$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/56EC4CB4927911EFABEC2D46C4F9AE02.roa File: 56EC4CB4927911EFABEC2D46C4F9AE02.roa (raw, json) Hash identifier: CTXvWQi/OeMyxftPSgVzExxmXcWLLYeJDivCjES+ABw= Subject key identifier: 99:B7:81:55:AD:22:04:E1:14:A2:74:B2:58:86:B9:85:1B:F6:31:43 Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 049C Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/56EC4CB4927911EFABEC2D46C4F9AE02.roa Signing time: Wed 27 Aug 2025 01:05:33 +0000 ROA not before: Wed 27 Aug 2025 01:05:33 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 9891 IP address blocks: 147.50.224.0/19 maxlen: 19 147.50.224.0/22 maxlen: 22 147.50.228.0/24 maxlen: 24 147.50.230.0/24 maxlen: 24 147.50.231.0/24 maxlen: 24 147.50.232.0/22 maxlen: 22 147.50.236.0/23 maxlen: 23 147.50.239.0/24 maxlen: 24 147.50.240.0/22 maxlen: 22 147.50.246.0/24 maxlen: 24 147.50.247.0/24 maxlen: 24 147.50.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1180 (0x49c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Aug 27 01:05:33 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae59dc-1431 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:82:9c:8e:15:f4:48:bf:af:d0:d4:c7:c3:82: 5d:0d:f6:de:7c:84:ae:b2:f6:b0:60:04:e9:db:a0: d3:c1:c7:1b:e6:9b:bb:be:6e:12:32:e7:2f:59:03: f9:ca:e0:dd:e5:a5:d7:54:b5:ef:d9:b5:91:8a:4b: 63:e8:9d:07:21:c4:fb:c6:fc:91:5a:23:be:25:e0: ad:b2:82:f5:9b:43:35:16:b3:77:f0:53:cb:b7:20: 7c:30:de:7b:32:49:43:43:7c:f7:1c:11:10:f1:07: 6b:e2:fe:94:74:29:a6:74:0a:fb:26:87:44:54:27: 0a:5a:cb:5f:86:c2:5b:36:74:f9:5e:64:ab:15:68: ee:a9:6b:70:36:38:e1:b9:55:dc:e1:73:7d:f5:9b: 4c:62:45:1c:3e:0c:3e:e3:6a:fd:c2:c6:fb:78:62: 5d:1f:86:aa:27:6f:dc:55:0a:f4:2f:08:6f:5a:5a: 0e:d2:b9:02:ba:29:f9:8c:a8:5d:40:d0:72:6a:e7: fa:09:a4:28:e7:4d:04:36:2f:4f:80:53:fd:04:39: 7c:4c:b3:5f:ae:a5:43:1e:f6:06:ed:e4:a4:b6:3b: b8:ed:b3:e3:dd:03:18:3c:c2:64:f3:21:1b:3c:55: 24:11:40:19:fc:58:a8:5c:26:d8:de:60:11:0e:36: c6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:B7:81:55:AD:22:04:E1:14:A2:74:B2:58:86:B9:85:1B:F6:31:43 X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/56EC4CB4927911EFABEC2D46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.224.0/19 Signature Algorithm: sha256WithRSAEncryption 2d:d7:54:90:bf:d3:e7:c3:9b:cd:24:b4:8f:01:fc:25:38:d7: 2b:7d:88:99:64:6f:ca:3b:8a:ff:4b:7e:91:fd:da:bc:42:2a: 57:76:dd:5c:77:cb:c7:94:20:95:7a:f5:46:7b:b1:f3:8a:4b: 17:8b:35:e4:74:4c:62:cb:0d:7b:5d:97:c7:a1:8d:e5:91:37: fa:41:36:e8:e9:1f:91:0b:9a:31:b7:3d:75:97:d8:01:9b:60: 2c:42:55:cf:07:68:95:70:0c:d7:d3:7e:25:de:d7:ed:a7:5c: d3:2c:09:1f:0b:06:24:e4:58:4d:55:ee:7e:41:26:a0:6c:b7: 8c:2b:2b:ed:36:28:e7:d9:f6:28:a9:05:43:62:94:55:0e:cf: 14:92:15:0a:36:75:7d:b9:f0:40:a4:5a:03:d8:91:32:c7:19: 9a:ff:64:17:b2:64:3a:97:1d:c7:f7:61:1e:d5:49:19:43:c0: d4:be:db:34:47:02:c7:cf:52:f2:56:97:72:5a:30:8d:5c:63: 22:11:1a:65:2a:e0:da:d6:b0:5c:f9:6c:24:4b:6d:ec:39:c6: 24:20:11:df:f2:30:b1:d8:bc:9c:b4:68:9a:05:10:5a:7b:55: 7a:2d:cc:68:be:66:23:a5:c4:77:54:2c:0a:25:ce:6e:46:45: 2a:db:48:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjUwODI3MDEwNTMzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNTlkYy0xNDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8YKcjhX0SL+v0NTHw4JdDfbefISusvawYATp26DTwccb5pu7vm4SMucvWQP5 yuDd5aXXVLXv2bWRiktj6J0HIcT7xvyRWiO+JeCtsoL1m0M1FrN38FPLtyB8MN57 MklDQ3z3HBEQ8Qdr4v6UdCmmdAr7JodEVCcKWstfhsJbNnT5XmSrFWjuqWtwNjjh uVXc4XN99ZtMYkUcPgw+42r9wsb7eGJdH4aqJ2/cVQr0LwhvWloO0rkCuin5jKhd QNByauf6CaQo500ENi9PgFP9BDl8TLNfrqVDHvYG7eSktju47bPj3QMYPMJk8yEb PFUkEUAZ/FioXCbY3mARDjbGSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJm3gVWt IgThFKJ0sliGuYUb9jFDMB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRUMxRUU2NTI4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvNTZFQzRDQjQ5 Mjc5MTFFRkFCRUMyRDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWTMuAwDQYJKoZIhvcNAQELBQADggEBAC3XVJC/0+fDm80k tI8B/CU41yt9iJlkb8o7iv9LfpH92rxCKld23Vx3y8eUIJV69UZ7sfOKSxeLNeR0 TGLLDXtdl8ehjeWRN/pBNujpH5ELmjG3PXWX2AGbYCxCVc8HaJVwDNfTfiXe1+2n XNMsCR8LBiTkWE1V7n5BJqBst4wrK+02KOfZ9iipBUNilFUOzxSSFQo2dX258ECk WgPYkTLHGZr/ZBeyZDqXHcf3YR7VSRlDwNS+2zRHAsfPUvJWl3JaMI1cYyIRGmUq 4NrWsFz5bCRLbew5xiQgEd/yMLHYvJy0aJoFEFp7VXotzGi+ZiOlxHdULAolzm5G RSrbSPU= -----END CERTIFICATE-----Generated at Sat Sep 6 16:59:57 2025 by rpki-client