$ rpki-client -vvf rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/AE2B714A72E911EEA3EFD34AC4F9AE02.roa File: AE2B714A72E911EEA3EFD34AC4F9AE02.roa (raw, json) Hash identifier: +e3HUlovKDRpOXqB7/PZlzff1isIhCZMYZe5Pc4VAfg= Subject key identifier: 1C:28:AA:45:FB:24:2B:2D:11:E8:C0:1E:06:3B:60:BB:3F:F8:55:C0 Certificate issuer: /CN=A9197227/serialNumber=2659CED1527D2CABD8B2C53075ECCD94ED71FE98 Certificate serial: 06A9 Authority key identifier: 26:59:CE:D1:52:7D:2C:AB:D8:B2:C5:30:75:EC:CD:94:ED:71:FE:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/AE2B714A72E911EEA3EFD34AC4F9AE02.roa Signing time: Fri 06 Jun 2025 22:32:36 +0000 ROA not before: Fri 06 Jun 2025 22:32:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17635 IP address blocks: 203.14.105.0/24 maxlen: 24 203.57.128.0/20 maxlen: 24 2406:9680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.crl rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 22:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197227, serialNumber=2659CED1527D2CABD8B2C53075ECCD94ED71FE98 Validity Not Before: Jun 6 22:32:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68436c84-5da1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:73:dc:72:ca:5e:96:b9:e6:ca:14:1b:11:2d: fe:33:b4:e7:ad:ef:8f:65:e9:74:a3:18:7a:27:1f: b1:18:eb:b4:bb:28:95:c2:61:22:8c:95:2d:fc:8e: 51:80:3c:b2:c6:be:01:68:5b:f3:57:93:c5:2f:39: 3e:b3:cd:40:4a:e9:c4:f8:6b:e7:60:77:8b:ed:70: 98:9c:5e:23:39:03:28:5e:40:08:0e:7c:82:7b:f0: 1f:cf:7c:d4:65:f7:a6:0b:80:31:a3:9c:f6:e5:67: 6a:33:9e:fd:17:4c:f7:95:15:00:37:3d:3b:b3:da: f3:ab:c2:5b:0e:5d:70:17:56:9f:f6:76:b5:32:c2: f0:d2:11:d0:6e:8b:a5:0e:43:89:e7:0f:80:59:ba: 44:d6:0d:66:2d:7f:38:43:d0:13:74:c0:8b:5a:95: 23:7d:5f:8f:0d:78:af:a3:db:60:3c:a5:40:6e:34: 41:8b:d8:3f:d9:d6:0d:2c:7e:2e:47:07:5b:54:4e: 77:a8:ef:35:49:4b:a0:4d:01:cc:78:3c:24:b2:92: d8:ee:1d:4b:d5:ae:2e:36:b2:57:82:0b:75:4d:41: 00:0f:2b:3e:b9:e1:11:ec:1b:03:cb:ff:1c:1c:b2: 03:79:73:84:5d:53:42:16:dc:a8:ae:a3:9d:1b:0a: a3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:28:AA:45:FB:24:2B:2D:11:E8:C0:1E:06:3B:60:BB:3F:F8:55:C0 X509v3 Authority Key Identifier: keyid:26:59:CE:D1:52:7D:2C:AB:D8:B2:C5:30:75:EC:CD:94:ED:71:FE:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/JlnO0VJ9LKvYssUwdezNlO1x_pg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JlnO0VJ9LKvYssUwdezNlO1x_pg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197227/4FCF568E7B0711EB9AF84384C4F9AE02/AE2B714A72E911EEA3EFD34AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.14.105.0/24 