$ rpki-client -vvf rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa File: 0A7CA184B8C611F0B55B8B4EC4F9AE02.roa (raw, json) Hash identifier: Lb3RRFT3hAxRp0C7sz6QZHa1NXRIx5DemmAfbF9br5U= Subject key identifier: 0B:FF:2A:16:73:27:03:1B:11:F6:45:4D:CA:EC:42:4B:6E:F2:DD:23 Certificate issuer: /CN=A916708F/serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Certificate serial: 0D06 Authority key identifier: 2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa Signing time: Mon 03 Nov 2025 15:01:57 +0000 ROA not before: Mon 03 Nov 2025 15:01:57 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138640 IP address blocks: 123.136.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:09:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3334 (0xd06) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916708F, serialNumber=2D329912D69903B850097F8C6ED8571DAC7105AD Validity Not Before: Nov 3 15:01:57 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6908c3e4-06ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:01:dd:20:aa:d5:64:57:e4:e5:f6:e7:b6:e6: fa:74:4a:6f:b1:48:fb:b9:26:1f:b8:4f:01:8d:25: 96:90:b9:e7:43:fe:ab:48:32:3a:97:fc:62:71:ed: 9d:bf:49:4d:91:cd:d0:d0:47:8d:f3:da:c3:72:c6: d1:b7:9d:ac:77:c6:e1:b4:74:2a:43:d3:3a:d5:b9: 48:de:dd:03:d0:42:a8:6d:09:b0:d1:1c:c2:b5:1a: e6:8f:87:c1:49:a3:c1:b0:86:84:df:bf:cf:a7:ab: 53:91:cc:73:83:d4:9f:bd:d3:ac:f0:55:b4:7a:b2: 69:62:0a:62:98:79:a4:eb:aa:c8:47:56:cd:dd:44: 02:53:9f:5c:89:84:05:2a:e7:7d:51:9f:b5:08:b1: 85:d2:46:4b:e0:9c:d1:93:c5:67:b1:88:ef:66:3f: 32:d3:58:f6:f8:ae:15:b5:23:10:87:58:20:50:03: 42:14:79:34:65:c5:ce:48:0c:8d:7f:01:f7:24:30: 09:d3:c7:d8:b5:30:a2:4f:f9:02:6b:28:4c:07:07: 49:0d:97:ff:3d:aa:98:74:37:47:5c:2e:e9:26:c6: b8:39:d8:9e:5d:60:e3:39:30:e1:a5:bd:a5:48:15: 84:50:e7:d7:15:75:5f:b5:28:68:04:6e:5b:31:ab: b2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:FF:2A:16:73:27:03:1B:11:F6:45:4D:CA:EC:42:4B:6E:F2:DD:23 X509v3 Authority Key Identifier: keyid:2D:32:99:12:D6:99:03:B8:50:09:7F:8C:6E:D8:57:1D:AC:71:05:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/LTKZEtaZA7hQCX-MbthXHaxxBa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LTKZEtaZA7hQCX-MbthXHaxxBa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916708F/56DB0F24F16311E99DBEDF65C4F9AE02/0A7CA184B8C611F0B55B8B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.136.28.0/24 Signature Algorithm: sha256WithRSAEncryption 19:9a:93:36:17:78:cb:68:fd:e9:da:af:50:c9:11:78:0a:77: 25:67:04:2b:af:dc:bd:36:b7:26:60:2e:08:f5:6d:7d:f6:08: e8:8b:4f:5b:4a:c0:be:0f:93:8b:9f:9c:d7:b7:98:74:83:94: aa:28:b3:13:bc:58:3f:43:63:1e:c4:6c:3f:ae:b2:a7:7f:3f: e0:29:04:73:61:c9:7f:1d:f9:60:05:88:e0:44:a3:e5:1d:7a: 13:a4:e7:c8:83:72:38:c6:89:39:ce:d0:a1:e2:2a:7c:7c:f3: 17:be:3b:46:ac:ca:ee:70:b5:27:e5:63:4f:5a:4e:09:54:00: 99:4b:f1:50:9a:55:dc:99:f7:18:9d:0b:ed:9f:31:39:61:eb: 22:34:2f:6e:b3:19:17:8b:0c:25:7e:c8:51:5f:cf:4c:73:e4: 1a:bc:72:9d:e2:f0:55:65:4b:7b:6c:5c:11:6f:3a:e2:eb:87: e1:ac:dc:ea:19:b1:7d:21:47:2d:66:b8:78:62:90:f1:07:03: 14:d1:93:00:70:1a:f3:d2:85:cd:19:0a:90:44:16:80:51:6f: 3a:17:fc:6c:2b:f2:05:d7:70:20:d2:3f:8e:fc:58:98:65:26: ab:ec:f8:35:d1:72:ad:a0:32:c3:8a:4d:ca:d3:be:be:91:cc: f2:2e:b5:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjcwOEYxMTAvBgNVBAUTKDJEMzI5OTEyRDY5OTAzQjg1MDA5N0Y4QzZFRDg1NzFE QUM3MTA1QUQwHhcNMjUxMTAzMTUwMTU3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4YzNlNC0wNmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygHdIKrVZFfk5fbntub6dEpvsUj7uSYfuE8BjSWWkLnnQ/6rSDI6l/xice2d v0lNkc3Q0EeN89rDcsbRt52sd8bhtHQqQ9M61blI3t0D0EKobQmw0RzCtRrmj4fB SaPBsIaE37/Pp6tTkcxzg9SfvdOs8FW0erJpYgpimHmk66rIR1bN3UQCU59ciYQF Kud9UZ+1CLGF0kZL4JzRk8VnsYjvZj8y01j2+K4VtSMQh1ggUANCFHk0ZcXOSAyN fwH3JDAJ08fYtTCiT/kCayhMBwdJDZf/PaqYdDdHXC7pJsa4OdieXWDjOTDhpb2l SBWEUOfXFXVftShoBG5bMauyAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAv/KhZz JwMbEfZFTcrsQktu8t0jMB8GA1UdIwQYMBaAFC0ymRLWmQO4UAl/jG7YVx2scQWt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzA4Ri81NkRCMEYyNEYx NjMxMUU5OURCRURGNjVDNEY5QUUwMi9MVEtaRXRhWkE3aFFDWC1NYnRoWEhheHhC YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUS1pFdGFaQTdoUUNYLU1idGhYSGF4eEJhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjcwOEYvNTZEQjBGMjRGMTYzMTFFOTlEQkVERjY1QzRGOUFFMDIvMEE3Q0ExODRC OEM2MTFGMEI1NUI4QjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7iBwwDQYJKoZIhvcNAQELBQADggEBABmakzYXeMto/ena r1DJEXgKdyVnBCuv3L02tyZgLgj1bX32COiLT1tKwL4Pk4ufnNe3mHSDlKoosxO8 WD9DYx7EbD+usqd/P+ApBHNhyX8d+WAFiOBEo+UdehOk58iDcjjGiTnO0KHiKnx8 8xe+O0asyu5wtSflY09aTglUAJlL8VCaVdyZ9xidC+2fMTlh6yI0L26zGReLDCV+ yFFfz0xz5Bq8cp3i8FVlS3tsXBFvOuLrh+Gs3OoZsX0hRy1muHhikPEHAxTRkwBw GvPShc0ZCpBEFoBRbzoX/Gwr8gXXcCDSP478WJhlJqvs+DXRcq2gMsOKTcrTvr6R zPIutSo= -----END CERTIFICATE-----Generated at Tue Nov 4 21:10:26 2025 by rpki-client