$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/4EA76BD26BBF11EFA2832A74C4F9AE02.roa File: 4EA76BD26BBF11EFA2832A74C4F9AE02.roa (raw, json) Hash identifier: 0ru7xYrLjnDIEAfDou0iidHCCux0ow/jB57Xp7tPDLw= Subject key identifier: 54:2B:54:CB:EC:A4:D0:AC:82:A6:78:85:2F:FD:F4:22:C5:52:9B:D0 Certificate issuer: /CN=A91758DF/serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF Certificate serial: 0869 Authority key identifier: 42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/4EA76BD26BBF11EFA2832A74C4F9AE02.roa Signing time: Mon 04 Aug 2025 21:32:47 +0000 ROA not before: Mon 04 Aug 2025 21:32:46 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45700 IP address blocks: 14.1.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.crl rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2153 (0x869) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF, serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF Validity Not Before: Aug 4 21:32:46 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689126fe-adcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6c:37:19:3a:7d:df:c0:b6:13:b1:a8:04:df: ee:35:6a:c1:c2:8e:a1:53:44:e4:7e:bb:e3:99:47: 32:3b:ac:0d:24:b4:18:31:3a:03:36:41:e2:80:99: be:fd:53:c2:66:99:7c:07:99:5c:84:a9:07:08:ef: 79:df:4d:10:fa:99:a7:77:ce:58:40:6e:83:09:66: 15:e1:9c:08:f8:53:b6:2d:ea:3f:36:d1:5a:a3:85: 28:6d:f1:22:e0:b9:9c:26:21:3c:fe:ca:57:dc:a2: 49:14:a0:21:a6:7f:fb:e5:3b:df:9c:f3:e9:f7:f8: d4:1d:74:31:dd:fb:31:b6:28:a1:d3:5c:7c:49:45: b6:97:18:f8:30:5e:81:81:e1:76:79:86:0a:25:09: 01:7a:3c:75:71:84:c4:ce:6e:25:e1:6f:cf:3f:63: 96:fc:63:be:7c:b8:e8:af:0a:7a:2e:06:1f:44:15: 2f:08:fe:13:9c:66:45:fa:b4:dd:63:d4:28:88:3a: 7a:ef:55:64:39:e9:bc:4a:9a:15:62:10:29:17:43: 7a:2d:7c:74:64:72:3a:ed:8d:75:b2:e6:25:d2:56: 77:37:0e:1d:d9:dc:6e:58:1b:52:a7:39:76:30:59: 96:93:8b:50:61:14:db:e2:4d:da:c2:f6:b5:fe:8b: 90:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:2B:54:CB:EC:A4:D0:AC:82:A6:78:85:2F:FD:F4:22:C5:52:9B:D0 X509v3 Authority Key Identifier: keyid:42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/4EA76BD26BBF11EFA2832A74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.1.94.0/23 Signature Algorithm: sha256WithRSAEncryption 43:63:f8:c5:45:1f:45:82:eb:ba:90:c6:cb:62:47:a6:24:e7: a7:2d:77:5d:d3:b4:96:ee:bf:66:f9:0f:d6:86:02:20:fd:6f: 63:2c:54:6f:9d:1c:88:32:b6:2c:d3:45:5a:6c:09:fd:9c:30: 0f:43:8a:9e:4b:9c:7e:a2:ad:09:26:c7:1d:47:d1:d9:22:f2: 19:4b:17:54:d0:74:a6:75:9c:1c:26:d7:bc:15:41:17:a3:41: f2:e4:71:3e:ab:c5:93:f1:1d:32:cb:f9:d6:18:97:5e:8e:22: e8:52:16:8e:05:51:d3:23:63:a2:74:5b:4a:99:7a:da:ec:91: 28:ed:c1:8e:6a:22:dd:bc:c6:9f:ea:22:30:80:16:5e:32:a9: 7c:54:bd:3d:8e:7b:a5:aa:cc:f9:95:00:7d:eb:f4:6b:2b:1d: 07:a1:c4:9f:4c:54:ba:61:73:5c:a1:0c:a9:54:cc:18:6c:3a: 8b:f5:97:88:0a:98:cc:5b:f1:cd:61:de:b9:bf:b8:e6:7c:eb: 61:ab:9c:97:b9:f6:e6:72:05:e9:c6:5e:f1:1a:97:f7:39:80: 8b:1b:11:6f:92:50:91:3a:d7:79:6d:42:5a:63:59:63:62:09: ff:0a:23:5e:44:ae:39:54:99:b3:43:95:7d:01:8f:bf:04:4b: 61:f2:b2:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCGkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDQyNkI2MjBDMDQwQzgzOTQ2QTRCNzU4NjQzNkVDQkQw RkM0NTQ2Q0YwHhcNMjUwODA0MjEzMjQ2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxMjZmZS1hZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2w3GTp938C2E7GoBN/uNWrBwo6hU0TkfrvjmUcyO6wNJLQYMToDNkHigJm+ /VPCZpl8B5lchKkHCO95300Q+pmnd85YQG6DCWYV4ZwI+FO2Leo/NtFao4UobfEi 4LmcJiE8/spX3KJJFKAhpn/75TvfnPPp9/jUHXQx3fsxtiih01x8SUW2lxj4MF6B geF2eYYKJQkBejx1cYTEzm4l4W/PP2OW/GO+fLjorwp6LgYfRBUvCP4TnGZF+rTd Y9QoiDp671VkOem8SpoVYhApF0N6LXx0ZHI67Y11suYl0lZ3Nw4d2dxuWBtSpzl2 MFmWk4tQYRTb4k3awva1/ouQ7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFQrVMvs pNCsgqZ4hS/99CLFUpvQMB8GA1UdIwQYMBaAFEJrYgwEDIOUakt1hkNuy9D8RUbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi81MzE5MTA0NkRD MjQxMUVBQkQwNTdGMTZDNEY5QUUwMi9RbXRpREFRTWc1UnFTM1dHUTI3TDBQeEZS czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtdGlEQVFNZzVScVMzV0dRMjdMMFB4RlJzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU4REYvNTMxOTEwNDZEQzI0MTFFQUJEMDU3RjE2QzRGOUFFMDIvNEVBNzZCRDI2 QkJGMTFFRkEyODMyQTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEOAV4wDQYJKoZIhvcNAQELBQADggEBAENj+MVFH0WC67qQ xstiR6Yk56ctd13TtJbuv2b5D9aGAiD9b2MsVG+dHIgytizTRVpsCf2cMA9Dip5L nH6irQkmxx1H0dki8hlLF1TQdKZ1nBwm17wVQRejQfLkcT6rxZPxHTLL+dYYl16O IuhSFo4FUdMjY6J0W0qZetrskSjtwY5qIt28xp/qIjCAFl4yqXxUvT2Oe6WqzPmV AH3r9GsrHQehxJ9MVLphc1yhDKlUzBhsOov1l4gKmMxb8c1h3rm/uOZ862GrnJe5 9uZyBenGXvEal/c5gIsbEW+SUJE613ltQlpjWWNiCf8KI15ErjlUmbNDlX0Bj78E S2Hysgc= -----END CERTIFICATE-----Generated at Mon Aug 11 07:41:22 2025 by rpki-client