$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa File: A7B53200784E11E9AE591940C4F9AE02.roa (raw, json) Hash identifier: 7Sd6zZWcoAhu4FmtfG7CBd8GaHpjRFDCdpVIjt/MXOY= Subject key identifier: A1:E9:AE:F9:5C:29:57:36:E5:3B:B1:89:67:4D:7B:83:A1:46:14:32 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 36A5 Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa Signing time: Sat 02 Aug 2025 15:53:11 +0000 ROA not before: Sat 02 Aug 2025 15:53:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 38158 IP address blocks: 121.100.0.0/21 maxlen: 21 121.100.0.0/24 maxlen: 24 2402:9800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13989 (0x36a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214, serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Aug 2 15:53:11 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=688e3467-01dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d6:7b:9a:ab:7d:75:4b:07:e1:56:29:99:9f: 9e:80:fa:76:18:fe:2e:f1:4e:d8:cc:27:ce:09:a3: 25:fd:0d:ab:9b:94:89:86:d9:96:89:05:9f:8c:20: d9:91:49:ca:d6:e2:16:00:af:01:9d:75:59:85:34: 2b:25:66:4d:cf:d5:50:0d:3d:f8:06:e6:3d:b3:1d: d7:36:8a:5c:31:02:49:2f:17:5a:ce:b2:ef:24:a2: 32:0c:ef:ba:3c:61:6c:c5:46:0c:3c:80:3e:28:68: 11:4e:05:8e:e2:a6:0d:97:30:fc:26:56:65:e6:4d: 0b:12:29:f7:27:5c:e9:13:70:5e:37:23:0d:c1:8d: 37:a9:da:db:5f:fa:e6:4d:e4:a1:9b:37:9d:23:d1: 70:e9:9d:96:e4:b4:cc:57:b6:99:e3:0b:ea:bc:c7: 1d:2d:95:ca:35:16:2d:9c:94:47:51:64:de:60:1a: f6:4d:13:e2:0c:72:16:31:a0:74:57:19:68:2b:56: e8:9a:cc:e0:db:9d:3f:f6:7f:69:b4:13:c5:58:a1: db:36:32:0a:14:6a:5b:fe:31:d3:4a:ea:1f:af:f2: 14:dc:ef:8e:a7:63:e3:12:79:6c:b7:c0:3a:8e:f5: 20:96:a2:8c:3c:27:10:bb:56:c2:fa:47:8c:06:34: 2e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:E9:AE:F9:5C:29:57:36:E5:3B:B1:89:67:4D:7B:83:A1:46:14:32 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/A7B53200784E11E9AE591940C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.100.0.0/21 IPv6: 2402:9800::/32 Signature Algorithm: sha256WithRSAEncryption 07:69:2e:db:b1:9e:41:5e:05:75:85:c4:49:98:c4:41:39:a7: 1d:b7:7e:f1:c9:51:0e:0e:47:96:76:b1:ec:f6:1b:e8:58:a6: 07:99:86:cb:d9:a7:86:32:27:a6:63:3d:57:63:fc:81:23:bf: db:30:08:5b:58:80:e7:4a:8d:22:0d:c9:3d:92:10:0b:20:82: c5:c9:d6:c8:88:89:bc:3f:7b:41:91:c5:9a:02:c6:69:c7:b4: 18:e2:b6:c2:b1:e8:fa:07:54:b0:8c:cd:c5:fb:1c:35:22:5f: b3:bf:5b:ac:7c:ba:91:f5:6c:55:88:1c:4c:0e:e3:65:7f:1f: 18:dc:1a:92:a2:f2:36:96:93:34:61:80:f8:3a:3d:c8:9e:cb: c8:57:31:d2:53:84:b4:dd:34:d9:03:25:a4:d1:a1:17:39:f8: e7:25:9a:7e:a5:c5:f2:9c:5a:33:4a:70:33:12:f5:38:27:94: 16:27:16:04:17:73:a9:0a:a8:67:3e:d5:38:d8:bc:9f:bb:ba: 18:3e:43:af:aa:d8:fc:fa:78:5f:6a:f8:a0:5a:a1:53:eb:e1: 32:7f:da:ce:34:bf:3c:90:81:d1:62:c5:c6:34:4f:d7:b6:51: 64:d6:7d:67:a1:58:c0:67:e8:63:63:90:48:79:6b:df:21:1c: 8a:f2:a8:4b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICNqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjUwODAyMTU1MzExWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlMzQ2Ny0wMWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNZ7mqt9dUsH4VYpmZ+egPp2GP4u8U7YzCfOCaMl/Q2rm5SJhtmWiQWfjCDZ kUnK1uIWAK8BnXVZhTQrJWZNz9VQDT34BuY9sx3XNopcMQJJLxdazrLvJKIyDO+6 PGFsxUYMPIA+KGgRTgWO4qYNlzD8JlZl5k0LEin3J1zpE3BeNyMNwY03qdrbX/rm TeShmzedI9Fw6Z2W5LTMV7aZ4wvqvMcdLZXKNRYtnJRHUWTeYBr2TRPiDHIWMaB0 VxloK1bomszg250/9n9ptBPFWKHbNjIKFGpb/jHTSuofr/IU3O+Op2PjEnlst8A6 jvUglqKMPCcQu1bC+keMBjQuOQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKHprvlc KVc25TuxiWdNe4OhRhQyMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvQTdCNTMyMDA3 ODRFMTFFOUFFNTkxOTQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAN5ZAAwDQQCAAIwBwMFACQCmAAwDQYJKoZIhvcNAQELBQAD ggEBAAdpLtuxnkFeBXWFxEmYxEE5px23fvHJUQ4OR5Z2sez2G+hYpgeZhsvZp4Yy J6ZjPVdj/IEjv9swCFtYgOdKjSINyT2SEAsggsXJ1siIibw/e0GRxZoCxmnHtBji tsKx6PoHVLCMzcX7HDUiX7O/W6x8upH1bFWIHEwO42V/HxjcGpKi8jaWkzRhgPg6 Pciey8hXMdJThLTdNNkDJaTRoRc5+Oclmn6lxfKcWjNKcDMS9TgnlBYnFgQXc6kK qGc+1TjYvJ+7uhg+Q6+q2Pz6eF9q+KBaoVPr4TJ/2s40vzyQgdFixcY0T9e2UWTW fWehWMBn6GNjkEh5a98hHIryqEs= -----END CERTIFICATE-----Generated at Sat Aug 9 15:10:51 2025 by rpki-client