$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa File: 4F7540B64BE311F096B8CE67C4F9AE02.roa (raw, json) Hash identifier: LzQOe5AsPm2EK54x3xrF4JZf13QEa+HeQnFL3N5P7PE= Subject key identifier: 9A:69:53:A0:A4:DC:56:8D:27:0D:17:34:61:6D:89:52:AF:FC:B5:8B Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0ADE Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa Signing time: Wed 13 Aug 2025 06:05:49 +0000 ROA not before: Wed 13 Aug 2025 06:05:49 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 149175 IP address blocks: 203.168.238.0/24 maxlen: 24 203.168.244.0/24 maxlen: 24 203.168.245.0/24 maxlen: 24 203.168.246.0/24 maxlen: 24 203.168.247.0/24 maxlen: 24 203.168.248.0/24 maxlen: 24 203.168.249.0/24 maxlen: 24 203.168.250.0/24 maxlen: 24 203.168.251.0/24 maxlen: 24 203.168.253.0/24 maxlen: 24 222.167.36.0/22 maxlen: 22 222.167.40.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:17:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2782 (0xade) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Aug 13 06:05:49 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=689c2b3d-d947 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3f:f8:56:66:eb:c2:78:fb:eb:1d:54:4e:6f: 53:e7:9f:0c:3b:15:71:08:93:f4:9c:b7:b2:ce:07: 04:09:63:bf:a1:5f:98:16:f8:19:a1:2c:f3:c1:0a: 8d:7a:47:4e:47:0a:3a:6f:ac:15:4a:de:eb:e6:65: fb:b8:1a:79:b6:16:af:ae:33:9b:d5:90:e8:07:b9: ed:72:ad:6a:67:52:2d:bd:52:c6:c5:ed:60:34:ce: ef:ed:ac:26:86:5e:b1:b9:05:48:17:72:07:b2:e4: 7a:91:1a:c5:3c:2d:87:98:64:41:54:14:9d:08:96: 65:fc:d8:7b:76:60:05:2f:d5:d2:ec:4e:72:51:50: b0:23:d0:1a:d7:93:38:ef:34:06:07:78:81:8e:97: 51:3c:a3:d2:60:2f:53:65:13:10:03:e9:67:14:1c: 4a:42:56:c5:e2:a9:72:9c:3e:e9:79:6d:56:89:b3: 50:2c:00:7d:c4:c6:45:cf:0a:15:d0:ca:0a:95:fa: 45:da:fd:3a:02:2a:9b:45:47:78:be:6a:6d:ca:dd: 55:2a:9e:f2:f5:96:13:f5:c2:a0:56:6b:cb:9b:9e: 60:c1:65:76:fa:a2:c4:9c:a9:a7:a8:bf:fe:7f:cc: ec:68:0f:af:b2:20:48:bf:38:e4:47:e8:7e:05:c7: 72:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:69:53:A0:A4:DC:56:8D:27:0D:17:34:61:6D:89:52:AF:FC:B5:8B X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/4F7540B64BE311F096B8CE67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.168.238.0/24 203.168.244.0-203.168.251.255 203.168.253.0/24 222.167.36.0-222.167.40.255 Signature Algorithm: sha256WithRSAEncryption 95:2a:82:44:38:97:07:98:af:89:dd:b6:4f:d1:dd:d4:0e:f8: 54:c4:8f:e9:f8:e7:df:26:c7:ec:62:db:e1:ad:f0:6d:55:3d: 0c:fa:12:5c:53:70:72:32:5a:41:1e:b4:fd:21:df:91:9d:06: aa:04:e4:03:c8:26:1c:e9:3c:9e:8c:9f:1a:5a:3d:84:c5:d4: df:82:d5:34:55:16:7f:cc:35:67:1d:0e:53:b1:e0:b7:ea:9c: 9f:4b:7b:b2:6e:f1:76:b5:84:4f:b4:2b:98:6e:9b:65:0b:b6: 21:e0:3a:dd:68:64:4b:21:fa:5a:cb:56:0e:01:85:16:66:52: fe:f9:93:9b:54:bb:66:5c:c9:91:3b:56:d0:bf:43:43:67:8e: 43:d3:52:a2:7e:96:ec:4e:9c:c6:91:41:4b:b1:24:2c:13:05: 83:60:ac:77:b4:03:7e:b4:35:88:3b:c9:b5:2a:87:d6:11:30: 31:7a:af:d5:06:23:72:b3:07:47:b0:22:ba:fc:74:0d:61:61: dd:86:1d:dc:30:d4:43:ee:5a:ba:ec:16:e2:0f:a3:c9:1f:d3: 29:a5:a2:23:ec:3f:9f:48:c8:41:84:4e:b2:4c:a3:ee:8b:34: f5:d4:da:4d:52:fb:1d:61:97:84:1a:b8:a9:7e:6b:90:d5:43: aa:db:a5:03 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICCt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUwODEzMDYwNTQ5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODljMmIzZC1kOTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtD/4Vmbrwnj76x1UTm9T558MOxVxCJP0nLeyzgcECWO/oV+YFvgZoSzzwQqN ekdORwo6b6wVSt7r5mX7uBp5thavrjOb1ZDoB7ntcq1qZ1ItvVLGxe1gNM7v7awm hl6xuQVIF3IHsuR6kRrFPC2HmGRBVBSdCJZl/Nh7dmAFL9XS7E5yUVCwI9Aa15M4 7zQGB3iBjpdRPKPSYC9TZRMQA+lnFBxKQlbF4qlynD7peW1WibNQLAB9xMZFzwoV 0MoKlfpF2v06AiqbRUd4vmptyt1VKp7y9ZYT9cKgVmvLm55gwWV2+qLEnKmnqL/+ f8zsaA+vsiBIvzjkR+h+BcdyIQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFJppU6Ck 3FaNJw0XNGFtiVKv/LWLMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvNEY3NTQwQjY0 QkUzMTFGMDk2QjhDRTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgDBADLqO4wDAMEAsuo9AMEAsuo+AMEAMuo/TAMAwQC3qckAwQA 3qcoMA0GCSqGSIb3DQEBCwUAA4IBAQCVKoJEOJcHmK+J3bZP0d3UDvhUxI/p+Off JsfsYtvhrfBtVT0M+hJcU3ByMlpBHrT9Id+RnQaqBOQDyCYc6TyejJ8aWj2ExdTf gtU0VRZ/zDVnHQ5TseC36pyfS3uybvF2tYRPtCuYbptlC7Yh4DrdaGRLIfpay1YO AYUWZlL++ZObVLtmXMmRO1bQv0NDZ45D01KifpbsTpzGkUFLsSQsEwWDYKx3tAN+ tDWIO8m1KofWETAxeq/VBiNyswdHsCK6/HQNYWHdhh3cMNRD7lq67BbiD6PJH9Mp paIj7D+fSMhBhE6yTKPuizT11NpNUvsdYZeEGripfmuQ1UOq26UD -----END CERTIFICATE-----Generated at Sun Aug 24 00:10:32 2025 by rpki-client