$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/76C6BCF6B72811ECAEFC180DC4F9AE02.roa File: 76C6BCF6B72811ECAEFC180DC4F9AE02.roa (raw, json) Hash identifier: rJt9UQ2CbATtEyHk+VO1E6DMoo3w2GSd/mE//3ZqYZU= Subject key identifier: D8:A6:05:5C:3A:B9:E2:4D:8D:03:83:1D:61:A3:FF:37:1B:0A:4E:88 Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 1409 Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/76C6BCF6B72811ECAEFC180DC4F9AE02.roa Signing time: Sat 30 Aug 2025 15:32:28 +0000 ROA not before: Sat 30 Aug 2025 15:32:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4755 IP address blocks: 130.248.126.0/23 maxlen: 23 130.248.126.0/24 maxlen: 24 192.150.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 15:36:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5129 (0x1409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD, serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Aug 30 15:32:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b3198b-44fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3d:3f:71:5c:c8:b9:68:3e:d6:ff:59:e7:27: 05:f5:6c:ea:51:47:75:53:ec:54:2e:8d:eb:a4:81: 9a:a5:e8:37:4e:b4:41:6f:03:ca:2a:cc:f4:3d:b5: ea:15:19:f3:c0:c8:73:57:b0:10:ca:0b:2d:90:3f: 73:90:eb:f8:79:e5:56:da:26:67:2f:e6:3e:4f:36: 63:1c:a6:73:52:86:11:ce:95:dc:e7:f6:dd:ad:02: d6:c6:9c:07:01:e3:eb:40:d5:1a:7f:57:28:77:67: 70:f3:2a:c4:23:9d:6a:fd:d0:48:db:f7:f3:86:54: a2:6e:f3:1c:17:67:fc:7d:15:53:e8:c4:31:85:7c: 50:83:0c:a0:7c:cf:9e:8f:0a:fd:56:62:5f:6b:a9: dc:64:35:6a:89:11:70:c4:10:dc:6a:95:98:51:b7: 5b:b2:05:8f:dd:98:7d:d8:6a:95:42:29:ae:0c:65: 23:73:62:33:97:e2:6c:70:0c:96:80:89:23:ae:b4: 0a:5f:c2:17:4b:c0:29:52:33:58:17:2b:e8:a8:91: d8:15:fd:6a:c7:1e:fc:6e:6a:73:01:ae:b0:99:bd: 0a:2d:13:be:81:b4:d6:c1:2e:21:94:6f:30:b6:d1: a8:47:e5:8d:62:72:e9:78:dc:4a:3e:92:ea:9a:ba: 92:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A6:05:5C:3A:B9:E2:4D:8D:03:83:1D:61:A3:FF:37:1B:0A:4E:88 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/76C6BCF6B72811ECAEFC180DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.248.126.0/23 192.150.16.0/24 Signature Algorithm: sha256WithRSAEncryption 24:21:b6:5e:27:5b:22:d4:ee:df:4d:bc:1f:df:1f:08:ae:c9: d4:4c:92:03:f8:34:b4:26:1b:26:0c:51:ea:d9:b7:8a:99:9a: 7c:54:2a:13:60:c3:e4:7a:dd:e3:b5:91:3b:e8:7f:c8:8d:68: 7f:01:c8:0e:54:21:4b:ac:c9:db:5e:da:e0:2c:45:21:13:36: f8:26:24:4f:2f:fe:c0:ea:55:70:c5:59:82:95:c1:6b:c5:dc: d9:96:0d:10:11:47:95:0a:38:8f:1c:e6:07:67:fa:f4:d3:00: 44:e2:7a:39:ce:41:8c:3f:7e:81:61:f3:df:6b:8d:fe:0e:e3: ab:b2:64:3e:98:d0:44:58:cf:36:48:4b:be:61:a8:a0:6e:06: 8a:74:1e:21:9c:0f:82:cf:cf:23:60:62:13:cf:11:3f:ad:be: cc:f4:86:5e:f6:90:f0:38:bd:db:7b:82:46:64:1a:90:38:47: 73:f5:3e:55:bf:5f:80:01:26:f9:0c:11:bb:45:a9:c6:d1:da: 34:c4:fe:c3:95:cc:82:d5:29:28:35:e6:0d:15:90:fa:9f:33: 7d:38:1d:b8:e7:fd:d3:2d:ce:1b:b2:d7:ba:1d:bf:3d:1f:3a: a1:c0:2d:ad:14:cd:4d:d9:6d:20:7e:56:6c:df:98:a7:9f:bf: 35:64:4e:a3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjUwODMwMTUzMjI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzMTk4Yi00NGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3j0/cVzIuWg+1v9Z5ycF9WzqUUd1U+xULo3rpIGapeg3TrRBbwPKKsz0PbXq FRnzwMhzV7AQygstkD9zkOv4eeVW2iZnL+Y+TzZjHKZzUoYRzpXc5/bdrQLWxpwH AePrQNUaf1cod2dw8yrEI51q/dBI2/fzhlSibvMcF2f8fRVT6MQxhXxQgwygfM+e jwr9VmJfa6ncZDVqiRFwxBDcapWYUbdbsgWP3Zh92GqVQimuDGUjc2Izl+JscAyW gIkjrrQKX8IXS8ApUjNYFyvoqJHYFf1qxx78bmpzAa6wmb0KLRO+gbTWwS4hlG8w ttGoR+WNYnLpeNxKPpLqmrqSEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNimBVw6 ueJNjQODHWGj/zcbCk6IMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5QkQvMDc0OTU4OTA5MTgyMTFFODkxQzRFQzEwQzRGOUFFMDIvNzZDNkJDRjZC NzI4MTFFQ0FFRkMxODBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGC+H4DBADAlhAwDQYJKoZIhvcNAQELBQADggEBACQhtl4n WyLU7t9NvB/fHwiuydRMkgP4NLQmGyYMUerZt4qZmnxUKhNgw+R63eO1kTvof8iN aH8ByA5UIUusydte2uAsRSETNvgmJE8v/sDqVXDFWYKVwWvF3NmWDRARR5UKOI8c 5gdn+vTTAETiejnOQYw/foFh899rjf4O46uyZD6Y0ERYzzZIS75hqKBuBop0HiGc D4LPzyNgYhPPET+tvsz0hl72kPA4vdt7gkZkGpA4R3P1PlW/X4ABJvkMEbtFqcbR 2jTE/sOVzILVKSg15g0VkPqfM304Hbjn/dMtzhuy17odvz0fOqHALa0UzU3ZbSB+ VmzfmKefvzVkTqM= -----END CERTIFICATE-----Generated at Sun Oct 19 07:14:29 2025 by rpki-client