$ rpki-client -vvf rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/0C64C6B2821011F0B329B866C4F9AE02.roa File: 0C64C6B2821011F0B329B866C4F9AE02.roa (raw, json) Hash identifier: D2PIDDhjMLrJzP//kuZEMaof293KC1FejYs4Z1FlT9g= Subject key identifier: 44:B7:B1:A8:94:4E:FD:01:A6:A1:13:EF:00:EA:95:69:85:60:FD:6F Certificate issuer: /CN=A91397C2/serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Certificate serial: 0820 Authority key identifier: D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/0C64C6B2821011F0B329B866C4F9AE02.roa Signing time: Tue 26 Aug 2025 00:03:09 +0000 ROA not before: Tue 26 Aug 2025 00:03:09 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 134196 IP address blocks: 45.124.24.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 21:16:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2080 (0x820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91397C2, serialNumber=D3D15AEE9A4F8AE5C281108A7D2D3AD81D4E79CD Validity Not Before: Aug 26 00:03:09 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68acf9bc-83f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:27:02:99:86:5d:35:e9:5f:d4:c7:46:3f:30: ca:9d:02:c1:d3:d4:dc:94:5c:6b:de:29:0c:59:74: 82:8e:ad:39:91:bb:a6:9f:c7:83:97:99:d1:c2:1b: 85:0e:29:a4:31:d7:28:b5:ae:43:92:6d:5f:3d:b3: 54:67:33:d9:ec:78:41:32:f5:69:50:49:51:73:46: 58:e0:4e:b0:78:25:0f:1b:dc:88:48:eb:0d:58:8b: 67:23:7b:55:78:e6:b6:35:35:d5:f2:aa:f4:84:4c: 4d:c6:76:22:fd:fa:23:b0:74:ac:4e:c3:cd:d6:28: 1c:06:3a:6b:49:20:fe:95:ed:cf:6c:9d:c8:1a:14: 9f:24:7b:23:e5:3d:23:3a:10:19:ba:37:b7:24:98: 08:ce:56:dd:23:54:56:aa:3d:ff:d7:14:82:5f:91: be:8a:e8:62:3a:d1:eb:d7:52:81:a3:36:10:ee:c1: ff:f3:b2:5b:90:22:ad:d3:e4:be:79:8b:e4:0b:e7: 21:67:25:4f:f1:a5:67:28:ba:99:62:ac:73:f3:71: ff:ba:be:56:c0:2f:ae:92:27:de:d0:01:34:b1:dc: 5d:42:90:12:b0:f3:66:4f:95:ae:e2:3f:79:76:fc: 25:a6:d7:e0:cc:1c:2b:3a:cc:0e:af:db:62:39:46: b0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:B7:B1:A8:94:4E:FD:01:A6:A1:13:EF:00:EA:95:69:85:60:FD:6F X509v3 Authority Key Identifier: keyid:D3:D1:5A:EE:9A:4F:8A:E5:C2:81:10:8A:7D:2D:3A:D8:1D:4E:79:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/09Fa7ppPiuXCgRCKfS062B1Oec0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09Fa7ppPiuXCgRCKfS062B1Oec0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91397C2/4E426DE8FBEA11EA940A1D19C4F9AE02/0C64C6B2821011F0B329B866C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.24.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:58:15:fe:0c:f7:96:a4:ad:d3:c4:33:f3:98:71:09:8d:20: e5:3f:71:63:15:ef:5d:37:95:60:df:88:92:f4:6a:a1:b6:01: a1:bd:78:28:f5:ed:bc:50:df:5d:e5:27:8f:10:68:34:08:08: 39:dc:18:5e:d7:98:51:92:55:f7:6b:6c:9b:60:18:6b:5a:2a: 77:43:26:45:61:18:98:95:ac:57:11:80:17:a5:d4:29:8e:05: 8f:7e:92:6e:05:6c:41:89:22:01:d3:9c:7b:17:7d:5a:ca:0d: 34:03:80:c6:17:78:01:85:98:dc:5d:fd:5d:81:35:42:3e:05: ce:14:8e:19:6f:be:41:20:3c:2b:99:d7:99:ac:3d:a2:32:fd: 50:d5:36:88:f7:92:0f:af:ca:97:9c:b5:4a:25:ad:10:3f:0c: 28:3b:fe:18:fd:30:5a:54:63:b7:a0:ff:2e:7f:67:3b:6f:19: 98:ef:ba:af:ba:b9:42:ea:a9:20:a2:a0:df:89:5e:b8:18:03: cd:ce:86:9b:76:fb:7f:d8:59:60:f3:a4:eb:05:78:79:0c:83: 89:4c:91:dd:00:f1:cf:0b:34:4d:ce:36:da:e7:3a:5f:84:5c: 99:fb:2a:86:75:d6:4d:d0:e2:ab:16:f1:6c:8c:8b:b9:55:f4: 8b:4c:d4:f3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3QzIxMTAvBgNVBAUTKEQzRDE1QUVFOUE0RjhBRTVDMjgxMTA4QTdEMkQzQUQ4 MUQ0RTc5Q0QwHhcNMjUwODI2MDAwMzA5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFjZjliYy04M2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ScCmYZdNelf1MdGPzDKnQLB09TclFxr3ikMWXSCjq05kbumn8eDl5nRwhuF DimkMdcota5Dkm1fPbNUZzPZ7HhBMvVpUElRc0ZY4E6weCUPG9yISOsNWItnI3tV eOa2NTXV8qr0hExNxnYi/fojsHSsTsPN1igcBjprSSD+le3PbJ3IGhSfJHsj5T0j OhAZuje3JJgIzlbdI1RWqj3/1xSCX5G+iuhiOtHr11KBozYQ7sH/87JbkCKt0+S+ eYvkC+chZyVP8aVnKLqZYqxz83H/ur5WwC+ukife0AE0sdxdQpASsPNmT5Wu4j95 dvwlptfgzBwrOswOr9tiOUaw1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFES3saiU Tv0BpqET7wDqlWmFYP1vMB8GA1UdIwQYMBaAFNPRWu6aT4rlwoEQin0tOtgdTnnN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTdDMi80RTQyNkRFOEZC RUExMUVBOTQwQTFEMTlDNEY5QUUwMi8wOUZhN3BwUGl1WENnUkNLZlMwNjJCMU9l YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA5RmE3cHBQaXVYQ2dSQ0tmUzA2MkIxT2VjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk3QzIvNEU0MjZERThGQkVBMTFFQTk0MEExRDE5QzRGOUFFMDIvMEM2NEM2QjI4 MjEwMTFGMEIzMjlCODY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAItfBgwDQYJKoZIhvcNAQELBQADggEBAD5YFf4M95akrdPE M/OYcQmNIOU/cWMV7103lWDfiJL0aqG2AaG9eCj17bxQ313lJ48QaDQICDncGF7X mFGSVfdrbJtgGGtaKndDJkVhGJiVrFcRgBel1CmOBY9+km4FbEGJIgHTnHsXfVrK DTQDgMYXeAGFmNxd/V2BNUI+Bc4UjhlvvkEgPCuZ15msPaIy/VDVNoj3kg+vypec tUolrRA/DCg7/hj9MFpUY7eg/y5/ZztvGZjvuq+6uULqqSCioN+JXrgYA83Ohpt2 +3/YWWDzpOsFeHkMg4lMkd0A8c8LNE3ONtrnOl+EXJn7KoZ11k3Q4qsW8WyMi7lV 9ItM1PM= -----END CERTIFICATE-----Generated at Sat Sep 6 19:04:53 2025 by rpki-client