$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CE4049E0CF9811E9A72F1F65C4F9AE02.roa File: CE4049E0CF9811E9A72F1F65C4F9AE02.roa (raw, json) Hash identifier: D3ZGO/WUxLPwaJZfxjpDYyNLveQ3u6uEceV8mvZASMk= Subject key identifier: A7:24:1E:C7:FF:42:7B:46:7C:0E:19:D3:8D:EB:26:F7:D4:BE:3F:19 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2561 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CE4049E0CF9811E9A72F1F65C4F9AE02.roa Signing time: Mon 04 Aug 2025 16:24:10 +0000 ROA not before: Mon 04 Aug 2025 16:24:10 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139626 IP address blocks: 222.127.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 16:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9569 (0x2561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207, serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Aug 4 16:24:10 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6890deaa-ac97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:46:f8:1d:f3:2c:1f:2b:90:85:3e:63:c8:2e: 5a:8e:59:83:ea:a8:fb:2b:46:a4:65:60:13:b5:3f: 09:ac:6a:1d:46:20:7b:fa:38:a3:78:b0:96:de:e4: 4b:14:04:df:40:60:b6:e2:d7:22:ba:69:07:f8:f8: 5b:68:e2:e7:a9:4a:a3:38:83:d6:c1:fb:5b:b3:b7: e6:aa:4b:a7:57:43:f8:93:2a:13:c4:43:5c:8d:22: 94:c9:06:d1:2c:6e:28:d8:8b:6e:fa:8a:d6:6d:cc: 7e:e5:7b:dd:b3:7d:24:21:01:5b:58:92:57:8a:75: 4e:69:3b:e9:82:7f:e6:b0:82:be:5c:85:e9:61:fe: 43:16:ca:be:90:62:65:08:3a:1b:e6:12:ec:62:42: 3e:22:96:8f:e7:03:34:bc:a9:35:9a:f0:11:62:e2: 9e:35:ce:51:ea:b9:81:60:79:18:36:a9:34:bd:a7: 85:57:50:14:ab:ca:3e:fa:39:07:d9:e3:6a:71:e8: 18:03:ba:05:c2:e8:56:c7:36:42:db:cb:86:38:6d: 56:9c:03:02:d4:ed:24:51:74:4f:75:b4:4f:08:ed: 1e:80:2b:fd:d8:d2:81:d6:08:8d:8f:23:3e:8f:bc: 92:6c:34:9c:0c:ec:e2:71:ba:6a:35:53:96:4d:61: ac:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:24:1E:C7:FF:42:7B:46:7C:0E:19:D3:8D:EB:26:F7:D4:BE:3F:19 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CE4049E0CF9811E9A72F1F65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.127.101.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:d5:1c:a6:32:7e:68:07:18:f4:0c:82:f8:9e:cb:7a:b0:51: 63:45:34:3e:21:09:1b:4b:4f:0a:25:e4:88:50:10:85:32:0c: 50:fe:95:51:7f:f4:d2:41:3f:87:ac:99:ec:86:05:8b:8f:ca: f1:23:1d:3d:67:74:8c:d6:fb:0a:a1:b4:81:aa:3b:73:ce:8e: 93:84:06:11:4f:f4:19:a8:15:34:b0:c2:53:d7:64:db:cb:c3: 06:ae:b2:12:65:16:e2:4b:ea:dc:c1:54:cb:8f:d4:ae:48:c0: b9:0f:73:bc:9f:bb:ff:32:b3:8f:2c:a3:08:61:d8:7f:87:a6: c4:7a:92:f2:a8:51:60:61:e1:fd:61:13:e2:9a:e2:64:09:3c: 45:dc:9c:76:c3:6d:85:ed:df:f6:31:78:a1:83:41:dc:fa:4a: ca:d1:05:bb:2a:e7:8c:1e:1b:db:f6:87:89:16:b8:8f:5a:7b: d6:fc:63:4f:cb:29:a6:e4:10:06:e0:0b:11:27:7a:cb:76:6b: 84:8a:8b:da:f6:2b:9c:1f:ae:fe:c2:bd:cd:06:5b:1e:f8:9a: 29:28:5e:03:fd:0f:5c:82:4d:84:77:e4:7a:3b:a5:c9:d0:a3: a9:88:c7:69:1f:59:88:7c:0c:e4:d8:7e:87:b0:f3:77:c4:a9: f4:c8:1b:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjUwODA0MTYyNDEwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwZGVhYS1hYzk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq0b4HfMsHyuQhT5jyC5ajlmD6qj7K0akZWATtT8JrGodRiB7+jijeLCW3uRL FATfQGC24tciumkH+PhbaOLnqUqjOIPWwftbs7fmqkunV0P4kyoTxENcjSKUyQbR LG4o2Itu+orWbcx+5Xvds30kIQFbWJJXinVOaTvpgn/msIK+XIXpYf5DFsq+kGJl CDob5hLsYkI+IpaP5wM0vKk1mvARYuKeNc5R6rmBYHkYNqk0vaeFV1AUq8o++jkH 2eNqcegYA7oFwuhWxzZC28uGOG1WnAMC1O0kUXRPdbRPCO0egCv92NKB1giNjyM+ j7ySbDScDOzicbpqNVOWTWGszQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKckHsf/ QntGfA4Z043rJvfUvj8ZMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQ0U0MDQ5RTBD Rjk4MTFFOUE3MkYxRjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADef2UwDQYJKoZIhvcNAQELBQADggEBAA7VHKYyfmgHGPQM gviey3qwUWNFND4hCRtLTwol5IhQEIUyDFD+lVF/9NJBP4esmeyGBYuPyvEjHT1n dIzW+wqhtIGqO3POjpOEBhFP9BmoFTSwwlPXZNvLwwaushJlFuJL6tzBVMuP1K5I wLkPc7yfu/8ys48sowhh2H+HpsR6kvKoUWBh4f1hE+Ka4mQJPEXcnHbDbYXt3/Yx eKGDQdz6SsrRBbsq54weG9v2h4kWuI9ae9b8Y0/LKabkEAbgCxEnest2a4SKi9r2 K5wfrv7Cvc0GWx74mikoXgP9D1yCTYR35Ho7pcnQo6mIx2kfWYh8DOTYfoew83fE qfTIGxU= -----END CERTIFICATE-----Generated at Wed Oct 22 21:25:32 2025 by rpki-client