$ rpki-client -vvf rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/CD4FE5A2B2F611F08EC41B1EC4F9AE02.roa File: CD4FE5A2B2F611F08EC41B1EC4F9AE02.roa (raw, json) Hash identifier: k70gEb/vQZKVsEmAPsgRGzBkI7JP9upXlyJ2H32aUps= Subject key identifier: 15:59:3B:68:51:2C:3B:1B:62:C8:C5:D2:D7:0C:24:73:8A:8F:7C:98 Certificate issuer: /CN=A9120656/serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Certificate serial: 08 Authority key identifier: 19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/CD4FE5A2B2F611F08EC41B1EC4F9AE02.roa Signing time: Mon 27 Oct 2025 05:35:53 +0000 ROA not before: Mon 27 Oct 2025 05:35:53 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 137453 IP address blocks: 138.252.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 10:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120656, serialNumber=19E05AFD1E6B36254A5CB1503639384B6A22A826 Validity Not Before: Oct 27 05:35:53 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68ff04b8-6a66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:03:cb:68:b1:93:54:ca:22:25:86:c6:42:b6: c7:28:40:d7:e6:31:37:d7:f0:ef:5a:95:95:ea:0d: b9:f2:2b:30:73:97:90:2e:81:41:02:fb:a8:5c:eb: 30:0f:c5:c4:53:c9:92:97:da:d1:e4:f8:27:1b:23: b5:d0:68:b7:53:d1:88:e1:a9:37:71:0d:37:d0:41: 95:18:22:e8:4d:0f:86:5b:94:2b:f6:86:10:4b:28: db:62:77:2c:b0:fb:24:62:07:3e:fe:92:2c:00:22: b4:34:a9:61:a0:97:b5:79:c3:cd:16:85:9a:0c:a2: 65:1f:82:32:30:16:1a:96:6a:02:71:d4:87:10:5e: 3f:f1:e1:a4:81:e9:09:a1:8c:1e:eb:bb:f0:ca:43: 2d:ea:68:e2:82:ad:a1:6a:28:8d:c3:6a:52:1d:93: 7b:99:25:c0:6a:54:f5:86:7d:72:86:e1:18:da:ff: be:87:8e:97:f6:fb:3b:42:60:ef:c7:43:53:99:84: fb:d3:03:a8:cb:b6:92:2e:59:b2:98:22:43:e4:aa: 82:ec:68:9c:de:c8:56:34:8c:60:2e:30:5c:2f:52: a5:fe:1f:2c:78:51:fb:bf:24:0d:68:a5:86:fa:b8: 4e:1e:3c:ae:bc:a0:d8:0d:91:cf:8d:6d:55:29:ab: b7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:59:3B:68:51:2C:3B:1B:62:C8:C5:D2:D7:0C:24:73:8A:8F:7C:98 X509v3 Authority Key Identifier: keyid:19:E0:5A:FD:1E:6B:36:25:4A:5C:B1:50:36:39:38:4B:6A:22:A8:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/GeBa_R5rNiVKXLFQNjk4S2oiqCY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/GeBa_R5rNiVKXLFQNjk4S2oiqCY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120656/4A709564B00D11F08DE4ED7BC4F9AE02/CD4FE5A2B2F611F08EC41B1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.89.0/24 Signature Algorithm: sha256WithRSAEncryption 