$ rpki-client -vvf rpki.apnic.net/member_repository/A9141BAE/720379A2814111F088D0513FC4F9AE02/DE43ED5E814111F09CB97D40C4F9AE02.roa File: DE43ED5E814111F09CB97D40C4F9AE02.roa (raw, json) Hash identifier: dTfOPNG1kntTr8AnSgtfUPWTvUN95iBYag0K3k/COcc= Subject key identifier: 1D:CB:41:F5:EC:2D:7D:1D:18:F4:02:77:BE:F5:60:20:AD:BB:07:B8 Certificate issuer: /CN=A9141BAE/serialNumber=AC6A05C19DE377FAFEADA8870C90E43DDDE82D32 Certificate serial: 04 Authority key identifier: AC:6A:05:C1:9D:E3:77:FA:FE:AD:A8:87:0C:90:E4:3D:DD:E8:2D:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoFwZ3jd_r-raiHDJDkPd3oLTI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141BAE/720379A2814111F088D0513FC4F9AE02/DE43ED5E814111F09CB97D40C4F9AE02.roa Signing time: Sun 24 Aug 2025 23:36:07 +0000 ROA not before: Sun 24 Aug 2025 23:36:07 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154161 IP address blocks: 45.119.120.0/23 maxlen: 24 2001:df6:6c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141BAE/720379A2814111F088D0513FC4F9AE02/rGoFwZ3jd_r-raiHDJDkPd3oLTI.crl rsync://rpki.apnic.net/member_repository/A9141BAE/720379A2814111F088D0513FC4F9AE02/rGoFwZ3jd_r-raiHDJDkPd3oLTI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoFwZ3jd_r-raiHDJDkPd3oLTI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:48:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141BAE, serialNumber=AC6A05C19DE377FAFEADA8870C90E43DDDE82D32 Validity Not Before: Aug 24 23:36:07 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68aba1e7-ef93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b8:90:4f:ff:00:dd:77:8e:ae:72:6e:67:4b: ff:dd:a6:61:05:d3:bc:bf:e9:50:29:86:04:20:6b: 50:eb:47:b3:95:cb:83:5b:a7:ea:a2:0e:89:9e:e4: 38:65:03:c7:e8:44:22:2c:dd:47:51:6f:56:b7:f8: 56:7a:fb:66:de:34:04:40:88:aa:9a:6f:94:aa:15: 3b:17:b1:57:7a:bf:c1:c2:25:16:95:7f:10:a4:89: ed:f3:f3:e5:45:aa:d8:29:5b:1c:53:d7:1b:70:f3: 69:c2:af:ad:65:9f:72:69:dd:03:f2:60:69:05:88: d7:20:0d:45:b3:ba:4b:72:a0:71:c8:3a:c8:9d:af: 58:6e:44:c4:94:e7:f8:97:2f:9f:fe:b3:3d:50:2d: 4e:9b:bc:b7:65:ce:0d:01:e2:23:b8:e3:a1:59:5d: 9a:b4:0e:57:fe:bc:e0:95:9c:9c:a3:94:6f:e6:9f: f3:65:a6:0d:58:c6:2c:24:04:c4:a7:55:38:ec:4a: a7:85:20:f9:e1:42:c2:04:01:c0:db:93:6d:de:cd: 57:b8:e0:e3:18:aa:b4:f1:15:d1:5d:63:ad:e6:c4: c4:90:06:8d:5c:d0:2a:d3:6b:3f:8a:62:7f:d7:26: 28:ed:66:ae:f9:37:c8:b9:27:78:b6:df:c3:48:e9: 23:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:CB:41:F5:EC:2D:7D:1D:18:F4:02:77:BE:F5:60:20:AD:BB:07:B8 X509v3 Authority Key Identifier: