$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/25687A64364D11F0AECC3986C4F9AE02.roa File: 25687A64364D11F0AECC3986C4F9AE02.roa (raw, json) Hash identifier: RWlaRiVFKIIV/wakCOCZQQ+zk9bO5MWkgTakC7o+ErY= Subject key identifier: EE:CB:2D:CA:8D:02:05:24:04:7B:E8:F8:6F:D0:D9:13:9C:1F:30:85 Certificate issuer: /CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Certificate serial: 036C Authority key identifier: 33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/25687A64364D11F0AECC3986C4F9AE02.roa Signing time: Tue 05 Aug 2025 01:38:37 +0000 ROA not before: Tue 05 Aug 2025 01:38:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153494 IP address blocks: 45.122.136.0/22 maxlen: 24 103.63.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 876 (0x36c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E08, serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Validity Not Before: Aug 5 01:38:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6891609d-9d22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:18:27:8b:ab:54:b5:0c:ad:b2:e9:72:dd:e6: f5:dc:1b:8e:67:b1:15:2a:99:60:6f:9d:a1:75:9e: fb:55:50:8c:74:b2:f3:9c:e3:8e:3a:21:bd:c7:08: 33:b1:f8:1c:27:ed:e6:4e:80:93:9c:9a:b3:a0:84: c1:bd:17:66:06:64:23:48:7e:02:5f:cb:3c:13:22: a3:1f:58:20:29:fd:a9:97:85:9f:61:17:5e:e5:f9: f3:10:c7:b4:99:4f:d0:63:e3:a5:09:47:a2:c6:d0: 9f:90:b3:cf:6f:19:37:66:98:c5:de:b6:6a:22:20: 49:81:ff:24:67:dc:74:cc:04:d8:94:fb:b1:0a:fb: 04:ea:95:64:6b:d2:f4:66:e0:f7:22:03:46:3f:88: 96:2b:0d:64:de:d4:6a:8a:d6:91:6c:e9:ae:6d:ec: 4f:88:54:99:64:82:8d:52:33:ef:1f:0b:76:04:3f: e0:2d:74:cd:7d:82:c5:ef:89:a5:3b:01:45:dc:2c: de:e0:62:3d:4e:e3:26:01:10:77:42:4a:f0:bb:d0: 40:38:0b:cd:76:13:62:0b:fb:9e:e7:4d:85:50:c6: 9f:b2:f9:11:3b:24:fc:d5:14:64:b4:8a:aa:39:cd: e3:3a:9c:e0:d2:ea:89:c8:b1:b4:53:53:5c:8f:da: 3a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:CB:2D:CA:8D:02:05:24:04:7B:E8:F8:6F:D0:D9:13:9C:1F:30:85 X509v3 Authority Key Identifier: keyid:33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/25687A64364D11F0AECC3986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.122.136.0/22 103.63.4.0/22 Signature Algorithm: sha256WithRSAEncryption 26:3a:f6:fa:e8:38:ed:98:1d:04:74:48:fd:5f:83:a6:ab:10: 58:d3:e1:f8:36:5d:a6:e3:17:8f:3f:27:67:47:1f:86:c3:6c: 5d:36:46:b8:32:5e:50:31:8b:e5:8f:1a:c8:57:0d:9b:d1:52: 8f:bd:b7:1f:e6:d5:c2:cf:53:76:83:ec:66:fd:11:ac:2a:6f: 68:d8:60:96:38:b1:e2:b5:71:af:00:8d:ab:9a:1b:fc:6e:f6: d3:1d:4f:77:10:67:c9:84:f9:27:43:dd:80:83:84:86:50:d0: 4e:f7:e3:23:87:dc:f2:73:7c:52:c6:fd:97:29:f6:4f:e9:2f: f8:97:ab:7b:28:be:a2:3c:58:59:cb:65:09:4a:9d:fc:db:1b: 27:d0:e5:94:b3:11:6e:aa:02:9b:16:6f:47:cb:80:fa:d6:eb: 9e:07:34:d7:5d:16:dd:a1:fb:f7:2c:43:df:35:c6:ae:fe:38: e3:dd:f9:5c:a5:8d:b7:70:36:9e:47:a6:a5:9d:48:86:da:53: ed:4c:f1:a8:7c:51:90:ca:9a:f5:96:80:7b:e6:a8:84:65:de: 3e:ae:a4:e0:2e:a2:80:1d:e8:da:7f:3d:5b:2d:29:83:d2:58: e2:7f:aa:39:56:85:e6:16:d9:76:56:b5:5c:71:83:4d:0d:68: cc:a9:74:31 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA2wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMDgxMTAvBgNVBAUTKDMzQjY5NTMyOTU4MDEwMzhGMDE3RkE2NUQ0NzA3ODFB NUNDNzcyQzAwHhcNMjUwODA1MDEzODM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxNjA5ZC05ZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1xgni6tUtQytsuly3eb13BuOZ7EVKplgb52hdZ77VVCMdLLznOOOOiG9xwgz sfgcJ+3mToCTnJqzoITBvRdmBmQjSH4CX8s8EyKjH1ggKf2pl4WfYRde5fnzEMe0 mU/QY+OlCUeixtCfkLPPbxk3ZpjF3rZqIiBJgf8kZ9x0zATYlPuxCvsE6pVka9L0 ZuD3IgNGP4iWKw1k3tRqitaRbOmubexPiFSZZIKNUjPvHwt2BD/gLXTNfYLF74ml OwFF3Cze4GI9TuMmARB3Qkrwu9BAOAvNdhNiC/ue502FUMafsvkROyT81RRktIqq Oc3jOpzg0uqJyLG0U1Ncj9o6/QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO7LLcqN AgUkBHvo+G/Q2ROcHzCFMB8GA1UdIwQYMBaAFDO2lTKVgBA48Bf6ZdRweBpcx3LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUwOC85RUM2MzFFQ0M2 MDkxMUVDQjQ2MEVDNTdDNEY5QUUwMi9NN2FWTXBXQUVEandGX3BsMUhCNEdsekhj c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003YVZNcFdBRURqd0ZfcGwxSEI0R2x6SGNzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMDgvOUVDNjMxRUNDNjA5MTFFQ0I0NjBFQzU3QzRGOUFFMDIvMjU2ODdBNjQz NjREMTFGMEFFQ0MzOTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteogDBAJnPwQwDQYJKoZIhvcNAQELBQADggEBACY69vro OO2YHQR0SP1fg6arEFjT4fg2XabjF48/J2dHH4bDbF02RrgyXlAxi+WPGshXDZvR Uo+9tx/m1cLPU3aD7Gb9Eawqb2jYYJY4seK1ca8AjauaG/xu9tMdT3cQZ8mE+SdD 3YCDhIZQ0E734yOH3PJzfFLG/Zcp9k/pL/iXq3sovqI8WFnLZQlKnfzbGyfQ5ZSz EW6qApsWb0fLgPrW654HNNddFt2h+/csQ981xq7+OOPd+VyljbdwNp5HpqWdSIba U+1M8ah8UZDKmvWWgHvmqIRl3j6upOAuooAd6Np/PVstKYPSWOJ/qjlWheYW2XZW tVxxg00NaMypdDE= -----END CERTIFICATE-----Generated at Sun Aug 10 18:59:01 2025 by rpki-client