$ rpki-client -vvf rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/EC5BF06C8A3411EFBF173E5BC4F9AE02.roa File: EC5BF06C8A3411EFBF173E5BC4F9AE02.roa (raw, json) Hash identifier: NmW3Y/m0Qnd+3MAPykcEDAwy2/PhvZXXV1bJp4RTfiw= Subject key identifier: 65:0D:6F:E8:63:D5:E7:12:C0:4C:7C:A1:3D:14:14:63:3E:69:B2:7D Certificate issuer: /CN=A9145446/serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Certificate serial: 2852 Authority key identifier: 7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/EC5BF06C8A3411EFBF173E5BC4F9AE02.roa Signing time: Tue 02 Sep 2025 16:03:48 +0000 ROA not before: Tue 02 Sep 2025 16:03:48 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 38491 IP address blocks: 121.127.4.0/24 maxlen: 24 121.127.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10322 (0x2852) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145446, serialNumber=7D65EBE14C3046E73E3986957302A26E081F1AF8 Validity Not Before: Sep 2 16:03:48 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b71564-5ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:78:e4:c7:6d:e5:ce:d3:a5:8b:75:db:21:20: 49:16:c9:b9:4c:60:aa:0b:6d:0b:6b:90:69:cb:9f: 56:f7:78:c8:99:f9:9f:2e:01:9d:33:79:82:a3:9a: 4e:0d:96:d1:db:56:db:f0:e0:6b:98:43:2e:66:10: 6e:4e:0d:87:16:86:f4:58:52:19:c0:5a:31:f3:eb: af:e6:e8:98:18:3f:7a:73:93:68:13:e8:3e:7f:e4: ce:43:94:e2:90:7a:a8:7e:1f:35:b1:58:fc:d4:f4: 4a:a4:00:aa:8d:90:a4:00:0a:5e:89:3c:82:12:ed: 5d:fc:89:e2:5d:b9:bd:0f:75:5b:cb:a2:ed:89:01: f1:17:9d:5c:a6:ba:a5:b1:82:af:10:e2:4a:f8:bf: b8:de:b7:ee:0c:79:e9:37:4a:31:7a:23:87:6e:62: 50:13:e8:c8:1b:7e:01:3f:a6:b8:d7:d9:bb:fa:ae: 3c:5d:ff:1e:4c:46:18:9b:fe:f3:14:6b:b0:a1:be: 83:5f:e7:38:a2:ca:ef:b4:34:00:97:99:cc:39:bf: d5:49:ab:40:66:53:89:85:6d:e8:a8:6e:1e:51:6b: a9:95:14:fa:13:71:c1:2e:a3:fa:b0:3d:ec:95:f3: 5e:62:49:ac:89:7f:56:09:66:76:05:0a:b0:2f:a3: f4:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:0D:6F:E8:63:D5:E7:12:C0:4C:7C:A1:3D:14:14:63:3E:69:B2:7D X509v3 Authority Key Identifier: keyid:7D:65:EB:E1:4C:30:46:E7:3E:39:86:95:73:02:A2:6E:08:1F:1A:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/fWXr4UwwRuc-OYaVcwKibggfGvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fWXr4UwwRuc-OYaVcwKibggfGvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145446/ACA2E75C1FC511E5B450DD62C4F9AE02/EC5BF06C8A3411EFBF173E5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.127.4.