$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/C3EFE564C2A311EABB1BA61FC4F9AE02.roa File: C3EFE564C2A311EABB1BA61FC4F9AE02.roa (raw, json) Hash identifier: RV8EJBlleyhzVkG95IjKL2zXI9QzuqZSxvDEwW6Abdc= Subject key identifier: 59:BF:6C:EB:70:50:5E:94:E8:23:67:FF:59:0E:AF:26:01:33:54:59 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1F61 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/C3EFE564C2A311EABB1BA61FC4F9AE02.roa Signing time: Sat 30 Aug 2025 16:35:20 +0000 ROA not before: Sat 30 Aug 2025 16:35:20 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134768 IP address blocks: 125.76.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 16:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8033 (0x1f61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4, serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Aug 30 16:35:20 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b32848-682e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:8e:2f:f7:1d:3c:72:f4:f6:04:93:35:52:36: 39:c5:2a:4e:70:68:91:71:84:1b:be:42:9e:8d:d0: 95:27:91:b0:9b:bc:f0:a2:04:09:34:34:3c:d8:c5: 5c:dc:9c:53:cf:20:72:13:78:98:cd:9b:fa:00:2b: b5:e3:d2:3c:22:6e:46:ee:25:11:5d:5c:b8:c9:cb: 0a:84:71:4d:41:0a:76:50:69:12:ed:d4:34:43:20: ad:b1:25:88:57:21:b6:20:e6:1c:5b:07:8f:65:0a: b8:42:dc:a6:c9:8f:db:17:f1:ae:30:69:73:cb:e1: 8f:ad:a3:c7:c2:95:78:98:66:fd:9e:b1:df:9a:c9: 3e:cd:45:b1:c2:14:da:23:a6:94:d8:3f:d7:69:ca: 2b:8b:17:45:c6:e6:9a:ee:36:e5:6f:bf:65:50:89: d5:20:ef:b3:cb:5b:ac:e1:36:6c:0c:1f:e7:6d:12: 82:ec:4c:14:9c:fc:f7:79:44:e9:33:75:12:9d:75: f8:9f:48:77:9e:0c:b4:7a:6f:f8:f4:d1:a8:b3:1e: 1e:3b:d9:06:e0:a4:de:65:29:61:83:73:29:9d:48: 9a:c6:32:1c:0c:9c:4e:91:05:70:e4:58:bd:3b:ef: a3:71:a3:88:bc:0e:8d:47:c1:05:7a:27:7b:19:7f: 1b:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:BF:6C:EB:70:50:5E:94:E8:23:67:FF:59:0E:AF:26:01:33:54:59 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/C3EFE564C2A311EABB1BA61FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.76.156.0/22 Signature Algorithm: sha256WithRSAEncryption 63:52:8b:88:7e:75:0a:92:84:93:b3:48:50:a0:28:ed:11:f8: f9:f5:8c:b4:e5:11:6f:c7:12:74:d0:dc:53:8d:14:42:3c:64: 28:69:a6:f1:7d:50:98:56:d3:c4:ac:ec:13:a4:68:cd:16:24: 62:3e:da:a8:97:89:2f:f6:97:c0:35:3b:36:97:05:41:c6:39: 92:9f:94:5d:a9:6f:aa:3c:10:6e:3f:9c:ac:a2:b7:0d:08:0d: 4c:b7:d0:1f:2a:ea:eb:54:c2:d7:01:e4:bf:00:f7:af:ce:8b: 31:de:8f:14:68:cd:8a:ff:52:1b:17:60:83:5f:be:7b:56:79: 52:92:c7:4d:ac:99:80:80:fd:33:5b:e9:74:4b:12:80:1a:c0: f4:5c:d1:6c:2d:af:83:7b:1b:5e:e5:b5:8c:08:2d:a6:01:7a: 85:28:b3:d2:19:b9:1a:46:46:e6:f8:6b:0b:de:93:eb:ce:6f: e7:9b:ad:9a:4f:1c:74:7c:a3:9f:1a:bb:09:8d:7f:69:4b:55: 90:30:fe:34:6e:0f:bb:c0:63:22:e8:ee:99:79:f6:67:9a:9c: 7d:e7:14:d5:8b:03:61:e9:a2:b2:16:3e:8f:f6:1f:c6:48:d9: ef:57:2e:d8:ac:4c:fd:3e:6c:08:d8:88:12:d5:33:b0:64:fa: b8:50:a8:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICH2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjUwODMwMTYzNTIwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMjg0OC02ODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv44v9x08cvT2BJM1UjY5xSpOcGiRcYQbvkKejdCVJ5Gwm7zwogQJNDQ82MVc 3JxTzyByE3iYzZv6ACu149I8Im5G7iURXVy4ycsKhHFNQQp2UGkS7dQ0QyCtsSWI VyG2IOYcWwePZQq4QtymyY/bF/GuMGlzy+GPraPHwpV4mGb9nrHfmsk+zUWxwhTa I6aU2D/XacorixdFxuaa7jblb79lUInVIO+zy1us4TZsDB/nbRKC7EwUnPz3eUTp M3USnXX4n0h3ngy0em/49NGosx4eO9kG4KTeZSlhg3MpnUiaxjIcDJxOkQVw5Fi9 O++jcaOIvA6NR8EFeid7GX8bqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFm/bOtw UF6U6CNn/1kOryYBM1RZMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQzNFRkU1NjRD MkEzMTFFQUJCMUJBNjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ9TJwwDQYJKoZIhvcNAQELBQADggEBAGNSi4h+dQqShJOz SFCgKO0R+Pn1jLTlEW/HEnTQ3FONFEI8ZChppvF9UJhW08Ss7BOkaM0WJGI+2qiX iS/2l8A1OzaXBUHGOZKflF2pb6o8EG4/nKyitw0IDUy30B8q6utUwtcB5L8A96/O izHejxRozYr/UhsXYINfvntWeVKSx02smYCA/TNb6XRLEoAawPRc0Wwtr4N7G17l tYwILaYBeoUos9IZuRpGRub4awvek+vOb+ebrZpPHHR8o58auwmNf2lLVZAw/jRu D7vAYyLo7pl59meanH3nFNWLA2HporIWPo/2H8ZI2e9XLtisTP0+bAjYiBLVM7Bk +rhQqEQ= -----END CERTIFICATE-----Generated at Sat Sep 6 20:18:11 2025 by rpki-client