$ rpki-client -vvf rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/46C0C4E0770311F09B9D387BC4F9AE02.roa File: 46C0C4E0770311F09B9D387BC4F9AE02.roa (raw, json) Hash identifier: OeFUJInFH4cNkqvMFV8k9Dy5HiypZ14/pThp2DVW2AA= Subject key identifier: 9B:8E:20:15:F3:28:14:8F:8B:3D:41:0A:7A:D8:36:DE:AD:16:32:05 Certificate issuer: /CN=A917C909/serialNumber=59F9D48DD916909783E31771D8AD7ECB30DC3BA2 Certificate serial: 85 Authority key identifier: 59:F9:D4:8D:D9:16:90:97:83:E3:17:71:D8:AD:7E:CB:30:DC:3B:A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WfnUjdkWkJeD4xdx2K1-yzDcO6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/46C0C4E0770311F09B9D387BC4F9AE02.roa Signing time: Mon 11 Aug 2025 22:36:09 +0000 ROA not before: Mon 11 Aug 2025 22:36:09 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 133458 IP address blocks: 161.248.2.0/23 maxlen: 24 209.131.124.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/WfnUjdkWkJeD4xdx2K1-yzDcO6I.crl rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/WfnUjdkWkJeD4xdx2K1-yzDcO6I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WfnUjdkWkJeD4xdx2K1-yzDcO6I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 02:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C909, serialNumber=59F9D48DD916909783E31771D8AD7ECB30DC3BA2 Validity Not Before: Aug 11 22:36:09 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=689a7059-f6a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:e6:fe:7a:ea:e0:0f:fb:7b:91:2b:6e:09:5e: 45:6b:a8:1a:d6:5a:5d:14:88:36:88:84:33:26:25: ee:ab:5f:1c:b9:d7:c0:33:7e:90:c0:73:93:8a:57: 05:c0:0e:30:59:36:2d:8a:b4:2f:1f:be:eb:6b:d6: 69:26:09:f9:2b:8f:ea:1e:af:24:1d:57:6d:7b:7d: f4:d5:0c:d0:ec:56:89:7a:9d:cf:01:35:08:ef:90: aa:f9:a1:82:15:a4:16:5a:db:9b:7f:b2:b0:4f:dd: de:ed:ec:5b:28:7a:36:9d:9f:a8:8a:39:0c:af:58: 08:55:e6:95:e7:1a:89:c4:66:27:8e:91:50:4c:06: 32:93:65:7d:e2:87:60:b7:d4:c3:68:90:df:07:e8: 19:95:73:7c:56:80:7a:c3:c8:99:7d:31:5d:31:ad: e6:5c:37:89:a7:76:1a:37:e5:a3:5e:91:27:9e:2c: 38:0a:0a:87:6a:96:e5:75:b3:05:b6:25:ea:03:a1: af:73:73:56:a2:c7:9b:42:01:bc:4a:da:51:b4:30: df:33:e2:94:76:1f:0f:35:29:3c:db:02:57:86:be: 3b:ec:f7:32:83:32:86:9b:6d:54:e1:ab:eb:8a:7a: cf:dc:ff:7d:67:a5:19:3c:97:3b:28:ab:da:bc:e8: ff:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:8E:20:15:F3:28:14:8F:8B:3D:41:0A:7A:D8:36:DE:AD:16:32:05 X509v3 Authority Key Identifier: keyid:59:F9:D4:8D:D9:16:90:97:83:E3:17:71:D8:AD:7E:CB:30:DC:3B:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/WfnUjdkWkJeD4xdx2K1-yzDcO6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/WfnUjdkWkJeD4xdx2K1-yzDcO6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C909/FF7C5FDCC0DB11EF9E871844C4F9AE02/46C0C4E0770311F09B9D387BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.2.0/23 