$ rpki-client -vvf rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/5F0ACC76962011F09F73D036C4F9AE02.roa File: 5F0ACC76962011F09F73D036C4F9AE02.roa (raw, json) Hash identifier: mJp++FSkSB9vBV5hzPsikmtxWjCOi95icFKxEtibOls= Subject key identifier: AC:47:A8:38:CF:E3:CE:BB:97:08:08:07:25:09:23:DB:7B:D6:91:67 Certificate issuer: /CN=A9135395/serialNumber=F3A0D72D6330D72156A00D9F46EAB0C9FC93BC8C Certificate serial: 0217 Authority key identifier: F3:A0:D7:2D:63:30:D7:21:56:A0:0D:9F:46:EA:B0:C9:FC:93:BC:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/86DXLWMw1yFWoA2fRuqwyfyTvIw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/5F0ACC76962011F09F73D036C4F9AE02.roa Signing time: Sat 20 Sep 2025 12:50:23 +0000 ROA not before: Sat 20 Sep 2025 12:50:23 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9382 IP address blocks: 203.24.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.crl rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/86DXLWMw1yFWoA2fRuqwyfyTvIw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 03:37:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 535 (0x217) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135395, serialNumber=F3A0D72D6330D72156A00D9F46EAB0C9FC93BC8C Validity Not Before: Sep 20 12:50:23 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68cea30e-8b3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7c:b5:b3:3b:48:74:1b:11:c0:8d:3c:7e:b8: 07:da:bc:bc:3f:4d:8f:4a:40:5d:96:62:91:a6:81: fc:37:0d:27:21:8f:50:69:06:41:59:da:76:7a:61: d6:de:f1:8e:df:b1:bf:d5:97:7e:6e:1c:ea:5a:82: ec:a4:a4:2f:a8:31:28:59:d8:7d:3e:9d:bc:24:ae: 04:3c:a2:51:91:f9:1c:d3:bd:b0:68:c5:98:fa:f2: 24:57:e6:cf:36:73:5f:ba:02:b2:b5:a7:2b:18:4c: 98:2d:d1:e9:b1:d5:8c:39:8e:bf:0e:a7:0f:0a:f6: d5:a4:ef:23:b7:b4:72:47:ec:9f:2e:da:b8:10:7c: cd:8d:d0:3e:b7:34:16:85:7b:37:08:fb:9a:80:a0: da:6a:56:5d:17:8d:7a:3a:d2:ba:ca:52:d5:8e:17: 40:a4:da:39:f9:a2:20:fe:9e:bc:7d:22:83:1b:4a: 18:c7:c9:7b:46:c3:9e:a7:40:62:77:e1:12:cd:3c: e4:e9:fa:64:86:3f:87:c4:8b:d1:e0:74:f4:2f:37: 1a:1e:9d:e0:ac:11:02:fa:1a:4d:dc:66:1a:b3:cd: 45:ce:9f:69:03:63:4b:f5:08:3d:7d:e3:c5:0d:79: 5c:26:a5:5c:2e:82:83:28:44:cd:1f:72:aa:01:29: 01:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:47:A8:38:CF:E3:CE:BB:97:08:08:07:25:09:23:DB:7B:D6:91:67 X509v3 Authority Key Identifier: keyid:F3:A0:D7:2D:63:30:D7:21:56:A0:0D:9F:46:EA:B0:C9:FC:93:BC:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/86DXLWMw1yFWoA2fRuqwyfyTvIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/86DXLWMw1yFWoA2fRuqwyfyTvIw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135395/57E1D1846AE911EDBCDAAE22C4F9AE02/5F0ACC76962011F09F73D036C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.35.0/24 