$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/7A90F2402C3C11EE81B24651C4F9AE02.roa File: 7A90F2402C3C11EE81B24651C4F9AE02.roa (raw, json) Hash identifier: IS6RP+KmoY800ilz+9/FraPb2PhtRfq61ziRhaqYPqA= Subject key identifier: 70:2C:0E:49:0E:46:91:59:8A:89:C1:A0:19:CF:71:08:9F:34:9E:CC Certificate issuer: /CN=A9137ABC/serialNumber=E87DC6C5C710439057D8ABED90C26D0C9C872B34 Certificate serial: 2A1F Authority key identifier: E8:7D:C6:C5:C7:10:43:90:57:D8:AB:ED:90:C2:6D:0C:9C:87:2B:34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/7A90F2402C3C11EE81B24651C4F9AE02.roa Signing time: Mon 14 Jul 2025 14:50:12 +0000 ROA not before: Mon 14 Jul 2025 14:50:12 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 7470 IP address blocks: 134.196.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.crl rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 14:20:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10783 (0x2a1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC, serialNumber=E87DC6C5C710439057D8ABED90C26D0C9C872B34 Validity Not Before: Jul 14 14:50:12 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68751924-1fe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9f:c1:43:7f:c9:a2:ae:88:6a:c4:6a:33:6c: 58:8a:5c:e1:13:cc:84:ab:3a:09:07:2a:6f:cf:87: f4:3d:0a:ec:87:13:27:7f:2e:2c:9b:d1:de:de:5b: 83:77:81:3a:8f:7b:50:23:ea:52:f9:2a:2b:fd:8f: 29:a0:9e:93:8f:9a:3f:3b:e0:34:0e:f7:50:e4:62: a6:e0:d3:df:84:2a:5e:d1:c4:54:06:ce:3c:80:b3: 89:81:d0:df:f8:9a:92:6f:42:9e:e7:77:a8:48:5e: c9:e4:36:bb:4b:fe:a5:1b:07:13:5b:58:03:f9:cd: 59:2d:b0:dd:6d:7f:f8:e8:d7:d0:0b:f7:e1:72:ca: 74:17:06:a2:59:f2:a0:7f:3e:9a:55:3c:a4:3b:4c: b8:7d:b6:4d:d8:bd:9d:97:f1:11:5e:96:e3:c7:14: f7:dd:b7:e2:2f:d0:d2:23:42:31:4c:5b:ac:cd:2e: 6b:5b:52:59:db:c7:7f:68:95:42:da:f3:96:13:f6: 39:77:7d:15:5e:c5:48:c2:f4:39:7a:92:75:fb:1f: 57:6c:7e:56:37:4f:65:e7:ae:97:20:cc:b9:04:97: 57:ff:e0:bb:d9:84:42:f9:d3:32:d2:25:c9:a9:df: a1:c5:b6:77:af:bf:4b:9e:f4:47:43:4f:12:07:0d: 09:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2C:0E:49:0E:46:91:59:8A:89:C1:A0:19:CF:71:08:9F:34:9E:CC X509v3 Authority Key Identifier: keyid:E8:7D:C6:C5:C7:10:43:90:57:D8:AB:ED:90:C2:6D:0C:9C:87:2B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/7A90F2402C3C11EE81B24651C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.196.