209.131.124.0/23 Signature Algorithm: sha256WithRSAEncryption 48:ec:ca:87:ea:da:dd:af:62:1f:1a:76:bf:06:f0:55:9f:e7: 56:93:91:79:b9:17:11:ec:2a:53:04:d0:8f:f6:c0:2b:2f:46: b5:eb:44:3d:80:25:18:cf:a9:c5:89:61:00:a9:43:a1:2f:62: a0:3e:21:c7:7d:ad:cb:2a:cb:ea:b4:b8:d9:48:0e:8f:73:9e: e4:c1:76:f3:35:37:61:e5:6a:56:0d:2b:64:34:5e:90:3f:e0: a9:11:3a:ae:83:4d:57:23:60:ed:90:e4:a2:c0:22:63:48:40: 9a:b1:b0:26:a7:27:15:c0:2e:ff:b2:02:5a:ef:09:7b:c3:59: bf:c2:c7:8c:30:22:aa:8a:e8:c8:69:28:f8:90:03:73:22:b3: 71:9c:a3:ba:f4:2b:41:7d:27:1c:f1:39:fe:d0:1e:48:12:d9: 25:ef:b9:f5:d3:29:3d:93:25:46:26:ec:d5:36:5e:1c:98:74: 1f:c7:aa:fa:2e:e0:06:5c:04:46:29:92:8e:35:93:fc:42:89: 0c:e9:c2:cf:a2:9a:4b:fd:50:c3:05:91:83:ab:17:c1:87:7f: d0:c1:1a:66:12:69:bf:00:36:9d:6b:27:cd:00:72:ec:8d:90: d2:23:23:32:cf:cd:c9:10:26:95:f5:98:b6:42:44:b5:39:e6: b7:d4:5a:60 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MDkxMTAvBgNVBAUTKDU5RjlENDhERDkxNjkwOTc4M0UzMTc3MUQ4QUQ3RUNC MzBEQzNCQTIwHhcNMjUwODExMjIzNjA5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODlhNzA1OS1mNmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7eb+eurgD/t7kStuCV5Fa6ga1lpdFIg2iIQzJiXuq18cudfAM36QwHOTilcF wA4wWTYtirQvH77ra9ZpJgn5K4/qHq8kHVdte3301QzQ7FaJep3PATUI75Cq+aGC FaQWWtubf7KwT93e7exbKHo2nZ+oijkMr1gIVeaV5xqJxGYnjpFQTAYyk2V94odg t9TDaJDfB+gZlXN8VoB6w8iZfTFdMa3mXDeJp3YaN+WjXpEnniw4CgqHapbldbMF tiXqA6Gvc3NWosebQgG8StpRtDDfM+KUdh8PNSk82wJXhr477PcygzKGm21U4avr inrP3P99Z6UZPJc7KKvavOj/7QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJuOIBXz KBSPiz1BCnrYNt6tFjIFMB8GA1UdIwQYMBaAFFn51I3ZFpCXg+MXcditfssw3Dui MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkwOS9GRjdDNUZEQ0Mw REIxMUVGOUU4NzE4NDRDNEY5QUUwMi9XZm5VamRrV2tKZUQ0eGR4MksxLXl6RGNP NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1dmblVqZGtXa0plRDR4ZHgySzEteXpEY082SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M5MDkvRkY3QzVGRENDMERCMTFFRjlFODcxODQ0QzRGOUFFMDIvNDZDMEM0RTA3 NzAzMTFGMDlCOUQzODdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGh+AIDBAHRg3wwDQYJKoZIhvcNAQELBQADggEBAEjsyofq 2t2vYh8adr8G8FWf51aTkXm5FxHsKlME0I/2wCsvRrXrRD2AJRjPqcWJYQCpQ6Ev YqA+Icd9rcsqy+q0uNlIDo9znuTBdvM1N2HlalYNK2Q0XpA/4KkROq6DTVcjYO2Q 5KLAImNIQJqxsCanJxXALv+yAlrvCXvDWb/Cx4wwIqqK6MhpKPiQA3Mis3Gco7r0 K0F9JxzxOf7QHkgS2SXvufXTKT2TJUYm7NU2XhyYdB/Hqvou4AZcBEYpko41k/xC iQzpws+imkv9UMMFkYOrF8GHf9DBGmYSab8ANp1rJ80AcuyNkNIjIzLPzckQJpX1 mLZCRLU55rfUWmA= -----END CERTIFICATE-----Generated at Wed Aug 13 15:43:48 2025 by rpki-client