$ rpki-client -vvf rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/4EC5B52480B811EBBEE2CA7FC4F9AE02.roa File: 4EC5B52480B811EBBEE2CA7FC4F9AE02.roa (raw, json) Hash identifier: nQ2JLGKaP47ih5m9qTo7j8aG05in8F4XWfknPmuOpgA= Subject key identifier: CB:9F:97:36:96:3D:01:D8:D0:8E:E3:F2:E3:FB:C8:3C:5C:14:F8:FD Certificate issuer: /CN=A912CDC5/serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Certificate serial: 06BD Authority key identifier: 86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/4EC5B52480B811EBBEE2CA7FC4F9AE02.roa Signing time: Thu 30 Oct 2025 22:12:46 +0000 ROA not before: Thu 30 Oct 2025 22:12:46 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 133206 IP address blocks: 148.59.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1725 (0x6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912CDC5, serialNumber=867D3D68B6597803AF56465C0E9B53AB667B72A8 Validity Not Before: Oct 30 22:12:46 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6903e2de-6094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:95:43:4a:5f:16:61:20:15:60:ee:3e:9c:ce: 9a:37:f5:e4:68:f9:5f:33:c2:9f:cc:06:f9:93:50: 5c:de:69:31:8b:f2:ef:ed:10:a2:95:43:39:c5:fe: bf:24:10:e9:2d:66:c8:32:92:ab:45:08:eb:b4:94: 97:61:4c:36:f2:23:4a:13:91:ed:0a:f1:7f:f3:63: d6:cc:90:70:ee:23:42:59:63:ce:fe:4a:c2:e4:67: a3:70:b1:b9:3f:4c:4e:de:d6:0f:5c:be:af:b4:f2: df:10:c4:b1:a8:c6:6e:25:f0:48:b0:8e:e2:69:31: 1e:67:8a:c4:82:cf:78:13:ec:3e:ed:09:74:39:4b: 15:a7:73:6c:db:a5:d8:4a:a4:f6:44:d4:54:a6:69: 55:8c:23:f2:f0:86:c3:47:53:20:45:46:0d:a0:10: 8e:f4:71:e9:17:07:29:86:e0:86:3f:81:71:bd:28: c1:3a:9a:e0:cf:c6:b3:78:80:b4:5d:51:29:b2:89: b0:7d:7b:e7:de:64:b2:28:eb:ca:db:77:f7:6a:d2: 8c:2f:d3:76:8a:1a:0b:25:54:0d:68:74:46:8a:e3: 6c:8c:2b:f6:26:3a:7b:dc:13:16:a9:e0:0d:35:6f: ff:73:64:e8:2b:7d:9d:39:94:ef:f5:da:8e:e2:a7: 0b:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:9F:97:36:96:3D:01:D8:D0:8E:E3:F2:E3:FB:C8:3C:5C:14:F8:FD X509v3 Authority Key Identifier: keyid:86:7D:3D:68:B6:59:78:03:AF:56:46:5C:0E:9B:53:AB:66:7B:72:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/hn09aLZZeAOvVkZcDptTq2Z7cqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hn09aLZZeAOvVkZcDptTq2Z7cqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912CDC5/E9F292C680B611EBBECBF379C4F9AE02/4EC5B52480B811EBBEE2CA7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.59.94.0/24 Signature Algorithm: