$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2E31B8FCB57211EEBB68526DC4F9AE02.roa File: 2E31B8FCB57211EEBB68526DC4F9AE02.roa (raw, json) Hash identifier: sp0oN6M3b0vKQWiSIdTtVM/z4x+pZK5BNETB2TbgZ2E= Subject key identifier: 14:C5:6D:88:5A:95:B4:49:30:4B:74:10:B1:3B:32:7E:E1:F4:E8:82 Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 0137 Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2E31B8FCB57211EEBB68526DC4F9AE02.roa Signing time: Fri 15 Aug 2025 05:12:58 +0000 ROA not before: Fri 15 Aug 2025 05:12:58 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 6461 IP address blocks: 64.124.188.0/23 maxlen: 23 216.200.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277, serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Aug 15 05:12:58 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689ec1d9-053a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7d:35:33:d4:e8:47:7b:4c:84:d4:c4:7e:ac: 1f:26:f9:4c:a9:50:c5:1e:10:0e:68:68:56:75:5a: de:d1:ef:9c:06:f0:0b:c4:1d:cd:63:ff:dc:d0:cf: e9:31:f5:6b:51:aa:c3:ac:b6:5c:f4:d0:9b:b5:72: ae:35:c1:91:43:f9:0b:e5:18:a2:4e:ef:07:3d:64: f1:7c:85:e5:60:3e:26:39:c3:a2:f4:b3:3c:9f:fa: 25:7b:09:9c:19:aa:3c:c5:b7:17:bc:21:f8:3f:0a: ed:30:e0:5d:28:9f:4f:7e:fb:82:66:81:44:65:66: 10:49:80:69:a3:db:3f:58:3d:25:51:71:e4:5b:1f: ba:ea:0b:cc:15:62:3d:ca:c1:51:c1:c6:ec:34:a1: 6c:0b:fd:70:b7:d9:6d:21:d0:62:10:a4:6a:41:38: 74:cd:c1:39:7a:38:11:85:4a:e9:0e:bf:e8:69:8d: c0:8d:ce:9f:52:6a:05:d5:53:90:7b:63:f4:a8:69: 06:4e:80:a8:c1:5b:4d:b6:d3:93:2f:02:7e:ca:e0: f5:0e:4c:e1:0e:7c:31:4a:22:37:d9:48:08:ef:e0: 84:03:f2:0e:e7:b3:28:09:ac:9f:5c:d7:ba:b5:dd: e3:72:a0:b9:8d:25:d0:e8:43:1f:8f:8f:af:19:d3: 7e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C5:6D:88:5A:95:B4:49:30:4B:74:10:B1:3B:32:7E:E1:F4:E8:82 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2E31B8FCB57211EEBB68526DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.124.188.0/23 216.200.188.0/22 Signature Algorithm: sha256WithRSAEncryption 19:04:cd:a7:77:0a:d7:be:30:de:aa:2c:a3:03:15:b4:79:af: 4b:ff:d6:4f:36:52:89:28:a7:c4:f8:69:f4:d2:db:27:23:7d: 5d:a4:17:5c:7e:87:4a:52:2c:11:4c:41:68:7a:db:7c:9f:00: 7e:45:5a:54:9b:d4:22:af:e3:70:8a:2d:84:ee:66:13:f6:2f: e6:b2:c1:bb:93:fe:61:f1:24:7e:18:c8:35:94:db:18:b5:a0: a4:ed:27:ed:2a:5c:53:1e:8b:c6:4b:2c:c8:08:c0:89:40:46: bd:47:23:72:66:f0:32:85:35:17:d0:e4:f8:a2:42:26:fc:b2: f2:29:ea:5d:bf:86:23:5a:5d:a6:91:b0:01:75:55:84:01:92: 8a:30:ee:aa:44:0c:8f:de:21:09:63:17:dc:16:3c:8a:59:75: 44:2f:13:ef:c2:2f:66:65:56:18:1c:0e:89:e7:c1:56:8c:af: 8c:b3:1c:ee:95:bf:20:01:8f:00:5a:a9:f6:35:0f:e6:1e:0a: 92:71:fd:ae:e1:9a:39:d5:b8:34:69:64:e4:72:af:d1:33:1e: d1:ee:4a:d4:24:08:09:b2:cb:8d:08:8e:3e:ef:d7:9e:94:b5: e4:ab:6f:80:71:ee:71:f0:bf:61:71:c7:e9:27:03:e5:31:3f: cf:42:aa:83 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTcyNzcxMTAvBgNVBAUTKEQ4M0I5M0UzMUU5Mzk5MzdEOENCMTVGRTM5Q0E1RTZF OEZFQUZBOUIwHhcNMjUwODE1MDUxMjU4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllYzFkOS0wNTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwX01M9ToR3tMhNTEfqwfJvlMqVDFHhAOaGhWdVre0e+cBvALxB3NY//c0M/p MfVrUarDrLZc9NCbtXKuNcGRQ/kL5RiiTu8HPWTxfIXlYD4mOcOi9LM8n/olewmc Gao8xbcXvCH4PwrtMOBdKJ9PfvuCZoFEZWYQSYBpo9s/WD0lUXHkWx+66gvMFWI9 ysFRwcbsNKFsC/1wt9ltIdBiEKRqQTh0zcE5ejgRhUrpDr/oaY3Ajc6fUmoF1VOQ e2P0qGkGToCowVtNttOTLwJ+yuD1DkzhDnwxSiI32UgI7+CEA/IO57MoCayfXNe6 td3jcqC5jSXQ6EMfj4+vGdN+/QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBTFbYha lbRJMEt0ELE7Mn7h9OiCMB8GA1UdIwQYMBaAFNg7k+Mek5k32MsV/jnKXm6P6vqb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NzI3Ny80M0E3RTg5NEI1 NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRHVUNHg2VG1UZll5eFgtT2NwZWJvX3Et cHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTcyNzcvNDNBN0U4OTRCNTYwMTFFRTkxMUM1RDRGQzRGOUFFMDIvMkUzMUI4RkNC NTcyMTFFRUJCNjg1MjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFAfLwDBALYyLwwDQYJKoZIhvcNAQELBQADggEBABkEzad3 Cte+MN6qLKMDFbR5r0v/1k82Uokop8T4afTS2ycjfV2kF1x+h0pSLBFMQWh623yf AH5FWlSb1CKv43CKLYTuZhP2L+aywbuT/mHxJH4YyDWU2xi1oKTtJ+0qXFMei8ZL LMgIwIlARr1HI3Jm8DKFNRfQ5PiiQib8svIp6l2/hiNaXaaRsAF1VYQBkoow7qpE DI/eIQljF9wWPIpZdUQvE+/CL2ZlVhgcDonnwVaMr4yzHO6VvyABjwBaqfY1D+Ye CpJx/a7hmjnVuDRpZORyr9EzHtHuStQkCAmyy40Ijj7v156UteSrb4Bx7nHwv2Fx x+knA+UxP89CqoM= -----END CERTIFICATE-----Generated at Sat Aug 23 20:23:41 2025 by rpki-client