$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3E054AE6D94411E98E28CD85C4F9AE02.roa File: 3E054AE6D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: eoaziQFsYiES3E74o+e3m1yHX51KmYZICtGgOdmxP/A= Subject key identifier: 8F:4D:BA:52:30:98:BB:1D:86:26:AE:87:35:9B:01:00:5F:81:03:C8 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2850 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3E054AE6D94411E98E28CD85C4F9AE02.roa Signing time: Tue 02 Sep 2025 16:03:47 +0000 ROA not before: Tue 02 Sep 2025 16:03:47 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 24221 IP address blocks: 125.5.125.0/24 maxlen: 24 125.5.126.0/24 maxlen: 24 202.57.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10320 (0x2850) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 2 16:03:47 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b71563-f27d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:df:19:9f:65:f2:ef:67:4d:b0:c9:ab:9a:84: 23:5a:e7:04:8f:18:d9:5b:c1:5b:26:0d:2d:c9:91: 50:58:a4:7a:95:8f:7c:2a:52:a2:8d:c0:b1:58:95: e7:16:97:df:c4:7d:73:0f:bb:df:3d:41:db:83:fb: 95:8b:cf:d2:38:96:eb:52:84:4b:a7:7b:67:53:ea: 90:02:82:57:52:fb:c9:50:d3:cb:9c:f6:47:15:2e: 9e:5d:99:93:a6:ed:83:37:c1:70:8a:b5:61:bd:dc: b7:da:7f:0d:d1:1f:f2:ee:83:dd:7f:19:11:a6:52: 18:87:7b:8a:80:1b:a3:5e:39:17:94:3f:d5:6b:64: 19:46:84:71:08:c0:97:88:4c:ca:12:3e:8b:3b:0f: 58:43:26:db:0f:50:bd:b9:30:01:ae:d4:2d:85:56: b2:74:9f:18:58:8b:0b:70:25:c1:71:bb:2e:49:bb: c5:94:5e:74:19:8a:88:8e:f1:c5:e5:06:5c:a5:83: bb:3a:68:b7:a1:22:94:79:39:65:fd:23:02:6e:07: bc:a9:5a:57:b3:e8:04:a3:bf:a9:e6:b2:e4:20:7d: f0:0e:7b:59:5c:e5:28:bd:5d:e7:bc:00:e6:26:db: ba:70:2f:21:51:07:a0:2b:86:3e:53:33:87:21:49: 87:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:4D:BA:52:30:98:BB:1D:86:26:AE:87:35:9B:01:00:5F:81:03:C8 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/3E054AE6D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.125.0-125.5.126.255 202.57.109.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:bd:b2:57:25:cb:84:91:43:0e:c9:12:38:bd:bd:41:11:bb: da:4c:5c:f4:be:4e:88:af:18:2b:98:ac:3c:8b:cd:a2:19:aa: 24:a8:bd:97:d6:25:ba:8b:3d:9b:44:19:26:3f:5e:a5:05:e9: dd:ab:e8:ea:7a:d1:c4:a3:39:19:23:3f:be:13:3d:e8:24:42: 56:a8:d5:08:09:3b:b7:4b:e2:64:cb:4a:0e:f9:5d:41:f1:aa: d0:72:e4:67:e5:5e:e1:2e:52:ee:60:bd:dd:31:e2:22:0c:67: 5b:0c:ab:f3:38:61:9e:80:88:3b:ef:7c:5d:5b:ec:b6:0d:f1: 3c:1a:dd:6d:91:48:42:9d:f4:dc:8c:53:ce:34:5c:26:0f:36: f7:74:9b:a6:f4:7b:b2:2b:84:f2:9f:bb:e7:1a:b3:c9:aa:bf: b3:ce:b2:fd:56:ee:fc:f3:d5:a7:95:d8:75:07:64:9a:4c:5f: 0c:d7:70:58:ec:84:f3:0a:d4:db:fe:4f:0a:82:60:31:65:b7: a7:e5:d0:53:2d:b0:c3:07:82:d8:4f:3b:76:c7:96:76:4b:21: 9f:22:d6:42:9c:fb:43:1a:dd:5d:15:aa:5e:6c:cc:34:db:b3: d6:63:a6:f2:62:1a:34:09:dc:97:c0:c4:52:05:29:d5:50:34: d6:cc:2f:fe -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICKFAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjUwOTAyMTYwMzQ3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTU2My1mMjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyN8Zn2Xy72dNsMmrmoQjWucEjxjZW8FbJg0tyZFQWKR6lY98KlKijcCxWJXn FpffxH1zD7vfPUHbg/uVi8/SOJbrUoRLp3tnU+qQAoJXUvvJUNPLnPZHFS6eXZmT pu2DN8FwirVhvdy32n8N0R/y7oPdfxkRplIYh3uKgBujXjkXlD/Va2QZRoRxCMCX iEzKEj6LOw9YQybbD1C9uTABrtQthVaydJ8YWIsLcCXBcbsuSbvFlF50GYqIjvHF 5QZcpYO7Omi3oSKUeTll/SMCbge8qVpXs+gEo7+p5rLkIH3wDntZXOUovV3nvADm Jtu6cC8hUQegK4Y+UzOHIUmH6QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFI9NulIw mLsdhiauhzWbAQBfgQPIMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvM0UwNTRBRTZE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAH0FfQMEAH0FfgMEAMo5bTANBgkqhkiG9w0BAQsFAAOC AQEADb2yVyXLhJFDDskSOL29QRG72kxc9L5OiK8YK5isPIvNohmqJKi9l9Yluos9 m0QZJj9epQXp3avo6nrRxKM5GSM/vhM96CRCVqjVCAk7t0viZMtKDvldQfGq0HLk Z+Ve4S5S7mC93THiIgxnWwyr8zhhnoCIO+98XVvstg3xPBrdbZFIQp303IxTzjRc Jg8293SbpvR7siuE8p+75xqzyaq/s86y/Vbu/PPVp5XYdQdkmkxfDNdwWOyE8wrU 2/5PCoJgMWW3p+XQUy2wwweC2E87dseWdkshnyLWQpz7QxrdXRWqXmzMNNuz1mOm 8mIaNAncl8DEUgUp1VA01swv/g== -----END CERTIFICATE-----Generated at Sat Sep 6 23:48:50 2025 by rpki-client