$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/75E6DD481BDA11EAB3F45D44C4F9AE02.roa File: 75E6DD481BDA11EAB3F45D44C4F9AE02.roa (raw, json) Hash identifier: CqtlIV8oyS/ltG/c7wrvUbZ8dS3VADjXiEg/AjA1Uu4= Subject key identifier: EA:E8:1B:95:EB:04:DC:58:A0:35:35:83:60:76:7F:A8:AD:55:44:B9 Certificate issuer: /CN=A9128DE9/serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Certificate serial: 0BF1 Authority key identifier: 46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/75E6DD481BDA11EAB3F45D44C4F9AE02.roa Signing time: Sat 26 Jul 2025 18:57:36 +0000 ROA not before: Sat 26 Jul 2025 18:57:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135600 IP address blocks: 66.228.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 18:59:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3057 (0xbf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9, serialNumber=4623A9A4D2EA85E98FB5A11A0D2CB08038878F0F Validity Not Before: Jul 26 18:57:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68852520-8b1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:39:de:f7:22:85:88:84:07:5d:bd:9c:92:a5: 62:c9:6e:b6:51:ce:e2:28:f4:6f:67:3e:e9:96:a4: 62:9a:4f:b1:19:b6:f6:87:e7:fc:ac:d1:97:d5:55: 23:f5:74:e0:c8:83:bc:93:db:8e:03:e2:89:82:3b: 78:bc:aa:66:e8:d2:11:af:1d:5e:39:15:29:58:be: e7:50:27:7e:76:6e:f6:1c:43:46:0f:7d:c2:a6:52: 9a:dd:03:73:27:92:a6:45:c1:b3:3f:4a:ac:8f:93: fa:ea:c5:5f:ac:4d:f7:eb:bc:dd:0f:58:2f:7a:10: d7:48:6e:ea:49:72:b7:0c:d7:85:a3:5f:ca:32:79: b0:d4:a2:cb:9c:54:7b:f4:3d:2b:c8:00:3b:31:9e: 7d:f5:0c:96:07:db:06:e4:dd:a8:95:5c:35:ab:8a: 82:e9:71:80:68:81:da:e4:5a:94:5b:4a:04:be:fb: c6:5f:af:ca:a2:8b:bc:a6:5a:b6:5e:d7:56:b0:51: 73:59:a3:bc:7e:24:8f:c9:49:8b:a7:4a:b0:98:3c: 60:ca:05:79:08:1f:51:f0:3e:13:a5:2f:18:f8:e3: b6:48:44:49:2f:4d:63:69:ae:91:fc:69:7e:c7:9f: e1:74:42:7a:eb:fc:7f:83:cb:55:b8:db:ad:22:ce: 1f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E8:1B:95:EB:04:DC:58:A0:35:35:83:60:76:7F:A8:AD:55:44:B9 X509v3 Authority Key Identifier: keyid:46:23:A9:A4:D2:EA:85:E9:8F:B5:A1:1A:0D:2C:B0:80:38:87:8F:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/RiOppNLqhemPtaEaDSywgDiHjw8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RiOppNLqhemPtaEaDSywgDiHjw8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D0049F861BD511EA80CBCF36C4F9AE02/75E6DD481BDA11EAB3F45D44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 66.228.0.0/20 Signature Algorithm: sha256WithRSAEncryption dd:22:84:9b:30:3f:0c:c4:eb:0a:53:fa:55:36:66:b2:6a:f0: 14:17:ee:77:dd:fe:cd:92:da:01:87:2a:1a:f0:64:aa:38:59: d5:6a:fb:25:0d:f7:9b:f5:70:4d:c4:02:87:ad:6a:a4:76:6b: 49:ff:55:e7:03:86:c0:d9:45:3b:2c:d9:ac:5a:2b:2e:f3:22: 96:6a:08:ed:3c:08:0a:3c:e9:15:d7:4c:ae:ba:98:9f:0a:2a: 4b:f0:a6:07:8e:63:cc:c7:64:56:96:2c:32:5d:eb:78:a9:f5: 78:60:8f:e9:d4:09:06:50:74:1c:7c:65:19:ca:33:86:37:81: 26:4a:50:09:3a:d5:40:50:d0:c2:b4:fe:4b:30:29:cd:c6:f0: 03:34:eb:78:9f:46:2b:ca:96:ba:76:3b:37:bc:23:fd:13:92: 5a:26:76:b5:eb:85:d2:b8:28:8b:27:8b:b1:0e:40:29:c9:ff: 9f:58:fe:e5:92:2a:2a:0a:d2:7e:5f:48:eb:f8:5d:33:28:d6: 01:a3:70:7a:bb:35:f1:f5:05:a8:d3:fe:21:22:2a:04:59:fa: 4c:70:f7:bf:19:9c:75:6c:3e:a7:a6:a2:76:6f:53:f3:8f:04: 67:d7:f4:b7:3e:3c:e2:5a:a4:52:72:fc:eb:cf:5a:d9:76:37: a9:d5:cb:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC/EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDQ2MjNBOUE0RDJFQTg1RTk4RkI1QTExQTBEMkNCMDgw Mzg4NzhGMEYwHhcNMjUwNzI2MTg1NzM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1MjUyMC04YjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzne9yKFiIQHXb2ckqViyW62Uc7iKPRvZz7plqRimk+xGbb2h+f8rNGX1VUj 9XTgyIO8k9uOA+KJgjt4vKpm6NIRrx1eORUpWL7nUCd+dm72HENGD33CplKa3QNz J5KmRcGzP0qsj5P66sVfrE3367zdD1gvehDXSG7qSXK3DNeFo1/KMnmw1KLLnFR7 9D0ryAA7MZ599QyWB9sG5N2olVw1q4qC6XGAaIHa5FqUW0oEvvvGX6/Koou8plq2 XtdWsFFzWaO8fiSPyUmLp0qwmDxgygV5CB9R8D4TpS8Y+OO2SERJL01jaa6R/Gl+ x5/hdEJ66/x/g8tVuNutIs4f1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOroG5Xr BNxYoDU1g2B2f6itVUS5MB8GA1UdIwQYMBaAFEYjqaTS6oXpj7WhGg0ssIA4h48P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9EMDA0OUY4NjFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9SaU9wcE5McWhlbVB0YUVhRFN5d2dEaUhq dzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JpT3BwTkxxaGVtUHRhRWFEU3l3Z0RpSGp3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhERTkvRDAwNDlGODYxQkQ1MTFFQTgwQ0JDRjM2QzRGOUFFMDIvNzVFNkRENDgx QkRBMTFFQUIzRjQ1RDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARC5AAwDQYJKoZIhvcNAQELBQADggEBAN0ihJswPwzE6wpT +lU2ZrJq8BQX7nfd/s2S2gGHKhrwZKo4WdVq+yUN95v1cE3EAoetaqR2a0n/VecD hsDZRTss2axaKy7zIpZqCO08CAo86RXXTK66mJ8KKkvwpgeOY8zHZFaWLDJd63ip 9Xhgj+nUCQZQdBx8ZRnKM4Y3gSZKUAk61UBQ0MK0/kswKc3G8AM063ifRivKlrp2 Oze8I/0TklomdrXrhdK4KIsni7EOQCnJ/59Y/uWSKioK0n5fSOv4XTMo1gGjcHq7 NfH1BajT/iEiKgRZ+kxw978ZnHVsPqemonZvU/OPBGfX9Lc+POJapFJy/OvPWtl2 N6nVy4Y= -----END CERTIFICATE-----Generated at Wed Aug 13 05:56:16 2025 by rpki-client