$ rpki-client -vvf rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa File: 9BC1C0762BD411EC81C16155C4F9AE02.roa (raw, json) Hash identifier: a+Y61sonWEkeUKpiRdmPcvnEh5eS40fnFCOIgfk3fv8= Subject key identifier: 43:72:1D:A5:EF:67:08:09:DF:60:8A:E3:BD:9D:18:74:CF:85:61:B5 Certificate issuer: /CN=A914E91C/serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Certificate serial: 04D3 Authority key identifier: 1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa Signing time: Tue 15 Jul 2025 00:35:21 +0000 ROA not before: Tue 15 Jul 2025 00:35:21 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140724 IP address blocks: 203.20.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 00:13:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1235 (0x4d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E91C, serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Validity Not Before: Jul 15 00:35:21 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6875a248-9bad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:42:63:80:b8:1e:32:83:73:75:8a:8d:b5:4b: a3:bc:d3:a7:94:2a:05:4f:d2:76:47:64:3d:dc:fc: b4:dd:6e:ab:3c:1e:2a:f8:fe:f2:e0:1b:fa:8f:ff: 40:da:6a:56:37:95:2f:c6:4b:36:90:dd:0e:29:fb: 2c:ff:eb:d2:5f:d6:84:ed:8b:81:c8:34:9c:11:28: ab:56:7b:98:9e:ec:ed:96:22:76:84:87:b7:35:03: a7:ff:bb:a8:86:bf:5b:ed:c7:a7:d2:3f:1b:db:ac: eb:aa:48:94:0c:a3:3d:22:33:14:2a:2c:7d:d7:b1: af:96:f0:b5:6a:12:73:ea:26:26:2a:3f:79:df:11: d9:94:8f:87:e7:3c:25:46:d6:62:08:5a:5c:b7:14: ed:c3:69:29:5c:f8:69:57:57:0e:23:77:d5:4d:27: 25:32:b3:59:4a:ed:76:ba:54:49:06:ab:44:f7:83: 0f:b5:95:7c:16:e0:ce:86:26:de:a3:38:5e:b7:09: 49:0a:61:2e:3f:b5:5b:df:46:65:a9:70:25:f1:67: fe:68:cd:57:99:0b:1a:48:99:1b:88:13:cb:60:85: 2d:4c:d3:8d:77:c5:d8:ad:d7:a4:5a:51:ee:42:cc: d0:f8:76:86:1d:1d:e6:34:23:32:ba:12:57:17:f1: f7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:72:1D:A5:EF:67:08:09:DF:60:8A:E3:BD:9D:18:74:CF:85:61:B5 X509v3 Authority Key Identifier: keyid:1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.20.0/22 Signature Algorithm: sha256WithRSAEncryption 84:d8:26:97:7f:79:aa:ca:60:95:9f:4d:4c:82:5b:3d:82:e4: a9:68:c2:97:6d:53:bf:90:9d:5b:10:c9:2e:7c:bd:9c:b2:40: 46:f1:2c:38:dc:e7:fd:a1:36:0e:b7:62:da:7c:b8:3c:4d:42: b6:fe:3f:b7:56:fa:1d:ba:67:79:d5:08:9a:91:0d:20:97:94: 4a:ae:4c:ab:16:b9:b5:19:0a:4e:a8:b6:0f:b4:21:f8:52:49: 72:01:b9:2d:cd:01:55:19:96:e4:40:ed:cc:64:28:4d:a2:9c: da:11:27:46:ca:ac:54:7a:97:bf:83:69:03:a9:9a:b6:c7:2e: 40:35:0d:38:19:98:9e:89:a0:16:64:3c:5c:a0:cb:25:da:85: e5:67:49:19:34:ae:4b:1b:ea:81:c6:64:22:31:3d:6e:a4:35: c1:19:cd:52:e7:6c:82:c9:ce:54:09:cc:7a:ad:1f:61:db:fd: 26:ce:be:88:97:be:99:c3:eb:52:99:ae:f1:d3:64:6d:6d:06: 49:af:3c:59:31:92:96:7e:66:48:62:ff:d5:86:38:e0:7b:df: 99:75:4e:bb:99:f7:9e:00:4d:45:74:ee:c0:63:28:0d:05:9c: 8c:a9:0b:6c:77:de:0b:8b:ed:fb:96:88:9d:fe:7e:98:5a:33: fb:9e:fd:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5MUMxMTAvBgNVBAUTKDFBNjEyMzA3NTY5NEI4MjIxOEFBMkZDNzZGNjE1QjQw MjU1OTYxNTYwHhcNMjUwNzE1MDAzNTIxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1YTI0OC05YmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9kJjgLgeMoNzdYqNtUujvNOnlCoFT9J2R2Q93Py03W6rPB4q+P7y4Bv6j/9A 2mpWN5Uvxks2kN0OKfss/+vSX9aE7YuByDScESirVnuYnuztliJ2hIe3NQOn/7uo hr9b7cen0j8b26zrqkiUDKM9IjMUKix917GvlvC1ahJz6iYmKj953xHZlI+H5zwl RtZiCFpctxTtw2kpXPhpV1cOI3fVTSclMrNZSu12ulRJBqtE94MPtZV8FuDOhibe ozhetwlJCmEuP7Vb30ZlqXAl8Wf+aM1XmQsaSJkbiBPLYIUtTNONd8XYrdekWlHu QszQ+HaGHR3mNCMyuhJXF/H3TQIDAQABo4IClTCCApEwHQYDVR0OBBYEFENyHaXv ZwgJ32CK472dGHTPhWG1MB8GA1UdIwQYMBaAFBphIwdWlLgiGKovx29hW0AlWWFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkxQy9CQzI2M0E4RTJC RDExMUVDQURERkEzMTFDNEY5QUUwMi9HbUVqQjFhVXVDSVlxaV9IYjJGYlFDVlpZ VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtRWpCMWFVdUNJWXFpX0hiMkZiUUNWWllWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5MUMvQkMyNjNBOEUyQkQxMTFFQ0FEREZBMzExQzRGOUFFMDIvOUJDMUMwNzYy QkQ0MTFFQzgxQzE2MTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLFBQwDQYJKoZIhvcNAQELBQADggEBAITYJpd/earKYJWf TUyCWz2C5KlowpdtU7+QnVsQyS58vZyyQEbxLDjc5/2hNg63Ytp8uDxNQrb+P7dW +h26Z3nVCJqRDSCXlEquTKsWubUZCk6otg+0IfhSSXIBuS3NAVUZluRA7cxkKE2i nNoRJ0bKrFR6l7+DaQOpmrbHLkA1DTgZmJ6JoBZkPFygyyXaheVnSRk0rksb6oHG ZCIxPW6kNcEZzVLnbILJzlQJzHqtH2Hb/SbOvoiXvpnD61KZrvHTZG1tBkmvPFkx kpZ+Zkhi/9WGOOB735l1TruZ954ATUV07sBjKA0FnIypC2x33guL7fuWiJ3+fpha M/ue/fI= -----END CERTIFICATE-----Generated at Wed Aug 13 16:11:18 2025 by rpki-client