$ rpki-client -vvf rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa File: CA44DDA6C5A111EAA8D93F54C4F9AE02.roa (raw, json) Hash identifier: 8FaXqc5Hlldkkz4gX1AqBRiec7ihxH2f6NSirwWWU5U= Subject key identifier: 87:61:F6:A2:EA:17:AA:C8:DB:AF:34:97:C8:85:3F:11:DB:49:2C:E0 Certificate issuer: /CN=A9145C9B/serialNumber=64A06EDAF39757E428D41E71206974FD9FFA73BD Certificate serial: 0850 Authority key identifier: 64:A0:6E:DA:F3:97:57:E4:28:D4:1E:71:20:69:74:FD:9F:FA:73:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa Signing time: Fri 04 Apr 2025 21:03:22 +0000 ROA not before: Fri 04 Apr 2025 21:03:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17451 IP address blocks: 45.126.184.0/22 maxlen: 22 45.126.184.0/24 maxlen: 24 45.126.185.0/24 maxlen: 24 45.126.186.0/24 maxlen: 24 45.126.187.0/24 maxlen: 24 103.195.56.0/22 maxlen: 22 103.195.56.0/24 maxlen: 24 103.195.57.0/24 maxlen: 24 103.195.58.0/24 maxlen: 24 103.195.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.crl rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:26:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2128 (0x850) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145C9B, serialNumber=64A06EDAF39757E428D41E71206974FD9FFA73BD Validity Not Before: Apr 4 21:03:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f0491a-f165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:eb:22:d2:a6:07:bc:f4:e2:47:d5:45:94:ac: ab:88:80:0b:4c:9f:0d:3e:83:c2:bd:15:23:59:9c: f3:73:84:f6:47:b1:7c:80:a1:41:23:29:36:6a:7e: a7:52:8c:d5:be:ab:ad:b9:a1:21:bb:a1:c2:e6:33: f0:82:05:0e:1f:94:c9:5b:5a:5c:62:81:b4:43:ec: 6f:b2:a4:7c:b2:ef:3d:b2:b2:7e:7f:33:30:19:16: b9:ff:9d:89:c7:42:f0:42:a5:b0:a7:49:98:26:18: 58:f4:35:28:2d:61:9c:19:88:f5:84:e4:70:af:f4: fe:91:75:e4:6e:61:b9:62:9f:64:03:db:fd:dd:0b: dc:d3:90:07:12:9b:83:3e:63:92:79:60:5a:f8:1a: e8:db:88:ec:f7:68:07:b5:d3:3d:53:8d:58:ea:e2: 56:75:a7:76:75:0c:ac:e2:09:0b:54:52:1e:eb:64: 92:f0:ea:cd:69:1b:6e:da:8f:f8:95:1c:6c:5d:05: 7e:7b:2b:db:9e:0f:b6:49:43:36:c3:fe:62:89:7f: 72:aa:f2:d4:07:01:66:f5:69:6c:45:1f:75:d3:91: d6:33:6a:d9:9c:f4:2d:62:df:b5:03:6e:03:f5:35: 96:2e:01:73:59:e8:5b:b3:aa:0e:42:ab:65:61:8e: 16:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:61:F6:A2:EA:17:AA:C8:DB:AF:34:97:C8:85:3F:11:DB:49:2C:E0 X509v3 Authority Key Identifier: keyid:64:A0:6E:DA:F3:97:57:E4:28:D4:1E:71:20:69:74:FD:9F:FA:73:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZKBu2vOXV-Qo1B5xIGl0_Z_6c70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145C9B/D39FFE4AC5A011EA87859053C4F9AE02/CA44DDA6C5A111EAA8D93F54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.184.0/22 