$ rpki-client -vvf rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/951A6E226D2E11F09539AE2BC4F9AE02.roa File: 951A6E226D2E11F09539AE2BC4F9AE02.roa (raw, json) Hash identifier: /9WwScNnwKtuTN07Iz2vc8yMRAg5E8y5OFcRZD0NbCM= Subject key identifier: CC:8E:41:5E:AA:43:FC:CB:9A:D1:F5:E4:C1:26:F4:8D:A5:27:28:1F Certificate issuer: /CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Certificate serial: 0272 Authority key identifier: 4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/951A6E226D2E11F09539AE2BC4F9AE02.roa Signing time: Wed 30 Jul 2025 10:18:48 +0000 ROA not before: Wed 30 Jul 2025 10:18:48 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 134428 IP address blocks: 125.62.68.0/24 maxlen: 24 125.62.69.0/24 maxlen: 24 125.62.70.0/24 maxlen: 24 125.62.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91632D7, serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Validity Not Before: Jul 30 10:18:48 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6889f188-140f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:9c:83:57:07:61:d6:42:a9:22:8c:17:9b:2a: c7:52:45:02:a7:a8:0b:68:6a:b5:33:41:52:20:e9: de:a3:26:15:fb:45:ac:d6:0b:4f:05:15:cb:d4:75: 1a:f8:5d:a3:8f:14:dd:bd:40:e0:4f:14:74:06:01: e0:9e:37:9d:b9:70:5c:8f:46:d2:45:5c:8f:b0:20: 0d:a6:3a:32:dc:cb:26:85:d2:ba:0b:2d:a8:53:db: 44:57:eb:18:ba:09:8d:1a:89:13:76:b0:6f:52:bf: 70:06:67:e1:40:b5:c8:e3:47:d1:18:13:84:7d:a3: 5a:52:73:e5:e7:04:10:cd:e4:94:e6:23:d0:53:27: 73:8a:89:54:8f:a5:40:25:21:74:1d:4c:bc:cf:1b: ab:24:79:5f:c1:7b:4c:98:3a:74:a5:44:4c:d9:a8: 34:2c:af:6d:9e:f3:62:a4:eb:89:2d:1e:fa:a5:27: af:c4:c9:07:7c:38:54:bb:02:d1:22:a5:3c:33:9b: dc:c5:00:af:70:45:58:68:39:ec:1e:64:01:e5:13: da:e1:79:51:27:0f:46:d3:d7:cf:d6:99:c5:42:85: 50:05:b6:0c:41:34:a9:3d:e2:f0:f9:32:9a:91:08: 63:22:4e:91:b7:34:1c:d7:a6:27:ba:77:bc:43:0a: 92:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:8E:41:5E:AA:43:FC:CB:9A:D1:F5:E4:C1:26:F4:8D:A5:27:28:1F X509v3 Authority Key Identifier: keyid:4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/951A6E226D2E11F09539AE2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.62.68.0/22 Signature Algorithm: sha256WithRSAEncryption 5e:17:d1:76:0e:20:45:6f:31:8a:19:71:b7:62:ad:7b:43:85: a5:08:5c:a5:f4:92:a5:32:4c:b4:49:83:9a:48:69:41:0a:b9: e0:32:13:94:c5:81:04:59:a9:df:96:22:3e:c0:09:d1:28:45: de:3c:28:8b:c5:93:70:ac:68:4e:b1:0c:54:81:a3:49:1c:a7: 60:c3:c5:16:9a:42:7c:69:17:1b:fc:c9:f2:01:d2:cd:d5:ef: e1:25:d5:8d:f5:6b:01:36:49:3d:00:b7:47:83:a9:a8:1f:87: 85:d8:d9:37:98:75:39:50:9f:f6:9a:eb:11:1b:9b:2e:5f:10: 2d:63:78:30:5d:f2:b0:b0:e6:d3:48:98:cd:83:3b:13:cb:44: 4b:8f:e1:2e:23:30:d9:0c:29:cb:82:50:cc:aa:d8:90:a7:18: 7b:8c:2c:7c:ca:87:a1:6c:d4:e7:85:02:ad:c1:d8:31:d0:79: d2:15:55:1c:00:ad:f8:aa:86:65:41:5d:27:c1:99:9e:58:47: 2c:ff:f0:99:d0:59:65:f7:b4:86:99:69:d6:14:6d:e5:b4:b3: b5:dd:38:57:38:c4:52:0b:e6:9c:35:23:38:1e:24:41:cd:82: 13:a5:03:ba:da:bf:ca:0f:e9:5f:62:c0:cc:5a:d3:81:8d:bd: be:e8:52:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyRDcxMTAvBgNVBAUTKDRFMDczNzg2NjdFQzc5RDUzRDY1MEU1MjREMUU4Rjk4 QjA4QzI4RTEwHhcNMjUwNzMwMTAxODQ4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg5ZjE4OC0xNDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JyDVwdh1kKpIowXmyrHUkUCp6gLaGq1M0FSIOneoyYV+0Ws1gtPBRXL1HUa +F2jjxTdvUDgTxR0BgHgnjeduXBcj0bSRVyPsCANpjoy3MsmhdK6Cy2oU9tEV+sY ugmNGokTdrBvUr9wBmfhQLXI40fRGBOEfaNaUnPl5wQQzeSU5iPQUydziolUj6VA JSF0HUy8zxurJHlfwXtMmDp0pURM2ag0LK9tnvNipOuJLR76pSevxMkHfDhUuwLR IqU8M5vcxQCvcEVYaDnsHmQB5RPa4XlRJw9G09fP1pnFQoVQBbYMQTSpPeLw+TKa kQhjIk6RtzQc16Ynune8QwqSqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMyOQV6q Q/zLmtH15MEm9I2lJygfMB8GA1UdIwQYMBaAFE4HN4Zn7HnVPWUOUk0ej5iwjCjh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzJENy9GOTc5NTlDMjI0 MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2VkVTlaUTVTVFI2UG1MQ01L T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RnYzNobWZzZWRVOVpRNVNUUjZQbUxDTUtPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjMyRDcvRjk3OTU5QzIyNDE3MTFFRDlDMEM3MDBEQzRGOUFFMDIvOTUxQTZFMjI2 RDJFMTFGMDk1MzlBRTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ9PkQwDQYJKoZIhvcNAQELBQADggEBAF4X0XYOIEVvMYoZ cbdirXtDhaUIXKX0kqUyTLRJg5pIaUEKueAyE5TFgQRZqd+WIj7ACdEoRd48KIvF k3CsaE6xDFSBo0kcp2DDxRaaQnxpFxv8yfIB0s3V7+El1Y31awE2ST0At0eDqagf h4XY2TeYdTlQn/aa6xEbmy5fEC1jeDBd8rCw5tNImM2DOxPLREuP4S4jMNkMKcuC UMyq2JCnGHuMLHzKh6Fs1OeFAq3B2DHQedIVVRwArfiqhmVBXSfBmZ5YRyz/8JnQ WWX3tIaZadYUbeW0s7XdOFc4xFIL5pw1IzgeJEHNghOlA7rav8oP6V9iwMxa04GN vb7oUpY= -----END CERTIFICATE-----Generated at Sun Aug 10 04:17:00 2025 by rpki-client