$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/1B1DEA4A04D511E98BFF354BC4F9AE02.roa File: 1B1DEA4A04D511E98BFF354BC4F9AE02.roa (raw, json) Hash identifier: mtne+bMEBaQqJowTZo2wwhS1IpnM92WcDfLdziefH6w= Subject key identifier: 8B:64:69:D1:76:04:AA:E9:11:32:A2:32:7B:7C:CB:37:3A:35:F4:6A Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F86 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/1B1DEA4A04D511E98BFF354BC4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:53 +0000 ROA not before: Sat 30 Aug 2025 16:35:53 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7908 IP address blocks: 125.125.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8070 (0x1f86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:53 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32869-e78d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ed:24:c6:8d:d5:6a:ff:0c:76:cb:23:ac:4b: 0a:21:f5:1d:db:27:d3:55:32:f3:db:b5:c3:88:7b: 18:6a:b6:40:66:65:d3:93:88:d7:fc:4b:73:72:ae: 27:8b:17:f9:3e:97:8f:5a:34:db:9e:17:7c:33:0a: 86:b2:40:ac:99:ea:37:e1:43:f4:0a:8c:ca:16:73: 14:07:8f:6b:42:4b:f3:92:11:e7:7d:c0:9c:97:8a: e0:83:6f:a7:6e:98:c4:4b:dc:e9:f2:09:5e:fc:e6: a4:b9:c4:d7:a9:1a:91:03:af:ba:43:45:58:63:1d: da:89:25:f2:b2:c8:a3:96:4f:bc:31:22:7d:d6:1f: 89:d7:a4:d6:c2:3d:5d:94:d3:b9:3d:e6:de:ba:64: 75:57:ba:a5:58:a5:da:c4:57:b2:d7:88:02:35:53: 0e:ac:0a:86:4c:18:f0:07:36:12:2d:ff:a7:a2:9a: ab:e0:d6:6f:7d:dc:23:2a:07:c4:1a:00:8f:3d:96: d7:ee:d1:f2:2d:e3:7f:07:1a:e5:6d:d6:5d:8c:2f: 3c:ba:ed:81:ad:b3:54:77:53:76:7a:2a:bb:21:dc: 91:ae:28:9f:ed:a0:c9:50:f4:ea:be:5a:a5:a0:7d: f8:7b:9e:c5:21:cb:53:31:76:94:bb:8a:8e:cf:49: 7b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:64:69:D1:76:04:AA:E9:11:32:A2:32:7B:7C:CB:37:3A:35:F4:6A X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/1B1DEA4A04D511E98BFF354BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.125.125.0/24 Signature Algorithm: sha256WithRSAEncryption 99:f1:7f:7b:ce:43:3b:1f:df:d5:37:f0:c1:ff:b1:e2:24:a5: 33:bf:ff:5e:d0:89:e0:39:95:36:2f:cd:8b:c8:dc:f8:81:28: d6:08:4e:1a:5c:02:3f:e8:60:3b:06:26:43:55:88:64:ff:8a: ce:85:f0:66:09:d8:74:76:5d:e0:5f:bf:0b:b4:72:0f:9b:09: 8c:45:e6:57:bb:53:f7:ae:a4:4f:dc:18:ad:65:4b:95:1f:d9: b8:35:37:b0:ac:f2:93:8e:76:0c:ed:e8:11:78:6e:9c:42:1d: fd:ed:cd:02:24:f2:3e:9d:21:dd:e6:8d:20:f6:ce:9c:fa:f3: f5:cb:8f:2a:5f:2e:39:1f:34:b2:bf:d5:f6:e5:c5:b9:f1:fa: 2b:f4:07:5e:df:e8:17:39:8e:06:e4:2b:98:d9:bd:7c:db:7e: e7:82:9d:ee:86:29:4b:44:76:41:ff:97:a9:3e:11:a1:64:18: af:21:39:77:61:8d:9f:d7:3e:a0:08:5b:8e:85:b4:a8:a7:14: f9:e3:b9:4e:6e:a7:6a:21:59:0b:a6:f3:3f:e1:87:15:c6:1b: 94:20:2a:ac:ea:37:4b:c5:a5:5b:d2:33:60:5a:41:a6:68:df: 20:41:cb:5b:0b:3b:fa:de:00:16:d4:10:1e:05:4c:de:db:b3: 00:c0:e6:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTUzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg2OS1lNzhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+0kxo3Vav8MdssjrEsKIfUd2yfTVTLz27XDiHsYarZAZmXTk4jX/Etzcq4n ixf5PpePWjTbnhd8MwqGskCsmeo34UP0CozKFnMUB49rQkvzkhHnfcCcl4rgg2+n bpjES9zp8gle/OakucTXqRqRA6+6Q0VYYx3aiSXyssijlk+8MSJ91h+J16TWwj1d lNO5PebeumR1V7qlWKXaxFey14gCNVMOrAqGTBjwBzYSLf+nopqr4NZvfdwjKgfE GgCPPZbX7tHyLeN/BxrlbdZdjC88uu2BrbNUd1N2eiq7IdyRriif7aDJUPTqvlql oH34e57FIctTMXaUu4qOz0l7PwIDAQABo4IClTCCApEwHQYDVR0OBBYEFItkadF2 BKrpETKiMnt8yzc6NfRqMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvMUIxREVBNEEw NEQ1MTFFOThCRkYzNTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB9fX0wDQYJKoZIhvcNAQELBQADggEBAJnxf3vOQzsf39U3 8MH/seIkpTO//17QieA5lTYvzYvI3PiBKNYIThpcAj/oYDsGJkNViGT/is6F8GYJ 2HR2XeBfvwu0cg+bCYxF5le7U/eupE/cGK1lS5Uf2bg1N7Cs8pOOdgzt6BF4bpxC Hf3tzQIk8j6dId3mjSD2zpz68/XLjypfLjkfNLK/1fblxbnx+iv0B17f6Bc5jgbk K5jZvXzbfueCne6GKUtEdkH/l6k+EaFkGK8hOXdhjZ/XPqAIW46FtKinFPnjuU5u p2ohWQum8z/hhxXGG5QgKqzqN0vFpVvSM2BaQaZo3yBBy1sLO/reABbUEB4FTN7b swDA5ow= -----END CERTIFICATE-----Generated at Sat Sep 6 20:24:47 2025 by rpki-client