$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/7125C7DE611411ECBF66B385C4F9AE02.roa File: 7125C7DE611411ECBF66B385C4F9AE02.roa (raw, json) Hash identifier: PInFHi+DRZ/0Ub/EKAgjN1FIJnedDnHONJpIq7oTfD8= Subject key identifier: 41:71:6E:E2:DB:34:0C:EA:36:6C:18:87:7B:9A:E0:A3:C5:17:CD:3A Certificate issuer: /CN=A9140BD4/serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Certificate serial: 0454 Authority key identifier: F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/7125C7DE611411ECBF66B385C4F9AE02.roa Signing time: Tue 01 Jul 2025 01:05:51 +0000 ROA not before: Tue 01 Jul 2025 01:05:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 17792 IP address blocks: 202.21.130.0/24 maxlen: 24 202.50.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:37:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1108 (0x454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BD4, serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Validity Not Before: Jul 1 01:05:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6863346e-7148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e7:0b:1f:5d:4f:ad:d8:79:71:b4:3b:ef:00: 49:e4:5d:da:e6:04:53:70:0b:34:1e:b1:03:2c:45: b7:58:d6:31:ca:b0:fd:8f:59:f3:fd:26:56:1e:b7: e9:71:ce:0a:57:15:08:03:e0:be:33:c4:8b:9c:72: dc:31:56:f5:eb:33:b2:df:d8:2f:d3:fb:ab:4f:0d: 9c:df:80:95:20:07:ac:a2:10:91:09:db:3f:58:1f: d0:02:de:0c:6b:16:1c:89:a7:cd:ca:96:0b:d2:2a: 98:59:aa:92:00:48:82:19:d8:7a:b9:e7:32:6d:5f: 5f:66:0b:0c:aa:54:51:bc:26:a0:22:bd:4e:ce:da: ca:02:16:31:e1:40:9d:61:90:25:2d:89:ab:71:05: 76:98:a2:d9:af:3c:a3:05:69:30:d0:b7:5d:95:a0: 25:51:f3:c1:bc:66:ea:87:ce:14:3d:9f:cb:23:3a: 99:6b:33:78:7b:aa:86:62:e0:ab:4b:d0:a2:ef:60: b5:cb:7e:be:a0:68:89:99:23:8d:7c:37:98:fe:a1: 7e:98:9d:32:cd:7e:ea:7e:52:d6:de:92:de:d0:5a: ba:70:05:ce:14:a1:6a:16:1b:43:00:e7:f1:c3:48: 87:94:24:cb:b9:ad:f0:f4:79:b1:97:b5:49:23:75: a8:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:71:6E:E2:DB:34:0C:EA:36:6C:18:87:7B:9A:E0:A3:C5:17:CD:3A X509v3 Authority Key Identifier: keyid:F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/7125C7DE611411ECBF66B385C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.21.130.0/24 202.50.192.0/22 Signature Algorithm: sha256WithRSAEncryption 23:53:b5:70:6a:87:d3:49:67:d7:ba:22:3f:e0:2f:8c:07:b3: f5:a3:f5:f7:1c:ca:cd:e8:cc:63:3c:0c:86:54:c9:b8:e4:d3: 78:17:73:00:a1:02:76:66:87:1a:a8:2f:fb:9a:30:5f:99:9b: 65:d3:1b:57:01:47:e1:8b:ac:f3:d5:c8:9a:bb:56:47:95:2b: 71:26:9c:7e:9f:e4:bb:6a:61:71:b3:50:d0:c2:34:e3:be:53: 5e:4f:ae:4b:28:d9:a5:f7:2d:13:27:37:42:94:48:d3:30:fe: 09:8e:c9:5a:94:49:cb:f5:29:0f:e2:83:ee:a6:83:21:b8:aa: 2a:d3:12:06:cd:4f:37:4e:be:38:d8:20:3e:a9:53:65:19:e7: b0:80:97:3f:72:24:8a:11:70:72:68:57:87:39:ff:bc:68:4a: ac:54:6e:68:31:cf:82:ba:d0:fd:99:a7:3e:11:cc:c7:f4:a4: 12:75:fa:6d:05:aa:eb:1e:c4:0b:e5:35:6c:4d:5c:4e:b2:c9: 43:05:80:d9:2f:d3:7a:bd:ed:36:b3:88:cf:f4:db:80:8c:1e: 33:21:cf:80:d3:37:64:78:37:8b:6f:f3:8b:4f:99:70:3c:57: 17:52:88:e3:0c:03:a8:7c:d2:5d:ee:97:b3:95:f1:3c:9e:98: ae:21:ed:4d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRDQxMTAvBgNVBAUTKEYxM0JDQTgwNEY4RjE5ODE3NkY5OUU3QkM5QUVBOThD QUZDMEI4QjEwHhcNMjUwNzAxMDEwNTUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMzQ2ZS03MTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOcLH11Prdh5cbQ77wBJ5F3a5gRTcAs0HrEDLEW3WNYxyrD9j1nz/SZWHrfp cc4KVxUIA+C+M8SLnHLcMVb16zOy39gv0/urTw2c34CVIAesohCRCds/WB/QAt4M axYciafNypYL0iqYWaqSAEiCGdh6uecybV9fZgsMqlRRvCagIr1OztrKAhYx4UCd YZAlLYmrcQV2mKLZrzyjBWkw0LddlaAlUfPBvGbqh84UPZ/LIzqZazN4e6qGYuCr S9Ci72C1y36+oGiJmSONfDeY/qF+mJ0yzX7qflLW3pLe0Fq6cAXOFKFqFhtDAOfx w0iHlCTLua3w9Hmxl7VJI3WoHQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEFxbuLb NAzqNmwYh3ua4KPFF806MB8GA1UdIwQYMBaAFPE7yoBPjxmBdvmee8muqYyvwLix MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJENC80ODY1QkQ0ODYx MTExMUVDOTg0RTNFN0ZDNEY5QUUwMi84VHZLZ0UtUEdZRjItWjU3eWE2cGpLX0F1 TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhUdktnRS1QR1lGMi1aNTd5YTZwaktfQXVMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBCRDQvNDg2NUJENDg2MTExMTFFQzk4NEUzRTdGQzRGOUFFMDIvNzEyNUM3REU2 MTE0MTFFQ0JGNjZCMzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKFYIDBALKMsAwDQYJKoZIhvcNAQELBQADggEBACNTtXBq h9NJZ9e6Ij/gL4wHs/Wj9fccys3ozGM8DIZUybjk03gXcwChAnZmhxqoL/uaMF+Z m2XTG1cBR+GLrPPVyJq7VkeVK3EmnH6f5LtqYXGzUNDCNOO+U15Prkso2aX3LRMn N0KUSNMw/gmOyVqUScv1KQ/ig+6mgyG4qirTEgbNTzdOvjjYID6pU2UZ57CAlz9y JIoRcHJoV4c5/7xoSqxUbmgxz4K60P2Zpz4RzMf0pBJ1+m0FqusexAvlNWxNXE6y yUMFgNkv03q97TaziM/024CMHjMhz4DTN2R4N4tv84tPmXA8VxdSiOMMA6h80l3u l7OV8TyemK4h7U0= -----END CERTIFICATE-----Generated at Thu Jul 3 16:57:07 2025 by rpki-client