$ rpki-client -vvf rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/C699F452FDF711E8B5A6725EC4F9AE02.roa File: C699F452FDF711E8B5A6725EC4F9AE02.roa (raw, json) Hash identifier: KlRlIQIriEHzptBPZWJtv0ze/AJ1Mbh5VvKzMPz2Ls0= Subject key identifier: A5:CF:46:41:72:E0:B1:A4:94:29:69:28:9B:0D:E6:4A:A6:9B:E0:6C Certificate issuer: /CN=A91402DC/serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Certificate serial: 134A Authority key identifier: C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/C699F452FDF711E8B5A6725EC4F9AE02.roa Signing time: Thu 14 Aug 2025 17:26:49 +0000 ROA not before: Thu 14 Aug 2025 17:26:49 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45474 IP address blocks: 122.11.181.0/24 maxlen: 24 122.11.182.0/24 maxlen: 24 122.11.183.0/24 maxlen: 24 122.11.184.0/24 maxlen: 24 122.11.185.0/24 maxlen: 24 122.11.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:19:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4938 (0x134a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91402DC, serialNumber=C2B9F5F3C68C576727239B92A93B36297D1B1653 Validity Not Before: Aug 14 17:26:49 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689e1c58-4e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:19:73:de:be:8b:fa:c6:98:4e:48:05:2f:df: 85:ae:6b:a6:b5:6d:07:45:80:af:5b:36:13:d1:d9: 87:d2:ec:7f:a0:64:1f:a4:9a:b0:c0:08:95:f0:2e: 4c:ac:13:b5:ad:b4:bf:a9:1b:14:eb:fb:3d:e9:6c: fe:fe:05:cc:ca:2c:b7:aa:0e:d2:36:dd:ee:f1:3c: e4:0d:72:d2:0b:d1:cf:f6:de:1e:91:cb:83:1d:22: 8d:d9:a5:ca:4b:42:37:ff:78:3e:80:03:16:98:4f: 10:0f:57:4e:67:70:e2:1b:f8:6b:9c:6d:9b:bb:db: 87:07:55:29:ba:14:43:ef:2d:84:4e:5e:dc:64:07: 88:b4:02:f7:02:95:6d:be:c3:9e:37:14:70:bc:76: 09:46:6e:60:b3:dd:cd:39:2f:0d:5f:31:32:b3:2c: ab:27:69:37:87:4c:42:33:4e:b6:b7:10:8d:ca:64: f7:cf:f1:1c:b8:49:e0:4a:11:5d:90:e1:21:55:eb: c1:44:7c:22:22:22:f6:28:62:a4:97:5b:e4:84:69: 8b:97:9a:37:09:85:70:9f:8e:67:ad:7d:90:32:9e: c2:da:57:76:37:e7:64:cd:3d:3f:f6:b6:e4:79:a9: 30:5d:fe:f0:5b:1a:a0:13:34:ef:59:94:c2:4e:16: cc:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:CF:46:41:72:E0:B1:A4:94:29:69:28:9B:0D:E6:4A:A6:9B:E0:6C X509v3 Authority Key Identifier: keyid:C2:B9:F5:F3:C6:8C:57:67:27:23:9B:92:A9:3B:36:29:7D:1B:16:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/wrn188aMV2cnI5uSqTs2KX0bFlM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrn188aMV2cnI5uSqTs2KX0bFlM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91402DC/2D51AF42FD3E11E888C53944C4F9AE02/C699F452FDF711E8B5A6725EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.11.181.0-122.11.186.255 