$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/58226FA0060B11EFA116B11FC4F9AE02.roa File: 58226FA0060B11EFA116B11FC4F9AE02.roa (raw, json) Hash identifier: N1nV/huEZg5UQWWBr2uU/8yGfXU3OxZan/3TADRjDmw= Subject key identifier: A4:87:8E:13:6E:E1:0F:54:07:5B:BD:F0:E7:BD:FB:F4:A6:3E:DE:7F Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 3A41 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/58226FA0060B11EFA116B11FC4F9AE02.roa Signing time: Fri 22 Aug 2025 05:16:56 +0000 ROA not before: Fri 22 Aug 2025 05:16:56 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 9587 IP address blocks: 58.97.124.0/24 maxlen: 24 58.97.125.0/24 maxlen: 24 119.46.15.0/24 maxlen: 24 2001:fb0:101::/48 maxlen: 48 2001:fb0:102::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:20:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14913 (0x3a41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Aug 22 05:16:56 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a7fd47-d06d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:48:55:28:c0:53:83:49:27:97:11:5e:03:e6: c6:f4:9f:58:a7:4f:e7:ff:7c:86:96:c1:89:a6:f3: fc:90:7c:10:c5:d7:5c:b1:78:cd:d1:64:89:fb:92: ea:4c:f3:6c:77:cf:78:f3:4a:25:5c:6a:20:27:ab: 4f:76:be:07:0b:4d:2e:f9:14:d6:9d:71:cb:58:df: 73:60:88:35:67:5b:28:33:0f:ef:e1:1a:ba:00:e1: 4e:84:4f:28:a8:5c:94:36:64:44:de:b2:9a:6b:ba: 58:d7:be:a4:dc:f7:c6:ba:d8:73:66:81:6f:5c:e5: b3:dd:59:2d:ac:9e:3a:f4:e0:ba:07:14:61:f0:ae: b6:7a:95:2b:31:94:61:5b:d8:f5:8e:c3:27:85:75: 84:ae:dc:6a:25:67:b1:da:db:6e:21:b6:7b:d1:ab: 18:d7:22:c5:1b:6d:28:38:48:e2:9a:85:bc:55:50: 9f:38:06:89:b7:6a:40:3e:68:78:5b:fc:8b:71:ad: 4a:40:7d:1d:49:48:96:ff:55:c9:48:bd:76:9f:a2: f9:c0:b3:08:b7:15:e7:37:2f:c9:a5:09:f7:42:1b: 24:e0:ec:7c:72:b0:8a:84:90:37:2b:d9:d8:18:c6: bd:12:f7:93:16:11:91:ec:03:47:e1:f2:53:04:02: 68:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:87:8E:13:6E:E1:0F:54:07:5B:BD:F0:E7:BD:FB:F4:A6:3E:DE:7F X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/58226FA0060B11EFA116B11FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.97.124.0/23 119.46.15.0/24 IPv6: 2001:fb0:101::-2001:fb0:102:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1c:db:05:47:21:a5:6d:fc:74:d9:5e:bf:85:78:7e:66:37:fe: 36:9a:18:fa:01:f2:f7:dd:f6:1f:64:9e:6b:b5:d7:97:61:81: ea:60:49:e8:2d:8d:2a:8e:84:0d:d8:f7:8b:db:af:6a:e1:2a: 4b:d5:23:e4:dd:cc:3f:9a:5f:f1:5d:d4:8a:d6:23:ce:02:fd: 47:9c:e0:fa:6d:31:1d:67:59:67:93:d5:46:bb:ae:d7:e8:5f: 0a:0e:d1:f5:f2:37:c2:8a:5c:8b:30:34:06:d8:07:69:b4:ea: 55:3f:ea:62:4f:16:3e:c9:55:b2:59:18:9a:bc:5b:e4:ac:7d: 2e:33:98:b2:ea:15:2c:95:4f:14:64:2f:1f:c1:0c:d6:3a:08: 47:bb:82:31:08:65:c1:64:fc:bf:0d:b6:d3:f7:50:f5:95:0b: 0e:7b:df:47:ec:a2:a3:e0:5e:a9:cd:9d:f7:36:fe:9c:77:f9: 58:42:a6:41:15:b7:ac:de:6d:ac:b8:0e:6f:dd:fc:bd:54:ad: fb:e4:6b:b0:ae:3e:f6:a1:a5:5b:a4:9b:45:a7:db:3b:d4:58: 68:95:a9:0b:3c:54:45:78:73:f0:11:5b:a9:20:5a:8d:02:46: 3a:73:c7:b0:f0:84:d6:57:74:21:21:9f:a3:04:a0:3d:9a:e8: e2:7d:1f:32 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICOkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjUwODIyMDUxNjU2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE3ZmQ0Ny1kMDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUhVKMBTg0knlxFeA+bG9J9Yp0/n/3yGlsGJpvP8kHwQxddcsXjN0WSJ+5Lq TPNsd89480olXGogJ6tPdr4HC00u+RTWnXHLWN9zYIg1Z1soMw/v4Rq6AOFOhE8o qFyUNmRE3rKaa7pY176k3PfGuthzZoFvXOWz3VktrJ469OC6BxRh8K62epUrMZRh W9j1jsMnhXWErtxqJWex2ttuIbZ70asY1yLFG20oOEjimoW8VVCfOAaJt2pAPmh4 W/yLca1KQH0dSUiW/1XJSL12n6L5wLMItxXnNy/JpQn3Qhsk4Ox8crCKhJA3K9nY GMa9EveTFhGR7ANH4fJTBAJohQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFKSHjhNu 4Q9UB1u98Oe9+/SmPt5/MB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvNTgyMjZGQTAw NjBCMTFFRkExMTZCMTFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAE6YXwDBAB3Lg8wGgQCAAIwFDASAwcAIAEPsAEBAwcAIAEP sAECMA0GCSqGSIb3DQEBCwUAA4IBAQAc2wVHIaVt/HTZXr+FeH5mN/42mhj6AfL3 3fYfZJ5rtdeXYYHqYEnoLY0qjoQN2PeL269q4SpL1SPk3cw/ml/xXdSK1iPOAv1H nOD6bTEdZ1lnk9VGu67X6F8KDtH18jfCilyLMDQG2AdptOpVP+piTxY+yVWyWRia vFvkrH0uM5iy6hUslU8UZC8fwQzWOghHu4IxCGXBZPy/DbbT91D1lQsOe99H7KKj 4F6pzZ33Nv6cd/lYQqZBFbes3m2suA5v3fy9VK375Guwrj72oaVbpJtFp9s71Fho lakLPFRFeHPwEVupIFqNAkY6c8ew8ITWV3QhIZ+jBKA9mujifR8y -----END CERTIFICATE-----Generated at Sat Aug 23 22:38:48 2025 by rpki-client