$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/67B0ACBC8E5011EE95DFC141C4F9AE02.roa File: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (raw, json) Hash identifier: v8nxYYW0hF0+DI8v9AY4Ub2lKaqI81YP/TyFzHf/96E= Subject key identifier: DD:E4:B2:4B:FA:F8:1A:64:10:D3:2F:E2:2C:00:44:CF:8C:9B:97:12 Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 0161 Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/67B0ACBC8E5011EE95DFC141C4F9AE02.roa Signing time: Tue 02 Sep 2025 16:02:43 +0000 ROA not before: Tue 02 Sep 2025 16:02:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17705 IP address blocks: 192.138.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:32:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72, serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Sep 2 16:02:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b71523-a75e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9a:79:43:f2:92:60:a3:90:73:65:25:82:3d: 5e:f2:1b:1a:44:46:38:84:b2:fd:e0:27:b6:97:29: c1:3f:3e:67:78:5e:d2:eb:b9:5c:ba:86:b4:46:31: d4:55:85:b3:09:d3:74:78:f4:9e:96:70:fe:3e:fb: 01:fa:46:40:c6:db:2c:95:d2:33:69:04:da:89:5c: 89:0a:f9:d7:5d:b3:8d:1a:e3:14:aa:7e:74:8a:50: 6c:11:b5:4d:38:b2:b7:88:60:41:70:d0:fa:29:56: d5:6a:d7:e0:74:fe:bb:8f:de:43:66:8f:13:1f:c8: 70:14:25:b4:f7:40:47:5a:c5:b6:c4:ab:5b:4a:0f: 0f:6e:e2:32:76:df:6a:84:3d:8b:56:8a:a5:d2:41: ac:3e:40:19:8a:48:2a:59:4b:4d:12:b2:98:2c:fa: c8:09:8c:de:71:90:fa:12:c0:00:05:9c:4e:c5:a5: 10:de:c2:a9:a1:89:48:6a:01:ed:fa:15:eb:a7:2a: 2b:23:de:a9:ca:a2:21:5f:3d:30:49:a9:a6:59:34: 08:bc:17:2f:19:2f:a3:1d:5a:97:6d:44:6c:0f:41: a7:da:2f:48:ef:15:62:30:5a:d1:eb:ab:6d:f3:06: d8:a3:49:00:0e:b0:f7:98:84:fd:38:02:3d:bf:c2: f5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E4:B2:4B:FA:F8:1A:64:10:D3:2F:E2:2C:00:44:CF:8C:9B:97:12 X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/67B0ACBC8E5011EE95DFC141C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.138.251.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:1e:31:ef:dc:9d:3a:46:32:b6:97:c1:44:5f:d4:a4:9b:74: 2f:18:1e:e4:70:22:b1:c2:87:fb:63:9a:d1:a2:f7:73:dc:cc: 79:c3:b6:67:d0:68:46:2b:eb:ef:fe:c6:bf:5e:e9:a2:d6:ac: 23:5a:50:9a:81:54:2c:e0:cb:be:27:00:e5:31:f3:f5:b2:12: 0e:ad:03:a3:8b:9f:0f:99:df:5b:01:d6:ff:61:b1:1b:0f:c6: 71:ba:a7:f6:94:46:7a:5d:2b:ea:de:e7:77:23:82:98:47:f2: fd:a5:c3:67:54:f1:32:c7:e2:3d:e8:d7:69:d0:d5:f0:fc:31: 70:76:33:45:84:1a:6f:83:77:f9:6f:09:8c:6d:27:c5:f3:d6: 7d:47:f2:df:12:47:d3:3e:ec:35:94:1b:77:bf:02:40:dd:12: bd:cd:75:37:30:dd:e9:50:65:0c:d6:77:71:0c:8d:0a:86:7e: 19:e5:1e:7f:6f:7f:fc:31:e0:8d:ba:dc:0a:b1:ab:2e:6f:c1: cc:ab:62:87:2b:cb:e5:ce:67:b0:86:af:9f:c0:d3:8c:91:15: b4:b2:ff:b9:1a:2d:6b:98:77:6e:3b:80:40:ab:7e:4c:c5:ab: 53:fb:7a:d0:95:f1:0c:4c:e5:82:e6:65:26:d5:34:ee:45:10: be:b1:d5:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBNzIxMTAvBgNVBAUTKEZCNUI5Njk1M0NDREIxMUU5MjY4M0IzRUI1QjdBNDU3 NDk0QjI1RjAwHhcNMjUwOTAyMTYwMjQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTUyMy1hNzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA55p5Q/KSYKOQc2Ulgj1e8hsaREY4hLL94Ce2lynBPz5neF7S67lcuoa0RjHU VYWzCdN0ePSelnD+PvsB+kZAxtssldIzaQTaiVyJCvnXXbONGuMUqn50ilBsEbVN OLK3iGBBcND6KVbVatfgdP67j95DZo8TH8hwFCW090BHWsW2xKtbSg8PbuIydt9q hD2LVoql0kGsPkAZikgqWUtNErKYLPrICYzecZD6EsAABZxOxaUQ3sKpoYlIagHt +hXrpyorI96pyqIhXz0wSammWTQIvBcvGS+jHVqXbURsD0Gn2i9I7xViMFrR66tt 8wbYo0kADrD3mIT9OAI9v8L1nQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN3kskv6 +BpkENMv4iwARM+Mm5cSMB8GA1UdIwQYMBaAFPtblpU8zbEekmg7PrW3pFdJSyXw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkE3Mi80RjU2QzAxQzc3 OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi8tMXVXbFR6TnNSNlNhRHMtdGJla1YwbExK ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBNzIvNEY1NkMwMUM3NzlEMTFFRUJCNDlFMjY5QzRGOUFFMDIvNjdCMEFDQkM4 RTUwMTFFRTk1REZDMTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAivswDQYJKoZIhvcNAQELBQADggEBAFoeMe/cnTpGMraX wURf1KSbdC8YHuRwIrHCh/tjmtGi93PczHnDtmfQaEYr6+/+xr9e6aLWrCNaUJqB VCzgy74nAOUx8/WyEg6tA6OLnw+Z31sB1v9hsRsPxnG6p/aURnpdK+re53cjgphH 8v2lw2dU8TLH4j3o12nQ1fD8MXB2M0WEGm+Dd/lvCYxtJ8Xz1n1H8t8SR9M+7DWU G3e/AkDdEr3NdTcw3elQZQzWd3EMjQqGfhnlHn9vf/wx4I263Aqxqy5vwcyrYocr y+XOZ7CGr5/A04yRFbSy/7kaLWuYd247gECrfkzFq1P7etCV8QxM5YLmZSbVNO5F EL6x1Q4= -----END CERTIFICATE-----Generated at Sun Sep 7 19:23:01 2025 by rpki-client