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:da:0c:be:69:79:79:d6:fe:d5:ec:65:eb:d0:94:8c:b0:71: f9:36:78:03:6c:01:f7:a0:d0:84:1a:7a:8d:7c:ac:fc:c6:f2: a0:45:04:84:fa:6a:50:00:bd:1e:db:95:bd:bd:07:27:b2:7b: 22:8b:ba:47:22:1d:fb:7e:68:c5:3a:5e:8a:df:a6:bd:19:40: 6d:48:fc:39:ee:d0:a2:48:37:ed:e4:9b:08:61:e2:12:fd:64: 2c:be:a1:d1:82:c7:e2:d3:a7:1e:c2:61:13:5c:75:de:9e:61: 79:b1:bf:bf:ae:d1:8e:f7:28:df:13:17:80:78:9e:c7:1f:aa: 78:48:b9:c4:d8:7f:4d:ae:af:db:0b:05:7b:50:10:1d:a6:26: 21:b1:66:5d:43:5d:34:ce:af:00:d0:32:a8:2e:ee:98:ac:9b: 8e:82:ec:d9:39:ce:bb:31:f4:65:f7:f9:f9:9c:40:b6:e6:3d: c9:88:f5:93:f9:33:3f:d8:a7:73:70:a0:30:37:ef:18:5b:50: 55:de:53:7b:9e:63:46:b3:8c:81:41:5a:e5:f5:ff:25:62:a3: a2:3a:ea:f2:a8:43:43:89:12:d8:f6:07:8e:7b:f8:e4:55:6a: a4:24:de:0a:a0:ae:01:9b:12:57:8b:52:19:38:ea:f9:90:6b: 34:be:83:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKFIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDU0NDYxMTAvBgNVBAUTKDdENjVFQkUxNEMzMDQ2RTczRTM5ODY5NTczMDJBMjZF MDgxRjFBRjgwHhcNMjUwOTAyMTYwMzQ4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTU2NC01ZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Xjkx23lztOli3XbISBJFsm5TGCqC20La5Bpy59W93jImfmfLgGdM3mCo5pO DZbR21bb8OBrmEMuZhBuTg2HFob0WFIZwFox8+uv5uiYGD96c5NoE+g+f+TOQ5Ti kHqofh81sVj81PRKpACqjZCkAApeiTyCEu1d/IniXbm9D3Vby6LtiQHxF51cprql sYKvEOJK+L+43rfuDHnpN0oxeiOHbmJQE+jIG34BP6a419m7+q48Xf8eTEYYm/7z FGuwob6DX+c4osrvtDQAl5nMOb/VSatAZlOJhW3oqG4eUWuplRT6E3HBLqP6sD3s lfNeYkmsiX9WCWZ2BQqwL6P0AwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGUNb+hj 1ecSwEx8oT0UFGM+abJ9MB8GA1UdIwQYMBaAFH1l6+FMMEbnPjmGlXMCom4IHxr4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NTQ0Ni9BQ0EyRTc1QzFG QzUxMUU1QjQ1MERENjJDNEY5QUUwMi9mV1hyNFV3d1J1Yy1PWWFWY3dLaWJnZ2ZH dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZXWHI0VXd3UnVjLU9ZYVZjd0tpYmdnZkd2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDU0NDYvQUNBMkU3NUMxRkM1MTFFNUI0NTBERDYyQzRGOUFFMDIvRUM1QkYwNkM4 QTM0MTFFRkJGMTczRTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF5fwQwDQYJKoZIhvcNAQELBQADggEBAC7aDL5peXnW/tXs ZevQlIywcfk2eANsAfeg0IQaeo18rPzG8qBFBIT6alAAvR7blb29ByeyeyKLukci Hft+aMU6Xorfpr0ZQG1I/Dnu0KJIN+3kmwhh4hL9ZCy+odGCx+LTpx7CYRNcdd6e YXmxv7+u0Y73KN8TF4B4nscfqnhIucTYf02ur9sLBXtQEB2mJiGxZl1DXTTOrwDQ Mqgu7pism46C7Nk5zrsx9GX3+fmcQLbmPcmI9ZP5Mz/Yp3NwoDA37xhbUFXeU3ue Y0azjIFBWuX1/yVio6I66vKoQ0OJEtj2B457+ORVaqQk3gqgrgGbEleLUhk46vmQ azS+g3I= -----END CERTIFICATE-----Generated at Sat Sep 6 23:48:49 2025 by rpki-client