$ rpki-client -vvf rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/5A4723DA6F3C11EF8FD45F13C4F9AE02.roa File: 5A4723DA6F3C11EF8FD45F13C4F9AE02.roa (raw, json) Hash identifier: nJrP5XyTG2U3goSrQUjPEnvTLR/1/bqUd5TtsJOT5YA= Subject key identifier: 9C:C0:89:B1:BF:05:E2:20:6C:54:DA:50:23:E2:1A:AD:31:DF:2E:6E Certificate issuer: /CN=A9159ECD/serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Certificate serial: E8 Authority key identifier: D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/5A4723DA6F3C11EF8FD45F13C4F9AE02.roa Signing time: Fri 19 Sep 2025 00:05:44 +0000 ROA not before: Fri 19 Sep 2025 00:05:44 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141196 IP address blocks: 152.32.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 232 (0xe8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9159ECD, serialNumber=D95DA1171412300AB53B3E4870F2F441F06C8124 Validity Not Before: Sep 19 00:05:44 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68cc9e57-c205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:51:c8:1b:d3:a2:5b:31:03:23:60:06:70:dd: 37:d6:3e:4b:30:a3:08:25:c3:db:35:df:0e:a2:5a: 73:4b:ed:1d:4e:bc:a9:4a:e1:ba:12:5f:5c:9f:ff: 7f:83:1f:3b:0f:7b:cd:c9:42:f6:df:1b:62:d5:3a: 88:bc:be:a6:eb:96:8a:c2:8b:20:e2:79:19:07:0f: 5b:a3:1c:cd:1b:27:c6:a9:78:57:ac:74:5d:22:fc: df:fa:02:5e:37:4a:69:ae:ef:19:99:d3:31:c2:b1: 87:64:f1:bf:13:41:a7:bb:bf:98:65:98:b1:f7:a6: 6e:89:9f:5e:51:0f:6d:1c:88:c2:9c:1b:9a:68:4b: 97:16:07:79:69:79:31:85:e6:68:23:7c:4c:81:5d: 28:5e:94:78:36:e5:55:d0:f8:ea:a2:1c:dc:70:21: c3:b8:e7:96:e4:9f:68:fe:26:ea:aa:65:38:a3:b4: 0a:d8:7e:dc:aa:f3:4f:fc:bf:ef:b2:2a:53:43:a2: 81:33:cb:e5:3b:b8:14:d2:be:85:b2:c2:82:83:fc: bc:f4:c4:bb:2c:92:54:04:24:71:4d:d4:97:39:f8: ba:53:68:72:a5:a6:00:69:6b:58:55:29:be:a6:68: 1e:d2:22:06:52:4c:5b:ed:07:aa:59:b6:36:47:15: ee:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:C0:89:B1:BF:05:E2:20:6C:54:DA:50:23:E2:1A:AD:31:DF:2E:6E X509v3 Authority Key Identifier: keyid:D9:5D:A1:17:14:12:30:0A:B5:3B:3E:48:70:F2:F4:41:F0:6C:81:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2V2hFxQSMAq1Oz5IcPL0QfBsgSQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9159ECD/EF6383E23D9F11EF99033768C4F9AE02/5A4723DA6F3C11EF8FD45F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.32.124.0/22 Signature Algorithm: sha256WithRSAEncryption 