$ rpki-client -vvf rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/DC25591636C011F0A9DAF53EC4F9AE02.roa File: DC25591636C011F0A9DAF53EC4F9AE02.roa (raw, json) Hash identifier: X6qLGESMHlCjgInNJuuQgeTL462kIXu1+dGUahA9Gs8= Subject key identifier: C5:86:1D:60:6A:10:FE:EA:5E:28:0E:CC:7D:4C:B1:55:55:9E:C7:E2 Certificate issuer: /CN=A9123E38/serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Certificate serial: 0AAC Authority key identifier: D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/DC25591636C011F0A9DAF53EC4F9AE02.roa Signing time: Thu 22 May 2025 03:59:47 +0000 ROA not before: Thu 22 May 2025 03:59:47 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24337 IP address blocks: 185.126.144.0/22 maxlen: 22 185.126.144.0/24 maxlen: 24 185.126.145.0/24 maxlen: 24 185.126.146.0/24 maxlen: 24 185.126.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 16:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2732 (0xaac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123E38, serialNumber=D094D24714352E0EBCD3F88275232827BC6AC890 Validity Not Before: May 22 03:59:47 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682ea132-71f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c8:46:e5:08:32:36:a7:f0:e7:5e:9b:cf:f3: 35:07:62:db:9d:4a:3d:62:84:5b:01:a5:9b:6f:30: 0a:e8:b4:74:4d:35:68:a9:4b:b7:d5:78:33:1b:17: 2f:87:ba:97:8a:5d:9d:7b:56:68:a1:52:01:b3:bb: 80:1e:e4:39:93:0f:04:f0:d0:ba:4d:e8:fd:f9:ce: 01:0f:ac:c9:e6:83:e7:7b:b8:43:78:0d:c5:de:9a: 7b:4d:52:98:aa:d5:56:f4:58:81:29:00:53:fb:66: c3:1b:88:e4:7f:de:4e:c9:d3:d9:f2:17:cf:3a:53: 33:35:bb:11:3a:91:6c:d6:5e:66:2e:ba:ef:58:bd: f3:bd:31:2b:9a:02:0b:ff:51:95:29:1f:0d:b2:71: c4:a3:7a:34:18:43:04:57:2c:ec:c5:08:6a:46:9b: fa:68:98:15:62:66:e7:0c:3c:41:c7:01:6d:c3:ce: 17:b3:91:22:c5:d9:bc:8e:a6:f0:78:f3:34:a6:ea: 49:f2:9a:57:f0:24:5f:c8:f1:2a:58:26:8d:16:02: f8:01:0f:82:5f:b9:c0:21:25:e7:be:78:21:31:2e: f1:fe:4a:99:ea:75:31:1e:f7:40:5c:05:a0:0b:8c: 5e:b2:80:96:73:fc:6d:50:19:e9:65:62:cd:4a:3b: f6:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:86:1D:60:6A:10:FE:EA:5E:28:0E:CC:7D:4C:B1:55:55:9E:C7:E2 X509v3 Authority Key Identifier: keyid:D0:94:D2:47:14:35:2E:0E:BC:D3:F8:82:75:23:28:27:BC:6A:C8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0JTSRxQ1Lg680_iCdSMoJ7xqyJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123E38/6B91EDA0536C11EAA5C2790CC4F9AE02/DC25591636C011F0A9DAF53EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.126.144.0/22 