203.57.128.0/20 IPv6: 2406:9680::/32 Signature Algorithm: sha256WithRSAEncryption 88:43:44:17:7e:90:f7:40:99:76:f2:30:cd:ff:92:1b:10:04: ed:75:e7:44:1d:41:12:b0:5e:68:3b:cd:dd:2e:50:1c:45:20: 32:7c:4c:3a:ea:de:cc:a5:de:57:7e:69:ae:d2:ee:41:be:17: 7b:6a:3b:9a:e2:ee:c1:04:77:05:98:ed:c3:f0:c0:45:be:4e: 3c:ca:de:74:8c:c9:52:61:a8:cb:5f:d6:b4:19:62:8a:63:06: fb:3a:38:6a:f2:0f:0d:c8:55:ee:3f:47:82:ac:bc:43:d0:c6: 68:c8:33:5a:fc:dc:32:8b:e6:67:4d:9f:8e:a1:dd:ad:27:90: d2:11:4d:30:64:cb:db:4c:0e:35:09:a0:84:0f:75:8f:f3:b6: ac:8d:98:a2:97:00:b1:29:40:b5:db:b4:55:bc:61:2b:fc:f7: 61:be:94:54:45:04:1a:2e:1c:3d:54:c4:8c:d2:5a:a6:15:2c: 6e:a2:5e:1d:ef:e5:53:4e:a6:ca:ce:03:b7:64:b1:46:64:8e: e2:f1:9d:27:55:87:cf:2c:d5:5b:be:f8:65:ea:2d:be:f2:24: f7:a9:2a:47:e0:30:f7:68:43:7f:21:13:fd:50:8f:de:db:ab: 91:98:e4:d9:27:74:97:f5:85:c0:98:5b:3d:6f:a2:72:96:d6: ed:95:6a:3e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyMjcxMTAvBgNVBAUTKDI2NTlDRUQxNTI3RDJDQUJEOEIyQzUzMDc1RUNDRDk0 RUQ3MUZFOTgwHhcNMjUwNjA2MjIzMjM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQzNmM4NC01ZGExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHPccspelrnmyhQbES3+M7Tnre+PZel0oxh6Jx+xGOu0uyiVwmEijJUt/I5R gDyyxr4BaFvzV5PFLzk+s81ASunE+GvnYHeL7XCYnF4jOQMoXkAIDnyCe/Afz3zU ZfemC4Axo5z25WdqM579F0z3lRUANz07s9rzq8JbDl1wF1af9na1MsLw0hHQboul DkOJ5w+AWbpE1g1mLX84Q9ATdMCLWpUjfV+PDXivo9tgPKVAbjRBi9g/2dYNLH4u RwdbVE53qO81SUugTQHMeDwkspLY7h1L1a4uNrJXggt1TUEADys+ueER7BsDy/8c HLIDeXOEXVNCFtyorqOdGwqjfQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBwoqkX7 JCstEejAHgY7YLs/+FXAMB8GA1UdIwQYMBaAFCZZztFSfSyr2LLFMHXszZTtcf6Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzIyNy80RkNGNTY4RTdC MDcxMUVCOUFGODQzODRDNEY5QUUwMi9KbG5PMFZKOUxLdllzc1V3ZGV6TmxPMXhf cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0psbk8wVko5TEt2WXNzVXdkZXpObE8xeF9wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyMjcvNEZDRjU2OEU3QjA3MTFFQjlBRjg0Mzg0QzRGOUFFMDIvQUUyQjcxNEE3 MkU5MTFFRUEzRUZEMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBADLDmkDBATLOYAwDQQCAAIwBwMFACQGloAwDQYJKoZIhvcN AQELBQADggEBAIhDRBd+kPdAmXbyMM3/khsQBO1150QdQRKwXmg7zd0uUBxFIDJ8 TDrq3syl3ld+aa7S7kG+F3tqO5ri7sEEdwWY7cPwwEW+TjzK3nSMyVJhqMtf1rQZ YopjBvs6OGryDw3IVe4/R4KsvEPQxmjIM1r83DKL5mdNn46h3a0nkNIRTTBky9tM DjUJoIQPdY/ztqyNmKKXALEpQLXbtFW8YSv892G+lFRFBBouHD1UxIzSWqYVLG6i Xh3v5VNOpsrOA7dksUZkjuLxnSdVh88s1Vu++GXqLb7yJPepKkfgMPdoQ38hE/1Q j97bq5GY5NkndJf1hcCYWz1vonKW1u2Vaj4= -----END CERTIFICATE-----Generated at Fri Jun 20 04:44:52 2025 by rpki-client