$ rpki-client -vvf rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/93E44A3C2E7F11ED9AA3A30AC4F9AE02.roa File: 93E44A3C2E7F11ED9AA3A30AC4F9AE02.roa (raw, json) Hash identifier: 5H1pM+kreN4Oi8C8HZm8e4S8ShHr8LgmiJJ+cKgYRHo= Subject key identifier: D4:99:B7:CA:C3:95:7E:7F:B4:DE:D8:71:A5:AE:75:D3:60:42:B9:C7 Certificate issuer: /CN=A916A983/serialNumber=88D87B102F5C2771C367064E2049B68A903C71B5 Certificate serial: 134E Authority key identifier: 88:D8:7B:10:2F:5C:27:71:C3:67:06:4E:20:49:B6:8A:90:3C:71:B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/93E44A3C2E7F11ED9AA3A30AC4F9AE02.roa Signing time: Wed 06 Aug 2025 17:26:31 +0000 ROA not before: Wed 06 Aug 2025 17:26:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4637 IP address blocks: 144.130.128.0/20 maxlen: 24 192.74.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.crl rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4942 (0x134e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A983, serialNumber=88D87B102F5C2771C367064E2049B68A903C71B5 Validity Not Before: Aug 6 17:26:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68939047-e849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:81:52:89:85:e3:27:c4:cc:a6:46:d5:da:06: 2c:f5:0c:5b:0e:93:72:f0:22:96:0f:16:3a:51:e2: f9:41:b5:a2:c9:f5:8d:5b:77:c1:3b:6d:e4:2f:b1: 6a:91:41:be:b9:2b:73:61:5a:e7:7e:71:2f:7f:e6: e7:72:67:59:9f:93:e2:53:bb:ad:5f:aa:df:cf:d1: 2e:39:dc:cf:48:95:ec:1b:87:e7:05:1a:9b:6c:e6: 7b:f1:6c:d9:01:4e:94:fb:c3:e6:db:2f:26:49:c9: cf:fd:fe:86:76:d7:42:d3:4c:dd:30:04:f9:e7:28: 29:87:2d:a7:22:fc:4c:5d:46:3e:f3:f3:68:ec:bf: 11:da:de:3b:bb:95:0e:ec:c6:45:42:3b:51:c9:bd: 7f:08:87:06:45:f2:92:3f:29:6a:60:9e:ef:03:82: 9d:9f:59:09:24:0c:6d:74:b8:ec:57:3f:4f:51:e1: e9:bc:aa:7e:33:06:01:24:87:71:7b:5f:86:d4:10: 9f:c5:60:ac:a3:ad:70:39:cf:2a:cf:72:89:2c:69: 2d:20:fc:4b:5b:81:86:2d:1c:4e:66:14:42:f8:4b: 7c:e4:1d:b0:09:c0:b2:dd:87:fa:74:95:fb:43:87: ee:d0:a2:b4:2a:99:df:5c:25:7b:f5:90:9b:ad:ab: 0e:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:99:B7:CA:C3:95:7E:7F:B4:DE:D8:71:A5:AE:75:D3:60:42:B9:C7 X509v3 Authority Key Identifier: keyid:88:D8:7B:10:2F:5C:27:71:C3:67:06:4E:20:49:B6:8A:90:3C:71:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/iNh7EC9cJ3HDZwZOIEm2ipA8cbU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A983/0E082E72CD0F11E89D9FF165C4F9AE02/93E44A3C2E7F11ED9AA3A30AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 144.130.128.0/20 192.74.139.0/24 Signature Algorithm: