$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/25687A64364D11F0AECC3986C4F9AE02.roa File: 25687A64364D11F0AECC3986C4F9AE02.roa (raw, json) Hash identifier: j5kgXwbepMIvNgxa27dfn191WDj/vcSWthYxalKX4VY= Subject key identifier: 67:3F:E8:F7:41:1C:C4:0A:DE:0D:44:0C:C9:42:84:90:42:DB:DE:D2 Certificate issuer: /CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Certificate serial: 0341 Authority key identifier: 33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/25687A64364D11F0AECC3986C4F9AE02.roa Signing time: Wed 21 May 2025 14:11:21 +0000 ROA not before: Wed 21 May 2025 14:11:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 153494 IP address blocks: 45.122.136.0/22 maxlen: 24 103.63.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 18 Jun 2025 01:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 833 (0x341) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E08, serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Validity Not Before: May 21 14:11:21 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=682ddf09-55c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:30:8d:db:6a:05:f3:15:f5:e5:48:e8:78:dd: f0:f5:7c:a8:6c:78:e1:c7:32:32:6e:3d:5f:46:00: 8e:5d:cd:9e:c2:19:37:a0:a8:e5:1e:4d:11:99:d1: 71:7c:12:95:d0:2e:38:1f:bc:49:64:dd:b0:58:68: 56:63:ef:49:2a:b4:17:6b:9d:7e:26:b2:d2:e6:eb: fb:cb:43:00:f6:b3:5d:01:e8:76:8f:c4:db:17:cf: 31:c1:3b:91:1e:0f:4b:92:94:1b:2c:a5:b9:c6:9a: 68:14:d0:54:10:18:40:4c:88:97:35:8d:dd:19:28: a3:c6:ed:68:4c:13:e9:b6:ef:ca:e7:b9:2a:58:27: 84:1f:84:45:bb:dd:30:e8:ae:e5:b1:4e:61:f7:26: bf:5c:1d:46:85:b0:f5:29:fc:dd:57:4c:46:69:69: 15:46:27:27:ff:88:d6:b7:c5:78:47:35:e7:70:0e: 72:ce:80:4e:1f:40:e5:94:d8:c5:ef:94:4c:bc:4a: fd:8a:0b:6e:59:d7:93:7a:2c:fd:b7:b1:a5:49:92: 0f:7c:41:b8:03:4b:5e:22:aa:a3:84:bb:2b:69:c7: 86:4c:72:e6:d2:78:a7:33:9e:f1:9f:7a:f9:8c:a1: 75:55:de:8b:ad:f2:9c:4f:81:57:3b:ef:c4:a0:c4: 3c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3F:E8:F7:41:1C:C4:0A:DE:0D:44:0C:C9:42:84:90:42:DB:DE:D2 X509v3 Authority Key Identifier: keyid:33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/25687A64364D11F0AECC3986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.122.136.0/22 103.63.4.0/22 Signature Algorithm: sha256WithRSAEncryption 13:65:3c:1c:71:34:b8:84:be:0f:5b:cd:82:9d:0d:50:43:f0: 35:ff:c9:e2:41:e1:46:34:bb:4e:e8:e0:02:9e:96:f5:7a:85: d3:06:43:94:e4:73:2c:8b:a7:07:7e:1a:a0:d1:41:b0:79:60: 6f:ec:6c:f1:38:de:8e:0d:c6:1a:af:4c:e2:6e:ad:6c:3a:11: af:c3:1d:e4:12:12:1c:c4:98:14:0d:21:10:b6:99:95:d3:c8: dd:fe:da:e3:b6:a3:97:28:13:95:27:5d:a2:c1:84:cc:88:ce: 14:42:19:ef:86:b8:43:ac:94:95:3d:41:49:38:a2:32:a6:29: 2a:03:59:ca:43:f8:8c:ec:24:db:e5:af:40:34:b0:8e:5c:71: 79:3c:73:99:dc:63:b7:ab:9a:c6:20:d7:e8:85:ad:3f:82:80: 06:4a:e0:4f:81:24:8b:12:a5:db:11:12:36:e2:b8:5c:81:be: 76:e2:9c:a3:c8:a5:35:19:fc:f9:77:71:b6:5e:33:04:40:43: 1d:8a:5f:fc:da:8a:51:a4:31:01:62:57:6e:5c:eb:a8:0c:c6: 2f:47:72:7c:38:62:d5:8f:84:e8:54:62:1f:07:b9:d8:f4:8d: 1c:5c:47:80:39:e2:b9:a3:3e:4e:d0:21:58:cb:3a:81:3c:e5: ba:03:bd:a3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA0EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMDgxMTAvBgNVBAUTKDMzQjY5NTMyOTU4MDEwMzhGMDE3RkE2NUQ0NzA3ODFB NUNDNzcyQzAwHhcNMjUwNTIxMTQxMTIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkZGYwOS01NWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDCN22oF8xX15UjoeN3w9XyobHjhxzIybj1fRgCOXc2ewhk3oKjlHk0RmdFx fBKV0C44H7xJZN2wWGhWY+9JKrQXa51+JrLS5uv7y0MA9rNdAeh2j8TbF88xwTuR Hg9LkpQbLKW5xppoFNBUEBhATIiXNY3dGSijxu1oTBPptu/K57kqWCeEH4RFu90w 6K7lsU5h9ya/XB1GhbD1KfzdV0xGaWkVRicn/4jWt8V4RzXncA5yzoBOH0DllNjF 75RMvEr9igtuWdeTeiz9t7GlSZIPfEG4A0teIqqjhLsraceGTHLm0ninM57xn3r5 jKF1Vd6LrfKcT4FXO+/EoMQ80QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGc/6PdB HMQK3g1EDMlChJBC297SMB8GA1UdIwQYMBaAFDO2lTKVgBA48Bf6ZdRweBpcx3LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUwOC85RUM2MzFFQ0M2 MDkxMUVDQjQ2MEVDNTdDNEY5QUUwMi9NN2FWTXBXQUVEandGX3BsMUhCNEdsekhj c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003YVZNcFdBRURqd0ZfcGwxSEI0R2x6SGNzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMDgvOUVDNjMxRUNDNjA5MTFFQ0I0NjBFQzU3QzRGOUFFMDIvMjU2ODdBNjQz NjREMTFGMEFFQ0MzOTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteogDBAJnPwQwDQYJKoZIhvcNAQELBQADggEBABNlPBxx NLiEvg9bzYKdDVBD8DX/yeJB4UY0u07o4AKelvV6hdMGQ5TkcyyLpwd+GqDRQbB5 YG/sbPE43o4NxhqvTOJurWw6Ea/DHeQSEhzEmBQNIRC2mZXTyN3+2uO2o5coE5Un XaLBhMyIzhRCGe+GuEOslJU9QUk4ojKmKSoDWcpD+IzsJNvlr0A0sI5ccXk8c5nc Y7ermsYg1+iFrT+CgAZK4E+BJIsSpdsREjbiuFyBvnbinKPIpTUZ/Pl3cbZeMwRA Qx2KX/zailGkMQFiV25c66gMxi9Hcnw4YtWPhOhUYh8Hudj0jRxcR4A54rmjPk7Q IVjLOoE85boDvaM= -----END CERTIFICATE-----Generated at Wed Jun 11 23:16:06 2025 by rpki-client