$ rpki-client -vvf rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/09B62A48833411ECBB74C786C4F9AE02.roa File: 09B62A48833411ECBB74C786C4F9AE02.roa (raw, json) Hash identifier: ANWZ9/ZI/YnC7+gnSwxQhiQXsEsFgVbk7uY3NlPWKy8= Subject key identifier: 45:2A:21:D5:E7:CC:16:8A:89:5C:64:92:46:2C:B6:49:E7:29:17:50 Certificate issuer: /CN=A91596C4/serialNumber=3EE26FBA4BE359DEAE500792EBFF78D00ACB760C Certificate serial: 0439 Authority key identifier: 3E:E2:6F:BA:4B:E3:59:DE:AE:50:07:92:EB:FF:78:D0:0A:CB:76:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PuJvukvjWd6uUAeS6_940ArLdgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/09B62A48833411ECBB74C786C4F9AE02.roa Signing time: Fri 31 Oct 2025 00:44:33 +0000 ROA not before: Fri 31 Oct 2025 00:44:33 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 1221 IP address blocks: 149.234.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/PuJvukvjWd6uUAeS6_940ArLdgw.crl rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/PuJvukvjWd6uUAeS6_940ArLdgw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PuJvukvjWd6uUAeS6_940ArLdgw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:17:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1081 (0x439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91596C4, serialNumber=3EE26FBA4BE359DEAE500792EBFF78D00ACB760C Validity Not Before: Oct 31 00:44:33 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=69040671-6fc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:74:65:f3:c8:ec:ca:ae:63:ef:a6:bc:00:c8: 91:e4:64:01:a2:4c:22:84:51:d5:3a:42:67:3d:36: 99:a1:ef:5a:13:4c:e1:e8:b2:2a:d3:60:11:ed:1f: 38:c4:62:4a:85:8e:24:fd:44:89:f3:8f:1a:e0:89: 51:cd:8a:ab:d1:42:a5:e1:8f:4a:b7:af:df:c2:3c: e4:a7:2d:11:ae:ba:a6:cd:f0:1e:4a:68:7f:ed:ed: 81:f3:e2:91:9f:5e:29:df:df:ef:14:1e:7d:db:4a: d8:c3:31:2b:df:29:01:7f:62:d9:ea:2d:58:62:f2: bf:92:ca:c1:ff:60:2b:8a:e2:c6:69:bf:79:c6:9c: 0f:c2:dc:64:4f:d9:fd:63:23:7d:f4:0c:30:f0:21: 26:7a:2c:f5:ab:6e:cd:9e:1a:86:7f:b1:19:08:f0: a7:cf:ae:86:5a:d4:31:3f:a0:9e:4a:96:b9:3c:1c: f0:0b:ff:80:a0:81:e4:93:cb:c3:76:82:56:dd:d7: bd:13:97:c8:3e:ba:8c:bb:d4:90:ff:ea:d7:53:0e: 90:74:2a:c3:b2:ea:be:c8:1a:bc:a6:ec:13:aa:ff: 5d:ef:89:d4:ae:92:1c:b7:bc:69:5d:ea:c6:5c:36: f4:91:54:c0:71:1e:7d:3e:0b:93:d4:9c:2b:53:65: 2b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:2A:21:D5:E7:CC:16:8A:89:5C:64:92:46:2C:B6:49:E7:29:17:50 X509v3 Authority Key Identifier: keyid:3E:E2:6F:BA:4B:E3:59:DE:AE:50:07:92:EB:FF:78:D0:0A:CB:76:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/PuJvukvjWd6uUAeS6_940ArLdgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PuJvukvjWd6uUAeS6_940ArLdgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/09B62A48833411ECBB74C786C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.189.0/24 