$ rpki-client -vvf rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/609B8BC27D7B11EDB6B77173C4F9AE02.roa File: 609B8BC27D7B11EDB6B77173C4F9AE02.roa (raw, json) Hash identifier: /PsoGtK7sk/1NM2LKDz9lkrfphVbqKl1YtY9n4XLc64= Subject key identifier: EB:38:D9:DD:1D:DC:EA:FE:55:41:60:4E:A5:A8:57:13:38:AD:1D:3B Certificate issuer: /CN=A914B5BD/serialNumber=22E81B327CB1FB3501E05AFAB94121918FDB5B5E Certificate serial: 187C Authority key identifier: 22:E8:1B:32:7C:B1:FB:35:01:E0:5A:FA:B9:41:21:91:8F:DB:5B:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/609B8BC27D7B11EDB6B77173C4F9AE02.roa Signing time: Thu 07 Aug 2025 17:46:40 +0000 ROA not before: Thu 07 Aug 2025 17:46:40 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 60064 IP address blocks: 43.239.141.0/24 maxlen: 24 43.239.142.0/24 maxlen: 24 43.239.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.crl rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6268 (0x187c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B5BD, serialNumber=22E81B327CB1FB3501E05AFAB94121918FDB5B5E Validity Not Before: Aug 7 17:46:40 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6894e680-ae61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:39:5b:f2:bf:90:ca:60:17:46:25:52:93:fd: 76:a7:74:80:27:6d:34:d7:86:94:61:71:ca:31:91: 62:47:df:67:d7:b4:57:5e:33:55:4c:56:4b:56:bb: c0:7e:ab:c7:62:ac:97:c2:c7:5d:23:fe:64:54:5b: 17:28:2e:d1:b1:8f:6e:f9:51:97:c8:a3:8f:6f:9b: db:b1:3a:5a:36:cb:da:a7:95:94:08:fd:9d:bc:89: 27:fc:1d:f8:73:4d:fd:78:8c:9e:c4:b4:cf:a8:be: 4d:c1:17:26:b0:94:42:60:23:2c:61:27:12:6d:6d: 62:51:d8:8d:83:54:a4:72:c5:2f:22:d6:cb:37:45: f6:75:a9:ca:0a:18:91:98:0f:0e:a3:9d:5f:3a:5b: 92:8d:19:8a:54:27:e6:bd:33:d6:ee:46:37:30:99: 1b:4e:e5:e3:c3:1b:91:1d:1f:03:c2:63:af:da:6b: 94:8b:c0:e8:fc:33:35:b0:91:35:99:5d:a8:d1:6b: 32:e4:1a:bf:87:56:00:3e:79:c1:df:67:74:33:c6: 1d:c2:50:c9:e7:9f:9d:64:49:7b:16:dc:3d:a9:f5: 23:fd:42:d9:2d:83:be:1d:cc:f2:a4:a3:fc:4a:6e: 09:e6:af:68:6d:e0:6b:76:34:0d:85:2f:52:89:66: 9e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:38:D9:DD:1D:DC:EA:FE:55:41:60:4E:A5:A8:57:13:38:AD:1D:3B X509v3 Authority Key Identifier: keyid:22:E8:1B:32:7C:B1:FB:35:01:E0:5A:FA:B9:41:21:91:8F:DB:5B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/609B8BC27D7B11EDB6B77173C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.141.0-43.239.143.255 Signature Algorithm: sha256WithRSAEncryption b0:a5:7c:7b:50:5c:5b:fa:08:38:9f:84:41:f8:11:a6:d9:b5: