$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/A82F26B0466911F0ACD64867C4F9AE02.roa File: A82F26B0466911F0ACD64867C4F9AE02.roa (raw, json) Hash identifier: kSoWVtHpQDZmqJOLsTM1OyzxMP9B0go+eKmJku7wZ+M= Subject key identifier: 88:84:52:A2:4E:7D:05:35:03:2D:CB:68:E3:B6:FF:94:15:2D:30:66 Certificate issuer: /CN=A9149F3E/serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F Certificate serial: 354B Authority key identifier: BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/A82F26B0466911F0ACD64867C4F9AE02.roa Signing time: Fri 31 Oct 2025 00:10:37 +0000 ROA not before: Fri 31 Oct 2025 00:10:37 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 1237 IP address blocks: 134.75.20.0/24 maxlen: 24 134.75.52.0/23 maxlen: 24 134.75.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13643 (0x354b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=BF0E6F4EE0E17DDE8C4A24BF897D19B87AA5759F Validity Not Before: Oct 31 00:10:37 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6903fe7d-680b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:4f:72:a6:b7:de:d7:19:2e:b3:9d:6e:7c:3b: a1:5b:74:d7:b0:fd:0d:5d:0c:36:56:b8:f0:39:c2: c7:24:e8:13:3f:7c:46:f8:b3:89:82:55:4e:6c:6a: af:44:6f:47:90:18:f6:3b:7d:b9:4f:8c:f6:79:d1: 53:7d:d7:bd:6d:f9:0f:5f:aa:72:de:1d:25:1f:31: b3:a1:cd:90:e0:be:d4:d8:6f:4b:46:57:12:c8:b5: 81:58:40:2c:f7:c2:99:97:eb:27:89:a5:46:ae:f9: 36:1e:af:96:fb:83:39:42:de:d5:0d:0b:36:d2:fe: 70:09:57:d8:8f:2d:b1:41:66:30:bb:43:21:59:63: 0d:c0:0d:2d:d2:8a:1c:52:2a:93:d4:e0:08:8f:37: ed:79:9f:e8:82:cc:bd:dd:bf:c8:72:5f:4c:70:e5: 22:f9:41:bb:07:71:fd:51:34:86:aa:67:89:57:94: 1c:43:59:8d:7b:7e:1e:8f:73:f5:b6:67:76:8e:97: ca:72:f7:26:cf:20:c4:f8:15:3e:26:ac:7a:98:fc: 99:5e:99:2a:fc:37:ed:ee:66:b2:4b:45:c9:92:4a: 11:c6:3f:7c:6a:a8:3b:b3:d6:c0:19:60:cf:04:15: 2c:e6:24:06:61:6c:c4:ec:6b:9c:cb:56:6a:73:11: a6:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:84:52:A2:4E:7D:05:35:03:2D:CB:68:E3:B6:FF:94:15:2D:30:66 X509v3 Authority Key Identifier: keyid:BF:0E:6F:4E:E0:E1:7D:DE:8C:4A:24:BF:89:7D:19:B8:7A:A5:75:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vw5vTuDhfd6MSiS_iX0ZuHqldZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/9A85BB501D8211E2BC6417D708B02CD2/A82F26B0466911F0ACD64867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.75.20.0/24 134.75.52.0/23 134.75.250.0/24 Signature Algorithm: sha256WithRSAEncryption 46:98:78:90:55:3e:c5:52:0f:4b:48:dd:4b:88:4d:89:de:c0: 2c:83:b6:19:13:04:89:7b:f4:eb:91:fa:73:ee:df:87:b2:c8: f4:12:50:4e:43:c2:d3:8d:3f:6c:94:76:35:f6:4c:b1:f9:a4: 7f:c8:36:2d:13:8e:1e:67:31:7a:03:d3:be:bb:45:ad:e9:aa: 7f:78:a8:52:b5:03:fc:f1:ec:85:da:9e:9e:b5:94:fa:cd:1c: 36:a4:98:68:62:e4:59:6a:6a:55:f4:b1:80:80:18:56:d1:ff: 10:01:6a:65:97:da:87:b0:9b:16:46:03:b2:76:44:36:17:81: 3c:49:5c:56:04:ec:8f:d4:3b:d7:d6:f2:c0:a8:ed:ae:7a:2b: c7:9c:7f:54:fa:b0:ef:b3:a0:13:82:b9:ad:76:f5:c8:65:44: b9:4c:29:a8:9c:cc:39:e6:1c:49:21:98:e3:84:a1:ed:1e:d2: 9c:45:03:27:63:22:20:3e:3f:92:d0:83:69:43:4e:12:43:36: 68:29:6a:23:f9:fc:da:eb:f3:cc:c7:8b:45:bb:1d:64:82:33: 28:26:c2:73:be:50:76:a5:e6:36:3c:18:5c:db:3f:f2:09:6c: 0e:6f:00:cb:16:64:11:c6:14:45:7a:5e:85:c7:bb:f5:90:a3: 85:aa:71:6c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICNUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEJGMEU2RjRFRTBFMTdEREU4QzRBMjRCRjg5N0QxOUI4 N0FBNTc1OUYwHhcNMjUxMDMxMDAxMDM3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzZmU3ZC02ODBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9E9yprfe1xkus51ufDuhW3TXsP0NXQw2VrjwOcLHJOgTP3xG+LOJglVObGqv RG9HkBj2O325T4z2edFTfde9bfkPX6py3h0lHzGzoc2Q4L7U2G9LRlcSyLWBWEAs 98KZl+sniaVGrvk2Hq+W+4M5Qt7VDQs20v5wCVfYjy2xQWYwu0MhWWMNwA0t0ooc UiqT1OAIjzfteZ/ogsy93b/Icl9McOUi+UG7B3H9UTSGqmeJV5QcQ1mNe34ej3P1 tmd2jpfKcvcmzyDE+BU+Jqx6mPyZXpkq/Dft7mayS0XJkkoRxj98aqg7s9bAGWDP BBUs5iQGYWzE7Gucy1ZqcxGmAwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIiEUqJO fQU1Ay3LaOO2/5QVLTBmMB8GA1UdIwQYMBaAFL8Ob07g4X3ejEokv4l9Gbh6pXWf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS85QTg1QkI1MDFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi92dzV2VHVEaGZkNk1TaVNfaVgwWnVIcWxk WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3Z3NXZUdURoZmQ2TVNpU19pWDBadUhxbGRaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvOUE4NUJCNTAxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvQTgyRjI2QjA0 NjY5MTFGMEFDRDY0ODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBACGSxQDBAGGSzQDBACGS/owDQYJKoZIhvcNAQELBQADggEB AEaYeJBVPsVSD0tI3UuITYnewCyDthkTBIl79OuR+nPu34eyyPQSUE5DwtONP2yU djX2TLH5pH/INi0Tjh5nMXoD0767Ra3pqn94qFK1A/zx7IXanp61lPrNHDakmGhi 5FlqalX0sYCAGFbR/xABamWX2oewmxZGA7J2RDYXgTxJXFYE7I/UO9fW8sCo7a56 K8ecf1T6sO+zoBOCua129chlRLlMKaiczDnmHEkhmOOEoe0e0pxFAydjIiA+P5LQ g2lDThJDNmgpaiP5/Nrr88zHi0W7HWSCMygmwnO+UHal5jY8GFzbP/IJbA5vAMsW ZBHGFEV6XoXHu/WQo4WqcWw= -----END CERTIFICATE-----Generated at Wed Nov 5 05:11:28 2025 by rpki-client