$ rpki-client -vvf rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/B1199D4A7BD511F0931F9741C4F9AE02.roa File: B1199D4A7BD511F0931F9741C4F9AE02.roa (raw, json) Hash identifier: d1rtqtd5DkX7u7Z8ZYKwDr70JmMunH/Zp3zTJz40gMI= Subject key identifier: 1D:89:7D:10:63:FC:E8:48:D0:8B:79:8D:9C:A9:FB:E5:AE:CC:1E:E8 Certificate issuer: /CN=A9134172/serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Certificate serial: 0AF6 Authority key identifier: F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/B1199D4A7BD511F0931F9741C4F9AE02.roa Signing time: Mon 18 Aug 2025 01:50:18 +0000 ROA not before: Mon 18 Aug 2025 01:50:18 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 153671 IP address blocks: 61.15.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:17:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2806 (0xaf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9134172, serialNumber=F45C0F4F467CE1576E5EE9E41E5576F0348C46A7 Validity Not Before: Aug 18 01:50:18 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68a286da-bcd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:47:9b:48:c1:19:1a:40:5e:22:75:6e:ef:0b: 23:ff:90:10:5b:12:9e:88:7f:e1:43:7d:54:c8:95: fe:24:3b:47:83:a9:61:3b:d6:a8:ad:93:1e:53:20: 9e:5a:f2:a2:02:24:08:4a:f5:0f:bc:4c:38:8f:4d: 93:65:7a:5a:c5:f1:d1:9c:e1:24:0d:01:67:fa:79: 95:54:37:f3:ae:31:65:d6:f2:c9:16:80:41:e7:50: 11:f7:8a:b1:c1:84:ba:a2:9f:f6:7d:ea:56:31:59: 2e:09:e3:b2:78:ec:d5:6c:83:7d:60:72:35:41:a6: d5:dd:2a:ff:c4:ff:aa:28:2c:67:3f:f1:4b:13:b2: a4:5a:b0:e0:c9:e4:c1:3c:23:48:e2:2a:f9:0e:30: 54:36:8c:d0:46:44:2c:27:97:06:c2:b5:34:c0:f0: d3:c5:72:dd:67:eb:a0:98:d1:31:97:4d:57:1f:56: aa:b4:31:13:aa:32:70:d6:f3:f8:15:9b:8a:0d:c6: 1a:f4:3f:e3:c9:e8:b1:a9:ff:0c:3b:1f:96:10:e3: 30:05:d7:07:4a:d0:4a:d8:07:16:80:0b:91:df:33: 83:7d:e6:0b:ee:97:21:6d:ef:44:66:87:f4:d8:26: fe:72:f2:bb:25:a9:00:b4:9c:4d:41:43:2c:09:4c: a0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:89:7D:10:63:FC:E8:48:D0:8B:79:8D:9C:A9:FB:E5:AE:CC:1E:E8 X509v3 Authority Key Identifier: keyid:F4:5C:0F:4F:46:7C:E1:57:6E:5E:E9:E4:1E:55:76:F0:34:8C:46:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/9FwPT0Z84VduXunkHlV28DSMRqc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9FwPT0Z84VduXunkHlV28DSMRqc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9134172/597612649E4D11EA9C23AF1FC4F9AE02/B1199D4A7BD511F0931F9741C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.15.80.