sha256WithRSAEncryption 68:1a:e0:a0:99:8f:5d:2d:cc:50:ca:99:5c:d0:81:44:ba:c2: 00:29:20:61:40:81:39:a1:78:82:01:59:d7:78:92:be:f6:7b: 36:e3:2b:39:a4:a6:d8:39:d2:57:f2:83:7e:a8:7d:5d:0e:9c: 12:7e:58:21:31:ab:28:8b:cd:d8:36:59:a7:de:5d:e3:b6:c4: 97:a9:cc:da:3a:b6:6f:e7:a2:5f:31:fd:1c:8e:d8:23:61:5b: f8:03:33:43:d9:51:ba:07:e8:9b:04:c5:21:96:5e:60:cc:49: e8:98:c4:66:6e:0c:70:d3:00:56:0f:f7:89:b2:3e:08:3d:a9: f2:02:8f:f5:fe:b8:06:a2:6e:ee:bc:e5:c8:33:0b:f9:de:c4: 6c:43:e1:49:fb:ed:59:26:f2:16:c9:3e:23:16:03:a6:47:7c: 06:9e:f3:5f:8c:90:b7:86:da:ee:d8:1a:d8:1b:6b:9d:5d:f3: 0b:86:06:2c:da:f4:80:00:75:4f:17:75:3e:40:8c:62:86:c4: bd:89:97:ba:78:c9:e5:6a:26:cc:f7:8c:45:76:39:36:c0:14: 67:95:aa:67:13:62:82:bd:23:8b:cc:1f:04:0d:80:b9:d9:ea: f9:1a:f2:cd:81:59:dd:c9:d1:45:a4:e7:42:2e:1e:de:be:3d: 75:66:05:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkNEQzUxMTAvBgNVBAUTKDg2N0QzRDY4QjY1OTc4MDNBRjU2NDY1QzBFOUI1M0FC NjY3QjcyQTgwHhcNMjUxMDMwMjIxMjQ2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAzZTJkZS02MDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55VDSl8WYSAVYO4+nM6aN/XkaPlfM8KfzAb5k1Bc3mkxi/Lv7RCilUM5xf6/ JBDpLWbIMpKrRQjrtJSXYUw28iNKE5HtCvF/82PWzJBw7iNCWWPO/krC5GejcLG5 P0xO3tYPXL6vtPLfEMSxqMZuJfBIsI7iaTEeZ4rEgs94E+w+7Ql0OUsVp3Ns26XY SqT2RNRUpmlVjCPy8IbDR1MgRUYNoBCO9HHpFwcphuCGP4FxvSjBOprgz8azeIC0 XVEpsomwfXvn3mSyKOvK23f3atKML9N2ihoLJVQNaHRGiuNsjCv2Jjp73BMWqeAN NW//c2ToK32dOZTv9dqO4qcLuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMuflzaW PQHY0I7j8uP7yDxcFPj9MB8GA1UdIwQYMBaAFIZ9PWi2WXgDr1ZGXA6bU6tme3Ko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQ0RDNS9FOUYyOTJDNjgw QjYxMUVCQkVDQkYzNzlDNEY5QUUwMi9objA5YUxaWmVBT3ZWa1pjRHB0VHEyWjdj cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2huMDlhTFpaZUFPdlZrWmNEcHRUcTJaN2NxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkNEQzUvRTlGMjkyQzY4MEI2MTFFQkJFQ0JGMzc5QzRGOUFFMDIvNEVDNUI1MjQ4 MEI4MTFFQkJFRTJDQTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACUO14wDQYJKoZIhvcNAQELBQADggEBAGga4KCZj10tzFDK mVzQgUS6wgApIGFAgTmheIIBWdd4kr72ezbjKzmkptg50lfyg36ofV0OnBJ+WCEx qyiLzdg2WafeXeO2xJepzNo6tm/nol8x/RyO2CNhW/gDM0PZUboH6JsExSGWXmDM SeiYxGZuDHDTAFYP94myPgg9qfICj/X+uAaibu685cgzC/nexGxD4Un77Vkm8hbJ PiMWA6ZHfAae81+MkLeG2u7YGtgba51d8wuGBiza9IAAdU8XdT5AjGKGxL2Jl7p4 yeVqJsz3jEV2OTbAFGeVqmcTYoK9I4vMHwQNgLnZ6vka8s2BWd3J0UWk50IuHt6+ PXVmBZ4= -----END CERTIFICATE-----Generated at Tue Nov 4 15:45:48 2025 by rpki-client