$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CAD5365E090C11EBA5412411C4F9AE02.roa File: CAD5365E090C11EBA5412411C4F9AE02.roa (raw, json) Hash identifier: DzJjX26F/6q2iCnJ1sWD2xCr+N10vleN++lLSBNm8a0= Subject key identifier: CD:31:A4:85:C8:78:BA:CE:EA:A7:DA:34:DD:83:E0:8A:88:76:56:A3 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 3926 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CAD5365E090C11EBA5412411C4F9AE02.roa Signing time: Fri 04 Jul 2025 14:50:46 +0000 ROA not before: Fri 04 Jul 2025 14:50:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 6507 IP address blocks: 45.250.208.0/22 maxlen: 24 103.219.128.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:22:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14630 (0x3926) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E, serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Jul 4 14:50:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6867ea46-7f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:57:d7:2a:fa:a6:1a:c7:aa:da:f6:16:bf:c8: 1d:13:a3:d0:79:05:5f:61:22:a9:0f:f7:04:ea:56: c2:0d:2a:39:48:52:ec:52:b0:bb:e7:d5:ac:15:7e: b7:c7:77:ab:5a:d9:6c:86:19:d4:bb:86:f4:62:ab: af:30:53:6e:d3:e9:b9:5c:c2:04:d0:90:13:de:c3: d7:c1:28:2a:a2:d7:12:62:48:a1:5d:3b:6d:48:a4: 7a:3a:3c:b0:9e:0c:76:26:19:d3:8c:d6:08:a3:61: 31:83:f5:6d:b5:e8:5a:37:a6:cc:9d:a0:e8:49:62: 30:6f:90:74:58:b2:fb:73:42:f4:85:90:50:d1:79: 22:49:bb:c7:45:35:fa:43:e8:45:8e:7d:e6:b1:32: 64:fe:9d:8c:91:4e:97:ff:c7:86:fc:a4:42:22:f1: e5:50:da:9b:e1:bd:fc:05:31:f2:fa:53:c5:94:d1: 37:d7:1d:a8:98:6f:62:a2:1c:4e:c4:ee:bf:57:0b: 57:28:b5:5d:1e:0c:35:84:9d:b8:a2:26:31:7c:d1: 8c:70:96:b9:e0:1b:3e:98:f5:af:ff:02:95:58:ac: 10:c8:ed:81:90:29:3c:ef:3e:82:65:39:d7:63:0a: 22:4b:0b:eb:9b:b1:7d:d7:f1:61:84:d9:da:22:0e: 52:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:31:A4:85:C8:78:BA:CE:EA:A7:DA:34:DD:83:E0:8A:88:76:56:A3 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/CAD5365E090C11EBA5412411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.250.208.0/22 103.219.128.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:42:f6:6b:70:61:f1:ab:63:ea:2e:4c:99:91:0e:d7:8a:1e: b1:2f:64:23:43:02:53:b1:b3:66:aa:f3:ff:43:bd:8a:9f:d8: 21:4f:a8:3b:30:35:20:5b:e2:82:b8:3d:b6:87:4d:cb:f9:80: 25:3a:63:95:af:6a:c6:a6:d8:76:5c:0e:28:6a:07:10:f2:c3: 33:c1:b9:71:59:bf:53:bd:d7:7b:14:2c:fa:e9:a3:50:80:53: ef:cf:3a:1f:96:8a:ca:01:6f:ae:90:81:75:64:61:c9:7c:90: d9:dd:00:6e:5d:67:bb:1c:db:b5:94:02:62:47:60:ee:e9:4c: b4:b8:75:d6:ba:70:f9:62:12:6f:3f:42:ce:a4:b4:c0:29:c0: 70:42:04:6e:e9:f7:a4:11:94:1f:e5:8c:62:34:59:2c:c0:6e: b5:e9:3b:b8:11:0d:c6:e9:8a:9b:ef:1d:49:f0:15:27:09:5b: 26:d1:a8:f0:9c:7d:ec:55:75:61:71:04:48:d5:7c:6e:92:64: 42:7a:9d:83:0a:ab:b8:56:6c:a4:e0:e8:e7:d0:73:7c:03:99: e3:68:5c:42:a0:f9:1f:17:4a:f6:f1:3c:ad:43:1f:29:61:71: 39:35:e5:f5:60:a5:9f:6e:24:ff:ae:9e:53:fd:bc:92:5e:8a: 2c:4b:55:06 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICOSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjUwNzA0MTQ1MDQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3ZWE0Ni03ZjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVfXKvqmGseq2vYWv8gdE6PQeQVfYSKpD/cE6lbCDSo5SFLsUrC759WsFX63 x3erWtlshhnUu4b0YquvMFNu0+m5XMIE0JAT3sPXwSgqotcSYkihXTttSKR6Ojyw ngx2JhnTjNYIo2Exg/VttehaN6bMnaDoSWIwb5B0WLL7c0L0hZBQ0XkiSbvHRTX6 Q+hFjn3msTJk/p2MkU6X/8eG/KRCIvHlUNqb4b38BTHy+lPFlNE31x2omG9iohxO xO6/VwtXKLVdHgw1hJ24oiYxfNGMcJa54Bs+mPWv/wKVWKwQyO2BkCk87z6CZTnX YwoiSwvrm7F91/FhhNnaIg5S5QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM0xpIXI eLrO6qfaNN2D4IqIdlajMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvQ0FENTM2NUUw OTBDMTFFQkE1NDEyNDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIt+tADBAJn24AwDQYJKoZIhvcNAQELBQADggEBAB1C9mtw YfGrY+ouTJmRDteKHrEvZCNDAlOxs2aq8/9DvYqf2CFPqDswNSBb4oK4PbaHTcv5 gCU6Y5Wvasam2HZcDihqBxDywzPBuXFZv1O913sULPrpo1CAU+/POh+WisoBb66Q gXVkYcl8kNndAG5dZ7sc27WUAmJHYO7pTLS4dda6cPliEm8/Qs6ktMApwHBCBG7p 96QRlB/ljGI0WSzAbrXpO7gRDcbpipvvHUnwFScJWybRqPCcfexVdWFxBEjVfG6S ZEJ6nYMKq7hWbKTg6OfQc3wDmeNoXEKg+R8XSvbxPK1DHylhcTk15fVgpZ9uJP+u nlP9vJJeiixLVQY= -----END CERTIFICATE-----Generated at Tue Jul 22 11:57:09 2025 by rpki-client