$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/68356576B0F311E5AB30F151C4F9AE02.roa File: 68356576B0F311E5AB30F151C4F9AE02.roa (raw, json) Hash identifier: DUbx2Fx+t93gx84kMfsEkb62vUQ8QmFeMZs1r67VJwU= Subject key identifier: F8:41:D8:EC:83:46:C2:26:3F:02:68:F6:19:62:60:E0:6E:0A:47:21 Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2849 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/68356576B0F311E5AB30F151C4F9AE02.roa Signing time: Tue 02 Sep 2025 16:03:41 +0000 ROA not before: Tue 02 Sep 2025 16:03:41 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132206 IP address blocks: 125.5.13.0/24 maxlen: 24 125.5.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 15:49:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10313 (0x2849) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 2 16:03:41 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7155d-3545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b4:57:93:49:2e:d2:f9:a7:52:d5:94:b4:e3: d3:82:e6:09:32:9d:9b:f6:30:e6:2c:a1:02:e0:a2: 98:ff:cd:a7:cd:33:9b:75:c6:6e:ea:97:f5:25:bb: 48:ff:b1:dd:c2:ca:e6:93:4f:2c:fd:2f:e3:f1:c8: 65:15:7e:4f:f7:1a:3a:27:6f:cb:83:c2:a1:70:f8: 15:33:ba:4e:aa:59:4e:3c:ce:eb:51:e0:76:62:74: 6e:28:f7:53:f4:21:9d:59:48:2e:82:48:6d:d8:c7: cc:91:72:94:3d:ed:3d:02:d8:26:e6:89:d4:1f:07: 1b:31:29:48:a3:49:e7:6c:f3:14:18:13:9c:62:1c: 7e:ee:96:71:2f:75:72:4b:02:ab:34:f0:f3:35:72: fb:7c:f8:1d:ce:cc:26:cd:ad:88:98:79:1b:88:10: 43:f1:90:88:15:0f:ea:69:ab:b1:df:86:da:ab:bb: 4c:44:b7:fd:de:3e:77:5f:3c:db:64:7f:5c:93:ef: c3:3c:77:d4:99:20:32:f8:cb:e4:5e:4b:0b:9b:02: cc:07:f9:4e:11:d7:31:17:64:ce:7e:cf:05:b1:6b: 75:bf:5d:80:a2:88:f4:ed:f1:2a:33:c2:db:01:a4: dd:e7:b4:7e:09:ca:e2:1a:e1:03:07:fd:9e:66:2f: 4a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:41:D8:EC:83:46:C2:26:3F:02:68:F6:19:62:60:E0:6E:0A:47:21 X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/68356576B0F311E5AB30F151C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.5.13.0/24 125.5.176.0/24 Signature Algorithm: sha256WithRSAEncryption 96:bc:10:e0:66:2e:8a:cd:f0:44:3b:65:8e:1c:bd:b5:f9:c1: 5a:58:0a:63:4b:9a:12:69:62:37:05:26:66:f8:77:eb:13:12: a3:69:8c:93:de:b5:8b:91:6a:ab:cf:18:79:86:c3:eb:55:47: 66:e3:a4:69:a8:74:28:3f:88:57:fd:b5:8d:b9:8a:40:72:20: d5:75:16:d7:4b:7d:86:1f:c9:72:0f:32:d6:0b:70:a2:08:4f: 35:85:49:da:9c:9e:3f:b3:5d:f6:85:da:cf:f5:aa:f1:b0:37: 00:21:b4:7a:c5:11:ee:88:2f:d9:f3:5a:90:7b:40:b3:f6:fc: 80:6d:ee:bb:41:0f:f8:26:bf:75:81:df:d6:ba:b1:11:63:3e: 33:6e:5e:d6:0d:ae:85:ba:26:cd:a8:4a:c7:c0:ec:98:5b:75: a9:db:9c:4a:01:2b:17:d8:e4:3c:a0:42:ac:a7:b8:d8:d5:5e: 85:5f:cd:9e:c5:99:c7:19:22:bb:22:3c:c7:5c:d0:3a:8b:f2: 6d:3c:71:3e:ea:ba:ad:34:43:ef:38:00:42:c0:4a:ec:a7:6c: 3a:c7:88:2a:0d:7c:21:d5:b2:77:d7:42:32:d9:94:0d:8f:ef: 94:73:65:ed:4a:d1:f7:5f:79:ec:1e:8b:52:4b:5e:5b:b8:e4: 62:2c:50:62 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICKEkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjUwOTAyMTYwMzQxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTU1ZC0zNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0rRXk0ku0vmnUtWUtOPTguYJMp2b9jDmLKEC4KKY/82nzTObdcZu6pf1JbtI /7Hdwsrmk08s/S/j8chlFX5P9xo6J2/Lg8KhcPgVM7pOqllOPM7rUeB2YnRuKPdT 9CGdWUgugkht2MfMkXKUPe09Atgm5onUHwcbMSlIo0nnbPMUGBOcYhx+7pZxL3Vy SwKrNPDzNXL7fPgdzswmza2ImHkbiBBD8ZCIFQ/qaaux34baq7tMRLf93j53Xzzb ZH9ck+/DPHfUmSAy+MvkXksLmwLMB/lOEdcxF2TOfs8FsWt1v12Aooj07fEqM8Lb AaTd57R+CcriGuEDB/2eZi9KRwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPhB2OyD RsImPwJo9hliYOBuCkchMB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvNjgzNTY1NzZC MEYzMTFFNUFCMzBGMTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB9BQ0DBAB9BbAwDQYJKoZIhvcNAQELBQADggEBAJa8EOBm LorN8EQ7ZY4cvbX5wVpYCmNLmhJpYjcFJmb4d+sTEqNpjJPetYuRaqvPGHmGw+tV R2bjpGmodCg/iFf9tY25ikByINV1FtdLfYYfyXIPMtYLcKIITzWFSdqcnj+zXfaF 2s/1qvGwNwAhtHrFEe6IL9nzWpB7QLP2/IBt7rtBD/gmv3WB39a6sRFjPjNuXtYN roW6Js2oSsfA7JhbdanbnEoBKxfY5DygQqynuNjVXoVfzZ7FmccZIrsiPMdc0DqL 8m08cT7quq00Q+84AELASuynbDrHiCoNfCHVsnfXQjLZlA2P75RzZe1K0fdfeewe i1JLXlu45GIsUGI= -----END CERTIFICATE-----Generated at Sat Sep 6 13:50:39 2025 by rpki-client