$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/7DBDA87C561A11E79F98831DC4F9AE02.roa File: 7DBDA87C561A11E79F98831DC4F9AE02.roa (raw, json) Hash identifier: m/PBzrUGWugPaCGagvAaIChjvxuAIIbVmkI5yx8UVT8= Subject key identifier: 3E:B1:1E:F5:01:A4:92:7E:FC:4A:82:9D:48:91:22:0A:96:C5:7C:39 Certificate issuer: /CN=A917B4C6/serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Certificate serial: 23B3 Authority key identifier: 02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/7DBDA87C561A11E79F98831DC4F9AE02.roa Signing time: Mon 28 Apr 2025 16:23:15 +0000 ROA not before: Mon 28 Apr 2025 16:23:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18014 IP address blocks: 113.29.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 15:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9139 (0x23b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4C6, serialNumber=02230D954E4F3D6AAD4495D74CDB3EE0F287CA07 Validity Not Before: Apr 28 16:23:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680fab72-fc57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:37:47:23:91:60:27:04:25:b1:47:2f:99:c2: 26:87:97:8f:4c:3e:26:ff:a1:56:09:bb:21:1c:a1: 98:61:48:40:af:af:98:17:09:99:ff:4c:be:ca:31: a1:8c:e0:6e:8c:78:b7:97:31:07:5c:31:d3:4a:1d: 60:70:a9:9a:e1:b6:20:fc:d3:ac:dc:95:cb:ad:7f: 0e:51:a4:60:97:88:d7:10:8f:f6:36:bf:17:8b:01: 0e:4f:08:c5:8b:45:52:7a:7d:cf:1b:72:d1:95:91: ce:de:ee:f0:28:01:44:64:64:c3:fd:d0:7b:e7:24: 9d:1f:1e:c6:5c:a5:2e:ae:d4:d8:28:77:9b:18:34: 9e:39:95:8f:8e:0b:c6:8c:d8:92:a9:97:e6:74:a8: 8b:de:c3:19:9c:ee:ba:7f:7a:74:5f:aa:c6:0c:de: 97:a1:df:50:57:ce:4f:ce:26:f2:16:a9:c2:e0:5f: 0e:c5:cb:7d:88:40:76:ca:97:4a:04:34:73:86:b0: 5d:06:0c:43:04:2e:32:d3:1a:b5:66:6d:ad:b7:8a: 4d:68:77:24:c0:a6:a7:0f:f0:a2:52:f9:0e:99:40: b8:3b:4e:9f:56:f4:75:53:0a:02:ec:41:40:90:c4: d4:e5:fb:a4:92:22:00:16:c7:38:fe:40:a3:29:bf: d7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:B1:1E:F5:01:A4:92:7E:FC:4A:82:9D:48:91:22:0A:96:C5:7C:39 X509v3 Authority Key Identifier: keyid:02:23:0D:95:4E:4F:3D:6A:AD:44:95:D7:4C:DB:3E:E0:F2:87:CA:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/AiMNlU5PPWqtRJXXTNs-4PKHygc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AiMNlU5PPWqtRJXXTNs-4PKHygc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4C6/8DFE628878A111E5ADE97082C4F9AE02/7DBDA87C561A11E79F98831DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.29.248.0/22 Signature Algorithm: sha256WithRSAEncryption 