$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/99CFA3844DF511ED91A8AB4BC4F9AE02.roa File: 99CFA3844DF511ED91A8AB4BC4F9AE02.roa (raw, json) Hash identifier: SvGpd5pCGO9/pwIUeRowgxIT0zcF1gs1tLMG2Scm/1Q= Subject key identifier: 38:4D:DF:57:89:71:4D:F6:43:AA:7A:1F:D2:38:9F:3D:27:0E:FF:D9 Certificate issuer: /CN=A9123F5D/serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Certificate serial: 0AA6 Authority key identifier: BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/99CFA3844DF511ED91A8AB4BC4F9AE02.roa Signing time: Thu 14 Aug 2025 19:59:55 +0000 ROA not before: Thu 14 Aug 2025 19:59:55 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 141731 IP address blocks: 123.253.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:44:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2726 (0xaa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F5D, serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Validity Not Before: Aug 14 19:59:55 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689e403b-792d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:14:13:41:4c:36:b0:2e:ab:f9:e2:64:83:59: 3c:5d:c7:fe:a3:a2:1f:32:0e:be:37:87:9d:16:d2: 07:a4:b5:e1:0d:18:e8:e3:75:70:1d:09:46:a1:ce: c5:fa:a9:9b:05:84:0a:10:99:3f:a8:0e:78:54:f4: b9:f9:8d:44:0c:7c:cf:88:17:19:63:2f:9f:4c:32: 2c:b2:55:78:22:e8:ac:1c:cd:ec:39:ce:34:85:12: cf:20:fe:e9:63:2f:b1:9c:ef:ff:07:4c:77:74:fe: 2b:5e:92:bc:be:95:80:af:ff:fc:ca:e3:21:6f:60: f3:e3:1b:9b:10:18:3a:f6:28:ae:ac:17:a2:ed:35: 86:17:52:3a:6c:06:f7:c3:6d:35:62:a7:12:06:c1: 31:2b:fc:36:8f:35:27:dd:2f:f6:84:86:a4:8c:09: ee:2e:8c:88:21:26:51:08:49:9f:6e:e3:aa:2f:97: 87:f8:85:78:36:a7:28:6a:c1:3f:d8:00:a7:da:05: f3:a0:eb:d1:e5:07:30:eb:d0:39:7f:d5:c4:de:0d: e4:d6:c4:c7:74:96:75:d0:3a:de:fe:e6:5c:5c:ce: e9:38:02:ab:e2:94:fd:58:c8:b8:8c:f7:fa:5c:f2: 6a:07:eb:63:60:0a:bd:a2:f5:1b:d2:4c:68:59:44: 61:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:4D:DF:57:89:71:4D:F6:43:AA:7A:1F:D2:38:9F:3D:27:0E:FF:D9 X509v3 Authority Key Identifier: keyid:BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/99CFA3844DF511ED91A8AB4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.96.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:71:a9:35:75:e3:b4:34:50:a5:63:52:f9:fc:32:2b:73:89: 40:64:63:70:80:23:dd:41:f3:ef:0f:c2:f1:da:19:1f:fc:bd: 78:c6:92:49:b5:8d:85:32:48:51:93:9a:55:56:bd:22:68:54: 45:89:3e:fe:dd:eb:b3:c2:8e:c0:af:15:2f:7a:01:29:ec:43: 85:30:04:19:57:8c:ed:ac:64:a6:f8:de:58:13:d2:19:1d:63: 96:8a:10:72:d3:0b:d5:b3:22:5f:15:c0:fd:b1:78:1f:c6:4e: 90:27:a7:38:36:a7:6b:b7:02:dd:8a:1c:ae:49:45:c0:30:b9: a3:c0:a0:98:2c:3d:33:65:df:cc:00:d2:ba:4f:39:14:62:0d: 05:31:01:07:4e:ed:9c:30:c2:21:04:25:1f:8d:11:4f:03:5f: 0a:9f:3a:4c:b8:4a:5b:50:b7:34:be:df:a5:a4:75:de:f2:c6: 57:36:9b:4e:01:fb:b3:76:73:1b:c3:37:87:94:ef:20:d8:1f: 32:3d:c8:65:03:f6:e2:11:fc:ec:d0:99:25:36:be:c0:02:3f: 23:b8:3e:88:a1:19:25:fa:11:2a:52:af:43:7c:2c:a0:50:e4: e8:af:57:93:aa:c3:55:50:28:f0:0e:37:7b:7b:44:ba:65:51: b4:48:c5:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGNUQxMTAvBgNVBAUTKEJGNTIyRDk5MjVBNTg0NjI4MEY2MDUzMEFEMzlENzY2 RTRBQkYwOTMwHhcNMjUwODE0MTk1OTU1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllNDAzYi03OTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhQTQUw2sC6r+eJkg1k8Xcf+o6IfMg6+N4edFtIHpLXhDRjo43VwHQlGoc7F +qmbBYQKEJk/qA54VPS5+Y1EDHzPiBcZYy+fTDIsslV4IuisHM3sOc40hRLPIP7p Yy+xnO//B0x3dP4rXpK8vpWAr//8yuMhb2Dz4xubEBg69iiurBei7TWGF1I6bAb3 w201YqcSBsExK/w2jzUn3S/2hIakjAnuLoyIISZRCEmfbuOqL5eH+IV4NqcoasE/ 2ACn2gXzoOvR5Qcw69A5f9XE3g3k1sTHdJZ10Dre/uZcXM7pOAKr4pT9WMi4jPf6 XPJqB+tjYAq9ovUb0kxoWURh2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDhN31eJ cU32Q6p6H9I4nz0nDv/ZMB8GA1UdIwQYMBaAFL9SLZklpYRigPYFMK0512bkq/CT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y1RC83NUY4NzVGMjY2 OTAxMUVBOTY4M0ZCMkZDNEY5QUUwMi92MUl0bVNXbGhHS0E5Z1V3clRuWFp1U3I4 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxSXRtU1dsaEdLQTlnVXdyVG5YWnVTcjhKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGNUQvNzVGODc1RjI2NjkwMTFFQTk2ODNGQjJGQzRGOUFFMDIvOTlDRkEzODQ0 REY1MTFFRDkxQThBQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7/WAwDQYJKoZIhvcNAQELBQADggEBADpxqTV147Q0UKVj Uvn8MitziUBkY3CAI91B8+8PwvHaGR/8vXjGkkm1jYUySFGTmlVWvSJoVEWJPv7d 67PCjsCvFS96ASnsQ4UwBBlXjO2sZKb43lgT0hkdY5aKEHLTC9WzIl8VwP2xeB/G TpAnpzg2p2u3At2KHK5JRcAwuaPAoJgsPTNl38wA0rpPORRiDQUxAQdO7ZwwwiEE JR+NEU8DXwqfOky4SltQtzS+36Wkdd7yxlc2m04B+7N2cxvDN4eU7yDYHzI9yGUD 9uIR/OzQmSU2vsACPyO4PoihGSX6ESpSr0N8LKBQ5OivV5Oqw1VQKPAON3t7RLpl UbRIxTc= -----END CERTIFICATE-----Generated at Sun Aug 24 04:33:18 2025 by rpki-client