Signature Algorithm: sha256WithRSAEncryption 86:f8:12:9a:48:5d:1b:e6:20:9c:c6:45:ae:a7:75:c2:a8:41: 36:a7:6d:b4:ad:41:f5:f9:a5:16:6b:ed:4d:6a:27:19:0d:5e: 42:40:e1:82:a8:e8:aa:29:9c:11:7c:5d:34:f1:a2:8d:44:75: 85:63:11:f1:4f:df:f6:5d:1f:35:a6:59:e9:af:fc:ca:1d:6a: a0:4d:e5:82:84:71:84:c6:89:34:ed:6f:e5:16:5c:71:3f:62: 25:6e:3d:1d:40:e2:9b:9b:0b:13:50:60:e9:5a:e5:59:03:2b: d5:4a:ad:43:4f:0e:4b:a3:27:1d:a3:9c:13:73:a2:2e:eb:cf: eb:26:36:43:28:ca:64:f6:8c:f7:48:b6:68:76:15:df:e9:e2: 51:a5:46:d5:d8:9e:5d:ae:5a:b5:b7:35:7f:91:7a:f1:ad:ce: 7f:f8:15:fc:4e:90:ce:c3:a3:27:d5:77:b8:25:8f:30:c6:d7: dd:b5:d2:99:b7:a4:f1:c4:93:bd:58:0a:16:d3:f6:92:96:23: 1c:e8:20:8c:da:44:79:2a:a8:50:23:9e:f2:ec:a8:0b:65:a8: 9b:33:6c:b2:3f:8f:65:de:20:56:a1:c0:3b:db:a7:82:19:eb: b7:2d:e2:77:d2:fd:f5:70:a4:00:10:e9:e3:d1:73:d8:22:24: cf:d2:95:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUzOTUxMTAvBgNVBAUTKEYzQTBENzJENjMzMEQ3MjE1NkEwMEQ5RjQ2RUFCMEM5 RkM5M0JDOEMwHhcNMjUwOTIwMTI1MDIzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGNlYTMwZS04YjNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArny1sztIdBsRwI08frgH2ry8P02PSkBdlmKRpoH8Nw0nIY9QaQZBWdp2emHW 3vGO37G/1Zd+bhzqWoLspKQvqDEoWdh9Pp28JK4EPKJRkfkc072waMWY+vIkV+bP NnNfugKytacrGEyYLdHpsdWMOY6/DqcPCvbVpO8jt7RyR+yfLtq4EHzNjdA+tzQW hXs3CPuagKDaalZdF416OtK6ylLVjhdApNo5+aIg/p68fSKDG0oYx8l7RsOep0Bi d+ESzTzk6fpkhj+HxIvR4HT0LzcaHp3grBEC+hpN3GYas81Fzp9pA2NL9Qg9fePF DXlcJqVcLoKDKETNH3KqASkBGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKxHqDjP 4867lwgIByUJI9t71pFnMB8GA1UdIwQYMBaAFPOg1y1jMNchVqANn0bqsMn8k7yM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTM5NS81N0UxRDE4NDZB RTkxMUVEQkNEQUFFMjJDNEY5QUUwMi84NkRYTFdNdzF5RldvQTJmUnVxd3lmeVR2 SXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg2RFhMV013MXlGV29BMmZSdXF3eWZ5VHZJdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUzOTUvNTdFMUQxODQ2QUU5MTFFREJDREFBRTIyQzRGOUFFMDIvNUYwQUNDNzY5 NjIwMTFGMDlGNzNEMDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLGCMwDQYJKoZIhvcNAQELBQADggEBAIb4EppIXRvmIJzG Ra6ndcKoQTanbbStQfX5pRZr7U1qJxkNXkJA4YKo6KopnBF8XTTxoo1EdYVjEfFP 3/ZdHzWmWemv/ModaqBN5YKEcYTGiTTtb+UWXHE/YiVuPR1A4pubCxNQYOla5VkD K9VKrUNPDkujJx2jnBNzoi7rz+smNkMoymT2jPdItmh2Fd/p4lGlRtXYnl2uWrW3 NX+RevGtzn/4FfxOkM7DoyfVd7gljzDG19210pm3pPHEk71YChbT9pKWIxzoIIza RHkqqFAjnvLsqAtlqJszbLI/j2XeIFahwDvbp4IZ67ct4nfS/fVwpAAQ6ePRc9gi JM/Slbk= -----END CERTIFICATE-----Generated at Tue Oct 21 11:57:56 2025 by rpki-client