$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/089CB7F8E41C11E9AD4A8D16C4F9AE02.roa File: 089CB7F8E41C11E9AD4A8D16C4F9AE02.roa (raw, json) Hash identifier: KhDCztJWi/b/h8TdofXt57IsiN7CYR7V5Vv9hx6DGJ4= Subject key identifier: 69:88:FC:C5:E2:8F:12:06:F6:C0:D2:89:25:D7:A5:6B:8B:1C:6B:59 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2854 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/089CB7F8E41C11E9AD4A8D16C4F9AE02.roa Signing time: Tue 02 Sep 2025 16:03:50 +0000 ROA not before: Tue 02 Sep 2025 16:03:50 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38575 IP address blocks: 125.5.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10324 (0x2854) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 2 16:03:50 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b71566-f848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e1:f0:c0:96:a0:45:87:2c:df:f1:74:83:82: 55:30:62:77:2b:51:26:a8:21:e0:b1:48:b5:20:dc: 7a:91:d6:c7:0d:7b:b3:f5:e2:c4:91:77:c3:54:c1: 80:58:15:7a:f9:f1:1c:10:fe:ca:03:aa:cf:3d:f8: 41:81:f6:b7:6f:b1:87:7d:df:a1:b8:cb:33:0d:a9: 36:49:d5:76:09:65:d4:83:99:c7:e3:39:ee:23:16: 8b:32:42:cb:19:d3:fa:15:2a:8b:61:67:5f:89:8e: d4:e5:fe:58:70:ad:38:4e:0c:82:2b:e6:ab:4d:c2: 3b:d9:33:61:4f:37:01:f3:5a:9f:91:c2:a7:8a:62: 6c:c7:a3:7b:e2:f5:d2:3b:37:a5:4d:a7:89:17:59: 26:ff:dd:c6:3b:52:81:78:d6:f1:14:ae:25:df:d8: 89:97:a0:37:ab:d0:ff:ee:1e:e4:86:b6:fe:6a:0a: 8d:6f:84:15:76:ee:ce:c9:cb:45:71:55:47:08:ef: 42:08:cc:3f:0a:e5:d7:b1:a0:64:86:8a:f9:0a:dd: ad:36:a4:93:0a:8a:55:a8:9d:6f:9b:28:21:f9:47: ec:8c:a9:81:1a:e0:21:4e:f0:1d:23:44:d6:96:9c: 81:89:2f:12:0b:6b:5e:29:92:32:7e:7f:a7:6c:55: ce:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:88:FC:C5:E2:8F:12:06:F6:C0:D2:89:25:D7:A5:6B:8B:1C:6B:59 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/089CB7F8E41C11E9AD4A8D16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.8.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:b0:6a:0d:fb:2f:72:15:f1:d3:7c:ac:da:d8:5b:25:85:05: 5c:73:54:63:a4:f9:e2:0a:69:f7:2b:1f:ae:7a:15:86:15:8f: 25:0d:c8:67:f9:57:d8:b6:d8:0b:65:6e:5a:c3:73:dd:6e:6b: 02:c5:c4:84:b1:df:ab:00:c6:79:ac:90:b2:9c:f3:13:2d:8b: db:c7:65:88:f9:40:3f:0a:13:76:43:b6:db:66:57:62:02:81: 2d:69:11:7c:a6:a4:d9:76:12:5b:58:14:84:e9:4b:a0:72:45: 68:76:d2:0f:fa:6b:e9:1e:0a:a6:c7:b6:38:75:d7:56:f0:c7: 95:34:31:34:9e:bf:46:c7:df:73:de:59:dd:92:b1:81:ab:72: 05:91:cf:60:7c:89:11:46:36:0b:e0:be:fa:25:04:56:9f:23: 61:dc:d2:4f:76:cf:be:61:10:8b:fd:c6:a9:6e:d9:1c:ad:1a: e4:a7:48:92:07:83:de:db:56:aa:5a:cc:eb:66:cb:d3:e9:73: d8:43:ab:ac:32:83:56:7b:e3:6f:7f:be:72:3d:af:24:82:33: fe:3b:c3:5a:ad:d8:ce:d6:23:ff:fb:dc:99:95:70:db:b6:5b: 97:84:8d:ff:74:f8:0e:43:71:d3:b7:aa:3e:d8:df:fa:9d:a4: 0c:db:a4:7f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjUwOTAyMTYwMzUwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTU2Ni1mODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeHwwJagRYcs3/F0g4JVMGJ3K1EmqCHgsUi1INx6kdbHDXuz9eLEkXfDVMGA WBV6+fEcEP7KA6rPPfhBgfa3b7GHfd+huMszDak2SdV2CWXUg5nH4znuIxaLMkLL GdP6FSqLYWdfiY7U5f5YcK04TgyCK+arTcI72TNhTzcB81qfkcKnimJsx6N74vXS OzelTaeJF1km/93GO1KBeNbxFK4l39iJl6A3q9D/7h7khrb+agqNb4QVdu7OyctF cVVHCO9CCMw/CuXXsaBkhor5Ct2tNqSTCopVqJ1vmygh+UfsjKmBGuAhTvAdI0TW lpyBiS8SC2teKZIyfn+nbFXOewIDAQABo4IClTCCApEwHQYDVR0OBBYEFGmI/MXi jxIG9sDSiSXXpWuLHGtZMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvMDg5Q0I3RjhF NDFDMTFFOUFENEE4RDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9BQgwDQYJKoZIhvcNAQELBQADggEBAEywag37L3IV8dN8 rNrYWyWFBVxzVGOk+eIKafcrH656FYYVjyUNyGf5V9i22AtlblrDc91uawLFxISx 36sAxnmskLKc8xMti9vHZYj5QD8KE3ZDtttmV2ICgS1pEXympNl2EltYFITpS6By RWh20g/6a+keCqbHtjh111bwx5U0MTSev0bH33PeWd2SsYGrcgWRz2B8iRFGNgvg vvolBFafI2Hc0k92z75hEIv9xqlu2RytGuSnSJIHg97bVqpazOtmy9Ppc9hDq6wy g1Z7429/vnI9rySCM/47w1qt2M7WI//73JmVcNu2W5eEjf90+A5DcdO3qj7Y3/qd pAzbpH8= -----END CERTIFICATE-----Generated at Sat Sep 6 23:40:10 2025 by rpki-client