f9:c2:ee:76:32:e5:37:cf:90:b9:3c:e9:87:94:ba:99:f7:54: ad:af:ba:1f:df:64:4f:30:70:ad:5f:69:cf:28:b3:e9:c8:09: 5c:0a:3b:e4:15:3b:63:9d:be:94:8e:ea:58:63:59:08:c0:97: 1c:89:a1:5f:59:e4:02:b3:f5:0a:39:27:39:54:91:61:95:51: b6:89:a0:3d:d1:55:a2:de:f5:c0:7b:aa:37:d2:79:51:b1:00: a2:b2:cb:85:75:48:b3:0a:a0:75:66:aa:70:f5:31:f3:19:1e: 48:98:90:41:d3:f8:76:61:d6:6d:9b:02:ed:26:9c:2a:6e:2e: 8a:87:fa:a6:38:cb:79:00:49:19:96:ed:ec:ed:89:a7:df:38: 2d:b9:d3:ea:cc:94:84:f8:bf:15:e8:42:89:aa:b3:e2:22:d6: 55:c2:28:2a:b9:42:12:a7:80:08:b1:77:0d:3a:25:36:8f:ee: 30:43:32:31:64:99:93:f1:66:4b:28:88:5c:76:fc:6d:fd:4b: c7:6c:15:a9:4f:12:f9:df:ac:28:6e:ec:01:b7:73:0e:ad:cd: b1:0e:3f:3d:1a:ac:d2:fb:f5:50:b7:7d:33:b5:a5:7a:03:32: 36:d2:be:dd -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICGHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1QkQxMTAvBgNVBAUTKDIyRTgxQjMyN0NCMUZCMzUwMUUwNUFGQUI5NDEyMTkx OEZEQjVCNUUwHhcNMjUwODA3MTc0NjQwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0ZTY4MC1hZTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvzlb8r+QymAXRiVSk/12p3SAJ20014aUYXHKMZFiR99n17RXXjNVTFZLVrvA fqvHYqyXwsddI/5kVFsXKC7RsY9u+VGXyKOPb5vbsTpaNsvap5WUCP2dvIkn/B34 c039eIyexLTPqL5NwRcmsJRCYCMsYScSbW1iUdiNg1SkcsUvItbLN0X2danKChiR mA8Oo51fOluSjRmKVCfmvTPW7kY3MJkbTuXjwxuRHR8DwmOv2muUi8Do/DM1sJE1 mV2o0Wsy5Bq/h1YAPnnB32d0M8YdwlDJ55+dZEl7Ftw9qfUj/ULZLYO+HczypKP8 Sm4J5q9obeBrdjQNhS9SiWaeKwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFOs42d0d 3Or+VUFgTqWoVxM4rR07MB8GA1UdIwQYMBaAFCLoGzJ8sfs1AeBa+rlBIZGP21te MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjVCRC8zM0NCMTE3QUI1 QTkxMUU3OUM3NENCNzJDNEY5QUUwMi9JdWdiTW55eC16VUI0RnI2dVVFaGtZX2JX MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l1Z2JNbnl4LXpVQjRGcjZ1VUVoa1lfYlcxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEI1QkQvMzNDQjExN0FCNUE5MTFFNzlDNzRDQjcyQzRGOUFFMDIvNjA5QjhCQzI3 RDdCMTFFREI2Qjc3MTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEACvvjQMEBCvvgDANBgkqhkiG9w0BAQsFAAOCAQEAsKV8 e1BcW/oIOJ+EQfgRptm1+cLudjLlN8+QuTzph5S6mfdUra+6H99kTzBwrV9pzyiz 6cgJXAo75BU7Y52+lI7qWGNZCMCXHImhX1nkArP1CjknOVSRYZVRtomgPdFVot71 wHuqN9J5UbEAorLLhXVIswqgdWaqcPUx8xkeSJiQQdP4dmHWbZsC7SacKm4uiof6 pjjLeQBJGZbt7O2Jp984LbnT6syUhPi/FehCiaqz4iLWVcIoKrlCEqeACLF3DTol No/uMEMyMWSZk/FmSyiIXHb8bf1Lx2wVqU8S+d+sKG7sAbdzDq3NsQ4/PRqs0vv1 ULd9M7WlegMyNtK+3Q== -----END CERTIFICATE-----Generated at Sun Aug 10 04:51:26 2025 by rpki-client