$ rpki-client -vvf rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/2701A0D8769611F09C8ABC22C4F9AE02.roa File: 2701A0D8769611F09C8ABC22C4F9AE02.roa (raw, json) Hash identifier: UltTcVIqPHEDuUriQr1xUBBRJ1pBDqVcDmFzpS+wHEA= Subject key identifier: F1:03:39:BD:23:22:58:ED:11:1D:27:C0:02:80:3F:35:80:E5:CD:3E Certificate issuer: /CN=A9165588/serialNumber=EF9F97CEB2927651D64FAA02E39DBE0DA3B71F95 Certificate serial: 61 Authority key identifier: EF:9F:97:CE:B2:92:76:51:D6:4F:AA:02:E3:9D:BE:0D:A3:B7:1F:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75-XzrKSdlHWT6oC452-DaO3H5U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/2701A0D8769611F09C8ABC22C4F9AE02.roa Signing time: Mon 11 Aug 2025 09:32:52 +0000 ROA not before: Mon 11 Aug 2025 09:32:52 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 14114 IP address blocks: 203.13.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/75-XzrKSdlHWT6oC452-DaO3H5U.crl rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/75-XzrKSdlHWT6oC452-DaO3H5U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75-XzrKSdlHWT6oC452-DaO3H5U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:25:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165588, serialNumber=EF9F97CEB2927651D64FAA02E39DBE0DA3B71F95 Validity Not Before: Aug 11 09:32:52 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6899b8c4-ef82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b3:f0:51:8b:4e:f0:c7:20:d6:13:fc:fc:63: ce:5b:1e:58:fb:e3:ea:cc:51:8e:c7:15:53:80:76: 89:48:8d:49:3e:d0:a3:49:4b:1f:e3:40:e2:89:a0: 75:2a:2b:47:4f:ba:e7:da:be:25:a2:03:8b:88:9c: b2:0c:1b:62:fe:8a:1b:03:6d:24:04:f4:22:70:db: d7:0e:b2:67:5c:db:a4:5f:92:be:74:8f:95:57:72: 8c:4f:bb:09:4d:59:17:c1:bb:03:72:d0:48:e1:98: 9f:b7:05:82:5c:8c:93:ff:1d:6d:c4:9a:5c:7d:d6: a5:d1:97:dd:bc:dd:45:91:52:10:ad:e6:69:44:f5: 9b:22:49:cc:16:da:02:8a:6c:ac:28:0f:ac:e8:c0: d6:31:84:3a:a1:30:4e:65:54:e3:45:5d:19:7a:e9: 81:bb:95:79:49:2c:05:13:c6:8e:83:1c:e0:d3:3d: 2e:05:6a:19:ad:2e:08:a0:ea:be:80:7c:67:af:73: c5:3d:6f:01:ae:52:51:13:78:49:4d:a3:19:20:ea: c2:c0:e7:0f:99:2e:f5:9b:f0:4e:83:fb:35:fb:ec: d9:f3:f5:c8:55:15:ec:e0:a1:4f:2d:b3:5e:cb:69: 34:2e:c0:06:ae:80:ad:97:1c:70:cb:5a:d5:ef:d9: 72:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:03:39:BD:23:22:58:ED:11:1D:27:C0:02:80:3F:35:80:E5:CD:3E X509v3 Authority Key Identifier: keyid:EF:9F:97:CE:B2:92:76:51:D6:4F:AA:02:E3:9D:BE:0D:A3:B7:1F:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/75-XzrKSdlHWT6oC452-DaO3H5U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/75-XzrKSdlHWT6oC452-DaO3H5U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165588/694531F2FA8711EF83EDEC2DC4F9AE02/2701A0D8769611F09C8ABC22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.13.156.