$ rpki-client -vvf rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/E1E4F9902A6011EB8DEF2641C4F9AE02.roa File: E1E4F9902A6011EB8DEF2641C4F9AE02.roa (raw, json) Hash identifier: GxNJ1GJyLCfG1wd+tTkjUWqW3q5g76ObJBXzG7SEDaI= Subject key identifier: 75:93:69:C3:72:2F:72:40:F3:F6:C8:E5:BF:DC:10:76:44:6F:AC:F9 Certificate issuer: /CN=A912383B/serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Certificate serial: 0837 Authority key identifier: 07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/E1E4F9902A6011EB8DEF2641C4F9AE02.roa Signing time: Fri 02 May 2025 21:32:42 +0000 ROA not before: Fri 02 May 2025 21:32:42 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17675 IP address blocks: 149.234.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 21:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2103 (0x837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912383B, serialNumber=0727AAC5B8CF7FE68CCD6DE77F6C8B46D574FAA7 Validity Not Before: May 2 21:32:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681539fa-46da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d0:4c:84:94:1a:72:e5:39:22:c2:74:46:3a: 90:e7:a3:62:0a:f0:1c:64:c2:69:cb:c4:97:a0:69: 0c:57:6b:27:d5:eb:c4:de:9d:f7:1a:29:41:27:49: cd:1c:28:f1:9a:03:93:37:a5:97:9c:be:f1:d2:24: 8f:fd:ae:9b:39:76:e4:8c:b4:0f:b4:38:4f:02:96: a6:06:a7:7d:ad:98:69:92:6a:99:18:64:28:7b:51: 82:e0:3e:3d:a0:ab:00:e3:27:ab:7a:28:6d:4e:13: 3f:4b:c1:5b:42:cb:a9:dc:54:41:48:70:38:6f:ba: ae:6a:b2:71:2f:ab:d1:72:19:57:54:01:b7:b3:80: 99:cb:fd:48:bd:7a:95:db:1e:f1:bb:57:cd:a3:61: 1c:5d:46:97:3c:17:aa:cf:05:b1:ed:9d:1b:72:90: 47:8d:76:13:39:ff:b3:a5:a7:15:04:5b:2f:45:6e: 3e:ba:41:45:e7:29:8b:6d:b1:49:6e:fd:74:db:93: 61:dd:3f:94:29:9a:da:55:82:76:c4:63:bf:7b:2d: d0:76:3e:ee:ee:46:75:e3:d5:3f:a9:48:e5:37:0e: 97:31:f8:99:3c:e4:12:39:de:e8:13:91:65:60:fb: c5:df:02:fc:eb:88:78:57:a7:46:49:29:ab:f7:85: 9c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:93:69:C3:72:2F:72:40:F3:F6:C8:E5:BF:DC:10:76:44:6F:AC:F9 X509v3 Authority Key Identifier: keyid:07:27:AA:C5:B8:CF:7F:E6:8C:CD:6D:E7:7F:6C:8B:46:D5:74:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/ByeqxbjPf-aMzW3nf2yLRtV0-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ByeqxbjPf-aMzW3nf2yLRtV0-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912383B/F4BD5008E02311EA9922DE42C4F9AE02/E1E4F9902A6011EB8DEF2641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.185.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:aa:11:51:bd:e3:3c:96:08:bc:5b:7b:6d:a7:10:7e:8b:be: 37:c9:f0:77:57:01:de:cb:35:8a:2b:63:f0:42:b7:fa:1f:2b: 34:c1:cf:37:e6:f3:3d:ce:0c:52:db:3e:0c:e6:f1:cb:66:6e: 98:46:46:dd:81:c5:9a:a5:a2:15:02:d1:ec:99:eb:64:24:4c: 26:29:84:a1:ea:5f:fe:a6:b7:82:84:f1:64:78:80:a0:b9:1e: 69:66:a0:0a:4b:ed:2d:c1:26:a6:2c:bc:18:34:5b:fc:71:1f: fb:77:ab:f2:81:31:db:49:8a:a9:6c:b6:5e:7d:22:16:c3:bf: 5e:60:cb:94:92:5d:94:76:6d:15:6b:cb:a6:ba:59:66:ed:77: 53:3d:7e:d8:22:b6:02:ee:d2:c4:bb:c7:24:08:9f:84:c3:99: eb:d4:84:b1:76:77:f6:fc:99:52:2d:2d:01:11:cc:3c:fa:94: 9c:32:94:5f:5a:65:b6:18:6a:7d:42:3f:fb:04:72:b5:b9:6f: 73:f2:60:00:15:af:e3:d9:ba:8d:b7:62:44:dd:1c:90:00:8d: a8:02:48:ce:c4:09:ab:1b:0b:e5:d4:7a:f4:d6:8c:55:33:3a: 4c:89:35:a3:9c:49:40:30:f7:65:d8:58:1d:0f:35:4e:75:69: 15:7b:ff:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4M0IxMTAvBgNVBAUTKDA3MjdBQUM1QjhDRjdGRTY4Q0NENkRFNzdGNkM4QjQ2 RDU3NEZBQTcwHhcNMjUwNTAyMjEzMjQyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1MzlmYS00NmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9BMhJQacuU5IsJ0RjqQ56NiCvAcZMJpy8SXoGkMV2sn1evE3p33GilBJ0nN HCjxmgOTN6WXnL7x0iSP/a6bOXbkjLQPtDhPApamBqd9rZhpkmqZGGQoe1GC4D49 oKsA4yereihtThM/S8FbQsup3FRBSHA4b7quarJxL6vRchlXVAG3s4CZy/1IvXqV 2x7xu1fNo2EcXUaXPBeqzwWx7Z0bcpBHjXYTOf+zpacVBFsvRW4+ukFF5ymLbbFJ bv1025Nh3T+UKZraVYJ2xGO/ey3Qdj7u7kZ149U/qUjlNw6XMfiZPOQSOd7oE5Fl YPvF3wL864h4V6dGSSmr94WcPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHWTacNy L3JA8/bI5b/cEHZEb6z5MB8GA1UdIwQYMBaAFAcnqsW4z3/mjM1t539si0bVdPqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzgzQi9GNEJENTAwOEUw MjMxMUVBOTkyMkRFNDJDNEY5QUUwMi9CeWVxeGJqUGYtYU16VzNuZjJ5TFJ0VjAt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0J5ZXF4YmpQZi1hTXpXM25mMnlMUnRWMC1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4M0IvRjRCRDUwMDhFMDIzMTFFQTk5MjJERTQyQzRGOUFFMDIvRTFFNEY5OTAy QTYwMTFFQjhERUYyNjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACV6rkwDQYJKoZIhvcNAQELBQADggEBAIyqEVG94zyWCLxb e22nEH6LvjfJ8HdXAd7LNYorY/BCt/ofKzTBzzfm8z3ODFLbPgzm8ctmbphGRt2B xZqlohUC0eyZ62QkTCYphKHqX/6mt4KE8WR4gKC5HmlmoApL7S3BJqYsvBg0W/xx H/t3q/KBMdtJiqlstl59IhbDv15gy5SSXZR2bRVry6a6WWbtd1M9ftgitgLu0sS7 xyQIn4TDmevUhLF2d/b8mVItLQERzDz6lJwylF9aZbYYan1CP/sEcrW5b3PyYAAV r+PZuo23YkTdHJAAjagCSM7ECasbC+XUevTWjFUzOkyJNaOcSUAw92XYWB0PNU51 aRV7//c= -----END CERTIFICATE-----Generated at Sat Oct 25 12:40:41 2025 by rpki-client