$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CCE4E99E02CC11E6AA35863CC4F9AE02.roa File: CCE4E99E02CC11E6AA35863CC4F9AE02.roa (raw, json) Hash identifier: QKfklbWPsoXlxByZaPbmc1+075SBHQiALuuEdPCAB50= Subject key identifier: 88:88:0A:85:F7:B5:5C:7B:59:17:C8:86:86:1E:71:62:02:40:98:4D Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2574 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CCE4E99E02CC11E6AA35863CC4F9AE02.roa Signing time: Mon 04 Aug 2025 16:24:27 +0000 ROA not before: Mon 04 Aug 2025 16:24:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45832 IP address blocks: 120.28.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9588 (0x2574) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6890debb-3fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ec:7e:7a:47:4d:14:cd:a2:ee:98:73:d1:f5: 6e:e2:2c:11:cd:51:84:2f:45:25:0b:be:be:9f:c2: 1b:de:23:3d:16:16:ed:7c:4e:9b:7d:c4:eb:a8:d5: d7:3a:1f:b5:94:a3:24:25:d0:bb:01:e9:c3:4c:87: a5:13:e6:ed:a8:8c:5d:17:7c:b3:94:61:d4:5d:4e: c3:b9:56:1f:72:7d:c7:40:6f:a1:40:05:82:fd:cd: eb:c9:d6:9c:65:db:ed:40:5f:8c:76:74:ad:27:5e: 29:33:6a:9d:05:40:65:63:c3:c5:83:74:a1:52:51: c3:e9:44:e9:56:cd:60:09:2e:84:f4:82:51:8b:52: 9e:36:7e:b5:77:9f:e9:5c:2b:bf:a3:ce:66:2a:6b: c2:d6:b5:8c:52:c4:b0:76:7a:76:88:47:52:e9:8d: 09:85:d2:77:3e:58:fd:d6:83:19:61:bf:be:0f:10: 10:f5:5e:68:f8:45:70:32:c2:8e:b6:f9:1e:d8:36: 84:92:d2:6d:be:4e:79:33:61:0a:19:ee:f3:75:76: 6c:c3:33:f9:1a:4b:3b:05:31:65:b9:6c:a6:35:1c: 31:8f:f2:0a:9e:82:3f:5d:4d:0f:30:3b:8d:cc:16: e7:6d:00:23:08:52:77:1d:c9:d1:a1:33:e5:8d:d1: ac:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:88:0A:85:F7:B5:5C:7B:59:17:C8:86:86:1E:71:62:02:40:98:4D X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CCE4E99E02CC11E6AA35863CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.28.61.0/24 Signature Algorithm: sha256WithRSAEncryption c5:f3:39:a2:3a:ad:7e:2a:12:59:60:69:9d:f0:01:25:2c:9d: 1a:74:f4:20:7d:3f:b2:e3:67:64:b6:c6:7e:92:dc:17:38:94: 2d:55:42:f9:6d:09:eb:71:cd:40:0f:a4:41:29:94:92:85:f7: 1d:ca:5b:5c:b1:5f:bf:03:89:e3:e1:ce:a7:59:fd:3c:e7:3d: 7b:22:82:58:bd:7d:40:a6:03:6b:6a:65:62:34:aa:0b:0f:0f: fd:51:26:67:fc:a2:9e:51:7e:21:a1:04:2d:45:ea:c7:6d:fd: 30:1d:ce:5c:2e:da:c3:68:7f:26:f4:c8:6c:06:20:3c:c9:4a: a7:24:a0:a0:13:cd:90:1d:13:3f:c5:7f:cb:6a:27:ce:c4:c6: 3c:63:aa:79:d4:0e:ba:9a:f6:71:bc:d5:fb:74:61:3d:7a:6e: 8a:ac:f5:78:b4:ca:e3:f9:95:1d:50:d9:c3:20:95:d3:21:d1: d5:47:0b:db:c9:07:fd:1a:d9:1e:5b:1d:0d:88:d5:7f:bf:81: f1:b0:c6:83:b0:4c:d1:f1:f3:77:6e:45:77:28:43:34:6f:b8: 06:3c:f3:78:ee:2d:b0:0b:17:31:d7:bf:07:89:e8:b3:f7:e3: 73:a0:c1:73:39:8f:a1:c6:2b:10:9f:75:82:81:78:3c:96:58: b5:03:2e:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJXQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDI3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwZGViYi0zZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+x+ekdNFM2i7phz0fVu4iwRzVGEL0UlC76+n8Ib3iM9FhbtfE6bfcTrqNXX Oh+1lKMkJdC7AenDTIelE+btqIxdF3yzlGHUXU7DuVYfcn3HQG+hQAWC/c3rydac ZdvtQF+MdnStJ14pM2qdBUBlY8PFg3ShUlHD6UTpVs1gCS6E9IJRi1KeNn61d5/p XCu/o85mKmvC1rWMUsSwdnp2iEdS6Y0JhdJ3Plj91oMZYb++DxAQ9V5o+EVwMsKO tvke2DaEktJtvk55M2EKGe7zdXZswzP5Gks7BTFluWymNRwxj/IKnoI/XU0PMDuN zBbnbQAjCFJ3HcnRoTPljdGsVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIiICoX3 tVx7WRfIhoYecWICQJhNMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQ0NFNEU5OUUw MkNDMTFFNkFBMzU4NjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB4HD0wDQYJKoZIhvcNAQELBQADggEBAMXzOaI6rX4qEllg aZ3wASUsnRp09CB9P7LjZ2S2xn6S3Bc4lC1VQvltCetxzUAPpEEplJKF9x3KW1yx X78DiePhzqdZ/TznPXsigli9fUCmA2tqZWI0qgsPD/1RJmf8op5RfiGhBC1F6sdt /TAdzlwu2sNofyb0yGwGIDzJSqckoKATzZAdEz/Ff8tqJ87ExjxjqnnUDrqa9nG8 1ft0YT16boqs9Xi0yuP5lR1Q2cMgldMh0dVHC9vJB/0a2R5bHQ2I1X+/gfGwxoOw TNHx83duRXcoQzRvuAY883juLbALFzHXvweJ6LP343OgwXM5j6HGKxCfdYKBeDyW WLUDLl4= -----END CERTIFICATE-----Generated at Mon Aug 11 05:54:09 2025 by rpki-client