keyid:AC:6A:05:C1:9D:E3:77:FA:FE:AD:A8:87:0C:90:E4:3D:DD:E8:2D:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141BAE/720379A2814111F088D0513FC4F9AE02/rGoFwZ3jd_r-raiHDJDkPd3oLTI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rGoFwZ3jd_r-raiHDJDkPd3oLTI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141BAE/720379A2814111F088D0513FC4F9AE02/DE43ED5E814111F09CB97D40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.120.0/23 IPv6: 2001:df6:6c0::/48 Signature Algorithm: sha256WithRSAEncryption c4:1f:f2:4e:b8:7a:76:34:e7:16:a6:6f:3d:9f:e9:a3:da:5b: af:f2:c5:f0:2b:df:ee:fd:fb:61:e0:24:d2:1f:8d:ab:40:c5: 87:0f:9e:85:82:11:38:bd:53:3b:90:ed:30:e1:b0:dd:18:95: b9:c9:d3:67:be:ba:cf:76:2a:cd:37:bf:b7:81:8a:6e:26:66: 60:db:63:15:85:8a:16:4d:7e:1c:ce:0a:c2:41:ff:ac:8c:79: c0:f3:07:88:69:6e:13:3a:fa:8a:06:e1:c9:1d:a9:ba:a0:0c: 9f:7d:8c:d8:d9:6a:f9:61:14:44:34:71:15:a3:f6:de:ae:a8: 97:8a:11:28:03:27:ea:64:73:de:43:73:bc:b6:78:d2:47:04: ce:a0:96:8c:ff:6f:a1:6b:cc:ea:cf:f1:ae:4d:76:96:3e:67: db:49:7a:5e:01:5e:c4:89:df:aa:cc:d0:9b:33:8e:c6:2a:c4: 33:23:07:f3:0b:f8:5e:77:76:27:6f:a7:21:27:00:d8:21:7d: 37:7a:34:42:81:a8:55:27:ae:a0:20:8d:e3:14:36:95:89:76: 32:3a:8b:89:3e:97:c1:73:9f:5b:5f:bf:a0:a6:6c:d6:de:9f: 95:f7:87:1c:97:47:01:2d:3c:17:37:7d:d5:d8:88:7d:fc:b6: a0:2c:b5:51 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MUJBRTExMC8GA1UEBRMoQUM2QTA1QzE5REUzNzdGQUZFQURBODg3MEM5MEU0M0RE REU4MkQzMjAeFw0yNTA4MjQyMzM2MDdaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YWJhMWU3LWVmOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGuJBP/wDdd46ucm5nS//dpmEF07y/6VAphgQga1DrR7OVy4Nbp+qiDome5Dhl A8foRCIs3UdRb1a3+FZ6+2beNARAiKqab5SqFTsXsVd6v8HCJRaVfxCkie3z8+VF qtgpWxxT1xtw82nCr61ln3Jp3QPyYGkFiNcgDUWzuktyoHHIOsidr1huRMSU5/iX L5/+sz1QLU6bvLdlzg0B4iO446FZXZq0Dlf+vOCVnJyjlG/mn/Nlpg1YxiwkBMSn VTjsSqeFIPnhQsIEAcDbk23ezVe44OMYqrTxFdFdY63mxMSQBo1c0CrTaz+KYn/X JijtZq75N8i5J3i238NI6SOBAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUHctB9ewt fR0Y9AJ3vvVgIK27B7gwHwYDVR0jBBgwFoAUrGoFwZ3jd/r+raiHDJDkPd3oLTIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQxQkFFLzcyMDM3OUEyODE0 MTExRjA4OEQwNTEzRkM0RjlBRTAyL3JHb0Z3WjNqZF9yLXJhaUhESkRrUGQzb0xU SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckdvRndaM2pkX3ItcmFpSERKRGtQZDNvTFRJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MUJBRS83MjAzNzlBMjgxNDExMUYwODhEMDUxM0ZDNEY5QUUwMi9ERTQzRUQ1RTgx NDExMUYwOUNCOTdENDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAS13eDAPBAIAAjAJAwcAIAEN9gbAMA0GCSqGSIb3DQEBCwUA A4IBAQDEH/JOuHp2NOcWpm89n+mj2luv8sXwK9/u/fth4CTSH42rQMWHD56FghE4 vVM7kO0w4bDdGJW5ydNnvrrPdirNN7+3gYpuJmZg22MVhYoWTX4czgrCQf+sjHnA 8weIaW4TOvqKBuHJHam6oAyffYzY2Wr5YRRENHEVo/berqiXihEoAyfqZHPeQ3O8 tnjSRwTOoJaM/2+ha8zqz/GuTXaWPmfbSXpeAV7Eid+qzNCbM47GKsQzIwfzC/he d3Ynb6chJwDYIX03ejRCgahVJ66gII3jFDaViXYyOouJPpfBc59bX7+gpmzW3p+V 94ccl0cBLTwXN33V2Ih9/LagLLVR -----END CERTIFICATE-----Generated at Fri Sep 19 00:44:01 2025 by rpki-client