35:bf:9a:8b:de:13:cf:56:90:75:a0:63:1f:60:28:2e:8f:78: 24:b5:87:53:5e:e5:dc:2d:41:0c:b5:53:49:93:6b:46:8b:2b: 38:07:20:88:11:37:bd:c7:02:e4:8c:89:e9:d7:9e:a6:4e:c8: 4f:86:51:44:3f:76:0d:0b:d7:4d:ea:20:2c:19:fe:64:8f:86: d7:75:d0:f2:81:a6:18:c8:6e:0e:f8:1e:56:f2:77:7b:81:81: 7a:8c:8a:a1:fd:42:dc:37:dc:96:ea:c8:0e:31:1d:8c:36:a4: 17:e6:6a:0f:e0:5a:52:ee:fb:e1:bb:11:42:79:89:33:ad:c4: 25:b0:a2:a5:eb:45:38:56:23:bc:44:bc:bc:92:87:59:48:e7: 63:e2:d6:48:5f:67:16:86:85:f5:13:c6:14:46:9e:f7:9e:7c: 00:de:03:22:56:b7:ec:f2:c0:1e:e5:dc:8a:60:b0:f6:09:84: 72:b5:9a:55:5e:be:28:b9:93:3a:95:0d:2d:69:0c:2a:ab:2c: 4d:16:36:cd:be:91:17:bc:b1:5c:32:7c:98:6c:cf:b8:16:a4: 47:a0:5b:a6:e1:b7:ad:3a:0a:68:b0:33:f1:58:f8:05:09:00: ce:d3:d3:30:2f:4b:f4:f1:ae:7e:44:4b:9f:82:f2:8c:ed:17: 9f:75:6b:50 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTlFQ0QxMTAvBgNVBAUTKEQ5NURBMTE3MTQxMjMwMEFCNTNCM0U0ODcwRjJGNDQx RjA2QzgxMjQwHhcNMjUwOTE5MDAwNTQ0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNjOWU1Ny1jMjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFHIG9OiWzEDI2AGcN031j5LMKMIJcPbNd8OolpzS+0dTrypSuG6El9cn/9/ gx87D3vNyUL23xti1TqIvL6m65aKwosg4nkZBw9boxzNGyfGqXhXrHRdIvzf+gJe N0ppru8ZmdMxwrGHZPG/E0Gnu7+YZZix96ZuiZ9eUQ9tHIjCnBuaaEuXFgd5aXkx heZoI3xMgV0oXpR4NuVV0PjqohzccCHDuOeW5J9o/ibqqmU4o7QK2H7cqvNP/L/v sipTQ6KBM8vlO7gU0r6FssKCg/y89MS7LJJUBCRxTdSXOfi6U2hypaYAaWtYVSm+ pmge0iIGUkxb7QeqWbY2RxXumQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJzAibG/ BeIgbFTaUCPiGq0x3y5uMB8GA1UdIwQYMBaAFNldoRcUEjAKtTs+SHDy9EHwbIEk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OUVDRC9FRjYzODNFMjNE OUYxMUVGOTkwMzM3NjhDNEY5QUUwMi8yVjJoRnhRU01BcTFPejVJY1BMMFFmQnNn U1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJWMmhGeFFTTUFxMU96NUljUEwwUWZCc2dTUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTlFQ0QvRUY2MzgzRTIzRDlGMTFFRjk5MDMzNzY4QzRGOUFFMDIvNUE0NzIzREE2 RjNDMTFFRjhGRDQ1RjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKYIHwwDQYJKoZIhvcNAQELBQADggEBADW/moveE89WkHWg Yx9gKC6PeCS1h1Ne5dwtQQy1U0mTa0aLKzgHIIgRN73HAuSMienXnqZOyE+GUUQ/ dg0L103qICwZ/mSPhtd10PKBphjIbg74Hlbyd3uBgXqMiqH9Qtw33JbqyA4xHYw2 pBfmag/gWlLu++G7EUJ5iTOtxCWwoqXrRThWI7xEvLySh1lI52Pi1khfZxaGhfUT xhRGnveefADeAyJWt+zywB7l3IpgsPYJhHK1mlVevii5kzqVDS1pDCqrLE0WNs2+ kRe8sVwyfJhsz7gWpEegW6bht606CmiwM/FY+AUJAM7T0zAvS/Txrn5ES5+C8ozt F591a1A= -----END CERTIFICATE-----Generated at Fri Sep 19 13:42:25 2025 by rpki-client