48:bc:c2:08:42:9f:91:46:63:9e:62:50:ee:a5:ad:97:99:62: 7a:e0:33:ff:b2:1f:a0:8e:d2:cd:a7:cf:0f:5c:89:39:31:fb: 23:d1:ea:cd:83:b7:8f:2f:49:1e:25:66:86:62:a1:50:81:4b: 27:f5:8a:8f:7e:e2:b4:11:3a:d4:c2:11:5f:0e:55:91:fa:a9: 35:05:f4:52:06:43:7d:3c:e7:8f:c4:73:ca:e5:ee:03:32:dc: 43:ab:e9:78:5c:16:52:a3:be:6a:3b:2b:e8:db:c0:72:c1:07: 9b:af:5f:93:d0:0d:3e:e2:06:d0:f9:1f:27:3a:4e:2b:2f:8e: 6b:f6:f4:83:3a:2f:f3:ad:c1:4b:3b:52:df:3b:bb:e2:0d:77: 77:a1:b1:6f:49:62:bd:85:e7:64:62:8c:7f:d2:eb:a7:af:49: d4:3c:45:e6:4e:4f:7a:87:76:74:29:fc:d5:e5:0d:a7:4a:8b: 5d:f9:e5:6b:c6:2a:8e:b4:f5:50:d0:24:79:29:ab:4e:a9:a1: b9:05:63:b4:8c:ce:be:13:62:35:29:63:e9:64:07:a7:02:82: 60:12:c6:04:47:22:f3:f2:6f:54:78:ed:9d:7b:82:ad:f3:56: 7b:89:4c:73:97:8e:f1:a0:2d:d3:d0:20:81:7f:04:f8:c0:b8: 33:71:0c:37 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MDY1NjExMC8GA1UEBRMoMTlFMDVBRkQxRTZCMzYyNTRBNUNCMTUwMzYzOTM4NEI2 QTIyQTgyNjAeFw0yNTEwMjcwNTM1NTNaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZmYwNGI4LTZhNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJA8tosZNUyiIlhsZCtscoQNfmMTfX8O9alZXqDbnyKzBzl5AugUEC+6hc6zAP xcRTyZKX2tHk+CcbI7XQaLdT0YjhqTdxDTfQQZUYIuhND4ZblCv2hhBLKNtidyyw +yRiBz7+kiwAIrQ0qWGgl7V5w80WhZoMomUfgjIwFhqWagJx1IcQXj/x4aSB6Qmh jB7ru/DKQy3qaOKCraFqKI3DalIdk3uZJcBqVPWGfXKG4Rja/76Hjpf2+ztCYO/H Q1OZhPvTA6jLtpIuWbKYIkPkqoLsaJzeyFY0jGAuMFwvUqX+Hyx4Ufu/JA1opYb6 uE4ePK68oNgNkc+NbVUpq7dNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFVk7aFEs OxtiyMXS1wwkc4qPfJgwHwYDVR0jBBgwFoAUGeBa/R5rNiVKXLFQNjk4S2oiqCYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIwNjU2LzRBNzA5NTY0QjAw RDExRjA4REU0RUQ3QkM0RjlBRTAyL0dlQmFfUjVyTmlWS1hMRlFOams0UzJvaXFD WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2VCYV9SNXJOaVZLWExGUU5qazRTMm9pcUNZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MDY1Ni80QTcwOTU2NEIwMEQxMUYwOERFNEVEN0JDNEY5QUUwMi9DRDRGRTVBMkIy RjYxMUYwOEVDNDFCMUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIr8WTANBgkqhkiG9w0BAQsFAAOCAQEASLzCCEKfkUZjnmJQ 7qWtl5lieuAz/7IfoI7SzafPD1yJOTH7I9HqzYO3jy9JHiVmhmKhUIFLJ/WKj37i tBE61MIRXw5VkfqpNQX0UgZDfTznj8RzyuXuAzLcQ6vpeFwWUqO+ajsr6NvAcsEH m69fk9ANPuIG0PkfJzpOKy+Oa/b0gzov863BSztS3zu74g13d6Gxb0livYXnZGKM f9Lrp69J1DxF5k5Peod2dCn81eUNp0qLXfnla8YqjrT1UNAkeSmrTqmhuQVjtIzO vhNiNSlj6WQHpwKCYBLGBEci8/JvVHjtnXuCrfNWe4lMc5eO8aAt09AggX8E+MC4 M3EMNw== -----END CERTIFICATE-----Generated at Tue Oct 28 09:20:22 2025 by rpki-client