sha256WithRSAEncryption 32:df:52:d4:96:f7:e8:fa:5c:2e:90:7f:5a:2e:04:6d:2b:ce: 47:e7:6c:19:4b:38:05:69:82:20:e8:7a:89:49:fa:6d:4b:37: 52:62:59:75:59:02:8b:09:df:b9:51:e4:aa:e2:bd:1b:26:70: 8a:79:71:64:0d:d1:6c:b9:03:8c:96:d4:eb:bf:d8:c8:e2:0e: fa:b3:3d:cc:d6:5b:50:b7:7e:c3:7d:bb:02:cb:6f:aa:04:7a: c7:f6:7f:eb:78:9b:9f:22:05:3f:dc:7c:cd:ab:f2:b5:25:56: f3:ee:54:84:0b:ba:d2:c8:1e:94:8b:d0:87:a4:c7:ca:37:79: 5f:bb:34:9e:8d:80:4e:0e:13:bf:2c:4e:c2:b1:d3:c0:9e:7d: c2:50:fe:09:38:6b:74:b2:c1:e6:66:a4:c7:95:83:4a:d8:fe: 0a:af:41:d0:12:62:c1:ec:06:c3:e5:a8:8b:99:0c:78:1d:39: 91:8b:ce:c3:38:51:5b:0c:72:11:a1:53:be:cc:bd:0a:58:40: 71:18:60:42:de:4e:54:34:1c:33:e2:e6:ac:19:fb:98:70:05: ac:72:db:b5:bf:e4:2f:90:7d:b8:59:84:61:18:cf:47:c6:1a: be:ea:ae:f6:18:ff:50:7e:c1:06:57:2b:bd:8c:75:ba:d3:1e: 32:4e:33:dd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICE04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkE5ODMxMTAvBgNVBAUTKDg4RDg3QjEwMkY1QzI3NzFDMzY3MDY0RTIwNDlCNjhB OTAzQzcxQjUwHhcNMjUwODA2MTcyNjMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkzOTA0Ny1lODQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+oFSiYXjJ8TMpkbV2gYs9QxbDpNy8CKWDxY6UeL5QbWiyfWNW3fBO23kL7Fq kUG+uStzYVrnfnEvf+bncmdZn5PiU7utX6rfz9EuOdzPSJXsG4fnBRqbbOZ78WzZ AU6U+8Pm2y8mScnP/f6GdtdC00zdMAT55ygphy2nIvxMXUY+8/No7L8R2t47u5UO 7MZFQjtRyb1/CIcGRfKSPylqYJ7vA4Kdn1kJJAxtdLjsVz9PUeHpvKp+MwYBJIdx e1+G1BCfxWCso61wOc8qz3KJLGktIPxLW4GGLRxOZhRC+Et85B2wCcCy3Yf6dJX7 Q4fu0KK0KpnfXCV79ZCbrasOWQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNSZt8rD lX5/tN7YcaWuddNgQrnHMB8GA1UdIwQYMBaAFIjYexAvXCdxw2cGTiBJtoqQPHG1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTk4My8wRTA4MkU3MkNE MEYxMUU4OUQ5RkYxNjVDNEY5QUUwMi9pTmg3RUM5Y0ozSERad1pPSUVtMmlwQThj YlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2lOaDdFQzljSjNIRFp3Wk9JRW0yaXBBOGNiVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkE5ODMvMEUwODJFNzJDRDBGMTFFODlEOUZGMTY1QzRGOUFFMDIvOTNFNDRBM0My RTdGMTFFRDlBQTNBMzBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBASQgoADBADASoswDQYJKoZIhvcNAQELBQADggEBADLfUtSW 9+j6XC6Qf1ouBG0rzkfnbBlLOAVpgiDoeolJ+m1LN1JiWXVZAosJ37lR5KrivRsm cIp5cWQN0Wy5A4yW1Ou/2MjiDvqzPczWW1C3fsN9uwLLb6oEesf2f+t4m58iBT/c fM2r8rUlVvPuVIQLutLIHpSL0Iekx8o3eV+7NJ6NgE4OE78sTsKx08CefcJQ/gk4 a3SyweZmpMeVg0rY/gqvQdASYsHsBsPlqIuZDHgdOZGLzsM4UVsMchGhU77MvQpY QHEYYELeTlQ0HDPi5qwZ+5hwBaxy27W/5C+QfbhZhGEYz0fGGr7qrvYY/1B+wQZX K72MdbrTHjJOM90= -----END CERTIFICATE-----Generated at Fri Aug 8 20:55:06 2025 by rpki-client