$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/1D2381425E5F11EC870D9676C4F9AE02.roa File: 1D2381425E5F11EC870D9676C4F9AE02.roa (raw, json) Hash identifier: ZUd4QbCdB3E4EQBK+nU5VmSSyQaDu0ItsbLfbY5xMOQ= Subject key identifier: 02:5B:5D:75:66:34:3D:7A:5C:1D:ED:BA:CA:A7:94:4A:00:1E:9A:39 Certificate issuer: /CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Certificate serial: 0835 Authority key identifier: 07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/1D2381425E5F11EC870D9676C4F9AE02.roa Signing time: Fri 02 May 2025 21:32:41 +0000 ROA not before: Fri 02 May 2025 21:32:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141367 IP address blocks: 149.234.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 21:22:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2101 (0x835) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Validity Not Before: May 2 21:32:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681539f9-6e50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:f3:17:46:2c:3c:24:3d:87:2d:c6:90:84:b3: d1:86:44:1b:7c:2f:c3:a1:1d:46:e6:0b:63:d0:43: ab:35:36:c4:83:7a:f1:9f:84:ed:30:90:08:78:c0: 4b:04:90:de:e5:da:ec:2d:a6:49:b4:c5:71:b1:7e: e7:1a:d3:51:3b:78:0e:38:6f:74:fb:be:42:4b:9f: c5:e7:6a:3d:e7:db:ce:f6:b6:a9:bf:2d:fc:63:d5: 12:f2:d0:e8:f9:f8:55:fc:92:11:f0:71:b5:41:b5: eb:e8:82:59:e8:15:42:ae:ca:93:cf:25:fa:11:93: 32:c3:d3:f9:6a:96:cf:8c:72:26:c9:f9:c7:47:a3: 86:14:dc:d2:25:bc:fe:9c:18:4d:68:3b:bf:41:54: f7:e9:a3:51:d8:fe:cd:7e:60:51:09:5b:65:dd:b2: 8d:c4:3a:e1:e9:93:c7:cc:a4:e3:51:3b:94:47:dd: f4:7c:0f:63:85:cd:76:cb:2d:7b:a1:09:7b:47:de: a9:27:cb:14:13:6d:1e:9b:94:59:8e:77:53:ea:bb: 4b:b4:49:95:d6:03:a6:af:f5:1a:da:5e:cd:4b:fb: cb:59:53:3f:72:8b:92:5e:51:05:27:a1:72:e6:db: 10:85:e0:e9:52:ef:e6:b1:86:d1:94:32:a5:7a:04: b2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:5B:5D:75:66:34:3D:7A:5C:1D:ED:BA:CA:A7:94:4A:00:1E:9A:39 X509v3 Authority Key Identifier: keyid:07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/1D2381425E5F11EC870D9676C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.184.0/24 Signature Algorithm: sha256WithRSAEncryption 91:29:3a:14:f4:04:d4:9c:e7:23:03:ca:d5:93:bf:d8:ed:46: 1f:3a:ea:08:38:ce:e7:ab:fa:af:ed:16:d4:07:db:2a:a1:a8: 90:90:12:8e:ff:a7:f7:c7:73:12:8c:a3:4c:ac:a3:c6:4a:c2: 79:fd:fa:27:9b:fe:ac:8c:02:d4:e8:6e:69:55:b4:7c:9d:fc: 0b:d5:18:95:a9:8c:77:d1:4b:80:f6:91:1e:f6:8a:53:6e:22: e1:1a:e2:f3:33:3a:34:22:88:f5:5b:18:14:e8:2f:e5:8c:a6: c6:1c:85:83:5c:b4:61:4b:4f:4a:8d:0b:13:68:e3:e7:53:75: 1e:14:40:3a:b5:74:21:1e:15:7d:df:13:a5:c7:a9:4b:6c:08: bb:f3:e2:a9:bb:3b:cf:86:0d:9d:cb:19:f3:87:f0:5a:45:94: 0e:5b:1a:e1:db:20:96:52:f1:1a:6b:56:b6:3e:8f:c0:25:91: f7:36:b0:ca:65:39:09:8c:4a:e8:d4:28:72:1d:b4:4a:df:48: 64:e9:ce:f2:9c:59:77:25:d4:91:4e:c5:d1:ed:3e:3b:9b:60: 61:ba:75:e6:ca:da:8c:de:3c:49:8f:9c:09:4b:0d:a9:20:6e: f0:35:c4:4b:af:63:5b:ac:6e:5a:0d:f8:66:ba:61:d5:c0:40: 99:9c:39:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCDUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDA3MjdBQUM1QjhDRjdGRTY4Q0NENkRFNzdGNkM4QjQ2 RDU3NEZBQTcwHhcNMjUwNTAyMjEzMjQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MzlmOS02ZTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/MXRiw8JD2HLcaQhLPRhkQbfC/DoR1G5gtj0EOrNTbEg3rxn4TtMJAIeMBL BJDe5drsLaZJtMVxsX7nGtNRO3gOOG90+75CS5/F52o959vO9rapvy38Y9US8tDo +fhV/JIR8HG1QbXr6IJZ6BVCrsqTzyX6EZMyw9P5apbPjHImyfnHR6OGFNzSJbz+ nBhNaDu/QVT36aNR2P7NfmBRCVtl3bKNxDrh6ZPHzKTjUTuUR930fA9jhc12yy17 oQl7R96pJ8sUE20em5RZjndT6rtLtEmV1gOmr/Ua2l7NS/vLWVM/couSXlEFJ6Fy 5tsQheDpUu/msYbRlDKlegSyPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAJbXXVm ND16XB3tusqnlEoAHpo5MB8GA1UdIwQYMBaAFAcnqsW4z3/mjM1t539si0bVdPqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GNEJENTAwOEUw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9CeWVxeGJqUGYtYU16VzNuZjJ5TFJ0VjAt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5ZXF4YmpQZi1hTXpXM25mMnlMUnRWMC1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4M0IvRjRCRDUwMDhFMDIzMTFFQTk5MjJERTQyQzRGOUFFMDIvMUQyMzgxNDI1 RTVGMTFFQzg3MEQ5Njc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACV6rgwDQYJKoZIhvcNAQELBQADggEBAJEpOhT0BNSc5yMD ytWTv9jtRh866gg4zuer+q/tFtQH2yqhqJCQEo7/p/fHcxKMo0yso8ZKwnn9+ieb /qyMAtTobmlVtHyd/AvVGJWpjHfRS4D2kR72ilNuIuEa4vMzOjQiiPVbGBToL+WM psYchYNctGFLT0qNCxNo4+dTdR4UQDq1dCEeFX3fE6XHqUtsCLvz4qm7O8+GDZ3L GfOH8FpFlA5bGuHbIJZS8RprVrY+j8Alkfc2sMplOQmMSujUKHIdtErfSGTpzvKc WXcl1JFOxdHtPjubYGG6debK2ozePEmPnAlLDakgbvA1xEuvY1usbloN+Ga6YdXA QJmcObg= -----END CERTIFICATE-----Generated at Tue Oct 28 01:32:31 2025 by rpki-client