Signature Algorithm: sha256WithRSAEncryption 74:b5:c6:c1:52:b7:51:94:1c:9c:62:3c:de:84:08:55:99:46: e6:ef:97:0b:f7:bc:39:80:1f:08:8d:5b:a5:93:e1:9c:f8:25: b0:2a:4a:91:c7:89:53:91:88:fd:12:89:5b:70:20:76:c2:f5: b2:e6:d4:f2:38:4a:2a:e1:dd:98:3d:8b:6d:af:ff:a6:b0:1a: 31:20:95:c1:c2:02:43:65:d5:14:b9:6e:a2:60:ff:b7:72:01: c0:e8:3a:cb:94:2c:1a:94:5b:8c:38:1a:11:0c:2d:99:88:df: 74:84:f4:3d:1d:cc:9f:38:bd:df:46:a8:c9:8b:2d:51:45:72: a0:ca:4a:41:a0:41:cf:2b:7c:2e:8c:a4:55:35:30:7e:01:70: a1:f6:20:07:49:8a:e0:2b:1b:9a:78:79:f6:10:dc:09:17:be: f4:77:91:39:27:c9:c4:20:5c:58:b2:7c:c8:9a:31:8c:2e:0a: fa:88:2f:d3:d4:9e:0a:b2:07:94:12:1c:41:f4:68:15:1e:c7: 83:ba:95:6d:67:86:9c:94:db:4e:33:b1:38:e2:1d:bd:b4:bc: 2e:bf:cb:34:29:a5:15:8b:b2:51:c2:27:8e:64:70:e5:84:c8: 3d:ab:8b:62:4b:a6:c0:bf:ef:22:b7:39:c2:c4:39:28:93:a8: 0d:40:a8:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk2QzQxMTAvBgNVBAUTKDNFRTI2RkJBNEJFMzU5REVBRTUwMDc5MkVCRkY3OEQw MEFDQjc2MEMwHhcNMjUxMDMxMDA0NDMzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0MDY3MS02ZmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAynRl88jsyq5j76a8AMiR5GQBokwihFHVOkJnPTaZoe9aE0zh6LIq02AR7R84 xGJKhY4k/USJ848a4IlRzYqr0UKl4Y9Kt6/fwjzkpy0RrrqmzfAeSmh/7e2B8+KR n14p39/vFB5920rYwzEr3ykBf2LZ6i1YYvK/ksrB/2AriuLGab95xpwPwtxkT9n9 YyN99Aww8CEmeiz1q27NnhqGf7EZCPCnz66GWtQxP6CeSpa5PBzwC/+AoIHkk8vD doJW3de9E5fIPrqMu9SQ/+rXUw6QdCrDsuq+yBq8puwTqv9d74nUrpIct7xpXerG XDb0kVTAcR59PguT1JwrU2UrcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEUqIdXn zBaKiVxkkkYstknnKRdQMB8GA1UdIwQYMBaAFD7ib7pL41nerlAHkuv/eNAKy3YM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTZDNC9GM0RERUVERTgz MzAxMUVDOEZGMzkzODNDNEY5QUUwMi9QdUp2dWt2aldkNnVVQWVTNl85NDBBckxk Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1B1SnZ1a3ZqV2Q2dVVBZVM2Xzk0MEFyTGRndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTk2QzQvRjNEREVFREU4MzMwMTFFQzhGRjM5MzgzQzRGOUFFMDIvMDlCNjJBNDg4 MzM0MTFFQ0JCNzRDNzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACV6r0wDQYJKoZIhvcNAQELBQADggEBAHS1xsFSt1GUHJxi PN6ECFWZRubvlwv3vDmAHwiNW6WT4Zz4JbAqSpHHiVORiP0SiVtwIHbC9bLm1PI4 Sirh3Zg9i22v/6awGjEglcHCAkNl1RS5bqJg/7dyAcDoOsuULBqUW4w4GhEMLZmI 33SE9D0dzJ84vd9GqMmLLVFFcqDKSkGgQc8rfC6MpFU1MH4BcKH2IAdJiuArG5p4 efYQ3AkXvvR3kTknycQgXFiyfMiaMYwuCvqIL9PUngqyB5QSHEH0aBUex4O6lW1n hpyU204zsTjiHb20vC6/yzQppRWLslHCJ45kcOWEyD2ri2JLpsC/7yK3OcLEOSiT qA1AqPM= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:48 2025 by rpki-client