51:59:13:ff:4b:26:2e:8c:db:1e:fe:6f:ad:a7:e5:fd:ac:db: 8d:be:40:cb:7f:83:02:99:9f:3b:17:8d:15:f4:85:e4:7c:74: 67:81:56:53:03:ec:a0:44:9f:45:52:78:f7:c4:e6:41:19:29: 52:49:04:5c:be:59:da:5d:8d:a7:d5:96:f1:48:35:96:2f:7e: 6d:7b:7c:c6:21:bb:5c:6b:5d:a2:e4:93:16:5e:c2:1c:5e:3a: 97:59:f3:b1:40:d0:c4:ca:09:2f:57:95:4c:0b:cd:d3:2c:5a: 6d:24:d6:89:74:ca:88:8a:8c:54:4d:73:8c:5a:17:ad:e0:42: 0f:3c:48:bf:a6:64:88:60:12:08:aa:23:06:d4:b0:11:ed:59: 76:e4:85:ea:28:49:97:70:90:a8:32:4f:30:fa:6a:76:06:a6: c3:9c:e5:7b:f0:fa:b7:aa:6c:e5:33:ec:a8:7a:2e:62:83:d2: fc:2d:10:0a:b5:ee:d6:a7:47:74:61:d5:83:11:95:9b:e5:6c: 61:d7:e3:0a:f5:00:df:fd:39:2f:33:b8:34:98:f0:c6:9e:4b: 6d:d3:6a:dc:66:12:ca:fb:b6:56:ee:ff:fc:b2:8b:61:01:bb: 60:d2:21:ae:31:07:df:88:d4:89:08:2f:a8:f7:41:27:64:db: 2d:69:5c:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICI7MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QzYxMTAvBgNVBAUTKDAyMjMwRDk1NEU0RjNENkFBRDQ0OTVENzRDREIzRUUw RjI4N0NBMDcwHhcNMjUwNDI4MTYyMzE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBmYWI3Mi1mYzU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtzdHI5FgJwQlsUcvmcImh5ePTD4m/6FWCbshHKGYYUhAr6+YFwmZ/0y+yjGh jOBujHi3lzEHXDHTSh1gcKma4bYg/NOs3JXLrX8OUaRgl4jXEI/2Nr8XiwEOTwjF i0VSen3PG3LRlZHO3u7wKAFEZGTD/dB75ySdHx7GXKUurtTYKHebGDSeOZWPjgvG jNiSqZfmdKiL3sMZnO66f3p0X6rGDN6Xod9QV85PzibyFqnC4F8Oxct9iEB2ypdK BDRzhrBdBgxDBC4y0xq1Zm2tt4pNaHckwKanD/CiUvkOmUC4O06fVvR1UwoC7EFA kMTU5fukkiIAFsc4/kCjKb/XkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD6xHvUB pJJ+/EqCnUiRIgqWxXw5MB8GA1UdIwQYMBaAFAIjDZVOTz1qrUSV10zbPuDyh8oH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRDNi84REZFNjI4ODc4 QTExMUU1QURFOTcwODJDNEY5QUUwMi9BaU1ObFU1UFBXcXRSSlhYVE5zLTRQS0h5 Z2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FpTU5sVTVQUFdxdFJKWFhUTnMtNFBLSHlnYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QzYvOERGRTYyODg3OEExMTFFNUFERTk3MDgyQzRGOUFFMDIvN0RCREE4N0M1 NjFBMTFFNzlGOTg4MzFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJxHfgwDQYJKoZIhvcNAQELBQADggEBAFFZE/9LJi6M2x7+ b62n5f2s242+QMt/gwKZnzsXjRX0heR8dGeBVlMD7KBEn0VSePfE5kEZKVJJBFy+ WdpdjafVlvFINZYvfm17fMYhu1xrXaLkkxZewhxeOpdZ87FA0MTKCS9XlUwLzdMs Wm0k1ol0yoiKjFRNc4xaF63gQg88SL+mZIhgEgiqIwbUsBHtWXbkheooSZdwkKgy TzD6anYGpsOc5Xvw+reqbOUz7Kh6LmKD0vwtEAq17tanR3Rh1YMRlZvlbGHX4wr1 AN/9OS8zuDSY8MaeS23TatxmEsr7tlbu//yyi2EBu2DSIa4xB9+I1IkIL6j3QSdk 2y1pXPE= -----END CERTIFICATE-----Generated at Tue Jun 17 23:53:17 2025 by rpki-client