Signature Algorithm: sha256WithRSAEncryption c9:fe:82:45:06:73:20:99:1a:e2:3c:54:b4:f9:d5:20:f9:e3: 3e:fb:f9:50:1d:40:ef:f5:12:3e:87:ef:6b:1f:46:0f:b0:15: 4e:51:69:51:92:c5:74:7f:18:b8:1d:9a:a8:00:ff:5b:38:1e: c4:b9:a9:64:73:c5:f6:fe:3b:ec:42:dc:57:46:4f:c0:8c:db: dc:40:f1:0a:da:d3:9b:2a:5d:d7:14:63:06:4d:fb:f7:66:bb: fa:d4:dd:cd:b4:e6:ff:d4:04:ca:b8:d5:66:e2:68:2f:80:3d: 6f:ce:8e:5f:7b:69:00:cc:08:ac:51:9b:46:a8:d5:88:c5:03: e1:b9:88:79:45:b9:f9:d3:d2:28:84:b0:87:c4:4d:fe:bf:af: 73:a2:95:79:7e:9f:c9:15:36:3a:d1:bc:5c:e9:4b:7e:55:5b: 0e:f3:51:ed:2c:2a:8b:fd:0d:98:fe:a2:16:44:29:a7:ea:b2: ea:40:bb:92:88:45:3f:3f:f2:69:7e:bf:62:37:45:c4:4c:20: 45:88:d3:da:a1:5b:47:f5:74:14:f4:0c:f3:97:29:0d:6f:2c: 38:0a:18:62:bb:9a:30:28:5f:76:ee:16:e0:05:d1:17:87:1f: eb:94:d3:0d:8c:cb:b6:a5:41:dd:0c:13:cf:4a:3f:a2:54:36: 9c:2c:b4:4a -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICE0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDAyREMxMTAvBgNVBAUTKEMyQjlGNUYzQzY4QzU3NjcyNzIzOUI5MkE5M0IzNjI5 N0QxQjE2NTMwHhcNMjUwODE0MTcyNjQ5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllMWM1OC00ZTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxlz3r6L+saYTkgFL9+FrmumtW0HRYCvWzYT0dmH0ux/oGQfpJqwwAiV8C5M rBO1rbS/qRsU6/s96Wz+/gXMyiy3qg7SNt3u8TzkDXLSC9HP9t4ekcuDHSKN2aXK S0I3/3g+gAMWmE8QD1dOZ3DiG/hrnG2bu9uHB1UpuhRD7y2ETl7cZAeItAL3ApVt vsOeNxRwvHYJRm5gs93NOS8NXzEysyyrJ2k3h0xCM062txCNymT3z/EcuEngShFd kOEhVevBRHwiIiL2KGKkl1vkhGmLl5o3CYVwn45nrX2QMp7C2ld2N+dkzT0/9rbk eakwXf7wWxqgEzTvWZTCThbMQQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFKXPRkFy 4LGklClpKJsN5kqmm+BsMB8GA1UdIwQYMBaAFMK59fPGjFdnJyObkqk7Nil9GxZT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDJEQy8yRDUxQUY0MkZE M0UxMUU4ODhDNTM5NDRDNEY5QUUwMi93cm4xODhhTVYyY25JNXVTcVRzMktYMGJG bE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dybjE4OGFNVjJjbkk1dVNxVHMyS1gwYkZsTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDAyREMvMkQ1MUFGNDJGRDNFMTFFODg4QzUzOTQ0QzRGOUFFMDIvQzY5OUY0NTJG REY3MTFFOEI1QTY3MjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAHoLtQMEAHoLujANBgkqhkiG9w0BAQsFAAOCAQEAyf6C RQZzIJka4jxUtPnVIPnjPvv5UB1A7/USPofvax9GD7AVTlFpUZLFdH8YuB2aqAD/ WzgexLmpZHPF9v477ELcV0ZPwIzb3EDxCtrTmypd1xRjBk3792a7+tTdzbTm/9QE yrjVZuJoL4A9b86OX3tpAMwIrFGbRqjViMUD4bmIeUW5+dPSKISwh8RN/r+vc6KV eX6fyRU2OtG8XOlLflVbDvNR7Swqi/0NmP6iFkQpp+qy6kC7kohFPz/yaX6/YjdF xEwgRYjT2qFbR/V0FPQM85cpDW8sOAoYYruaMChfdu4W4AXRF4cf65TTDYzLtqVB 3QwTz0o/olQ2nCy0Sg== -----END CERTIFICATE-----Generated at Sat Aug 23 17:59:53 2025 by rpki-client