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0a:d6:d7:db:37:58:d6:07:a1:ee:2b:ae:c6:1d:79:9d:49:8a: 0c:08:fb:f0:5f:b5:91:30:d0:c6:14:e5:56:69:45:7f:4c:78: 28:0a:68:b2:55:2c:a6:5a:f2:ed:3b:ab:0c:e4:d8:7a:b7:f3: 66:d4:18:78:d7:ad:b9:10:26:cc:12:ed:bf:90:2f:f6:9e:8a: f6:40:8f:64:a6:e5:4c:35:e7:1a:c5:ef:51:2f:80:62:56:85: 1f:c1:85:47:3e:00:05:11:74:08:5a:ce:46:5c:f0:16:43:ac: a3:9c:fa:55:0d:fb:c8:27:6d:95:2d:84:69:19:48:23:a5:d3: 05:6e:16:2c:3c:7a:59:af:44:26:3d:a0:0b:ff:08:4e:d1:76: 41:e8:27:c6:c6:6a:6b:9d:50:03:11:c1:35:2a:d4:f1:5e:4e: 20:27:ed:72:83:d9:0c:cb:25:c2:8d:7c:22:08:e3:60:2c:5a: d8:8f:fe:86:84:d2:49:60:0f:eb:05:e8:d3:00:ae:14:45:9d: 7e:bc:82:31:27:e6:fd:bd:ed:1b:7e:cb:04:00:20:c1:be:1f: 3d:e2:4a:67:91:b7:d5:07:f3:18:30:11:f6:e4:fb:40:62:c1: 89:9c:80:dd:be:64:4b:82:87:88:e8:2e:f8:aa:bd:4d:4e:99: 5b:c3:15:e1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICKh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKEU4N0RDNkM1QzcxMDQzOTA1N0Q4QUJFRDkwQzI2RDBD OUM4NzJCMzQwHhcNMjUwNzE0MTQ1MDEyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MTkyNC0xZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1p/BQ3/Joq6IasRqM2xYilzhE8yEqzoJBypvz4f0PQrshxMnfy4sm9He3luD d4E6j3tQI+pS+Sor/Y8poJ6Tj5o/O+A0DvdQ5GKm4NPfhCpe0cRUBs48gLOJgdDf +JqSb0Ke53eoSF7J5Da7S/6lGwcTW1gD+c1ZLbDdbX/46NfQC/fhcsp0FwaiWfKg fz6aVTykO0y4fbZN2L2dl/ERXpbjxxT33bfiL9DSI0IxTFuszS5rW1JZ28d/aJVC 2vOWE/Y5d30VXsVIwvQ5epJ1+x9XbH5WN09l566XIMy5BJdX/+C72YRC+dMy0iXJ qd+hxbZ3r79LnvRHQ08SBw0JsQIDAQABo4IClDCCApAwHQYDVR0OBBYEFHAsDkkO RpFZionBoBnPcQifNJ7MMB8GA1UdIwQYMBaAFOh9xsXHEEOQV9ir7ZDCbQychys0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy82QjhCOUQwRTM2 RkYxMUU0OTkwNEFDNjZDNEY5QUUwMi82SDNHeGNjUVE1QlgyS3Z0a01KdERKeUhL elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZIM0d4Y2NRUTVCWDJLdnRrTUp0REp5SEt6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNkI4QjlEMEUzNkZGMTFFNDk5MDRBQzY2QzRGOUFFMDIvN0E5MEYyNDAy QzNDMTFFRTgxQjI0NjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCGxDANBgkqhkiG9w0BAQsFAAOCAQEACtbX2zdY1geh7iuu xh15nUmKDAj78F+1kTDQxhTlVmlFf0x4KAposlUsplry7TurDOTYerfzZtQYeNet uRAmzBLtv5Av9p6K9kCPZKblTDXnGsXvUS+AYlaFH8GFRz4ABRF0CFrORlzwFkOs o5z6VQ37yCdtlS2EaRlII6XTBW4WLDx6Wa9EJj2gC/8ITtF2QegnxsZqa51QAxHB NSrU8V5OICftcoPZDMslwo18IgjjYCxa2I/+hoTSSWAP6wXo0wCuFEWdfryCMSfm /b3tG37LBAAgwb4fPeJKZ5G31QfzGDAR9uT7QGLBiZyA3b5kS4KHiOgu+Kq9TU6Z W8MV4Q== -----END CERTIFICATE-----Generated at Fri Oct 24 10:51:25 2025 by rpki-client