$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40397ED6D94411E98E28CD85C4F9AE02.roa File: 40397ED6D94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: BhDUCqh173lsvs2Bnbhi7COFz82kD2xNwvdh9F0plhs= Subject key identifier: 63:DB:19:8F:FC:70:23:86:01:53:30:B9:8A:46:49:D9:7D:78:2E:B1 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2855 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40397ED6D94411E98E28CD85C4F9AE02.roa Signing time: Tue 02 Sep 2025 16:03:51 +0000 ROA not before: Tue 02 Sep 2025 16:03:51 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45791 IP address blocks: 125.5.108.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10325 (0x2855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 2 16:03:51 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b71567-ffb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:05:98:e1:1c:21:85:0b:2a:f7:ef:0f:00:96: 99:12:d5:41:c4:15:fa:ba:c2:89:d0:57:66:74:f8: c8:7c:69:c7:d9:a6:84:2f:d3:ff:e3:75:f5:73:bc: 4e:07:08:1b:01:c8:2f:22:5d:15:27:fb:23:5e:b0: 45:69:16:44:3d:19:e6:ee:f6:d6:ab:78:30:0b:bd: 4b:3f:f4:99:b9:a3:32:ed:70:ab:28:39:3b:65:6a: 8f:08:57:23:10:b3:d9:94:4a:6c:32:e4:15:d8:03: 3b:d8:ab:84:a4:3a:42:f1:fd:71:a3:bb:e0:9b:d4: 48:65:25:ce:8e:dc:e5:84:f3:09:f4:fc:42:80:72: ac:58:1e:cd:e7:9b:83:b2:b9:19:38:0c:39:a7:a7: 9b:35:21:a7:91:bd:61:40:b7:8d:58:42:af:68:d8: f4:a4:9d:18:d5:f0:9a:e9:03:11:69:bc:3c:26:80: 4e:f4:8b:30:d9:74:01:22:b5:bc:9f:ef:62:51:21: f7:de:c0:8a:08:11:59:3d:4f:ed:38:46:4d:eb:2a: ae:d7:b9:a6:51:be:64:18:8e:3a:84:4d:01:28:91: 29:69:bc:0f:a1:1f:6d:56:e6:fe:17:4c:1d:64:b9: cb:75:f9:f8:f7:ed:85:18:b1:35:46:a9:d2:cb:2f: 57:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:DB:19:8F:FC:70:23:86:01:53:30:B9:8A:46:49:D9:7D:78:2E:B1 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40397ED6D94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.108.0/24 Signature Algorithm: sha256WithRSAEncryption 73:33:19:fa:16:bf:b2:ab:16:e2:ac:44:26:e6:30:62:6a:f2: 44:2d:e2:3d:7d:ce:ef:cd:0e:45:21:63:47:df:7a:86:9a:4d: a9:4c:24:f8:f9:a3:6f:9f:c2:58:46:0a:e0:0a:b6:07:82:57: d2:ff:bd:2d:11:cb:c6:b3:8e:1c:8f:eb:3f:06:c9:64:f0:02: 74:26:e1:d6:2f:3c:8e:b9:95:b5:4e:95:b4:0a:ba:f2:7f:0f: ea:5a:95:31:cb:5e:a8:e1:26:1f:b8:b8:6f:42:6a:40:38:ce: 2a:ec:aa:c4:30:dc:54:78:57:87:d3:3b:d8:b9:0f:01:f7:52: 60:18:1c:0f:76:e9:b2:3f:c1:07:ba:bc:42:0c:20:2c:66:1d: b3:37:31:28:eb:5a:5a:39:07:e8:05:b5:b5:e3:2a:2f:1d:7b: f3:02:6c:fe:66:d8:2e:dd:2b:b6:de:ec:47:76:2e:20:5d:a3: 91:62:db:87:02:00:8c:81:fb:55:90:ee:40:2f:54:63:09:1d: d5:00:a9:d0:b6:c1:4a:47:0c:70:39:fd:7c:bd:f8:c5:f3:75: 81:6c:f8:57:f9:5c:4f:fa:1e:de:56:73:2c:4e:59:12:b4:e7: f8:65:e7:16:dd:ec:9f:6f:a5:84:d7:31:08:01:de:33:8c:ce: 4a:68:05:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjUwOTAyMTYwMzUxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTU2Ny1mZmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0wWY4RwhhQsq9+8PAJaZEtVBxBX6usKJ0FdmdPjIfGnH2aaEL9P/43X1c7xO BwgbAcgvIl0VJ/sjXrBFaRZEPRnm7vbWq3gwC71LP/SZuaMy7XCrKDk7ZWqPCFcj ELPZlEpsMuQV2AM72KuEpDpC8f1xo7vgm9RIZSXOjtzlhPMJ9PxCgHKsWB7N55uD srkZOAw5p6ebNSGnkb1hQLeNWEKvaNj0pJ0Y1fCa6QMRabw8JoBO9Isw2XQBIrW8 n+9iUSH33sCKCBFZPU/tOEZN6yqu17mmUb5kGI46hE0BKJEpabwPoR9tVub+F0wd ZLnLdfn49+2FGLE1RqnSyy9XZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGPbGY/8 cCOGAVMwuYpGSdl9eC6xMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvNDAzOTdFRDZE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9BWwwDQYJKoZIhvcNAQELBQADggEBAHMzGfoWv7KrFuKs RCbmMGJq8kQt4j19zu/NDkUhY0ffeoaaTalMJPj5o2+fwlhGCuAKtgeCV9L/vS0R y8azjhyP6z8GyWTwAnQm4dYvPI65lbVOlbQKuvJ/D+palTHLXqjhJh+4uG9CakA4 zirsqsQw3FR4V4fTO9i5DwH3UmAYHA926bI/wQe6vEIMICxmHbM3MSjrWlo5B+gF tbXjKi8de/MCbP5m2C7dK7be7Ed2LiBdo5Fi24cCAIyB+1WQ7kAvVGMJHdUAqdC2 wUpHDHA5/Xy9+MXzdYFs+Ff5XE/6Ht5WcyxOWRK05/hl5xbd7J9vpYTXMQgB3jOM zkpoBZs= -----END CERTIFICATE-----Generated at Sat Sep 6 23:48:48 2025 by rpki-client