103.195.56.0/22 Signature Algorithm: sha256WithRSAEncryption a9:29:46:e2:b7:7b:2b:1f:71:84:54:b2:fa:4b:7b:e7:df:44: f3:68:c7:19:22:ab:97:2e:65:be:94:23:04:d6:87:a2:d2:cc: c9:4e:88:de:f5:ff:f1:95:ac:c7:f6:ce:bc:6c:57:23:27:ad: 22:70:70:92:06:10:89:10:34:44:d4:4d:07:96:53:3a:e0:27: c6:cc:98:f9:08:3e:21:f5:59:b4:60:42:1e:7c:2d:e5:76:bc: a7:91:fa:e4:0b:9b:69:a4:74:a3:69:0f:b7:dd:d3:ba:ff:64: b7:4d:17:05:fc:66:99:75:94:5d:50:b4:69:7c:f6:09:c1:f7: 78:45:8e:d4:9c:16:20:80:b3:61:86:84:14:e9:a1:8f:e3:4c: 1d:48:3b:f9:08:e9:75:c1:c3:58:68:19:dd:59:25:46:d2:4d: 20:1d:7b:33:3f:64:92:15:66:46:ea:76:12:af:69:9e:07:35: 3f:4e:ac:ac:80:20:b7:93:72:8f:31:c2:cb:ed:b7:e4:c7:94: 24:7c:f1:64:5c:ec:18:57:eb:ef:0c:49:d3:23:d8:19:ac:d4: 56:c4:25:18:97:92:4b:ad:3d:54:eb:88:d6:6a:a7:92:53:6f: 22:ef:3c:0f:55:e9:98:63:56:81:f2:5f:c7:2f:3b:4a:68:ec: 5f:c0:25:2a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVDOUIxMTAvBgNVBAUTKDY0QTA2RURBRjM5NzU3RTQyOEQ0MUU3MTIwNjk3NEZE OUZGQTczQkQwHhcNMjUwNDA0MjEwMzIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YwNDkxYS1mMTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqusi0qYHvPTiR9VFlKyriIALTJ8NPoPCvRUjWZzzc4T2R7F8gKFBIyk2an6n UozVvqutuaEhu6HC5jPwggUOH5TJW1pcYoG0Q+xvsqR8su89srJ+fzMwGRa5/52J x0LwQqWwp0mYJhhY9DUoLWGcGYj1hORwr/T+kXXkbmG5Yp9kA9v93Qvc05AHEpuD PmOSeWBa+Bro24js92gHtdM9U41Y6uJWdad2dQys4gkLVFIe62SS8OrNaRtu2o/4 lRxsXQV+eyvbng+2SUM2w/5iiX9yqvLUBwFm9WlsRR9105HWM2rZnPQtYt+1A24D 9TWWLgFzWehbs6oOQqtlYY4W3wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIdh9qLq F6rI2680l8iFPxHbSSzgMB8GA1UdIwQYMBaAFGSgbtrzl1fkKNQecSBpdP2f+nO9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUM5Qi9EMzlGRkU0QUM1 QTAxMUVBODc4NTkwNTNDNEY5QUUwMi9aS0J1MnZPWFYtUW8xQjV4SUdsMF9aXzZj NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pLQnUydk9YVi1RbzFCNXhJR2wwX1pfNmM3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVDOUIvRDM5RkZFNEFDNUEwMTFFQTg3ODU5MDUzQzRGOUFFMDIvQ0E0NEREQTZD NUExMTFFQUE4RDkzRjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfrgDBAJnwzgwDQYJKoZIhvcNAQELBQADggEBAKkpRuK3 eysfcYRUsvpLe+ffRPNoxxkiq5cuZb6UIwTWh6LSzMlOiN71//GVrMf2zrxsVyMn rSJwcJIGEIkQNETUTQeWUzrgJ8bMmPkIPiH1WbRgQh58LeV2vKeR+uQLm2mkdKNp D7fd07r/ZLdNFwX8Zpl1lF1QtGl89gnB93hFjtScFiCAs2GGhBTpoY/jTB1IO/kI 6XXBw1hoGd1ZJUbSTSAdezM/ZJIVZkbqdhKvaZ4HNT9OrKyAILeTco8xwsvtt+TH lCR88WRc7BhX6+8MSdMj2Bms1FbEJRiXkkutPVTriNZqp5JTbyLvPA9V6ZhjVoHy X8cvO0po7F/AJSo= -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:36 2025 by rpki-client