DuwbzscbRy+dQYnIKAhFgd5W+UZ8GBfpY/yNbxQNO QzRsPM0BC2P63v/82tva585qFc1F5qup18W6ph671JhnOW21emhRyGLYvKSZ5elX nsWcfHGJmFTDCbOsIdsB4+wBAPOlQYZz1vIExn3yiJv+S5aM59stjin/PY3yFg1y WwkHRCz1lpf2QnnHl63FEQ/dckk4+ScJF2TA+NjCBFWwucIopLxJtKKs8YEyvT66 ptQXqYtqw4L7b/gJpnFNtLAphwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCVFeB4D valHZDEY/3i91OsC8LZzMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQzgyODMxNEEw MkNDMTFFNkFBMzU4NjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABwxjADBADLseQwDQYJKoZIhvcNAQELBQADggEBAKJ7iZwD dL1fCt61M2dElHvIkhuNdUdXdodcMz3drIBR0Vt52A8nZrB7kHBTN07JgN6SuN1b DI/UV56rr60mRqrtxMPVfeeF+xIBYGqlz2FavlmK63NmEFvXNSVvSXgzrCYTyx+B tif7jicFhcXQfykaps1MYhnxi9K4eHX8/jWtD+35EoukpuFSpcCyLNTfYL999VUg JLi9qT3mHaKu+Euylq5xyxLdUBn1GHUANtP/AMN2b34Gskdd/Y1QVyg4/lpPyR98 JVIkERx9+8mC3luVkt3dZu4UW12BXhpF4trCNrQT/50MVW5roZSiWCs49HpLO/8Y xKmUTzsd+EGSm7w= -----END CERTIFICATE-----Generated at Mon Aug 11 04:09:32 2025 by rpki-client