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:d7:24:fe:58:0b:87:42:3e:e3:7c:53:00:c6:c8:2a:4e:86: 43:82:a5:43:8f:21:37:b9:16:08:0a:44:cd:5a:39:ec:98:19: 16:f0:e7:ef:54:94:7e:42:e9:b5:73:a0:3e:3a:0c:25:dc:50: 68:e8:b0:0a:d5:27:e2:94:d0:99:3c:b0:a6:6d:50:a8:cc:99: 95:29:03:8d:16:31:79:3d:45:ea:7f:54:2c:44:81:73:a3:b9: 38:0c:f4:f2:25:5d:4b:86:c8:72:3d:43:2a:af:a9:c2:5b:4e: d7:0e:a1:4f:0b:9d:ab:d4:b8:af:3f:7e:27:22:84:0c:f6:3e: cc:dc:69:94:b2:9f:6a:7b:10:1b:17:aa:38:ab:43:d5:ce:25: f1:74:16:85:dd:79:24:d8:18:21:07:e1:78:9d:be:48:25:85: 29:a8:9e:1e:c6:58:39:73:e3:38:cf:25:2f:11:4d:de:7c:2d: b0:ec:94:39:ac:7e:85:12:ac:6a:5a:0d:de:33:52:c9:e3:b5: 51:63:da:12:31:aa:17:9d:5a:c7:7f:60:79:19:ce:42:31:af: 2c:16:a7:ca:7e:2c:22:b3:fe:b5:ff:f2:d8:ba:87:b6:be:38: 83:8c:a2:00:81:94:2a:4c:00:1f:dc:f5:c5:77:4f:d9:d5:b4: 72:2b:3a:a8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTU4ODExMC8GA1UEBRMoRUY5Rjk3Q0VCMjkyNzY1MUQ2NEZBQTAyRTM5REJFMERB M0I3MUY5NTAeFw0yNTA4MTEwOTMyNTJaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTliOGM0LWVmODIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0s/BRi07wxyDWE/z8Y85bHlj74+rMUY7HFVOAdolIjUk+0KNJSx/jQOKJoHUq K0dPuufaviWiA4uInLIMG2L+ihsDbSQE9CJw29cOsmdc26Rfkr50j5VXcoxPuwlN WRfBuwNy0EjhmJ+3BYJcjJP/HW3Emlx91qXRl9283UWRUhCt5mlE9ZsiScwW2gKK bKwoD6zowNYxhDqhME5lVONFXRl66YG7lXlJLAUTxo6DHODTPS4FahmtLgig6r6A fGevc8U9bwGuUlETeElNoxkg6sLA5w+ZLvWb8E6D+zX77Nnz9chVFezgoU8ts17L aTQuwAaugK2XHHDLWtXv2XJTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8QM5vSMi WO0RHSfAAoA/NYDlzT4wHwYDVR0jBBgwFoAU75+XzrKSdlHWT6oC452+DaO3H5Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NTg4LzY5NDUzMUYyRkE4 NzExRUY4M0VERUMyREM0RjlBRTAyLzc1LVh6cktTZGxIV1Q2b0M0NTItRGFPM0g1 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNzUtWHpyS1NkbEhXVDZvQzQ1Mi1EYU8zSDVVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU4OC82OTQ1MzFGMkZBODcxMUVGODNFREVDMkRDNEY5QUUwMi8yNzAxQTBEODc2 OTYxMUYwOUM4QUJDMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsNnDANBgkqhkiG9w0BAQsFAAOCAQEAOtck/lgLh0I+43xT AMbIKk6GQ4KlQ48hN7kWCApEzVo57JgZFvDn71SUfkLptXOgPjoMJdxQaOiwCtUn 4pTQmTywpm1QqMyZlSkDjRYxeT1F6n9ULESBc6O5OAz08iVdS4bIcj1DKq+pwltO 1w6hTwudq9S4rz9+JyKEDPY+zNxplLKfansQGxeqOKtD1c4l8XQWhd15JNgYIQfh eJ2+SCWFKaieHsZYOXPjOM8lLxFN3nwtsOyUOax+hRKsaloN3jNSyeO1UWPaEjGq F51ax39geRnOQjGvLBanyn4sIrP+tf/y2LqHtr44g4yiAIGUKkwAH9z1xXdP2dW0 cis6qA== -----END CERTIFICATE-----Generated at Sun Aug 24 00:11:22 2025 by rpki-client