$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/F9C379F2674F11F09FFF0F5BC4F9AE02.roa File: F9C379F2674F11F09FFF0F5BC4F9AE02.roa (raw, json) Hash identifier: LcAbunDijFcAPxaxvvLn15sAYA8KilXQ0gSd3Vwnavw= Subject key identifier: 96:9D:AB:2F:F2:E5:62:CF:57:14:EE:4A:FB:DB:99:49:57:86:18:AF Certificate issuer: /CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Certificate serial: 0805 Authority key identifier: 69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/F9C379F2674F11F09FFF0F5BC4F9AE02.roa Signing time: Thu 31 Jul 2025 22:02:18 +0000 ROA not before: Thu 31 Jul 2025 22:02:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136481 IP address blocks: 163.53.236.0/22 maxlen: 22 163.53.236.0/24 maxlen: 24 163.53.237.0/24 maxlen: 24 163.53.238.0/24 maxlen: 24 163.53.239.0/24 maxlen: 24 2400:ab20::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 21:17:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2053 (0x805) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB52, serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Validity Not Before: Jul 31 22:02:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=688be7ea-bf99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:f3:ba:4a:4d:19:df:88:ff:f8:29:f3:c7:70: 8a:f1:8d:3e:f5:89:50:3b:a8:1c:fd:a1:ed:38:fe: 37:7a:8d:68:6e:45:da:5e:77:36:e3:09:1b:36:e1: ca:0c:cb:13:ca:f2:aa:1f:d4:0f:cf:ff:89:57:6c: 60:83:cc:bc:02:4b:e8:5d:95:53:39:4f:f9:7e:c4: 9d:e2:93:fa:1b:78:84:39:61:25:96:92:00:85:d8: 02:e7:c9:fd:d5:8f:41:b7:29:e5:2f:b9:fe:90:d8: e6:61:03:76:4f:d9:03:53:de:e3:f9:3a:3d:fa:ff: 30:bf:de:2b:ab:29:5c:61:85:45:dc:e5:14:b5:43: c3:b5:76:29:20:78:d9:22:0c:08:eb:4b:8f:80:e4: bf:63:cb:a0:6f:ac:39:f2:08:e6:07:ce:fc:37:68: d5:36:a1:d7:63:ff:92:62:7f:7f:3f:1b:cd:29:a3: 22:e7:d5:1e:6d:15:88:cf:c3:51:38:8d:e0:3e:db: 89:16:46:3c:64:24:76:e4:24:e2:a8:4f:b3:07:6f: a7:00:c5:a5:24:19:e1:27:1d:e3:9c:bf:a0:8e:24: 2c:69:3a:59:7b:cf:b8:27:b8:8c:21:1d:0d:ee:21: 41:cd:5c:b6:80:68:90:d2:8c:d7:92:41:c5:b6:06: 29:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9D:AB:2F:F2:E5:62:CF:57:14:EE:4A:FB:DB:99:49:57:86:18:AF X509v3 Authority Key Identifier: keyid:69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/F9C379F2674F11F09FFF0F5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.53.236.0/22 IPv6: 2400:ab20::/32 Signature Algorithm: sha256WithRSAEncryption 17:82:fa:ed:9a:42:c1:8d:f4:4d:2f:be:f0:16:f0:e5:1d:67: 56:ca:21:cd:48:b4:ed:70:6c:be:11:40:52:1a:73:b9:58:39: 3c:a8:68:33:30:53:f4:53:e7:95:bf:28:fc:16:4d:a1:f7:4f: 10:72:eb:f5:7b:7a:37:24:ba:05:34:45:d5:87:78:1b:8c:7c: 98:55:ad:a7:0b:f2:ed:7a:23:69:27:d3:b7:90:9b:de:ce:10: 92:76:e1:cc:ae:f3:3f:b5:68:08:27:db:fd:69:36:62:0f:a0: c9:88:d5:a2:ea:a4:40:1a:38:22:f1:e4:42:8e:8e:25:16:36: ae:95:a5:14:fe:04:a2:a1:19:20:f4:7a:8d:ef:af:a7:f5:05: b9:af:d8:0d:a9:fd:17:c7:78:f0:95:a5:9a:2c:a0:8d:28:b5: aa:24:eb:87:52:fc:1b:0d:38:fb:b2:23:fb:fe:2e:7b:42:c4: c2:9e:c3:75:dd:85:d7:bb:4a:75:10:59:cf:fd:43:37:a6:dd: ec:cc:a9:8f:33:e2:0b:88:a4:10:5d:6f:81:e5:47:6f:77:17: e4:96:e3:fc:72:e2:55:89:d0:c4:7c:67:d8:c4:6a:46:d4:a2: 0d:95:bf:0d:85:ed:ef:8e:f8:9a:81:b8:ff:2a:dd:67:49:87: b3:06:64:de -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCAUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCNTIxMTAvBgNVBAUTKDY5M0I3MUE1QjVEQTYwNTRERjdGOUMwRDM3OUNGNTIw QzFDOEYyOTEwHhcNMjUwNzMxMjIwMjE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiZTdlYS1iZjk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo/O6Sk0Z34j/+Cnzx3CK8Y0+9YlQO6gc/aHtOP43eo1obkXaXnc24wkbNuHK DMsTyvKqH9QPz/+JV2xgg8y8AkvoXZVTOU/5fsSd4pP6G3iEOWEllpIAhdgC58n9 1Y9BtynlL7n+kNjmYQN2T9kDU97j+To9+v8wv94rqylcYYVF3OUUtUPDtXYpIHjZ IgwI60uPgOS/Y8ugb6w58gjmB878N2jVNqHXY/+SYn9/PxvNKaMi59UebRWIz8NR OI3gPtuJFkY8ZCR25CTiqE+zB2+nAMWlJBnhJx3jnL+gjiQsaTpZe8+4J7iMIR0N 7iFBzVy2gGiQ0ozXkkHFtgYp1QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJadqy/y 5WLPVxTuSvvbmUlXhhivMB8GA1UdIwQYMBaAFGk7caW12mBU33+cDTec9SDByPKR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REI1Mi80NUY1NTZCRUYy ODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlGVGZmNXdOTjV6MUlNSEk4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUdHhwYlhhWUZUZmY1d05ONXoxSU1ISThwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCNTIvNDVGNTU2QkVGMjgwMTFFQTg3MUJBRDZBQzRGOUFFMDIvRjlDMzc5RjI2 NzRGMTFGMDlGRkYwRjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAKjNewwDQQCAAIwBwMFACQAqyAwDQYJKoZIhvcNAQELBQAD ggEBABeC+u2aQsGN9E0vvvAW8OUdZ1bKIc1ItO1wbL4RQFIac7lYOTyoaDMwU/RT 55W/KPwWTaH3TxBy6/V7ejckugU0RdWHeBuMfJhVracL8u16I2kn07eQm97OEJJ2 4cyu8z+1aAgn2/1pNmIPoMmI1aLqpEAaOCLx5EKOjiUWNq6VpRT+BKKhGSD0eo3v r6f1Bbmv2A2p/RfHePCVpZosoI0otaok64dS/BsNOPuyI/v+LntCxMKew3Xdhde7 SnUQWc/9Qzem3ezMqY8z4guIpBBdb4HlR293F+SW4/xy4lWJ0MR8Z9jEakbUog2V vw2F7e+O+JqBuP8q3WdJh7MGZN4= -----END CERTIFICATE-----Generated at Wed Aug 13 07:58:24 2025 by rpki-client