$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40E8489ED94411E98E28CD85C4F9AE02.roa File: 40E8489ED94411E98E28CD85C4F9AE02.roa (raw, json) Hash identifier: 60EW2fbzOqG92Ix/gO279NK0BBUbrc3vTv6HG90hKwE= Subject key identifier: 9E:07:19:A6:86:74:7E:8D:DE:35:29:BD:CB:BD:FC:B0:62:02:E9:ED Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2859 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40E8489ED94411E98E28CD85C4F9AE02.roa Signing time: Tue 02 Sep 2025 16:03:54 +0000 ROA not before: Tue 02 Sep 2025 16:03:54 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9256 IP address blocks: 125.5.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10329 (0x2859) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 2 16:03:54 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7156a-1530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ab:e2:27:5f:37:08:69:6b:f3:7b:a1:19:fd: 10:e5:3d:0d:d3:fc:c0:0f:cd:8e:07:46:b5:72:60: c9:a2:78:21:0d:7e:0b:29:85:5f:25:8b:95:5f:66: 02:4f:13:86:96:93:cc:36:68:99:69:9c:5e:ae:b0: be:4d:67:c9:7f:ba:60:ac:23:ed:b7:bc:19:87:19: 55:10:23:16:7c:8a:3e:bc:34:73:c1:81:2b:06:4a: e1:0e:01:08:3d:57:c2:58:4a:20:30:43:24:3a:61: c1:b2:22:fa:10:91:05:02:1e:0f:fb:64:c0:99:03: 5a:55:a7:63:b5:8c:95:92:c7:2e:0e:ed:40:ac:c7: 88:b4:19:1f:95:6a:26:2b:ee:48:3b:a8:ad:a0:aa: 25:d3:e3:84:2d:44:9d:b5:ac:10:a3:3b:48:cd:54: e8:a0:c8:ce:f9:e8:bc:aa:5f:e8:d9:ed:85:ac:85: 92:50:03:0e:27:8a:4c:52:8c:e6:3b:01:4d:da:45: 79:ea:c3:a5:89:6c:0d:e3:b2:8e:81:71:22:80:ee: f7:bd:e0:b7:53:7e:c3:1a:5f:80:5c:a1:4e:49:9f: b0:64:13:a1:b4:9d:aa:2d:1f:02:53:82:89:58:b8: c0:eb:98:df:fc:1d:e6:a1:dc:7e:1c:a1:fd:e0:d9: fe:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:07:19:A6:86:74:7E:8D:DE:35:29:BD:CB:BD:FC:B0:62:02:E9:ED X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/40E8489ED94411E98E28CD85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.99.0/24 Signature Algorithm: sha256WithRSAEncryption 11:92:09:a2:f5:46:32:2a:9d:09:f3:33:a4:19:ff:09:d4:12: bb:5b:05:5d:eb:87:9b:7a:6e:cd:ab:7b:55:50:5b:19:d9:3a: 04:02:4e:91:0b:9b:0e:0e:1c:b3:f5:69:cb:b6:7a:2d:c1:dd: 03:8c:f7:73:bc:08:34:2f:25:90:45:7a:77:d5:9f:73:4f:28: 9f:ee:d7:c0:d6:f7:23:09:96:12:ff:4f:c2:eb:06:bb:9e:9d: 6a:46:dc:c1:bc:f5:a6:f1:bf:54:19:8f:96:64:1b:5c:70:a7: 98:74:66:db:fc:62:b2:2e:87:cd:19:92:5d:a7:bb:e1:dc:41: db:f8:2a:6c:f4:70:00:78:fd:7f:81:76:e3:59:22:35:d1:9d: de:45:3f:a4:73:06:60:87:e7:0f:41:1d:28:5b:ab:fd:c4:9c: 24:88:dd:8a:7d:c7:f6:9b:08:29:3d:3e:ce:3a:5f:df:02:34: cf:aa:6c:cb:69:1a:af:92:f1:ec:d7:46:fb:14:79:19:80:b8: b8:3b:5a:d5:e4:d3:1b:86:c8:2c:b6:7f:ad:54:b4:ed:f6:e3: 06:a2:76:bb:e1:ea:e9:91:35:56:c2:6e:29:fa:2c:59:f8:2b: 5a:fe:27:20:39:b6:12:77:80:86:b9:26:13:40:ad:0d:dd:1f: 34:42:71:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKFkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjUwOTAyMTYwMzU0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTU2YS0xNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqviJ183CGlr83uhGf0Q5T0N0/zAD82OB0a1cmDJonghDX4LKYVfJYuVX2YC TxOGlpPMNmiZaZxerrC+TWfJf7pgrCPtt7wZhxlVECMWfIo+vDRzwYErBkrhDgEI PVfCWEogMEMkOmHBsiL6EJEFAh4P+2TAmQNaVadjtYyVkscuDu1ArMeItBkflWom K+5IO6itoKol0+OELUSdtawQoztIzVTooMjO+ei8ql/o2e2FrIWSUAMOJ4pMUozm OwFN2kV56sOliWwN47KOgXEigO73veC3U37DGl+AXKFOSZ+wZBOhtJ2qLR8CU4KJ WLjA65jf/B3modx+HKH94Nn+lwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ4HGaaG dH6N3jUpvcu9/LBiAuntMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvNDBFODQ4OUVE OTQ0MTFFOThFMjhDRDg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9BWMwDQYJKoZIhvcNAQELBQADggEBABGSCaL1RjIqnQnz M6QZ/wnUErtbBV3rh5t6bs2re1VQWxnZOgQCTpELmw4OHLP1acu2ei3B3QOM93O8 CDQvJZBFenfVn3NPKJ/u18DW9yMJlhL/T8LrBruenWpG3MG89abxv1QZj5ZkG1xw p5h0Ztv8YrIuh80Zkl2nu+HcQdv4Kmz0cAB4/X+BduNZIjXRnd5FP6RzBmCH5w9B HShbq/3EnCSI3Yp9x/abCCk9Ps46X98CNM+qbMtpGq+S8ezXRvsUeRmAuLg7WtXk 0xuGyCy2f61UtO324waidrvh6umRNVbCbin6LFn4K1r+JyA5thJ3gIa5JhNArQ3d HzRCcVs= -----END CERTIFICATE-----Generated at Sat Sep 6 23:41:01 2025 by rpki-client