$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa File: A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa (raw, json) Hash identifier: BGVu1jIpiElRBOykLyn1hbruAkUCwbhE94Wkt2miz84= Subject key identifier: 3C:41:89:BF:F0:FD:9B:AA:8E:51:47:85:D0:CF:DC:41:B6:80:95:2B Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 0493 Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa Signing time: Wed 27 Aug 2025 01:05:25 +0000 ROA not before: Wed 27 Aug 2025 01:05:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140326 IP address blocks: 147.50.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:47:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1171 (0x493) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Aug 27 01:05:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae59d4-5093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:80:9f:70:de:cd:7b:12:3e:61:73:1d:85:73: 59:88:2a:e5:4e:3a:54:a1:90:42:55:91:5a:76:cb: a1:46:06:b0:68:ee:ea:41:07:88:fc:4a:ee:89:9b: f8:3b:f1:ac:97:ab:7f:11:90:6d:e9:e8:83:6c:d4: 55:ab:37:fc:ab:f5:db:9c:88:ca:b4:b0:04:9f:09: 49:d5:e0:38:89:b7:4e:30:41:8f:69:ed:8e:8b:d4: d5:8c:90:f8:63:2b:cc:70:a4:0a:19:8d:c4:d2:6c: c2:83:83:ca:48:76:4b:5f:66:16:50:f3:94:51:ce: 8e:72:34:51:a0:02:a8:7f:22:1e:74:d8:f9:40:64: 27:94:85:44:3d:bf:99:2a:e4:76:be:4d:e4:05:86: 54:4d:6f:49:02:dc:1a:e7:15:b8:d9:bf:dc:66:ae: a7:51:21:1e:9f:49:be:e2:1e:86:06:dc:8f:4b:24: 17:91:ec:8f:09:52:98:d2:2b:57:1e:14:82:a6:e2: fb:05:54:db:72:6f:e6:4e:65:8f:35:f0:64:8a:1c: 23:07:ee:dd:b5:ab:8b:e7:88:28:c1:84:69:f1:d2: 19:35:ea:ab:47:a2:3f:f8:ac:8b:57:a8:ae:82:76: f9:38:91:cd:13:c0:de:8a:27:27:4f:f1:e2:8e:1d: 31:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:41:89:BF:F0:FD:9B:AA:8E:51:47:85:D0:CF:DC:41:B6:80:95:2B X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.72.0/24 Signature Algorithm: sha256WithRSAEncryption 80:fb:de:41:25:d2:a4:2b:bc:ea:be:4b:d5:68:47:8c:a9:b9: c5:bc:cd:51:3f:ac:da:aa:2c:c9:a9:ce:bb:4c:ce:12:19:e8: 50:ae:14:0a:3a:8c:49:17:de:04:b4:9d:66:f4:e9:01:ba:1a: 1f:e3:74:88:dc:6b:0d:9e:03:65:13:62:01:13:15:9b:28:d6: e0:d4:57:ca:7a:af:8a:66:fc:76:be:81:02:64:2d:cb:4f:c2: b4:74:83:aa:00:1a:24:24:a0:9d:8c:f8:ec:1c:d2:5c:ee:7f: f1:1b:69:56:d6:05:6b:fe:20:2c:96:19:41:17:f2:98:97:b3: 89:08:59:b2:72:65:3e:e1:a7:d2:3c:75:f4:eb:19:28:1e:c9: 6a:27:e0:86:eb:af:ae:9c:a6:23:7e:c4:95:a9:d4:1f:f0:aa: 10:4e:69:14:34:32:f7:fc:93:a0:d4:41:d7:d3:25:4f:69:26: 64:ab:1d:69:5c:03:a6:17:3d:ab:2b:6a:79:83:6e:ff:a1:2e: 4f:9f:4d:3e:24:87:af:51:cf:1b:86:85:84:c9:38:6d:34:f8: 2e:81:12:87:58:35:b3:32:56:f4:87:3f:00:d3:97:5a:fa:d3: 46:6f:69:b6:83:61:7e:a0:16:f4:ea:74:4b:ef:71:ab:06:da: a9:34:57:05 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjUwODI3MDEwNTI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNTlkNC01MDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ICfcN7NexI+YXMdhXNZiCrlTjpUoZBCVZFadsuhRgawaO7qQQeI/EruiZv4 O/Gsl6t/EZBt6eiDbNRVqzf8q/XbnIjKtLAEnwlJ1eA4ibdOMEGPae2Oi9TVjJD4 YyvMcKQKGY3E0mzCg4PKSHZLX2YWUPOUUc6OcjRRoAKofyIedNj5QGQnlIVEPb+Z KuR2vk3kBYZUTW9JAtwa5xW42b/cZq6nUSEen0m+4h6GBtyPSyQXkeyPCVKY0itX HhSCpuL7BVTbcm/mTmWPNfBkihwjB+7dtauL54gowYRp8dIZNeqrR6I/+KyLV6iu gnb5OJHNE8DeiicnT/Hijh0x7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDxBib/w /ZuqjlFHhdDP3EG2gJUrMB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRUMxRUU2NTI4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQTA5RjhFNTJE RjNFMTFFQzgzQ0NGRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACTMkgwDQYJKoZIhvcNAQELBQADggEBAID73kEl0qQrvOq+ S9VoR4ypucW8zVE/rNqqLMmpzrtMzhIZ6FCuFAo6jEkX3gS0nWb06QG6Gh/jdIjc aw2eA2UTYgETFZso1uDUV8p6r4pm/Ha+gQJkLctPwrR0g6oAGiQkoJ2M+Owc0lzu f/EbaVbWBWv+ICyWGUEX8piXs4kIWbJyZT7hp9I8dfTrGSgeyWon4Ibrr66cpiN+ xJWp1B/wqhBOaRQ0Mvf8k6DUQdfTJU9pJmSrHWlcA6YXPasranmDbv+hLk+fTT4k h69RzxuGhYTJOG00+C6BEodYNbMyVvSHPwDTl1r600ZvabaDYX6gFvTqdEvvcasG 2qk0VwU= -----END CERTIFICATE-----Generated at Sat Sep 6 16:59:58 2025 by rpki-client