Signature Algorithm: sha256WithRSAEncryption 66:6b:05:6a:32:9c:07:c1:9c:44:52:33:28:a4:f8:e0:91:fe: e8:cc:08:5b:e9:fa:80:80:a7:1f:85:4e:8d:5a:85:ae:76:20: c2:40:c5:d9:cf:c3:c8:37:c7:56:91:76:20:49:5d:91:7c:c1: d4:d3:fb:1c:b0:a7:85:90:95:7e:3e:59:21:a1:ec:28:00:ac: c4:d8:cc:c9:b9:a5:68:6b:2d:d8:41:d1:a4:e8:03:08:34:b3: 0d:55:7a:8e:b4:12:ce:08:a6:43:a1:88:e2:aa:1d:32:7e:05: 19:e8:88:ec:d1:e8:89:9c:57:35:b7:bd:e9:14:51:df:47:1d: c6:eb:3a:a3:f1:08:5d:4b:ec:e6:d7:82:64:27:ee:e4:2f:ac: 64:70:cc:24:07:e8:a8:86:b2:aa:52:3d:cc:52:77:31:b6:19: 25:6d:1c:97:92:4c:c1:f8:2f:68:82:61:a2:28:f5:ec:ee:ad: 85:7e:7d:62:11:0f:3a:54:86:4b:4f:ab:19:5a:42:f9:53:83: 81:e4:88:5a:93:a3:68:d3:d2:e0:3d:04:9e:ee:66:ad:c2:cf: 12:b8:ff:32:40:05:7f:58:e8:e8:4e:04:40:02:14:b5:5e:20: 60:66:fc:06:de:3b:c3:54:6e:ea:b4:4d:55:4d:d8:9e:ca:94: 9c:cd:a5:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNFMzgxMTAvBgNVBAUTKEQwOTREMjQ3MTQzNTJFMEVCQ0QzRjg4Mjc1MjMyODI3 QkM2QUM4OTAwHhcNMjUwNTIyMDM1OTQ3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJlYTEzMi03MWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnchG5QgyNqfw516bz/M1B2LbnUo9YoRbAaWbbzAK6LR0TTVoqUu31XgzGxcv h7qXil2de1ZooVIBs7uAHuQ5kw8E8NC6Tej9+c4BD6zJ5oPne7hDeA3F3pp7TVKY qtVW9FiBKQBT+2bDG4jkf95OydPZ8hfPOlMzNbsROpFs1l5mLrrvWL3zvTErmgIL /1GVKR8NsnHEo3o0GEMEVyzsxQhqRpv6aJgVYmbnDDxBxwFtw84Xs5Eixdm8jqbw ePM0pupJ8ppX8CRfyPEqWCaNFgL4AQ+CX7nAISXnvnghMS7x/kqZ6nUxHvdAXAWg C4xesoCWc/xtUBnpZWLNSjv2CwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMWGHWBq EP7qXigOzH1MsVVVnsfiMB8GA1UdIwQYMBaAFNCU0kcUNS4OvNP4gnUjKCe8asiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0UzOC82QjkxRURBMDUz NkMxMUVBQTVDMjc5MENDNEY5QUUwMi8wSlRTUnhRMUxnNjgwX2lDZFNNb0o3eHF5 SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzBKVFNSeFExTGc2ODBfaUNkU01vSjd4cXlKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNFMzgvNkI5MUVEQTA1MzZDMTFFQUE1QzI3OTBDQzRGOUFFMDIvREMyNTU5MTYz NkMwMTFGMEE5REFGNTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5fpAwDQYJKoZIhvcNAQELBQADggEBAGZrBWoynAfBnERS Myik+OCR/ujMCFvp+oCApx+FTo1aha52IMJAxdnPw8g3x1aRdiBJXZF8wdTT+xyw p4WQlX4+WSGh7CgArMTYzMm5pWhrLdhB0aToAwg0sw1Veo60Es4IpkOhiOKqHTJ+ BRnoiOzR6ImcVzW3vekUUd9HHcbrOqPxCF1L7ObXgmQn7uQvrGRwzCQH6KiGsqpS PcxSdzG2GSVtHJeSTMH4L2iCYaIo9ezurYV+fWIRDzpUhktPqxlaQvlTg4HkiFqT o2jT0uA9BJ7uZq3CzxK4/zJABX9Y6OhOBEACFLVeIGBm/AbeO8NUbuq0TVVN2J7K lJzNpfk= -----END CERTIFICATE-----Generated at Sat Jun 7 05:36:21 2025 by rpki-client