$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3C670256D94411E98E28CD85C4F9AE02.roa File: 3C670256D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: WnT3cX4WRGpGldQr8iVlQEOarNqbWZCfXBgxVrrlico= Subject key identifier: 4F:BE:7A:BB:53:B8:97:F3:AE:A9:AF:60:EE:23:3D:33:40:EC:81:1D Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2848 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3C670256D94411E98E28CD85C4F9AE02.roa Signing time: Tue 02 Sep 2025 16:03:40 +0000 ROA not before: Tue 02 Sep 2025 16:03:40 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132156 IP address blocks: 125.5.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 15:59:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10312 (0x2848) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 2 16:03:40 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7155c-c2e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e1:c0:5d:78:e2:a3:40:cf:09:16:6e:87:fa: 9a:5f:54:6b:d0:f8:4d:bd:22:bd:41:96:5a:7c:a1: bb:7e:65:94:20:a1:73:4a:ae:58:35:84:87:80:f9: 04:d6:6b:f4:ab:4f:6f:4e:58:35:3f:1f:f9:b4:8c: c5:11:15:2d:dd:bb:bf:e4:98:ee:f2:c7:7f:81:25: 60:bb:a2:c9:01:98:21:20:29:60:38:4b:b2:8e:e8: 8d:21:a1:e3:cf:66:86:91:92:14:ed:64:5f:ca:5d: 19:e8:2b:d7:c7:00:0c:c3:1d:47:25:34:4e:7e:72: 63:9e:78:fa:fe:ab:47:23:23:fe:3e:0e:bc:45:e5: 63:78:62:13:ce:91:5b:27:6a:b9:33:10:37:3a:d1: a8:2c:9d:01:e8:21:2a:7e:f4:5c:e5:4c:49:71:64: 2b:6f:e2:16:fa:7f:e7:f1:f6:4b:33:e9:f4:09:cc: 89:52:19:62:19:b9:72:e1:da:87:95:be:2e:5f:ff: de:6d:bf:67:ed:f2:7c:e4:1f:35:f1:5f:0b:7a:e6: 6c:a2:b2:24:bb:be:fc:b3:1c:ab:ee:3a:c1:9d:bf: d2:f0:57:6d:f7:78:46:e5:1d:a7:31:74:51:cc:3d: 18:f5:9c:5e:af:f1:b8:db:70:e1:bf:84:ec:f7:2a: 85:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BE:7A:BB:53:B8:97:F3:AE:A9:AF:60:EE:23:3D:33:40:EC:81:1D X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3C670256D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.11.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:69:91:46:35:1f:a9:2f:3b:0b:4f:ac:e4:c1:a5:01:7a:c5: 8a:4b:7f:c9:19:00:36:94:15:56:07:cb:65:b7:26:f5:8b:29: 48:51:b4:32:20:d7:0a:cb:b1:5b:20:5f:d7:3d:00:76:0a:5a: 66:0f:56:37:67:a9:93:99:77:53:b1:96:90:3b:a9:94:6a:9d: a9:13:59:b7:05:68:fd:a0:0d:18:c9:01:20:f7:ab:d5:b3:dc: aa:85:4e:af:6e:2b:f1:22:68:e6:39:e0:75:04:91:2a:f5:96: c7:aa:86:3b:7f:ae:f6:93:10:e6:b8:7c:ca:09:f2:3e:f5:de: 05:00:f7:1a:a7:32:05:a8:99:08:ba:a1:bc:92:08:78:5c:ec: 4f:61:b9:e4:3d:c6:d3:b8:9c:e5:f8:bb:49:eb:ac:ee:75:f0: 7d:69:88:e6:d7:28:ea:5f:ef:b6:e0:37:3d:98:15:e2:8f:b8: 16:e0:6e:e6:e9:4d:ba:cc:bb:a2:56:31:94:64:a0:0c:75:7f: 01:4b:8f:cc:a4:54:19:83:fb:47:ed:8e:1d:30:67:9a:bc:5c: 7d:cd:ab:e8:ef:56:ce:bf:0e:cd:f5:57:f3:50:c4:d0:69:35: d4:f5:51:d5:ee:0f:a0:cd:df:9d:9a:1f:a2:41:1d:95:19:c6: 0b:14:a7:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjUwOTAyMTYwMzQwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTU1Yy1jMmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAreHAXXjio0DPCRZuh/qaX1Rr0PhNvSK9QZZafKG7fmWUIKFzSq5YNYSHgPkE 1mv0q09vTlg1Px/5tIzFERUt3bu/5Jju8sd/gSVgu6LJAZghIClgOEuyjuiNIaHj z2aGkZIU7WRfyl0Z6CvXxwAMwx1HJTROfnJjnnj6/qtHIyP+Pg68ReVjeGITzpFb J2q5MxA3OtGoLJ0B6CEqfvRc5UxJcWQrb+IW+n/n8fZLM+n0CcyJUhliGbly4dqH lb4uX//ebb9n7fJ85B818V8LeuZsorIku778sxyr7jrBnb/S8Fdt93hG5R2nMXRR zD0Y9Zxer/G423Dhv4Ts9yqFyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE++ertT uJfzrqmvYO4jPTNA7IEdMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvM0M2NzAyNTZE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9BQswDQYJKoZIhvcNAQELBQADggEBADxpkUY1H6kvOwtP rOTBpQF6xYpLf8kZADaUFVYHy2W3JvWLKUhRtDIg1wrLsVsgX9c9AHYKWmYPVjdn qZOZd1OxlpA7qZRqnakTWbcFaP2gDRjJASD3q9Wz3KqFTq9uK/EiaOY54HUEkSr1 lseqhjt/rvaTEOa4fMoJ8j713gUA9xqnMgWomQi6obySCHhc7E9hueQ9xtO4nOX4 u0nrrO518H1piObXKOpf77bgNz2YFeKPuBbgbubpTbrMu6JWMZRkoAx1fwFLj8yk VBmD+0ftjh0wZ5q8XH3Nq+jvVs6/Ds31V/NQxNBpNdT1UdXuD6DN352aH6JBHZUZ xgsUp70= -----END CERTIFICATE-----Generated at Sat Oct 25 20:14:22 2025 by rpki-client