$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa File: B9FBA9CE04D311E9A6452047C4F9AE02.roa (raw, json) Hash identifier: dSsX5nHKXYb9bOl0U0xbwpvb4MLDdOQ/bdm2Sv2pyUc= Subject key identifier: 74:77:31:52:6E:D7:85:88:6E:AC:B6:45:5A:16:E1:B4:77:B8:28:0E Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F7D Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:46 +0000 ROA not before: Sat 30 Aug 2025 16:35:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58461 IP address blocks: 125.124.0.0/16 maxlen: 16 218.0.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8061 (0x1f7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32861-7733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:40:7e:ae:d3:6d:6b:56:28:65:a9:b8:c3:5e: 3a:fc:f8:e6:e1:76:d2:93:ba:ea:a4:46:4f:bc:59: 68:e1:6c:07:18:78:8f:12:f2:50:8d:a2:ff:22:6d: 1e:a8:0f:de:af:00:a0:43:6e:29:ce:04:9e:f2:f5: cc:31:5c:da:d6:06:d7:a0:09:00:c6:5d:7f:f2:41: 35:da:d4:27:45:c1:38:f5:00:b2:f4:de:3c:34:b9: f1:34:67:6c:21:f5:21:c8:42:86:ff:02:f1:e6:77: 06:63:6b:09:8a:fa:c6:73:f8:ed:29:96:bf:46:47: e6:b3:22:86:fd:61:ce:f3:20:c6:f4:aa:a2:ad:84: a0:c3:04:0d:eb:b0:f6:44:44:1d:8f:e8:44:3d:00: 04:04:0f:03:c1:b4:28:7d:b3:a0:10:32:df:29:c3: c6:10:d9:47:96:4c:61:66:78:20:cb:e1:aa:9a:01: d4:73:c9:c0:75:b0:d8:e3:35:47:dd:dc:9a:58:b6: 1b:65:da:c1:ae:8d:22:af:99:f6:d4:86:fc:1e:8d: 42:6c:f0:69:d6:1c:00:9b:22:5d:7f:87:ee:43:02: be:94:40:9f:b6:6c:aa:24:1d:37:ac:79:46:38:26: 3f:21:1c:53:7f:6a:ca:b1:4a:29:ea:73:c7:9f:00: 51:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:77:31:52:6E:D7:85:88:6E:AC:B6:45:5A:16:E1:B4:77:B8:28:0E X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B9FBA9CE04D311E9A6452047C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.124.0.0/16 218.0.48.0/20 Signature Algorithm: sha256WithRSAEncryption 36:44:f2:bb:6c:1a:3b:ee:37:82:1f:29:a4:d4:42:e3:51:f0: cb:5e:ea:81:fb:16:e5:d1:78:e5:73:55:44:38:be:55:d6:70: 1b:0a:c8:1c:9d:cb:ec:cd:05:a0:13:99:95:b8:4a:d8:70:c4: 45:ee:fe:61:5e:22:08:7c:4f:1d:d7:af:d4:f5:24:f5:c3:f7: de:12:8f:1c:97:6f:f0:e1:9b:a3:cb:4c:28:ea:39:58:f7:78: 65:df:11:99:0e:97:d1:10:d9:26:1e:9c:11:b3:68:cc:e4:33: fb:14:13:f2:1b:ac:5a:46:d7:55:2c:84:d6:4f:c0:8f:b4:3b: cf:28:36:dd:7d:ab:af:7f:e3:32:88:8a:a2:11:67:85:f2:0b: 48:2d:8f:00:50:a6:be:07:ef:1c:b3:80:5d:70:ad:28:0e:08: 4b:cb:d3:dc:fe:02:eb:d0:3a:a6:26:67:0d:70:89:5b:54:ca: 55:1c:3a:11:3c:f6:6f:9c:9f:c9:3d:bf:53:3a:40:fd:8b:2f: 07:15:db:92:28:82:51:29:d8:08:d7:00:82:24:98:1c:42:51: 0c:63:39:4f:2b:95:21:7c:5e:eb:bc:32:85:79:e0:ee:2c:67: 05:f3:01:0f:b1:f6:18:f6:3d:e0:9e:38:cc:a1:55:1b:0c:95: 16:58:f5:89 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICH30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTQ2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg2MS03NzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0B+rtNta1YoZam4w146/Pjm4XbSk7rqpEZPvFlo4WwHGHiPEvJQjaL/Im0e qA/erwCgQ24pzgSe8vXMMVza1gbXoAkAxl1/8kE12tQnRcE49QCy9N48NLnxNGds IfUhyEKG/wLx5ncGY2sJivrGc/jtKZa/RkfmsyKG/WHO8yDG9KqirYSgwwQN67D2 REQdj+hEPQAEBA8DwbQofbOgEDLfKcPGENlHlkxhZnggy+GqmgHUc8nAdbDY4zVH 3dyaWLYbZdrBro0ir5n21Ib8Ho1CbPBp1hwAmyJdf4fuQwK+lECftmyqJB03rHlG OCY/IRxTf2rKsUop6nPHnwBRuQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFHR3MVJu 14WIbqy2RVoW4bR3uCgOMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjlGQkE5Q0Uw NEQzMTFFOUE2NDUyMDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwB9fAMEBNoAMDANBgkqhkiG9w0BAQsFAAOCAQEANkTyu2wa O+43gh8ppNRC41Hwy17qgfsW5dF45XNVRDi+VdZwGwrIHJ3L7M0FoBOZlbhK2HDE Re7+YV4iCHxPHdev1PUk9cP33hKPHJdv8OGbo8tMKOo5WPd4Zd8RmQ6X0RDZJh6c EbNozOQz+xQT8husWkbXVSyE1k/Aj7Q7zyg23X2rr3/jMoiKohFnhfILSC2PAFCm vgfvHLOAXXCtKA4IS8vT3P4C69A6piZnDXCJW1TKVRw6ETz2b5yfyT2/UzpA/Ysv BxXbkiiCUSnYCNcAgiSYHEJRDGM5TyuVIXxe67wyhXng7ixnBfMBD7H2GPY94J44 zKFVGwyVFlj1iQ== -----END CERTIFICATE-----Generated at Sat Sep 6 20:16:03 2025 by rpki-client