$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa File: 7147D9D69D9811F09B4CDC3EC4F9AE02.roa (raw, json) Hash identifier: 6Ic+sOOlihEzvzyvrHCjJtxNC+c9AoDdHtp21QAX8Po= Subject key identifier: 1E:50:23:E8:F5:A9:6B:96:F7:34:A6:E6:B7:41:33:27:19:FA:96:6B Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0B8D Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa Signing time: Tue 30 Sep 2025 00:57:31 +0000 ROA not before: Tue 30 Sep 2025 00:57:31 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 23532 IP address blocks: 45.124.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Oct 2025 20:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2957 (0xb8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Sep 30 00:57:31 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68db2afb-cb4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ad:b6:1a:51:52:b7:b5:64:70:72:36:da:76: d4:b0:bc:44:7d:2e:59:9b:c8:6d:a7:0f:8f:9a:cd: 93:76:dd:dc:f2:44:a9:f6:2c:01:09:21:2a:25:f5: 99:28:f5:9b:af:d2:b0:dc:7e:34:2f:8b:34:c3:fb: 5b:02:ce:e3:6b:b2:21:dd:cf:9f:37:28:e6:3d:11: 79:75:2c:ce:a8:3b:95:0f:c5:3e:1b:ce:cb:81:a8: 9c:b4:03:50:60:56:c6:5f:f4:c2:a5:0c:cb:e1:0f: ff:2d:58:3a:4b:0f:aa:f5:5c:e8:03:04:2e:7d:42: e5:8f:af:1e:2b:6c:21:d0:33:bf:08:69:32:5d:bf: 69:c1:ad:b0:85:81:c2:dc:03:c5:e6:f4:aa:e6:10: 29:1c:4a:36:bf:e0:11:05:76:5c:70:16:3c:b8:b8: d1:6a:be:cd:7a:f9:a0:e8:fd:78:4e:66:74:a0:b8: 1b:33:7d:c5:c2:53:33:ff:75:59:7f:e1:df:d0:b4: c1:5c:4d:9b:0a:04:32:2b:1a:d0:ab:a1:e7:43:d0: e7:7b:d3:9b:4c:dd:97:77:51:a2:42:70:b8:9d:fe: c3:23:1f:ad:8f:b6:7f:92:3a:b7:a6:58:80:e1:51: 6c:c2:d8:43:0f:62:50:40:39:48:6f:00:a5:72:a2: 4d:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:50:23:E8:F5:A9:6B:96:F7:34:A6:E6:B7:41:33:27:19:FA:96:6B X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/7147D9D69D9811F09B4CDC3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.206.0/24 Signature Algorithm: sha256WithRSAEncryption 40:59:3d:cf:f0:a3:61:c7:72:60:98:9b:2c:17:60:6b:7e:f0: e4:46:6d:89:c8:c1:8d:2c:67:f9:f6:27:49:33:e8:4f:ce:94: e2:31:34:71:d8:18:6c:e7:9c:82:bd:98:c5:93:85:0d:b4:5e: 4b:28:74:13:d1:21:1a:4b:1b:2a:5b:e4:76:98:a1:41:aa:16: cf:2e:13:f9:8b:70:ac:6b:c2:d0:d2:10:54:4b:ec:8a:7d:64: 5b:6f:0e:3c:6f:ab:51:70:8f:79:25:da:c8:32:7a:77:49:93: eb:c5:50:4a:dc:72:5c:86:2c:c5:bf:e0:88:fb:97:87:22:b5: 87:a6:07:a5:86:99:64:d4:d5:eb:c6:71:88:02:51:8f:99:de: 71:6e:e8:95:ee:a6:02:26:d5:c9:cd:c1:cb:e2:8c:ae:f2:c8: c1:bf:40:15:88:f7:21:96:3e:f4:af:3f:88:24:6a:27:4c:a1: d1:4a:af:86:c2:ad:e5:2a:b3:a2:f8:e9:5c:7f:f3:63:71:33: 13:66:3c:30:88:5b:bd:48:d7:c0:4f:2b:66:04:a0:e7:38:ee: 6f:17:f5:c2:fb:27:ef:1e:b3:e8:96:c2:49:67:a6:db:a9:db: 0b:e3:31:9e:52:e8:10:97:da:9d:99:e3:a5:a2:fc:c9:7f:74: 88:34:e3:ff -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUwOTMwMDA1NzMxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiMmFmYi1jYjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw622GlFSt7VkcHI22nbUsLxEfS5Zm8htpw+Pms2Tdt3c8kSp9iwBCSEqJfWZ KPWbr9Kw3H40L4s0w/tbAs7ja7Ih3c+fNyjmPRF5dSzOqDuVD8U+G87LgaictANQ YFbGX/TCpQzL4Q//LVg6Sw+q9VzoAwQufULlj68eK2wh0DO/CGkyXb9pwa2whYHC 3APF5vSq5hApHEo2v+ARBXZccBY8uLjRar7Nevmg6P14TmZ0oLgbM33FwlMz/3VZ f+Hf0LTBXE2bCgQyKxrQq6HnQ9Dne9ObTN2Xd1GiQnC4nf7DIx+tj7Z/kjq3pliA 4VFswthDD2JQQDlIbwClcqJN1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFB5QI+j1 qWuW9zSm5rdBMycZ+pZrMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvNzE0N0Q5RDY5 RDk4MTFGMDlCNENEQzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtfM4wDQYJKoZIhvcNAQELBQADggEBAEBZPc/wo2HHcmCY mywXYGt+8ORGbYnIwY0sZ/n2J0kz6E/OlOIxNHHYGGznnIK9mMWThQ20XksodBPR IRpLGypb5HaYoUGqFs8uE/mLcKxrwtDSEFRL7Ip9ZFtvDjxvq1Fwj3kl2sgyendJ k+vFUErcclyGLMW/4Ij7l4citYemB6WGmWTU1evGcYgCUY+Z3nFu6JXupgIm1cnN wcvijK7yyMG/QBWI9yGWPvSvP4gkaidModFKr4bCreUqs6L46Vx/82NxMxNmPDCI W71I18BPK2YEoOc47m8X9cL7J+8es+iWwklnptup2wvjMZ5S6BCX2p2Z46Wi/Ml/ dIg04/8= -----END CERTIFICATE-----Generated at Tue Oct 14 17:18:42 2025 by rpki-client