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:ed:94:b8:2f:6b:e3:70:d7:55:65:29:a9:38:fd:d6:49:27: cf:f4:3a:2f:53:4e:bd:e1:4a:1f:18:54:0f:b6:ea:53:f0:b1: cb:2d:f5:2e:db:b1:3a:d1:4d:15:62:7b:31:5d:64:35:15:f0: ee:d7:75:4b:4b:fa:fb:cd:5a:3b:67:96:fc:d0:04:e0:3f:c9: 48:24:c5:39:92:11:fc:97:ac:65:91:d4:5d:09:d9:84:1d:8f: 31:f1:53:44:44:b6:6b:d7:4a:74:ee:1a:a9:c0:a0:66:41:0c: e5:83:a4:77:a6:bb:3a:72:c0:ba:2e:e5:5f:57:c1:fd:f2:85: 5c:a4:ef:57:03:b5:79:ab:90:9a:3e:fa:29:ee:da:6f:13:00: e9:ef:66:28:a0:45:25:ff:09:be:72:8f:ac:3b:2d:a8:59:f2: a4:3c:38:3d:8b:b3:44:d4:85:7d:fb:10:52:3f:22:0f:19:02: aa:a5:76:99:de:e7:09:c1:d9:35:87:ce:ed:ac:5f:19:b3:3b: bc:e4:ea:10:61:2c:4a:ee:84:eb:77:b9:a0:5b:f7:19:a5:52: 78:26:12:5e:06:39:34:c1:5b:a4:a2:75:84:98:10:2c:9c:3a: b0:6b:53:94:44:a4:92:cf:f6:b9:78:04:51:c0:57:99:4e:bd: f6:2c:41:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQxNzIxMTAvBgNVBAUTKEY0NUMwRjRGNDY3Q0UxNTc2RTVFRTlFNDFFNTU3NkYw MzQ4QzQ2QTcwHhcNMjUwODE4MDE1MDE4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGEyODZkYS1iY2Q2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwkebSMEZGkBeInVu7wsj/5AQWxKeiH/hQ31UyJX+JDtHg6lhO9aorZMeUyCe WvKiAiQISvUPvEw4j02TZXpaxfHRnOEkDQFn+nmVVDfzrjFl1vLJFoBB51AR94qx wYS6op/2fepWMVkuCeOyeOzVbIN9YHI1QabV3Sr/xP+qKCxnP/FLE7KkWrDgyeTB PCNI4ir5DjBUNozQRkQsJ5cGwrU0wPDTxXLdZ+ugmNExl01XH1aqtDETqjJw1vP4 FZuKDcYa9D/jyeixqf8MOx+WEOMwBdcHStBK2AcWgAuR3zODfeYL7pchbe9EZof0 2Cb+cvK7JakAtJxNQUMsCUygTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB2JfRBj /OhI0It5jZyp++WuzB7oMB8GA1UdIwQYMBaAFPRcD09GfOFXbl7p5B5VdvA0jEan MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDE3Mi81OTc2MTI2NDlF NEQxMUVBOUMyM0FGMUZDNEY5QUUwMi85RndQVDBaODRWZHVYdW5rSGxWMjhEU01S cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlGd1BUMFo4NFZkdVh1bmtIbFYyOERTTVJxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQxNzIvNTk3NjEyNjQ5RTREMTFFQTlDMjNBRjFGQzRGOUFFMDIvQjExOTlENEE3 QkQ1MTFGMDkzMUY5NzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAI9D1AwDQYJKoZIhvcNAQELBQADggEBAC3tlLgva+Nw11Vl Kak4/dZJJ8/0Oi9TTr3hSh8YVA+26lPwscst9S7bsTrRTRViezFdZDUV8O7XdUtL +vvNWjtnlvzQBOA/yUgkxTmSEfyXrGWR1F0J2YQdjzHxU0REtmvXSnTuGqnAoGZB DOWDpHemuzpywLou5V9Xwf3yhVyk71cDtXmrkJo++inu2m8TAOnvZiigRSX/Cb5y j6w7LahZ8qQ8OD2Ls0TUhX37EFI/Ig8ZAqqldpne5wnB2TWHzu2sXxmzO7zk6hBh LEruhOt3uaBb9xmlUngmEl4GOTTBW6SidYSYECycOrBrU5REpJLP9rl4BFHAV5lO vfYsQZ0= -----END CERTIFICATE-----Generated at Sat Aug 23 19:15:17 2025 by rpki-client