$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/49678FBCB72B11EC8C8E3017C4F9AE02.roa File: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (raw, json) Hash identifier: Fya/3MhXvM2udSwM4AtG4GxQbuG8VOpcoReRz0Tvy8A= Subject key identifier: 66:26:4E:4B:30:BB:B2:43:FB:C4:06:05:EA:86:82:ED:FD:11:25:C5 Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 140B Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/49678FBCB72B11EC8C8E3017C4F9AE02.roa Signing time: Sat 30 Aug 2025 15:32:30 +0000 ROA not before: Sat 30 Aug 2025 15:32:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 6453 IP address blocks: 130.248.126.0/23 maxlen: 23 130.248.126.0/24 maxlen: 24 192.150.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:27:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5131 (0x140b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Aug 30 15:32:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b3198e-3eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:37:3b:e1:ea:9a:95:62:ce:d6:14:e6:49:bc: de:55:bc:5c:fc:7b:65:74:95:49:df:cd:04:9e:a4: 1a:40:d1:b5:0b:e6:25:91:bb:47:cc:20:7f:5f:59: d4:04:ff:91:14:7c:f6:a1:dd:0c:e3:3a:10:04:c2: d5:1a:f1:27:6f:5b:e8:83:48:04:27:7f:2b:98:85: 8d:55:7e:b2:f1:cc:f2:3a:d1:43:ec:9c:4a:f7:02: 46:3b:75:3d:62:98:d4:85:2c:01:50:b1:03:d2:53: af:28:bb:b0:a0:8f:2e:2a:88:19:36:89:4b:d7:f3: e6:b2:d1:e6:10:eb:d9:a5:1e:b8:7e:aa:c7:90:00: bb:44:2b:6d:d5:a5:cc:68:23:72:44:24:c9:86:6d: 2b:9e:3d:ef:55:39:a3:33:d7:07:d4:7c:74:62:50: 53:29:2b:29:1e:a6:40:aa:a9:ae:2d:ac:82:bd:8d: dd:91:ab:06:98:42:f6:79:8c:9c:c0:8f:ff:9d:2c: f3:c8:d0:07:41:92:cd:4b:99:60:9a:94:3b:98:0c: ec:06:4a:30:b6:53:a6:e0:99:41:85:bf:e7:09:95: c0:75:c9:ba:4d:6d:03:03:eb:e9:c4:0f:0e:a5:84: 8f:dd:27:f5:d6:67:e1:7e:c4:75:d2:ad:df:08:39: f0:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:26:4E:4B:30:BB:B2:43:FB:C4:06:05:EA:86:82:ED:FD:11:25:C5 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/49678FBCB72B11EC8C8E3017C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.248.126.0/23 192.150.16.0/24 Signature Algorithm: sha256WithRSAEncryption 75:1c:13:5f:a1:82:8f:18:7f:27:b4:3e:77:04:81:84:de:d5: 8a:32:94:45:99:53:9a:fb:f3:28:b0:c0:0a:35:47:41:6a:80: 52:66:45:5d:fc:56:a4:81:76:0f:06:48:fc:e0:6b:41:7c:3c: 4d:a8:1e:fb:f6:e0:d5:59:98:ab:d4:90:4b:d6:97:ef:bf:62: 0c:a6:44:d0:7a:e8:a9:bc:76:e1:86:3b:84:92:97:3c:19:11: db:ca:05:8a:62:0f:91:ca:4c:d6:df:df:21:ec:f7:5f:62:d4: ef:55:ad:aa:78:c6:34:39:3f:a5:4d:60:65:99:9c:30:e3:b3: fb:7c:98:4e:09:50:5a:a1:3d:e2:e9:50:5a:e1:e0:32:37:03: d0:d0:27:bd:ec:e7:b2:ad:49:ee:42:8f:24:d7:37:2d:38:20: 9a:20:f2:a9:61:5e:80:1e:68:82:e6:01:0b:f0:aa:b3:29:e3: 4c:9b:d0:6d:a3:a9:ed:23:a9:cd:35:88:7e:a7:a5:1a:ec:27: 4e:ba:40:84:a9:cf:cb:25:7b:9b:e3:ed:cc:4b:be:ff:46:d0: ff:b0:8d:34:fa:93:dd:f0:9b:06:8b:c7:46:49:5b:40:01:db: cf:4b:04:10:33:ad:6b:1b:b8:94:1a:86:30:82:33:18:1a:44: 40:c6:15:1d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwODMwMTUzMjMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMTk4ZS0zZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Dc74eqalWLO1hTmSbzeVbxc/HtldJVJ380EnqQaQNG1C+YlkbtHzCB/X1nU BP+RFHz2od0M4zoQBMLVGvEnb1vog0gEJ38rmIWNVX6y8czyOtFD7JxK9wJGO3U9 YpjUhSwBULED0lOvKLuwoI8uKogZNolL1/PmstHmEOvZpR64fqrHkAC7RCtt1aXM aCNyRCTJhm0rnj3vVTmjM9cH1Hx0YlBTKSspHqZAqqmuLayCvY3dkasGmEL2eYyc wI//nSzzyNAHQZLNS5lgmpQ7mAzsBkowtlOm4JlBhb/nCZXAdcm6TW0DA+vpxA8O pYSP3Sf11mfhfsR10q3fCDnwrwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGYmTksw u7JD+8QGBeqGgu39ESXFMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5QkQvMDc0OTU4OTA5MTgyMTFFODkxQzRFQzEwQzRGOUFFMDIvNDk2NzhGQkNC NzJCMTFFQzhDOEUzMDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGC+H4DBADAlhAwDQYJKoZIhvcNAQELBQADggEBAHUcE1+h go8Yfye0PncEgYTe1YoylEWZU5r78yiwwAo1R0FqgFJmRV38VqSBdg8GSPzga0F8 PE2oHvv24NVZmKvUkEvWl++/YgymRNB66Km8duGGO4SSlzwZEdvKBYpiD5HKTNbf 3yHs919i1O9Vrap4xjQ5P6VNYGWZnDDjs/t8mE4JUFqhPeLpUFrh4DI3A9DQJ73s 57KtSe5CjyTXNy04IJog8qlhXoAeaILmAQvwqrMp40yb0G2jqe0jqc01iH6npRrs J066QISpz8sle5vj7cxLvv9G0P+wjTT6k93wmwaLx0ZJW0AB289LBBAzrWsbuJQa hjCCMxgaREDGFR0= -----END CERTIFICATE-----Generated at Sun Sep 7 12:45:15 2025 by rpki-client