$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/8C2F1C96367F11EEB689C243C4F9AE02.roa File: 8C2F1C96367F11EEB689C243C4F9AE02.roa (raw, json) Hash identifier: H8xjH5y20P1rOG3WSUPBDAJqjIZUNQTVo2FaxmnxQzw= Subject key identifier: 20:09:D9:83:1D:8E:D6:5A:35:3E:3F:E8:7C:94:B5:91:AE:B1:67:C2 Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 0505 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/8C2F1C96367F11EEB689C243C4F9AE02.roa Signing time: Tue 09 Sep 2025 00:05:28 +0000 ROA not before: Tue 09 Sep 2025 00:05:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 19701 IP address blocks: 182.54.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1285 (0x505) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8, serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Sep 9 00:05:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68bf6f47-9192 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:54:69:01:ea:76:f3:91:2b:75:32:52:23:bd: 05:24:25:7c:a0:ac:d7:1c:ff:70:a9:45:09:bf:78: 8b:5c:e6:46:df:66:69:d0:06:5a:c3:70:d2:06:ed: 5a:fe:7f:3a:c2:35:c9:c3:3e:55:5c:8e:00:8d:4f: 74:ef:f6:be:7a:2e:33:ec:a3:60:f4:f0:32:0f:f3: 20:de:f4:3d:3a:47:38:0f:63:b9:7e:70:03:86:3b: 3f:c2:57:e9:2e:7d:8f:db:54:fc:f8:46:ec:56:e1: e9:03:0e:70:fe:37:05:85:6c:b3:3b:f2:f1:25:0c: 02:14:4f:13:f3:c4:2f:4f:92:6d:fd:37:7b:3f:83: 04:53:18:45:22:2d:d7:89:91:d2:39:61:3e:47:a8: 93:7b:50:58:05:88:74:b0:18:98:9d:54:8a:3e:b5: 6d:05:1d:5e:6c:11:5b:13:32:f5:db:aa:16:4e:d3: 3a:78:66:69:94:fd:64:57:62:43:8d:16:06:1d:ce: 7b:7e:1d:5e:1b:a0:3f:4b:62:ee:e1:20:de:0d:0a: 69:a7:31:3e:bc:3c:9d:19:a2:a3:ac:a9:5b:05:41: 1b:be:b1:ac:34:be:a4:5b:10:43:1a:2b:33:89:65: 1d:de:2d:02:cb:67:40:ae:16:d9:ba:00:bd:cf:a9: 10:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:09:D9:83:1D:8E:D6:5A:35:3E:3F:E8:7C:94:B5:91:AE:B1:67:C2 X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/8C2F1C96367F11EEB689C243C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.54.133.0/24 Signature Algorithm: sha256WithRSAEncryption 38:c3:b7:7d:04:e7:d0:79:ec:69:72:f4:e5:30:51:0f:bc:b9: 64:70:e5:0c:32:36:5b:d8:db:a1:83:97:dc:be:df:19:24:ac: ba:20:2b:38:8c:31:ba:99:13:d6:44:2d:43:f4:e5:7d:0a:c5: 3e:15:72:71:e3:c9:e3:4f:7d:0f:27:71:c8:9b:62:ce:da:53: 15:38:40:77:78:0f:96:7a:46:d6:5d:f7:5c:62:5d:7a:85:38: 40:86:0d:f3:1b:c2:27:26:a4:3a:14:17:4c:a2:49:15:c8:c3: ca:f5:b8:d5:c1:5d:29:b0:6f:f7:fa:95:e2:73:73:cb:1a:fb: 6b:b4:58:e0:06:c2:ce:e3:a8:bf:cd:f7:f6:2a:94:df:7d:e2: 03:52:93:dc:e3:48:24:8d:cd:0b:02:e9:d2:de:71:ff:7d:03: 9b:80:d8:50:31:31:e4:18:5c:fe:75:aa:29:3d:ca:ca:fd:5b: 44:da:58:84:ee:bd:27:6e:d4:59:c7:6e:32:e0:70:a2:e6:fc: 95:81:47:98:c3:d2:5d:b6:3d:6b:c0:c6:96:cc:72:03:a4:ea: 56:7e:a8:07:b3:12:49:73:28:e8:17:7b:48:b4:41:48:37:e1: 6f:6b:54:eb:84:0f:c2:02:98:db:ec:16:a8:ac:e3:9d:45:04: 75:07:df:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjUwOTA5MDAwNTI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmNmY0Ny05MTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8FRpAep285ErdTJSI70FJCV8oKzXHP9wqUUJv3iLXOZG32Zp0AZaw3DSBu1a /n86wjXJwz5VXI4AjU907/a+ei4z7KNg9PAyD/Mg3vQ9Okc4D2O5fnADhjs/wlfp Ln2P21T8+EbsVuHpAw5w/jcFhWyzO/LxJQwCFE8T88QvT5Jt/Td7P4MEUxhFIi3X iZHSOWE+R6iTe1BYBYh0sBiYnVSKPrVtBR1ebBFbEzL126oWTtM6eGZplP1kV2JD jRYGHc57fh1eG6A/S2Lu4SDeDQpppzE+vDydGaKjrKlbBUEbvrGsNL6kWxBDGisz iWUd3i0Cy2dArhbZugC9z6kQLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCAJ2YMd jtZaNT4/6HyUtZGusWfCMB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvOEMyRjFDOTYz NjdGMTFFRUI2ODlDMjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC2NoUwDQYJKoZIhvcNAQELBQADggEBADjDt30E59B57Gly 9OUwUQ+8uWRw5QwyNlvY26GDl9y+3xkkrLogKziMMbqZE9ZELUP05X0KxT4VcnHj yeNPfQ8nccibYs7aUxU4QHd4D5Z6RtZd91xiXXqFOECGDfMbwicmpDoUF0yiSRXI w8r1uNXBXSmwb/f6leJzc8sa+2u0WOAGws7jqL/N9/YqlN994gNSk9zjSCSNzQsC 6dLecf99A5uA2FAxMeQYXP51qik9ysr9W0TaWITuvSdu1FnHbjLgcKLm/JWBR5jD 0l22PWvAxpbMcgOk6lZ+qAezEklzKOgXe0i0QUg34W9rVOuED8ICmNvsFqis451F BHUH358= -----END CERTIFICATE-----Generated at Wed Sep 10 12:01:38 2025 by rpki-client