$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/B3795CBC64F211ED9AEC046FC4F9AE02.roa File: B3795CBC64F211ED9AEC046FC4F9AE02.roa (raw, json) Hash identifier: tX50rThQWeAbKIESIwrC0zdSKgD+i4OgX2qNIGi6fqk= Subject key identifier: D0:B6:E7:26:43:C2:B3:FC:1D:63:2E:74:C7:E6:4D:25:44:82:36:3C Certificate issuer: /CN=A91B5CEA/serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Certificate serial: 0205 Authority key identifier: 44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/B3795CBC64F211ED9AEC046FC4F9AE02.roa Signing time: Thu 07 Aug 2025 03:08:53 +0000 ROA not before: Thu 07 Aug 2025 03:08:53 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133606 IP address blocks: 185.126.46.0/23 maxlen: 24 185.242.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 517 (0x205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=4484D07DA68D53050CDCF6B13C0C0545E6457CE5 Validity Not Before: Aug 7 03:08:53 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689418c4-bc2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b1:c7:a9:32:f0:e6:1e:a5:f8:83:01:ab:7a: 33:de:67:6a:26:ab:24:4a:fc:f7:a1:70:a9:84:9f: 34:95:ab:5f:02:47:fb:bf:6d:d5:c1:9c:86:21:21: 94:b0:83:11:ef:85:b9:20:d4:99:f7:03:65:de:3e: 48:e2:30:03:e7:bb:77:4f:ad:c5:62:3e:50:3a:4d: 31:e5:a0:a0:00:ae:23:7d:07:47:87:1e:36:85:38: 6e:d1:51:c2:64:cc:95:16:95:16:37:94:90:d0:6b: 77:4b:9b:a2:77:09:35:75:e7:dd:64:62:97:a3:36: 7f:9a:d7:03:87:2d:d1:b6:e8:a2:27:72:c3:d1:2a: a2:a6:4b:1d:70:6f:74:0f:ae:3e:53:c8:c2:54:9e: af:72:b3:bd:b0:ad:2f:f9:31:6f:c1:38:d5:d3:6a: 0c:36:a4:a3:69:91:6e:67:d4:7a:b9:87:11:ef:1a: 2e:31:e7:8a:e2:23:d1:82:c8:2b:e6:e1:ed:33:9f: 71:b9:58:3d:3c:1a:97:65:0b:16:a9:e2:5e:dd:4b: be:c4:09:25:a1:b7:af:20:aa:d8:9a:63:00:ed:ce: 3f:5f:8b:ab:ce:20:06:0a:70:d9:3a:78:0e:bb:30: f3:46:f9:17:ef:c4:d1:22:98:61:21:4f:30:d7:03: f4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B6:E7:26:43:C2:B3:FC:1D:63:2E:74:C7:E6:4D:25:44:82:36:3C X509v3 Authority Key Identifier: keyid:44:84:D0:7D:A6:8D:53:05:0C:DC:F6:B1:3C:0C:05:45:E6:45:7C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/RITQfaaNUwUM3PaxPAwFReZFfOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/RITQfaaNUwUM3PaxPAwFReZFfOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/1F63A56864EE11EDA4A34513C4F9AE02/B3795CBC64F211ED9AEC046FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.126.46.0/23 185.242.38.0/23 Signature Algorithm: sha256WithRSAEncryption 22:84:37:a0:1b:77:eb:2b:6b:19:e7:91:24:b1:a6:d5:3e:20: 7a:ad:19:cf:3b:03:60:e3:15:3d:bb:0d:2a:5c:d4:60:87:28: b1:47:0c:0b:8e:9f:2e:16:81:32:39:da:fa:9d:df:a5:1d:aa: 3f:c2:e1:a3:c2:68:b3:5c:3d:ac:91:24:8a:b2:96:bd:04:26: e5:6f:0f:6f:49:4a:42:ea:08:10:ea:19:d6:90:b6:cc:ef:9c: 7a:3d:7c:e6:ff:d6:4e:ee:4c:78:54:7b:f4:cb:e9:3e:63:82: 0e:9b:08:10:a3:3e:02:61:55:2f:58:69:7c:9e:16:f0:98:56: 3d:c4:1d:b3:a4:b9:58:0c:cc:d5:56:de:ea:75:f9:90:8b:24: d8:42:06:d4:00:44:a2:74:23:5b:34:cd:0a:ff:05:85:f8:2c: 4a:d4:91:66:72:ec:02:1b:a9:c3:fd:5b:8e:be:b3:6e:10:f8: 87:10:e7:f9:f4:30:25:96:7d:ce:6c:92:44:f2:40:59:35:52: 93:a1:cb:ee:dc:92:01:44:19:d8:82:c4:f5:98:f8:f3:e8:2a: 00:19:3b:56:ba:f7:ed:36:48:3d:39:74:83:80:31:65:e7:73: 81:57:7c:49:63:f9:73:cc:4a:d8:6e:43:49:ed:c4:53:40:ba: d3:37:0b:43 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAgUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKDQ0ODREMDdEQTY4RDUzMDUwQ0RDRjZCMTNDMEMwNTQ1 RTY0NTdDRTUwHhcNMjUwODA3MDMwODUzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0MThjNC1iYzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07HHqTLw5h6l+IMBq3oz3mdqJqskSvz3oXCphJ80latfAkf7v23VwZyGISGU sIMR74W5INSZ9wNl3j5I4jAD57t3T63FYj5QOk0x5aCgAK4jfQdHhx42hThu0VHC ZMyVFpUWN5SQ0Gt3S5uidwk1defdZGKXozZ/mtcDhy3RtuiiJ3LD0SqipksdcG90 D64+U8jCVJ6vcrO9sK0v+TFvwTjV02oMNqSjaZFuZ9R6uYcR7xouMeeK4iPRgsgr 5uHtM59xuVg9PBqXZQsWqeJe3Uu+xAklobevIKrYmmMA7c4/X4urziAGCnDZOngO uzDzRvkX78TRIphhIU8w1wP0BwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNC25yZD wrP8HWMudMfmTSVEgjY8MB8GA1UdIwQYMBaAFESE0H2mjVMFDNz2sTwMBUXmRXzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8xRjYzQTU2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9SSVRRZmFhTlV3VU0zUGF4UEF3RlJlWkZm T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1JJVFFmYWFOVXdVTTNQYXhQQXdGUmVaRmZPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVDRUEvMUY2M0E1Njg2NEVFMTFFREE0QTM0NTEzQzRGOUFFMDIvQjM3OTVDQkM2 NEYyMTFFRDlBRUMwNDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAG5fi4DBAG58iYwDQYJKoZIhvcNAQELBQADggEBACKEN6Ab d+sraxnnkSSxptU+IHqtGc87A2DjFT27DSpc1GCHKLFHDAuOny4WgTI52vqd36Ud qj/C4aPCaLNcPayRJIqylr0EJuVvD29JSkLqCBDqGdaQtszvnHo9fOb/1k7uTHhU e/TL6T5jgg6bCBCjPgJhVS9YaXyeFvCYVj3EHbOkuVgMzNVW3up1+ZCLJNhCBtQA RKJ0I1s0zQr/BYX4LErUkWZy7AIbqcP9W46+s24Q+IcQ5/n0MCWWfc5skkTyQFk1 UpOhy+7ckgFEGdiCxPWY+PPoKgAZO1a69+02SD05dIOAMWXnc4FXfElj+XPMSthu Q0ntxFNAutM3C0M= -----END CERTIFICATE-----Generated at Mon Aug 11 07:24:19 2025 by rpki-client